

$path = Get-ChildItem -Recurse C:\Windows\Temp SSDUpdate.

Go to Windows Security > Virus and threat protection > Virus and threat protection settings > Controlled folder access and turn it off. You should turn it off to get rid of this messages. # start this before clicking "Get drivers & downloads" It protects folder Documents, Pictures, Videos by default and does not let any process access and write there. Used a bit of PowerShell (running as admin) to copy it to my personal temp folder after clicking "Get drivers & downloads" in SupportAssist. The gui in Intune to mange this is exactly the same between the two places to exclude and both places let me save exclusions with wildcards.Īnyone having to solve this for Dell Command Update?Īnyone with more knowledge about exclusions or managing this with Intune? Reading up on exclusion I see that Defender can handle wildcard exclusions but it does not seem to be the case with controlled folder access (it is a bit unclear.) %windir%\Temp\*\HostMetadata\NVMEHostmetadata.exeĪnd since the folder represented by the * get changed everytime the program run I am having a hard time excluding it manually on the computer (for test).

%windir%\Temp\*\Executables\SSDUpdate.exe.I then started getting alerts from Dell Command Update about files getting blocket when it run after a reboot. I activated ASR rules for "Use advanced protection against ransomware" and "Enable folder protection". I realize this might not be a Intune problem as much as a Windows problem - but I am trying to solve it with Intune so hopefully it it ok to ask it here (and maybe anyone have experience with Dell command update).
