Update Set-MpPreference.md

docset/winserver2022-ps/defender/Set-MpPreference.md

@@ -16,52 +16,125 @@ Configures preferences for Windows Defender scans and updates.
 ## SYNTAX
 
 ```
-Set-MpPreference [-ExclusionPath <String[]>] [-ExclusionExtension <String[]>] [-ExclusionProcess <String[]>]
- [-ExclusionIpAddress <String[]>] [-RealTimeScanDirection <ScanDirection>]
- [-QuarantinePurgeItemsAfterDelay <UInt32>] [-RemediationScheduleDay <Day>]
- [-RemediationScheduleTime <DateTime>] [-ReportingAdditionalActionTimeOut <UInt32>]
- [-ReportingCriticalFailureTimeOut <UInt32>] [-ReportingNonCriticalTimeOut <UInt32>]
- [-ScanAvgCPULoadFactor <Byte>] [-CheckForSignaturesBeforeRunningScan <Boolean>]
- [-ScanPurgeItemsAfterDelay <UInt32>] [-ScanOnlyIfIdleEnabled <Boolean>] [-ScanParameters <ScanType>]
- [-ScanScheduleDay <Day>] [-ScanScheduleQuickScanTime <DateTime>] [-ScanScheduleOffset <UInt32>]
- [-ScanScheduleTime <HH:MM:SS>]
- [-SignatureFirstAuGracePeriod <UInt32>] [-SignatureAuGracePeriod <UInt32>]
- [-SignatureDefinitionUpdateFileSharesSources <String>]
- [-SignatureDisableUpdateOnStartupWithoutEngine <Boolean>] [-SignatureFallbackOrder <String>]
- [-SharedSignaturesPath <String>] [-SignatureScheduleDay <Day>] [-SignatureScheduleTime <DateTime>]
- [-SignatureUpdateCatchupInterval <UInt32>] [-SignatureUpdateInterval <UInt32>]
- [-SignatureBlobUpdateInterval <UInt32>] [-SignatureBlobFileSharesSources <String>]
- [-MeteredConnectionUpdates <Boolean>] [-AllowNetworkProtectionOnWinServer <Boolean>]
- [-DisableDatagramProcessing <Boolean>] [-DisableCpuThrottleOnIdleScans <Boolean>]
- [-MAPSReporting <MAPSReportingType>] [-SubmitSamplesConsent <SubmitSamplesConsentType>]
- [-DisableAutoExclusions <Boolean>] [-DisablePrivacyMode <Boolean>] [-RandomizeScheduleTaskTimes <Boolean>]
- [-SchedulerRandomizationTime <UInt32>] [-DisableBehaviorMonitoring <Boolean>]
- [-DisableRealtimeMonitoring <Boolean>] [-DisableScriptScanning <Boolean>] [-DisableArchiveScanning <Boolean>]
- [-DisableCatchupFullScan <Boolean>] [-DisableCatchupQuickScan <Boolean>] [-DisableEmailScanning <Boolean>]
- [-DisableRemovableDriveScanning <Boolean>] [-DisableRestorePoint <Boolean>]
- [-DisableScanningMappedNetworkDrivesForFullScan <Boolean>] [-DisableScanningNetworkFiles <Boolean>]
- [-DisableIOAVProtection <Boolean>] [-AllowSwitchToAsyncInspection <Boolean>]
- [-UILockdown <Boolean>] [-ThreatIDDefaultAction_Ids <Int64[]>]
- [-ThreatIDDefaultAction_Actions <ThreatAction[]>] [-UnknownThreatDefaultAction <ThreatAction>]
- [-LowThreatDefaultAction <ThreatAction>] [-ModerateThreatDefaultAction <ThreatAction>]
- [-HighThreatDefaultAction <ThreatAction>] [-SevereThreatDefaultAction <ThreatAction>] [-Force]
- [-DisableBlockAtFirstSeen <Boolean>] [-PUAProtection <PUAProtectionType>]
- [-ThrottleLimit <Int32>] [-AsJob]  [<CommonParameters>] [-DisableGradualRelease <Boolean>] [-DefinitionUpdatesChannel <UpdatesChannelType>] [-EngineUpdatesChannel <UpdatesChannelType>] [-PlatformUpdatesChannel <UpdatesChannelType>][-CloudBlockLevel <CloudBlockLevelType>][-ServiceHealthReportInterval <UInt32>]
- [-CloudBlockLevel <CloudBlockLevelType>] [-CloudExtendedTimeout <UInt32>]
- [-EnableNetworkProtection <ASRRuleActionType>] [-EnableControlledFolderAccess <ControlledFolderAccessType>]
- [-AttackSurfaceReductionOnlyExclusions <String[]>] [-ControlledFolderAccessAllowedApplications <String[]>]
- [-ControlledFolderAccessProtectedFolders <String[]>] [-AttackSurfaceReductionRules_Ids <String[]>]
- [-AttackSurfaceReductionRules_Actions <ASRRuleActionType[]>] [-EnableLowCpuPriority <Boolean>]
- [-EnableFileHashComputation <Boolean>] [-EnableFullScanOnBatteryPower <Boolean>] [-ProxyPacUrl <String>]
- [-ProxyServer <String>] [-ProxyBypass <String[]>] [-ForceUseProxyOnly <Boolean>]
- [-OobeEnableRtpAndSigUpdate <Boolean>]
- [-DisableTlsParsing <Boolean>] [-DisableHttpParsing <Boolean>] [-DisableDnsParsing <Boolean>]
- [-DisableDnsOverTcpParsing <Boolean>] [-DisableSshParsing <Boolean>]
- [-PlatformUpdatesChannel <UpdatesChannelType>] [-EngineUpdatesChannel <UpdatesChannelType>]
- [-SignaturesUpdatesChannel <UpdatesChannelType>] [-DisableGradualRelease <Boolean>]
- [-AllowNetworkProtectionDownLevel <Boolean>] [-AllowDatagramProcessingOnWinServer <Boolean>]
- [-EnableDnsSinkhole <Boolean>] [-DisableInboundConnectionFiltering <Boolean>] [-DisableRdpParsing <Boolean>]
- [-CimSession <CimSession[]>] [-ThrottleLimit <Int32>] [-AsJob] [<CommonParameters>]
+Set-MpPreference [-AllowDatagramProcessingOnWinServer <bool>] 
+[-AllowNetworkProtectionDownLevel <bool>] 
+[-AllowNetworkProtectionOnWinServer <bool>]
+[-AllowSwitchToAsyncInspection <bool>] 
+[-ApplyDisableNetworkScanningToIOAV <bool>] 
+[-AsJob]  
+[-AttackSurfaceReductionOnlyExclusions <string[]>] 
+[-AttackSurfaceReductionRules_Actions {Disabled | Enabled | AuditMode | NotConfigured | Warn}] 
+[-AttackSurfaceReductionRules_Ids <string[]>] 
+[-AttackSurfaceReductionRules_RuleSpecificExclusions <string>] 
+[-AttackSurfaceReductionRules_RuleSpecificExclusions_Id <string>]
+[-CheckForSignaturesBeforeRunningScan <bool>] 
+[-CimSession <CimSession[]>] 
+[-CloudBlockLevel {Default | Moderate | High | HighPlus | ZeroTolerance}] 
+[-CloudExtendedTimeout <uint32>] 
+[-ControlledFolderAccessAllowedApplications <string[]>] 
+[-ControlledFolderAccessProtectedFolders <string[]>] 
+[-DefinitionUpdatesChannel {NotConfigured | Staged | Broad | Delayed}] 
+[-DisableArchiveScanning <bool>] 
+[-DisableAutoExclusions <bool>] 
+[-DisableBehaviorMonitoring <bool>] 
+[-DisableBlockAtFirstSeen <bool>] 
+[-DisableCacheMaintenance <bool>] 
+[-DisableCatchupFullScan <bool>]
+[-DisableCatchupQuickScan <bool>] 
+[-DisableCpuThrottleOnIdleScans <bool>] 
+[-DisableDatagramProcessing <bool>] 
+[-DisableDnsOverTcpParsing <bool>] 
+[-DisableDnsParsing <bool>] 
+[-DisableEmailScanning <bool>] 
+[-DisableFtpParsing <bool>] 
+[-DisableGradualRelease <bool>] 
+[-DisableHttpParsing <bool>] 
+[-DisableInboundConnectionFiltering <bool>] 
+[-DisableIntrusionPreventionSystem <bool>]
+[-DisableIOAVProtection <bool>] 
+[-DisableNetworkProtectionPerfTelemetry <bool>] 
+[-DisablePrivacyMode <bool>]
+[-DisableQuicParsing <bool>] 
+[-DisableRdpParsing <bool>] 
+[-DisableRealtimeMonitoring <bool>] 
+[-DisableRemovableDriveScanning <bool>] 
+[-DisableRestorePoint <bool>]
+[-DisableScanningMappedNetworkDrivesForFullScan <bool>]
+[-DisableScanningNetworkFiles <bool>] 
+[-DisableScriptScanning <bool>] 
+[-DisableSmtpParsing <bool>]
+[-DisableSshParsing <bool>] 
+[-DisableTamperProtection <bool>] 
+[-DisableTDTFeature <bool>] 
+[-DisableTlsParsing <bool>] 
+[-EnableControlledFolderAccess {Disabled | Enabled | AuditMode | BlockDiskModificationOnly | AuditDiskModificationOnly}] 
+[-EnableConvertWarnToBlock <bool>] 
+[-EnableDnsSinkhole <bool>]
+[-EnableFileHashComputation <bool>] 
+[-EnableFullScanOnBatteryPower <bool>] 
+[-EnableLowCpuPriority <bool>] 
+[-EnableNetworkProtection {Disabled | Enabled | AuditMode}] 
+[-EngineUpdatesChannel {NotConfigured | Beta | Preview | Staged | Broad | Delayed}] 
+[-ExclusionExtension <string[]>] 
+[-ExclusionIpAddress <string[]>] 
+[-ExclusionPath <string[]>] 
+[-ExclusionProcess <string[]>] 
+[-Force] 
+[-ForceUseProxyOnly <bool>] 
+[-HighThreatDefaultAction {Clean | Quarantine | Remove | Allow | UserDefined | NoAction | Block}] 
+[-IntelTDTEnabled <bool>] 
+[-LowThreatDefaultAction {Clean | Quarantine | Remove | Allow | UserDefined | NoAction | Block}] 
+[-MAPSReporting {Disabled | Basic | Advanced}]
+[-MeteredConnectionUpdates <bool>] 
+[-ModerateThreatDefaultAction {Clean | Quarantine | Remove | Allow | UserDefined | NoAction | Block}] 
+[-OobeEnableRtpAndSigUpdate <bool>] 
+[-PerformanceModeStatus {Enabled | Disabled}]
+[-PlatformUpdatesChannel {NotConfigured | Beta | Preview | Staged | Broad | Delayed}] 
+[-ProxyBypass <string[]>] 
+[-ProxyPacUrl <string>] 
+[-ProxyServer <string>] 
+[-PUAProtection {Disabled | Enabled | AuditMode}] 
+[-QuarantinePurgeItemsAfterDelay <uint32>] 
+[-RandomizeScheduleTaskTimes <bool>] 
+[-RealTimeScanDirection {Both | Incoming | Outcoming}] 
+[-RemediationScheduleDay {Everyday | Sunday | Monday | Tuesday | Wednesday | Thursday | Friday | Saturday | Never}] 
+[-RemediationScheduleTime <datetime>] 
+[-ReportDynamicSignatureDroppedEvent <bool>] 
+[-ReportingAdditionalActionTimeOut <uint32>] 
+[-ReportingCriticalFailureTimeOut <uint32>]
+[-ReportingNonCriticalTimeOut <uint32>] 
+[-ScanAvgCPULoadFactor <byte>]
+[-ScanOnlyIfIdleEnabled <bool>] 
+[-ScanParameters {QuickScan | FullScan}]
+[-ScanPurgeItemsAfterDelay <uint32>] 
+[-ScanScheduleDay {Everyday | Sunday | Monday | Tuesday | Wednesday | Thursday | Friday | Saturday | Never}] 
+[-ScanScheduleOffset <uint32>] 
+[-ScanScheduleQuickScanTime <datetime>]
+[-ScanScheduleTime <datetime>] 
+[-SchedulerRandomizationTime <uint32>] 
+[-ServiceHealthReportInterval <uint32>] 
+[-SevereThreatDefaultAction {Clean | Quarantine | Remove | Allow | UserDefined | NoAction | Block}] 
+[-SharedSignaturesPath <string>] 
+[-SharedSignaturesPathUpdateAtScheduledTimeOnly <bool>] 
+[-SignatureAuGracePeriod <uint32>]
+[-SignatureBlobFileSharesSources <string>] 
+[-SignatureBlobUpdateInterval <uint32>] 
+[-SignatureDefinitionUpdateFileSharesSources <string>] 
+[-SignatureDisableUpdateOnStartupWithoutEngine <bool>] 
+[-SignatureFallbackOrder <string>]
+[-SignatureFirstAuGracePeriod <uint32>]
+[-SignatureScheduleDay {Everyday | Sunday | Monday | Tuesday | Wednesday | Thursday | Friday | Saturday | Never}] 
+[-SignatureScheduleTime <datetime>] 
+[-SignatureUpdateCatchupInterval <uint32>] 
+[-SignatureUpdateInterval <uint32>]
+[-SubmitSamplesConsent {AlwaysPrompt | SendSafeSamples | NeverSend | SendAllSamples}] 
+[-ThreatIDDefaultAction_Actions {Clean | Quarantine | Remove | Allow | UserDefined | NoAction | Block}]
+[-ThreatIDDefaultAction_Ids <long[]>] 
+[-ThrottleForScheduledScanOnly <bool>] 
+[-ThrottleLimit <int>] 
+[-TrustLabelProtectionStatus <uint32>]
+[-UILockdown <bool>]
+[-UnknownThreatDefaultAction {Clean | Quarantine | Remove | Allow | UserDefined | NoAction | Block}] [<CommonParameters>]
 ```
 
 ## DESCRIPTION