Windows Defender PowerShell

How to disable and configure Windows Defender on Windows Server 2016 using PowerShell

Windows Server 2016 comes standard with built-in Anti-Malware called Windows Defender like Windows 10 Client. And per default, Windows Defender is active and has also turned on Real-Time Protection by default. In Windows Server 2016 Desktop Experience you can disable and configure Windows Defender using the UI or PowerShell, in the Windows Server 2016 Core version or on Nano Server you only have PowerShell available. Here are some quick command how you can configure or disable Windows Defender on Windows Server using PowerShell.

Check the Defender configuration and settings:

 
Get-MpPreference

Turn off Windows Defender Real-Time Protection using PowerShell

 
Set-MpPreference -DisableRealtimeMonitoring $true

Turn on Windows Defender Real-Time Protection using PowerShell

 
Set-MpPreference -DisableRealtimeMonitoring $false

Add a File path exclusion:

 
Set-MpPreference -ExclusionPath "C:\temp", "C:\VMs", "C:\NanoServer"

Add process exclusion

 
Set-MpPreference -ExclusionProcess "vmms.exe", "Vmwp.exe"

 

I hope this helps you to easily configure Windows Defender on Windows Server 2016. Btw. This also works on Defender on Windows 10.