Threat ID Exclusions

This policy setting defines threats which will be excluded from detection during network traffic inspection. Threats should be added under the Options for this setting. Each entry must be listed as a name value pair, where the name should be a string representation of a Threat ID. As an example, a Threat ID might be defined as: 2925110632. The value is not used and it is recommended that this be set to 0.

Supported on: At least Windows Server 2012, Windows 8 or Windows RT

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft\Windows Defender\NIS\Consumers\IPS\Exclusions\Threat IDs
Value NameNis_Consumers_IPS_Exclusions_Threat_Ids_Threat_Id
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

Threat ID Exclusions

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft\Windows Defender\NIS\Consumers\IPS\Exclusions\Threat IDs\Threat Id
Value Name{number}
Value TypeREG_SZ
Default Value

windowsdefender.admx

Administrative Templates (Computers)

Administrative Templates (Users)