Enabling Windows Defender Security Center via LGPEΒΆ

Applies to Sub-Control 8.2

Note

Windows Defender Antivirus is enabled by default, and this prevents it from being disabled by a user.

In the Windows search bar with the magnifying glass icon, type local group to open the Local Group Policy Editor.

../_images/SearchingForLocalGroupPolicyEditor.png

Searching for Local Group Policy Editor

The Local Group Policy Editor is show below.

../_images/LGPEHomeScreen.png

LGPE Home Screen

Select Computer Configuration and expand Administrative Templates.

../_images/LGPEAdministrativeTemplates.png

LGPE Administrative Templates

Expand Windows Components and then Windows Defender Antivirus.

../_images/LGPEWindowsDefenderAntivirus.png

LGPE Windows Defender Antivirus

Double click Turn off Windows Defender Antivirus and ensure Disabled is selected.

../_images/WindowsDefenderAntivirusSettings.png

LGPE Windows Defender Antivirus

Additional actions are required. Click the blue back arrow in the top left of the Local Group Policy Editor and select Real-time Protection, followed by Turn off real-time protection.

../_images/LGPEReal-timeProtection.png

LGPE Real-time Protection

Ensure that Turn off real-time protection is Disabled. This prevents the application from being disabled.

../_images/Real-timeProtectionSettings.png

Real-time Protection Settings