Hindi na suportado ang browser na ito.
Mag-upgrade sa Microsoft Edge para samantalahin ang mga pinakabagong tampok, update sa seguridad, at teknikal na suporta.
Applies to:
Want to experience Defender for Endpoint? Sign up for a free trial.
Automation folder exclusions allow you to specify folders that the Automated investigation will skip.
You can control the following attributes about the folder that you'd like to be skipped:
Folders: You can specify a folder and its subfolders to be skipped.
Note
At this time, use of wild cards as a way to exclude files under a directory is not yet supported.
Extensions of the files: You can specify the extensions to exclude in a specific directory. The extensions are a way to prevent an attacker from using an excluded folder to hide an exploit. The extensions explicitly define which files to ignore.
File names: You can specify the file names that you want to be excluded in a specific directory. The names are a way to prevent an attacker from using an excluded folder to hide an exploit. The names explicitly define which files to ignore.
Mahalaga
Microsoft recommends that you use roles with the fewest permissions. This helps improve security for your organization. Global Administrator is a highly privileged role that should be limited to emergency scenarios when you can't use an existing role.
Sign in to the Microsoft Defender portal using an account with the Security administrator or Global administrator role assigned.
In the navigation pane, select Settings > Endpoints > Rules > Automation folder exclusions.
Select New folder exclusion.
Enter the folder details:
Select Save.
Note
Live Response commands to collect or examine excluded files will fail with error: "File is excluded". In addition, automated investigations will ignore the excluded items.
In the navigation pane, select Settings > Endpoints > Rules > Automation folder exclusions.
Select Edit on the folder exclusion.
Update the details of the rule and click Save.
In the navigation pane, select Settings > Endpoints > Rules > Automation folder exclusions.
Select Remove exclusion.
Tip
Do you want to learn more? Engage with the Microsoft Security community in our Tech Community: Microsoft Defender for Endpoint Tech Community.
Pagsasanay
Module
Configure and manage automation using Microsoft Defender for Endpoint - Training
Configure and manage automation using Microsoft Defender for Endpoint
Sertipikasyon
Microsoft Certified: Security Operations Analyst Associate - Certifications
Investigate, search for, and mitigate threats using Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft 365 Defender.
Dokumentasyon
Exclusions overview - Microsoft Defender for Endpoint
Learn how to navigate exclusions for Defender for Endpoint and Microsoft Defender Antivirus.
Learn how to use exclusions, indicators, and other techniques to address unwanted behaviors in Microsoft Defender for Endpoint.
Managing exclusions reference - Microsoft Defender for Endpoint
This article describes various ways to manage exclusions for Defender for Endpoint and Microsoft Defender Antivirus