| title | Windows Firewall policies protect against unauthorized network access |
|---|---|
| ms.author | brenduns |
| author | brenduns |
| ms.topic | include |
| ms.date | 10/06/2025 |
| ms.custom | Intune-Secure-Recommendation |
If policies for Windows Firewall aren't configured and assigned, threat actors can exploit unprotected endpoints to gain unauthorized access, move laterally, and escalate privileges within the environment. Without enforced firewall rules, attackers can bypass network segmentation, exfiltrate data, or deploy malware, increasing the risk of widespread compromise.
Enforcing Windows Firewall policies ensures consistent application of inbound and outbound traffic controls, reducing exposure to unauthorized access and supporting Zero Trust through network segmentation and device-level protection.
Remediation action
Configure and assign firewall policies for Windows in Intune to block unauthorized traffic and enforce consistent network protections across all managed devices:
- Configure firewall policies for Windows devices. Intune uses two complementary profiles to manage firewall settings:
- Windows Firewall - Use this profile to configure overall firewall behavior based on network type.
- Windows Firewall rules - Use this profile to define traffic rules for apps, ports, or IPs, tailored to specific groups or workloads. This Intune profile also supports use of reusable settings groups to help simplify management of common settings you use for different profile instances.
- Assign policies in Intune
For more information, see: