This guide will show an administrator how to add a protected folder whose files can't be modified or deleted by untrusted applications for Intune joined devices
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Security
Handbook Reference
Package: TBD
Domain: TBD
Modifies: TBD
Device Controlled Folder Access Folder Addition
- Navigate to the Attack Surface Reduction – Intune portal, locate and select the Security Essentials Attack Surface Reduction policy or an equivalent ASR Rules policy.
- Scroll down to Configuration Settings and select Edit.
- The default rules will be displayed. Locate the Controlled Folder Access Protected Folders option, select the Add button below the previously listed header. A text box will be generated where you can specify the necessary folder path, files in the provided folder will no longer be able to be modified or deleted by untrusted applications. Select Next to continue.
- From the Review section, you will be able to select the Settings dropdown to verify that the necessary exclusions are properly generating. Select Save to finalize the necessary protected folder addition. Rule changes propagate in less than 24 hours.
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.