In the week of December 11, 2017, Microsoft added a new Windows Defender Security Center device confiugration profile section to Intune. This allows you to hide sections from the user:
- Virus and threat protection
- Device performance and health
- Firewall and network protections
- App and browser control
- Family options
You can also add your IT contact information to the Windows Defender app and customize notifications. This post will show how to configure it and the end user experience.
In the Intune portal (portal.azure.com) go to Intune > Device configuration > Profiles > Create Profile. Give the profile a name, and select Windows 10 and later for Platform. Then for the Profile type, select Endpoint protection. Down the bottom you will see Windows Defender Security Center.
Now here you can configure which sections to hide, customize the notifications and add your IT contact information. In my example, I have decided to hide everything and have added some dummy contact information.
Once you have created the profile, I have selected All Devices under Assign to to assign this configuration profile to all my devices.
This is how my Windows Defender Security Center previously looked on my Windows 10 1709 Enterprise machine.
After doing a sync, you can see it says Nhogarth.net has disabled Windows Defender Security Center. I have also added my dummy contact information.