Auto scan usb Windows 11

Question

In Intune, devices, configurations - I have in place this policy with NO conflict and no scanning happens at all when I insert a usb device (I check event viewer)

Enable Automatic Scanning of Removable Media

Allow Archive Scanning

Allow Behavior Monitoring

Allow Full Scan On Mapped Network Drives

Allow Full Scan Removable Drive Scanning

Allow scanning of all downloaded files and attachments

Allow Realtime Monitoring

Allow Scanning Network Files

Further, an examination of the regedit settings show all the above are in place.

A right-click Microsoft Defender Scan on the usb finds the test malware file

A full scan finds the test malware file

We require a quick scan on usb-insert to find it just like the right click option does.

Answer 1

@amartinez_admin Thanks for posting in our Q&A.

All the regedit settings are in place means intune deploy this policy successfully. Please understand that intune just deploy policies, and how these policies work is based on themselves, it is not controlled by intune.

Based on my research, by default, Windows Defender and Defender for Endpoint do not automatically scan removable devices as soon as they are connected to a USB port. Someone has discussed this issue, please refer to the following link:

https://learn.microsoft.com/en-us/answers/questions/1180595/how-to-have-removable-devices-scanned-as-soon-as-t

Hope it will give you some ideas.

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.