This guide will show an administrator how to view information about the attack surface reduction rules that are applied to Intune joined devices in your organization.
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Security
Handbook Reference
Package: TBD
Domain: TBD
Modifies: TBD
Defender Attack Surface Reduction Reporting
- Navigate to the Attack Surface Reduction Rules – Microsoft Defender portal, this page provides information about the attack surface reduction rules that are being applied to Intune joined devices. This report also provides information about detected threats, blocked threats, and detected devices that aren't configured to use the standard protection rules to block threats.
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.