Allow real-time security intelligence updates based on reports to Microsoft MAPS

This policy setting allows you to enable real-time security intelligence updates in response to reports sent to Microsoft MAPS. If the service reports a file as an unknown and Microsoft MAPS finds that the latest security intelligence update has security intelligence for a threat involving that file, the service will receive all of the latest security intelligence for that threat immediately. You must have configured your computer to join Microsoft MAPS for this functionality to work.

If you enable or do not configure this setting, real-time security intelligence updates will be enabled.

If you disable this setting, real-time security intelligence updates will disabled.

Supported on: At least Windows Server 2012, Windows 8 or Windows RT

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft\Windows Defender\Signature Updates
Value NameRealtimeSignatureDelivery
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

windowsdefender.admx

Administrative Templates (Computers)

Administrative Templates (Users)