Intune
      Back to home
      1. Sittadel Knowledge Base
      2. Management Guides
      3. Intune

      Defender Process Exception (MacOS)

      This guide will show an administrator how to configure a process that will be excluded from Defender Antivirus interference.

      Role Requirements

      Procedure Scope: Administrators

      Required Group Membership: Admin.Security

      Handbook Reference

      Package: Device Security

      Domain: Antivirus Management

      Modifies: Defender Antivirus Process Exclusions

      Defender macOS Process Exclusion

      1. Navigate to the Intune Device Configuration Profile Portal. Select the Security Essentials macOS Defender Settings configuration profile.
      2. Scroll down to Configuration Settings and select Edit.
      3. Find the Scan Exclusions section and hit Add a field should be generated below, click Edit Instance to configure the item to be an extension exclusion.
      4. In the box below, enter the processes which Defender Antivirus should ignore. It is recommended that these are not commonly used processes or processes which could be used to spawn in malware. Enter the process with the full path.
      5. Click Review and Save on the next page, followed by Save. Rule changes propagate in less than 24 hours.

      Need Assistance?

      Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.