This guide will show an administrator how to rectify an unintentional URL blacklisting due to policy.
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Security
Handbook Reference
Package: TBD
Domain: TBD
Modifies: TBD
Note
This section may be used as a response to a Request Access to a Blocked Website request submitted by an affected user.
Defender Web Filter URL Allow
- Navigate to the URLs/Domains – Microsoft Defender portal, this section will allow custom items for URLs to be defined. Select the Add Item action.
- A pop-up will be generated enter the desired URL/Domain of the website that should be whitelisted. If the site has not been checked already, reference the URL Check Work Instruction to ensure the site is not malicious. You will also need to provide basic information associated with the entry such a Title and Description, with the intent of giving future context if the rule is to be reviewed later. From this page you will either keep the default block time frame of Never or specify a Custom time frame. When the site is confirmed to be legitimate select Next to continue.
- On the next screen, select Allow as the option. Select Next to continue.
- The default for the organizational scope is set to all MDE joined devices, select Next to continue.
- A final screen will appear; click Submit. If this whitelisting was done in response to a user request, don’t forget to let the user know it has been unblocked. The site should be accessible within 30 minutes from the whitelisting activity.
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.