Excluding a software item from updating

Thanks in advance for the help. 

I'm running a K1000 SMA version 10.1.99. I've been asked by the network guys to do something unusual. They have determined that Windows Defender is causing a conflict with one of our software apps. They have created a GPO to turn Defender off. The issue we have is that when KACE updates Defender it turns it back on. Is there a way to take my subscription to Microsoft for updates and somehow filter out Windows Defender? Is there a way to ignore the updates for Defender?

I've been searching the Questions for awhile and I haven't seen anything like that yet.

Thank you!  

0 Comments   [ + ] Show comments

Answers (1)

Answer Summary:
Posted by: Hobbsy 1 year ago
Red Belt

Top Answer

Yes, put simply you should always create smart labels to group your patches together ready for deployment, simply rebuild those labels to exclude anything that relates to windows defender. You will then be able to deploy all windows updates excluding windows defender.

If at some stage you want to deploy windows defender updates but then disable defender, create smart labels to only have Defender updates and then create a script to disable defender. Put then together in a task chain so the update is deployed then the script run to disable Defender.

If you need any help with any of this, happy to jump on a call just reach out via my email address in my profile

This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ