2019-10-15
But, I am guessing SCCM does something that's above and beyond this, so maybe this doesn't apply. Kind of wish we could get a GPOv2 where this wouldn't apply, too.
ZDNet
Microsoft Defender's Tamper Protection antivirus feature hits general availability and will be enabled by default for all users in the coming weeks
Tamper Protection prevents malware from disabling Windows Defender features. — Today, Microsoft announced the general availability …
Not sure if this applies to SCCM, but it can't work with GPO, at least, because of the way GPOs work. That is, a GPO is doing basically the same thing that a script could do, which means there's no guarantee that protection isn't being disabled by a malicious script.
ZDNet
Microsoft Defender's Tamper Protection antivirus feature hits general availability and will be enabled by default for all users in the coming weeks
Tamper Protection prevents malware from disabling Windows Defender features. — Today, Microsoft announced the general availability …