Configuration Manager 1602 adds some new settings in Endpoint Protection antimalware policy for Windows Defender. If you have been using Configuration Manager 2012 R2 and if you have installed Endpoint Protection role, you will notice some improvements done in the SCCM 1602 Endpoint Protection antimalware settings. The new version of Configuration Manager 1602 is released. You can use this step by step guide to upgrade your Configuration Manager version 1511 to 1602.
Talking about the antimalware policies, you can deploy antimalware policies to collections of System Center Configuration Manager client computers to specify how Endpoint Protection protects them from malware and other threats. These antimalware policies include information about the scan schedule, the types of files and folders to scan, and the actions to take when malware is detected. When you enable Endpoint Protection, a default antimalware policy is applied to client computers. You can also use additional policy templates that are supplied or create your own custom antimalware policies to meet the specific needs of your environment.
Configuration Manager 1602 Endpoint Protection Improvements
Let’s look at some Configuration Manager 1602 Endpoint Protection Improvements. Antimalware policies can be accessed by navigating to Assets and Compliance > Overview > Endpoint Protection > Antimalware Policies
Scan Settings – There are two new options added here. Scan network files and Scan mapped network drives when running a full scan. In the previous version of Configuration Manager there was only one option “Scan network drives when running a full scan”.
Real-time protection – There is a new option added in the real-time protection settings. This setting when enabled blocks potentially unwanted applications at download and prior to installation. Enabled network protection against network exploits is improved.
Advanced – There are 2 new auto sample file submission settings added. Enable auto sample file submission to help Microsoft determine whether certain detected items are Malicious & Allow users to modify auto sample file submission settings. The antimalware engine may request file samples to be sent to Microsoft for further analysis. By default, it will always prompt before it sends such samples. Administrators can now manage the following settings to configure this behavior.