Why is the “Microsoft Network Inspection Service” being disabled despite Real-time Protection being enabled in my Antimalware Policy?

I’ve created and deployed an Antimalware Policy to some Devices. In this policy I configured the Real-time protection setting Enable protection against network-based exploits to Yes.

Checking on the targeted Clients the Microsoft Network Inspection Service is set to Automatic and started as expected.

However, I’ve noticed a short time later that the Microsoft Network Inspection Service is being stopped and set to Disabled.

The next time the Client evaluates Client Health it sees the service is Disabled, so it remediates it by setting it to Automatic and starting the Service.

What I don’t understand is what is stopping and disabling the Microsoft Network Inspection Service?

You need a subscription to access the answer.

This content is restricted to subscribers

Login to leave your feedback!

Leave a Reply