Defender Firewall Rule Removal

This guide will show an administrator how to remove unnecessary network traffic handling that has be enforced on Intune joined devices.

Role Requirements

Procedure Scope: Administrators

Required Group Membership: Admin.Security

Handbook Reference

Package: TBD

Domain: TBD

Modifies: TBD

Windows Firewall Rule Removal

  1. Navigate to the Firewall – Intune portal, locate and select the Security Essentials Firewall Rules policy or an equivalent Firewall Rules policy.
  2. Scroll down to Configuration Settings, select Edit.
  3. Find the Firewall Rule Name section, locate and select the desired firewall rule that no longer needs to be influencing network traffic handling. Select the Remove button after the entry has been selected (indicated by a blue checkmark). After the Remove action has been carried out, the entry should no longer be present in the list below. Selecting Next to proceed to the review section.
  4. From the Review section, you will be able to select the Settings dropdown to verify that the removed firewall rule is no longer present. Select Save to finalize the firewall rule removal. Rule changes propagate at the next device check-in, usually within 1-2 hours.

Need Assistance?

Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.