Examples/Resources/IntuneASRRulesPolicyWindows10/2-Update.ps1
|
<#
This example is used to test new resources and showcase the usage of new resources being worked on. It is not meant to use as a production baseline. #> Configuration Example { param( [Parameter()] [System.String] $ApplicationId, [Parameter()] [System.String] $TenantId, [Parameter()] [System.String] $CertificateThumbprint ) Import-DscResource -ModuleName Microsoft365DSC node localhost { IntuneASRRulesPolicyWindows10 'myASRRulesPolicy' { DisplayName = 'test' AdditionalGuardedFolders = @() AdobeReaderLaunchChildProcess = 'auditMode' AdvancedRansomewareProtectionType = 'enable' Assignments = @() AttackSurfaceReductionExcludedPaths = @('c:\Novo') BlockPersistenceThroughWmiType = 'auditMode' Description = '' EmailContentExecutionType = 'auditMode' GuardedFoldersAllowedAppPaths = @() GuardMyFoldersType = 'enable' OfficeAppsExecutableContentCreationOrLaunchType = 'block' OfficeAppsLaunchChildProcessType = 'auditMode' OfficeAppsOtherProcessInjectionType = 'block' OfficeCommunicationAppsLaunchChildProcess = 'auditMode' OfficeMacroCodeAllowWin32ImportsType = 'block' PreventCredentialStealingType = 'enable' ProcessCreationType = 'userDefined' # Updated Property ScriptDownloadedPayloadExecutionType = 'block' ScriptObfuscatedMacroCodeType = 'block' UntrustedExecutableType = 'block' UntrustedUSBProcessType = 'block' Ensure = 'Present' ApplicationId = $ApplicationId; TenantId = $TenantId; CertificateThumbprint = $CertificateThumbprint; } } } |