Prajwal Desai

SCCM | ConfigMgr | Intune | Windows 11 | Azure

  • Home
  • Cloud
    • Autopilot
    • Azure
    • Endpoint Analytics
    • Intune
    • PowerShell
    • Teams
    • Windows 365
  • Microsoft
    • Active Directory
    • Group Policy
    • SCCM
    • SCOM
    • Windows 10
    • Windows 11
    • Windows Server
    • WSUS
  • Software
  • Forums
  • Newsletter
  • Contact
Notification Show More
Latest News
Fix Windows Autopilot Reset Error 0x80070032
Fix Windows Autopilot Reset Error 0x80070032
Autopilot Intune
Windows activation error 0xc004c020
Fix: Windows Activation Error 0xC004C020 with 2 Easy Methods
Windows 11 Windows 10
Find the Package ID of SCCM Application
3 Best Ways to Find the Package ID of SCCM Application
SCCM
SCCM Updates Install Error 0x800b0109 0x8024b303
Fix: SCCM Updates Install Error 0x800b0109 | 0x8024b303
SCCM
Disable Windows Hello for Business using Intune ftimg
Disable Windows Hello for Business using Intune – Comprehensive Guide
Intune Autopilot
Aa

Prajwal Desai

SCCM | ConfigMgr | Intune | Windows 11 | Azure

Aa
Search
  • Home
  • Cloud
    • Autopilot
    • Azure
    • Endpoint Analytics
    • Intune
    • PowerShell
    • Teams
    • Windows 365
  • Microsoft
    • Active Directory
    • Group Policy
    • SCCM
    • SCOM
    • Windows 10
    • Windows 11
    • Windows Server
    • WSUS
  • Software
  • Forums
  • Newsletter
  • Contact
Follow US

Home » Group Policy » Configure PUA Protection using Group Policy

Group Policy

Configure PUA Protection using Group Policy

By Prajwal Desai 1 View August 25, 2021 4 Min Read

In this article, I will show you the steps to configure PUA protection using group policy. We will enable the policy Configure detection for potentially unwanted applications.

You can enable or disable detection for potentially unwanted applications on your Windows Operating System. You can choose to block, audit, or allow when potentially unwanted software is being downloaded or attempts to install itself on your computer.

PUA protection provides you protection against the applications that are not safe for your computer. Examples of Potentially unwanted apps include Advertising software products, Evasion software, Bundling software.

Allowing these unwanted apps to run on your computers leads to issues such as slowing down your PC and ads pop up while browsing. Hence, it is important to block potentially unwanted apps.

- Advertisement -
Ad image

The PUA protection is supported on Windows 10, Windows Server 2019, Windows Server 2016 and Windows Server 2022. There are different methods to enable or configure PUA protection.

  • You can enable PUA protection for Microsoft Edge browser
  • Manually configure PUA protection in Microsoft Defender Antivirus
  • Use Intune to configure PUA protection
  • Use Configuration Manager to configure PUA protection
  • Configure PUA protection using PowerShell cmdlets

Configure PUA Protection using Group Policy

Let’s look at the steps to configure PUA protection using group policy. Launch the group policy management console (GPMC). You can either create a new GPO or edit an existing one. I recommend creating a GPO and applying it to an OU instead of entire domain.

Right-click your domain and select Create a GPO in this domain and link it here.

Configure PUA Protection using Group Policy
Configure PUA Protection using Group Policy

Specify the policy name as Configure PUA Protection and click OK.

Configure PUA Protection using Group Policy
Configure PUA Protection using Group Policy

In the Group Policy Management Editor, go to Computer configuration > Administrative templates. Expand the tree to Windows Components > Windows Defender Antivirus. Right click Configure detection for potentially unwanted applications and select Edit.

Configure PUA Protection using Group Policy
Configure PUA Protection using Group Policy

By default, this policy is set to Disabled. To enable the PUA protection, select Enabled. Under the options, you must select the mode.

  • Block: Potentially unwanted software will be blocked.
  • Audit Mode: Detect potentially unwanted applications without blocking them.
  • Disabled: Potentially unwanted software will not be blocked.

Which mode should you select?. I recommend selecting the Audit mode and test how the setting works in your environment. The audit mode detects the potentially unwanted applications without blocking them.

Configure PUA Protection using Group Policy
Configure PUA Protection using Group Policy

Finally, let’s check the PUAProtection value using PowerShell and check if the group policy has been deployed successfully. You can use the following PowerShell command to check the PUAProtection value.

Get-Mppreference | select PUAProtection

The PUAProtection value 2 indicates that PUA Protection is enabled with Audit mode.

Check PUAProtection Value
Check PUAProtection Value

Sign Up For Weekly Newsletter

Get the most recent information on Configuration Manager, Intune, Windows 11, Windows 365, Autopilot, Azure, Software Reviews, and much more by subscribing to the newsletter.
By signing up, you agree and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share this Article
Facebook Twitter Copy Link Print
Avatar photo
By Prajwal Desai
Follow:
Prajwal Desai is a Microsoft MVP in Enterprise Mobility. He writes articles on SCCM, Intune, Configuration Manager, Microsoft Intune, Azure, Windows Server, Windows 11, WordPress and other topics, with the goal of providing people with useful information.
Previous Article 5 Useful Tools to Read ConfigMgr Log Files 5 Useful Tools to Read ConfigMgr Log Files
Next Article ConfigMgr 2103 Hotfix KB10589155 New ConfigMgr 2103 Hotfix KB10589155 Client Update
Recast Sponsored AD
Ad image
Patch My PC Sponsored AD
Ad image

Latest Articles

Fix Windows Autopilot Reset Error 0x80070032
Fix Windows Autopilot Reset Error 0x80070032
Autopilot Intune
Windows activation error 0xc004c020
Fix: Windows Activation Error 0xC004C020 with 2 Easy Methods
Windows 11 Windows 10
Find the Package ID of SCCM Application
3 Best Ways to Find the Package ID of SCCM Application
SCCM
SCCM Updates Install Error 0x800b0109 0x8024b303
Fix: SCCM Updates Install Error 0x800b0109 | 0x8024b303
SCCM
Subscribe to Our Newsletter

Subscribe to our newsletter to get our newest articles instantly!

You Might Also Like

Hide the Task View Button using Group Policy on Windows 11
Windows 11Group Policy

Hide the Task View Button using Group Policy

By Prajwal Desai
Prevent Changes to Taskbar and Start Menu Settings
Windows 11Group PolicyWindows 10

Prevent Changes to Taskbar and Start Menu Settings using GPO

By Prajwal Desai
Enable Spell Check in Microsoft Edge
Group PolicyIntuneSCCM

4 Ways to Enable Spell Check in Microsoft Edge Browser

By Prajwal Desai

Removed from reading list

Undo
Welcome Back!

Sign in to your account

Lost your password?