In this blog post, we will see how to use Microsoft Intune to disable the firewall and network protection notifications that pop-up on windows 10 workstation. The use case could be that, if you have POS devices where you need to disable/hide all notifications. We are not disabling the firewall instead it will be notifications ONLY.
To disable the firewall and network protection notifications using Microsoft Intune, we will use configuration service provider (CSP). A configuration service provider (CSP) is an interface to read, set, modify, or delete configuration settings on the device.
For a supported CSP’s, please refer Configuration service provider reference.
For firewall/network protection, there is CSP which we can use to create a custom device configuration policy in Microsoft Intune and deploy to user group.
From the Microsoft documentation, we can see that, there is setting ‘DisableInboundNotifications’
To create the custom device configuration policy, login to https://endpoint.microsoft.com/
Click on devices, configuration profiles
Click on Create a profile. Choose the platform and profile
Name the configuration profile.
For configuration settings, click on add
we will create 3 settings 1)Domain 2)Private 3) Public. These settings will be applied where applicable.
Domain profile:
Name:DomainProfile/DisableInboundNotifications
OMA-URI:./Vendor/MSFT/Firewall/MdmStore/DomainProfile/DisableInboundNotifications
Date Type: Boolen
Value: True
Repeat the same for for private and public with following OMA-URI and set Boolean value to true.
Private:./Vendor/MSFT/Firewall/MdmStore/PrivateProfile/DisableInboundNotifications
Public:./Vendor/MSFT/Firewall/MdmStore/PublicProfile/DisableInboundNotifications
For the assignments, add user security group.
Click Next and create.
End-user experience:
Before the policy was deployed:
After the policy is deployed:
You can check the assignment status in the Microsoft Intune for specific device configuration profile.
Continue Reading:
Add custom settings for Windows 10 devices in Microsoft Intune - Azure | Microsoft Docs
Policy CSP - Windows Client Management | Microsoft Docs
4 Comments
What CSP is used for disabling notiffications for website blocking from virus and threat protection notifications rather than firewall and network protection notifications.
Hi David,
I believe, it will be a defender SmartScreen. You can try this https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-available-settings
Thanks,
Eswar
As there ius no longer a "custom" option when creating a profile, (Only options that exist today are "Settings Catalog (Preview)" and "Templates", is there an update to the above process that would apply to the current Intune platform?
Custom has been moved under Templates