Security

Advanced Windows Defender configuration with PowerShell

Configure advanced Windows Defender policies: folder/process exclusions, cloud protection level, PUA behavior and quarantine configuration, all from PowerShell.

16 de May de 2026

Equipo Cerewro

defender Set-MpPreference exclusiones politicas-av

Advanced Windows Defender configuration with PowerShell

PowerShell allows granular configuration of Windows Defender: folder and process exclusions, cloud protection level, behavior for potentially unwanted applications (PUA) and quarantine configuration.

Add folder exclusion

Add-MpPreference -ExclusionPath "C:\MyApp\bin"

View current configuration

Get-MpPreference | Select-Object ExclusionPath, ExclusionProcess, CloudBlockLevel

Most useful Set-MpPreference parameters

Parameter	Description
`-ExclusionPath`	Excludes a path from scanning
`-ExclusionProcess`	Excludes a process by name
`-CloudBlockLevel`	Cloud blocking level (0-6)
`-PUAProtection`	Block potentially unwanted apps
`-DisableRealtimeMonitoring`	Disable real-time monitoring (admin)