odata.msgraph.client.beta.entity

Class Windows10EndpointProtectionConfiguration

java.lang.Object

odata.msgraph.client.beta.entity.Entity

odata.msgraph.client.beta.entity.DeviceConfiguration

odata.msgraph.client.beta.entity.Windows10EndpointProtectionConfiguration

All Implemented Interfaces:

com.github.davidmoten.odata.client.ODataEntityType, com.github.davidmoten.odata.client.ODataType

public class Windows10EndpointProtectionConfiguration
extends DeviceConfiguration
implements com.github.davidmoten.odata.client.ODataEntityType

“This topic provides descriptions of the declared methods, properties and relationships exposed by the Windows10EndpointProtectionConfiguration resource.”

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
static class	Windows10EndpointProtectionConfiguration.Builder

Field Summary

Fields

Modifier and Type	Field and Description
protected Boolean	applicationGuardAllowFileSaveOnHost
protected Boolean	applicationGuardAllowPersistence
protected Boolean	applicationGuardAllowPrintToLocalPrinters
protected Boolean	applicationGuardAllowPrintToNetworkPrinters
protected Boolean	applicationGuardAllowPrintToPDF
protected Boolean	applicationGuardAllowPrintToXPS
protected Boolean	applicationGuardAllowVirtualGPU
protected ApplicationGuardBlockClipboardSharingType	applicationGuardBlockClipboardSharing
protected ApplicationGuardBlockFileTransferType	applicationGuardBlockFileTransfer
protected Boolean	applicationGuardBlockNonEnterpriseContent
protected Boolean	applicationGuardEnabled
protected ApplicationGuardEnabledOptions	applicationGuardEnabledOptions
protected Boolean	applicationGuardForceAuditing
protected AppLockerApplicationControlType	appLockerApplicationControl
protected Boolean	bitLockerAllowStandardUserEncryption
protected Boolean	bitLockerDisableWarningForOtherDiskEncryption
protected Boolean	bitLockerEnableStorageCardEncryptionOnMobile
protected Boolean	bitLockerEncryptDevice
protected BitLockerFixedDrivePolicy	bitLockerFixedDrivePolicy
protected BitLockerRecoveryPasswordRotationType	bitLockerRecoveryPasswordRotation
protected BitLockerRemovableDrivePolicy	bitLockerRemovableDrivePolicy
protected BitLockerSystemDrivePolicy	bitLockerSystemDrivePolicy
protected List<String>	defenderAdditionalGuardedFolders
protected String	defenderAdditionalGuardedFoldersNextLink
protected DefenderProtectionType	defenderAdobeReaderLaunchChildProcess
protected DefenderProtectionType	defenderAdvancedRansomewareProtectionType
protected Boolean	defenderAllowBehaviorMonitoring
protected Boolean	defenderAllowCloudProtection
protected Boolean	defenderAllowEndUserAccess
protected Boolean	defenderAllowIntrusionPreventionSystem
protected Boolean	defenderAllowOnAccessProtection
protected Boolean	defenderAllowRealTimeMonitoring
protected Boolean	defenderAllowScanArchiveFiles
protected Boolean	defenderAllowScanDownloads
protected Boolean	defenderAllowScanNetworkFiles
protected Boolean	defenderAllowScanRemovableDrivesDuringFullScan
protected Boolean	defenderAllowScanScriptsLoadedInInternetExplorer
protected List<String>	defenderAttackSurfaceReductionExcludedPaths
protected String	defenderAttackSurfaceReductionExcludedPathsNextLink
protected Boolean	defenderBlockEndUserAccess
protected Boolean	defenderCheckForSignaturesBeforeRunningScan
protected DefenderCloudBlockLevelType	defenderCloudBlockLevel
protected Integer	defenderCloudExtendedTimeoutInSeconds
protected Integer	defenderDaysBeforeDeletingQuarantinedMalware
protected DefenderDetectedMalwareActions	defenderDetectedMalwareActions
protected Boolean	defenderDisableBehaviorMonitoring
protected Boolean	defenderDisableCatchupFullScan
protected Boolean	defenderDisableCatchupQuickScan
protected Boolean	defenderDisableCloudProtection
protected Boolean	defenderDisableIntrusionPreventionSystem
protected Boolean	defenderDisableOnAccessProtection
protected Boolean	defenderDisableRealTimeMonitoring
protected Boolean	defenderDisableScanArchiveFiles
protected Boolean	defenderDisableScanDownloads
protected Boolean	defenderDisableScanNetworkFiles
protected Boolean	defenderDisableScanRemovableDrivesDuringFullScan
protected Boolean	defenderDisableScanScriptsLoadedInInternetExplorer
protected DefenderProtectionType	defenderEmailContentExecution
protected DefenderAttackSurfaceType	defenderEmailContentExecutionType
protected Boolean	defenderEnableLowCpuPriority
protected Boolean	defenderEnableScanIncomingMail
protected Boolean	defenderEnableScanMappedNetworkDrivesDuringFullScan
protected byte[]	defenderExploitProtectionXml
protected String	defenderExploitProtectionXmlFileName
protected List<String>	defenderFileExtensionsToExclude
protected String	defenderFileExtensionsToExcludeNextLink
protected List<String>	defenderFilesAndFoldersToExclude
protected String	defenderFilesAndFoldersToExcludeNextLink
protected List<String>	defenderGuardedFoldersAllowedAppPaths
protected String	defenderGuardedFoldersAllowedAppPathsNextLink
protected FolderProtectionType	defenderGuardMyFoldersType
protected DefenderProtectionType	defenderNetworkProtectionType
protected DefenderProtectionType	defenderOfficeAppsExecutableContentCreationOrLaunch
protected DefenderAttackSurfaceType	defenderOfficeAppsExecutableContentCreationOrLaunchType
protected DefenderProtectionType	defenderOfficeAppsLaunchChildProcess
protected DefenderAttackSurfaceType	defenderOfficeAppsLaunchChildProcessType
protected DefenderProtectionType	defenderOfficeAppsOtherProcessInjection
protected DefenderAttackSurfaceType	defenderOfficeAppsOtherProcessInjectionType
protected DefenderProtectionType	defenderOfficeCommunicationAppsLaunchChildProcess
protected DefenderProtectionType	defenderOfficeMacroCodeAllowWin32Imports
protected DefenderAttackSurfaceType	defenderOfficeMacroCodeAllowWin32ImportsType
protected DefenderProtectionType	defenderPotentiallyUnwantedAppAction
protected DefenderProtectionType	defenderPreventCredentialStealingType
protected DefenderProtectionType	defenderProcessCreation
protected DefenderAttackSurfaceType	defenderProcessCreationType
protected List<String>	defenderProcessesToExclude
protected String	defenderProcessesToExcludeNextLink
protected DefenderRealtimeScanDirection	defenderScanDirection
protected Integer	defenderScanMaxCpuPercentage
protected DefenderScanType	defenderScanType
protected LocalTime	defenderScheduledQuickScanTime
protected WeeklySchedule	defenderScheduledScanDay
protected LocalTime	defenderScheduledScanTime
protected DefenderProtectionType	defenderScriptDownloadedPayloadExecution
protected DefenderAttackSurfaceType	defenderScriptDownloadedPayloadExecutionType
protected DefenderProtectionType	defenderScriptObfuscatedMacroCode
protected DefenderAttackSurfaceType	defenderScriptObfuscatedMacroCodeType
protected Boolean	defenderSecurityCenterBlockExploitProtectionOverride
protected Boolean	defenderSecurityCenterDisableAccountUI
protected Boolean	defenderSecurityCenterDisableAppBrowserUI
protected Boolean	defenderSecurityCenterDisableClearTpmUI
protected Boolean	defenderSecurityCenterDisableFamilyUI
protected Boolean	defenderSecurityCenterDisableHardwareUI
protected Boolean	defenderSecurityCenterDisableHealthUI
protected Boolean	defenderSecurityCenterDisableNetworkUI
protected Boolean	defenderSecurityCenterDisableNotificationAreaUI
protected Boolean	defenderSecurityCenterDisableRansomwareUI
protected Boolean	defenderSecurityCenterDisableSecureBootUI
protected Boolean	defenderSecurityCenterDisableTroubleshootingUI
protected Boolean	defenderSecurityCenterDisableVirusUI
protected Boolean	defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI
protected String	defenderSecurityCenterHelpEmail
protected String	defenderSecurityCenterHelpPhone
protected String	defenderSecurityCenterHelpURL
protected DefenderSecurityCenterITContactDisplayType	defenderSecurityCenterITContactDisplay
protected DefenderSecurityCenterNotificationsFromAppType	defenderSecurityCenterNotificationsFromApp
protected String	defenderSecurityCenterOrganizationDisplayName
protected Integer	defenderSignatureUpdateIntervalInHours
protected DefenderSubmitSamplesConsentType	defenderSubmitSamplesConsentType
protected DefenderProtectionType	defenderUntrustedExecutable
protected DefenderAttackSurfaceType	defenderUntrustedExecutableType
protected DefenderProtectionType	defenderUntrustedUSBProcess
protected DefenderAttackSurfaceType	defenderUntrustedUSBProcessType
protected Boolean	deviceGuardEnableSecureBootWithDMA
protected Boolean	deviceGuardEnableVirtualizationBasedSecurity
protected Enablement	deviceGuardLaunchSystemGuard
protected DeviceGuardLocalSystemAuthorityCredentialGuardType	deviceGuardLocalSystemAuthorityCredentialGuardSettings
protected SecureBootWithDMAType	deviceGuardSecureBootWithDMA
protected DmaGuardDeviceEnumerationPolicyType	dmaGuardDeviceEnumerationPolicy
protected Boolean	firewallBlockStatefulFTP
protected FirewallCertificateRevocationListCheckMethodType	firewallCertificateRevocationListCheckMethod
protected Integer	firewallIdleTimeoutForSecurityAssociationInSeconds
protected Boolean	firewallIPSecExemptionsAllowDHCP
protected Boolean	firewallIPSecExemptionsAllowICMP
protected Boolean	firewallIPSecExemptionsAllowNeighborDiscovery
protected Boolean	firewallIPSecExemptionsAllowRouterDiscovery
protected Boolean	firewallMergeKeyingModuleSettings
protected FirewallPacketQueueingMethodType	firewallPacketQueueingMethod
protected FirewallPreSharedKeyEncodingMethodType	firewallPreSharedKeyEncodingMethod
protected WindowsFirewallNetworkProfile	firewallProfileDomain
protected WindowsFirewallNetworkProfile	firewallProfilePrivate
protected WindowsFirewallNetworkProfile	firewallProfilePublic
protected List<WindowsFirewallRule>	firewallRules
protected String	firewallRulesNextLink
protected LanManagerAuthenticationLevel	lanManagerAuthenticationLevel
protected Boolean	lanManagerWorkstationDisableInsecureGuestLogons
protected String	localSecurityOptionsAdministratorAccountName
protected LocalSecurityOptionsAdministratorElevationPromptBehaviorType	localSecurityOptionsAdministratorElevationPromptBehavior
protected Boolean	localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares
protected Boolean	localSecurityOptionsAllowPKU2UAuthenticationRequests
protected String	localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager
protected Boolean	localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool
protected Boolean	localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn
protected Boolean	localSecurityOptionsAllowUIAccessApplicationElevation
protected Boolean	localSecurityOptionsAllowUIAccessApplicationsForSecureLocations
protected Boolean	localSecurityOptionsAllowUndockWithoutHavingToLogon
protected Boolean	localSecurityOptionsBlockMicrosoftAccounts
protected Boolean	localSecurityOptionsBlockRemoteLogonWithBlankPassword
protected Boolean	localSecurityOptionsBlockRemoteOpticalDriveAccess
protected Boolean	localSecurityOptionsBlockUsersInstallingPrinterDrivers
protected Boolean	localSecurityOptionsClearVirtualMemoryPageFile
protected Boolean	localSecurityOptionsClientDigitallySignCommunicationsAlways
protected Boolean	localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers
protected Boolean	localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation
protected Boolean	localSecurityOptionsDisableAdministratorAccount
protected Boolean	localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees
protected Boolean	localSecurityOptionsDisableGuestAccount
protected Boolean	localSecurityOptionsDisableServerDigitallySignCommunicationsAlways
protected Boolean	localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees
protected Boolean	localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts
protected Boolean	localSecurityOptionsDoNotRequireCtrlAltDel
protected Boolean	localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange
protected LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType	localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser
protected String	localSecurityOptionsGuestAccountName
protected Boolean	localSecurityOptionsHideLastSignedInUser
protected Boolean	localSecurityOptionsHideUsernameAtSignIn
protected LocalSecurityOptionsInformationDisplayedOnLockScreenType	localSecurityOptionsInformationDisplayedOnLockScreen
protected LocalSecurityOptionsInformationShownOnLockScreenType	localSecurityOptionsInformationShownOnLockScreen
protected String	localSecurityOptionsLogOnMessageText
protected String	localSecurityOptionsLogOnMessageTitle
protected Integer	localSecurityOptionsMachineInactivityLimit
protected Integer	localSecurityOptionsMachineInactivityLimitInMinutes
protected LocalSecurityOptionsMinimumSessionSecurity	localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients
protected LocalSecurityOptionsMinimumSessionSecurity	localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers
protected Boolean	localSecurityOptionsOnlyElevateSignedExecutables
protected Boolean	localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares
protected LocalSecurityOptionsSmartCardRemovalBehaviorType	localSecurityOptionsSmartCardRemovalBehavior
protected LocalSecurityOptionsStandardUserElevationPromptBehaviorType	localSecurityOptionsStandardUserElevationPromptBehavior
protected Boolean	localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation
protected Boolean	localSecurityOptionsUseAdminApprovalMode
protected Boolean	localSecurityOptionsUseAdminApprovalModeForAdministrators
protected Boolean	localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations
protected Boolean	smartScreenBlockOverrideForFiles
protected Boolean	smartScreenEnableInShell
protected DeviceManagementUserRightsSetting	userRightsAccessCredentialManagerAsTrustedCaller
protected DeviceManagementUserRightsSetting	userRightsActAsPartOfTheOperatingSystem
protected DeviceManagementUserRightsSetting	userRightsAllowAccessFromNetwork
protected DeviceManagementUserRightsSetting	userRightsBackupData
protected DeviceManagementUserRightsSetting	userRightsBlockAccessFromNetwork
protected DeviceManagementUserRightsSetting	userRightsChangeSystemTime
protected DeviceManagementUserRightsSetting	userRightsCreateGlobalObjects
protected DeviceManagementUserRightsSetting	userRightsCreatePageFile
protected DeviceManagementUserRightsSetting	userRightsCreatePermanentSharedObjects
protected DeviceManagementUserRightsSetting	userRightsCreateSymbolicLinks
protected DeviceManagementUserRightsSetting	userRightsCreateToken
protected DeviceManagementUserRightsSetting	userRightsDebugPrograms
protected DeviceManagementUserRightsSetting	userRightsDelegation
protected DeviceManagementUserRightsSetting	userRightsDenyLocalLogOn
protected DeviceManagementUserRightsSetting	userRightsGenerateSecurityAudits
protected DeviceManagementUserRightsSetting	userRightsImpersonateClient
protected DeviceManagementUserRightsSetting	userRightsIncreaseSchedulingPriority
protected DeviceManagementUserRightsSetting	userRightsLoadUnloadDrivers
protected DeviceManagementUserRightsSetting	userRightsLocalLogOn
protected DeviceManagementUserRightsSetting	userRightsLockMemory
protected DeviceManagementUserRightsSetting	userRightsManageAuditingAndSecurityLogs
protected DeviceManagementUserRightsSetting	userRightsManageVolumes
protected DeviceManagementUserRightsSetting	userRightsModifyFirmwareEnvironment
protected DeviceManagementUserRightsSetting	userRightsModifyObjectLabels
protected DeviceManagementUserRightsSetting	userRightsProfileSingleProcess
protected DeviceManagementUserRightsSetting	userRightsRemoteDesktopServicesLogOn
protected DeviceManagementUserRightsSetting	userRightsRemoteShutdown
protected DeviceManagementUserRightsSetting	userRightsRestoreData
protected DeviceManagementUserRightsSetting	userRightsTakeOwnership
protected WindowsDefenderTamperProtectionOptions	windowsDefenderTamperProtection
protected ServiceStartType	xboxServicesAccessoryManagementServiceStartupMode
protected Boolean	xboxServicesEnableXboxGameSaveTask
protected ServiceStartType	xboxServicesLiveAuthManagerServiceStartupMode
protected ServiceStartType	xboxServicesLiveGameSaveServiceStartupMode
protected ServiceStartType	xboxServicesLiveNetworkingServiceStartupMode

Fields inherited from class odata.msgraph.client.beta.entity.DeviceConfiguration

createdDateTime, description, deviceManagementApplicabilityRuleDeviceMode, deviceManagementApplicabilityRuleOsEdition, deviceManagementApplicabilityRuleOsVersion, displayName, lastModifiedDateTime, roleScopeTagIds, roleScopeTagIdsNextLink, supportsScopeTags, version

Fields inherited from class odata.msgraph.client.beta.entity.Entity

changedFields, contextPath, id, odataType, unmappedFields

Constructor Summary

Constructors

Modifier	Constructor and Description
protected	Windows10EndpointProtectionConfiguration()

Method Summary

Modifier and Type	Method and Description
static Windows10EndpointProtectionConfiguration.Builder	builderWindows10EndpointProtectionConfiguration() Returns a builder which is used to create a new instance of this class (given that this class is immutable).
Optional<Boolean>	getApplicationGuardAllowFileSaveOnHost() “Allow users to download files from Edge in the application guard container and save them on the host file system”
Optional<Boolean>	getApplicationGuardAllowPersistence() “Allow persisting user generated data inside the App Guard Containter (favorites, cookies, web passwords, etc.)”
Optional<Boolean>	getApplicationGuardAllowPrintToLocalPrinters() “Allow printing to Local Printers from Container”
Optional<Boolean>	getApplicationGuardAllowPrintToNetworkPrinters() “Allow printing to Network Printers from Container”
Optional<Boolean>	getApplicationGuardAllowPrintToPDF() “Allow printing to PDF from Container”
Optional<Boolean>	getApplicationGuardAllowPrintToXPS() “Allow printing to XPS from Container”
Optional<Boolean>	getApplicationGuardAllowVirtualGPU() “Allow application guard to use virtual GPU”
Optional<ApplicationGuardBlockClipboardSharingType>	getApplicationGuardBlockClipboardSharing() “Block clipboard to share data from Host to Container, or from Container to Host, or both ways, or neither ways.”
Optional<ApplicationGuardBlockFileTransferType>	getApplicationGuardBlockFileTransfer() “Block clipboard to transfer image file, text file or neither of them”
Optional<Boolean>	getApplicationGuardBlockNonEnterpriseContent() “Block enterprise sites to load non-enterprise content, such as third party plug- ins”
Optional<Boolean>	getApplicationGuardEnabled() “Enable Windows Defender Application Guard”
Optional<ApplicationGuardEnabledOptions>	getApplicationGuardEnabledOptions() “Enable Windows Defender Application Guard for newer Windows builds”
Optional<Boolean>	getApplicationGuardForceAuditing() “Force auditing will persist Windows logs and events to meet security/compliance criteria (sample events are user login-logoff, use of privilege rights, software installation, system changes, etc.)”
Optional<AppLockerApplicationControlType>	getAppLockerApplicationControl() “Enables the Admin to choose what types of app to allow on devices.”
Optional<Boolean>	getBitLockerAllowStandardUserEncryption() “Allows the admin to allow standard users to enable encrpytion during Azure AD Join.”
Optional<Boolean>	getBitLockerDisableWarningForOtherDiskEncryption() “Allows the Admin to disable the warning prompt for other disk encryption on the user machines.”
Optional<Boolean>	getBitLockerEnableStorageCardEncryptionOnMobile() “Allows the admin to require encryption to be turned on using BitLocker.
Optional<Boolean>	getBitLockerEncryptDevice() “Allows the admin to require encryption to be turned on using BitLocker.”
Optional<BitLockerFixedDrivePolicy>	getBitLockerFixedDrivePolicy() “BitLocker Fixed Drive Policy.”
Optional<BitLockerRecoveryPasswordRotationType>	getBitLockerRecoveryPasswordRotation() “This setting initiates a client-driven recovery password rotation after an OS drive recovery (either by using bootmgr or WinRE).”
Optional<BitLockerRemovableDrivePolicy>	getBitLockerRemovableDrivePolicy() “BitLocker Removable Drive Policy.”
Optional<BitLockerSystemDrivePolicy>	getBitLockerSystemDrivePolicy() “BitLocker System Drive Policy.”
com.github.davidmoten.odata.client.internal.ChangedFields	getChangedFields()
com.github.davidmoten.odata.client.CollectionPage<String>	getDefenderAdditionalGuardedFolders() “List of folder paths to be added to the list of protected folders”
Optional<DefenderProtectionType>	getDefenderAdobeReaderLaunchChildProcess() “Value indicating the behavior of Adobe Reader from creating child processes”
Optional<DefenderProtectionType>	getDefenderAdvancedRansomewareProtectionType() “Value indicating use of advanced protection against ransomeware”
Optional<Boolean>	getDefenderAllowBehaviorMonitoring() “Allows or disallows Windows Defender Behavior Monitoring functionality.”
Optional<Boolean>	getDefenderAllowCloudProtection() “To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds.
Optional<Boolean>	getDefenderAllowEndUserAccess() “Allows or disallows user access to the Windows Defender UI.
Optional<Boolean>	getDefenderAllowIntrusionPreventionSystem() “Allows or disallows Windows Defender Intrusion Prevention functionality.”
Optional<Boolean>	getDefenderAllowOnAccessProtection() “Allows or disallows Windows Defender On Access Protection functionality.”
Optional<Boolean>	getDefenderAllowRealTimeMonitoring() “Allows or disallows Windows Defender Realtime Monitoring functionality.”
Optional<Boolean>	getDefenderAllowScanArchiveFiles() “Allows or disallows scanning of archives.”
Optional<Boolean>	getDefenderAllowScanDownloads() “Allows or disallows Windows Defender IOAVP Protection functionality.”
Optional<Boolean>	getDefenderAllowScanNetworkFiles() “Allows or disallows a scanning of network files.”
Optional<Boolean>	getDefenderAllowScanRemovableDrivesDuringFullScan() “Allows or disallows a full scan of removable drives.
Optional<Boolean>	getDefenderAllowScanScriptsLoadedInInternetExplorer() “Allows or disallows Windows Defender Script Scanning functionality.”
com.github.davidmoten.odata.client.CollectionPage<String>	getDefenderAttackSurfaceReductionExcludedPaths() “List of exe files and folders to be excluded from attack surface reduction rules”
Optional<Boolean>	getDefenderBlockEndUserAccess() “Allows or disallows user access to the Windows Defender UI.
Optional<Boolean>	getDefenderCheckForSignaturesBeforeRunningScan() “This policy setting allows you to manage whether a check for new virus and spyware definitions will occur before running a scan.”
Optional<DefenderCloudBlockLevelType>	getDefenderCloudBlockLevel() “Added in Windows 10, version 1709.
Optional<Integer>	getDefenderCloudExtendedTimeoutInSeconds() “Added in Windows 10, version 1709.
Optional<Integer>	getDefenderDaysBeforeDeletingQuarantinedMalware() “Time period (in days) that quarantine items will be stored on the system.
Optional<DefenderDetectedMalwareActions>	getDefenderDetectedMalwareActions() “Allows an administrator to specify any valid threat severity levels and the corresponding default action ID to take.”
Optional<Boolean>	getDefenderDisableBehaviorMonitoring() “Allows or disallows Windows Defender Behavior Monitoring functionality.”
Optional<Boolean>	getDefenderDisableCatchupFullScan() “This policy setting allows you to configure catch-up scans for scheduled full scans.
Optional<Boolean>	getDefenderDisableCatchupQuickScan() “This policy setting allows you to configure catch-up scans for scheduled quick scans.
Optional<Boolean>	getDefenderDisableCloudProtection() “To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds.
Optional<Boolean>	getDefenderDisableIntrusionPreventionSystem() “Allows or disallows Windows Defender Intrusion Prevention functionality.”
Optional<Boolean>	getDefenderDisableOnAccessProtection() “Allows or disallows Windows Defender On Access Protection functionality.”
Optional<Boolean>	getDefenderDisableRealTimeMonitoring() “Allows or disallows Windows Defender Realtime Monitoring functionality.”
Optional<Boolean>	getDefenderDisableScanArchiveFiles() “Allows or disallows scanning of archives.”
Optional<Boolean>	getDefenderDisableScanDownloads() “Allows or disallows Windows Defender IOAVP Protection functionality.”
Optional<Boolean>	getDefenderDisableScanNetworkFiles() “Allows or disallows a scanning of network files.”
Optional<Boolean>	getDefenderDisableScanRemovableDrivesDuringFullScan() “Allows or disallows a full scan of removable drives.
Optional<Boolean>	getDefenderDisableScanScriptsLoadedInInternetExplorer() “Allows or disallows Windows Defender Script Scanning functionality.”
Optional<DefenderProtectionType>	getDefenderEmailContentExecution() “Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”
Optional<DefenderAttackSurfaceType>	getDefenderEmailContentExecutionType() “Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”
Optional<Boolean>	getDefenderEnableLowCpuPriority() “This policy setting allows you to enable or disable low CPU priority for scheduled scans.”
Optional<Boolean>	getDefenderEnableScanIncomingMail() “Allows or disallows scanning of email.”
Optional<Boolean>	getDefenderEnableScanMappedNetworkDrivesDuringFullScan() “Allows or disallows a full scan of mapped network drives.”
Optional<byte[]>	getDefenderExploitProtectionXml() “Xml content containing information regarding exploit protection details.”
Optional<String>	getDefenderExploitProtectionXmlFileName() “Name of the file from which DefenderExploitProtectionXml was obtained.”
com.github.davidmoten.odata.client.CollectionPage<String>	getDefenderFileExtensionsToExclude() “File extensions to exclude from scans and real time protection.”
com.github.davidmoten.odata.client.CollectionPage<String>	getDefenderFilesAndFoldersToExclude() “Files and folder to exclude from scans and real time protection.”
com.github.davidmoten.odata.client.CollectionPage<String>	getDefenderGuardedFoldersAllowedAppPaths() “List of paths to exe that are allowed to access protected folders”
Optional<FolderProtectionType>	getDefenderGuardMyFoldersType() “Value indicating the behavior of protected folders”
Optional<DefenderProtectionType>	getDefenderNetworkProtectionType() “Value indicating the behavior of NetworkProtection”
Optional<DefenderProtectionType>	getDefenderOfficeAppsExecutableContentCreationOrLaunch() “Value indicating the behavior of Office applications/macros creating or launching executable content”
Optional<DefenderAttackSurfaceType>	getDefenderOfficeAppsExecutableContentCreationOrLaunchType() “Value indicating the behavior of Office applications/macros creating or launching executable content”
Optional<DefenderProtectionType>	getDefenderOfficeAppsLaunchChildProcess() “Value indicating the behavior of Office application launching child processes”
Optional<DefenderAttackSurfaceType>	getDefenderOfficeAppsLaunchChildProcessType() “Value indicating the behavior of Office application launching child processes”
Optional<DefenderProtectionType>	getDefenderOfficeAppsOtherProcessInjection() “Value indicating the behavior of Office applications injecting into other processes”
Optional<DefenderAttackSurfaceType>	getDefenderOfficeAppsOtherProcessInjectionType() “Value indicating the behavior of Office applications injecting into other processes”
Optional<DefenderProtectionType>	getDefenderOfficeCommunicationAppsLaunchChildProcess() “Value indicating the behavior of Office communication applications, including Microsoft Outlook, from creating child processes”
Optional<DefenderProtectionType>	getDefenderOfficeMacroCodeAllowWin32Imports() “Value indicating the behavior of Win32 imports from Macro code in Office”
Optional<DefenderAttackSurfaceType>	getDefenderOfficeMacroCodeAllowWin32ImportsType() “Value indicating the behavior of Win32 imports from Macro code in Office”
Optional<DefenderProtectionType>	getDefenderPotentiallyUnwantedAppAction() “Added in Windows 10, version 1607.
Optional<DefenderProtectionType>	getDefenderPreventCredentialStealingType() “Value indicating if credential stealing from the Windows local security authority subsystem is permitted”
Optional<DefenderProtectionType>	getDefenderProcessCreation() “Value indicating response to process creations originating from PSExec and WMI commands”
Optional<DefenderAttackSurfaceType>	getDefenderProcessCreationType() “Value indicating response to process creations originating from PSExec and WMI commands”
com.github.davidmoten.odata.client.CollectionPage<String>	getDefenderProcessesToExclude() “Processes to exclude from scans and real time protection.”
Optional<DefenderRealtimeScanDirection>	getDefenderScanDirection() “Controls which sets of files should be monitored.”
Optional<Integer>	getDefenderScanMaxCpuPercentage() “Represents the average CPU load factor for the Windows Defender scan (in percent ).
Optional<DefenderScanType>	getDefenderScanType() “Selects whether to perform a quick scan or full scan.”
Optional<LocalTime>	getDefenderScheduledQuickScanTime() “Selects the time of day that the Windows Defender quick scan should run.
Optional<WeeklySchedule>	getDefenderScheduledScanDay() “Selects the day that the Windows Defender scan should run.”
Optional<LocalTime>	getDefenderScheduledScanTime() “Selects the time of day that the Windows Defender scan should run.”
Optional<DefenderProtectionType>	getDefenderScriptDownloadedPayloadExecution() “Value indicating the behavior of js/vbs executing payload downloaded from Internet”
Optional<DefenderAttackSurfaceType>	getDefenderScriptDownloadedPayloadExecutionType() “Value indicating the behavior of js/vbs executing payload downloaded from Internet”
Optional<DefenderProtectionType>	getDefenderScriptObfuscatedMacroCode() “Value indicating the behavior of obfuscated js/vbs/ps/macro code”
Optional<DefenderAttackSurfaceType>	getDefenderScriptObfuscatedMacroCodeType() “Value indicating the behavior of obfuscated js/vbs/ps/macro code”
Optional<Boolean>	getDefenderSecurityCenterBlockExploitProtectionOverride() “Indicates whether or not to block user from overriding Exploit Protection settings.”
Optional<Boolean>	getDefenderSecurityCenterDisableAccountUI() “Used to disable the display of the account protection area.”
Optional<Boolean>	getDefenderSecurityCenterDisableAppBrowserUI() “Used to disable the display of the app and browser protection area.”
Optional<Boolean>	getDefenderSecurityCenterDisableClearTpmUI() “Used to disable the display of the Clear TPM button.”
Optional<Boolean>	getDefenderSecurityCenterDisableFamilyUI() “Used to disable the display of the family options area.”
Optional<Boolean>	getDefenderSecurityCenterDisableHardwareUI() “Used to disable the display of the hardware protection area.”
Optional<Boolean>	getDefenderSecurityCenterDisableHealthUI() “Used to disable the display of the device performance and health area.”
Optional<Boolean>	getDefenderSecurityCenterDisableNetworkUI() “Used to disable the display of the firewall and network protection area.”
Optional<Boolean>	getDefenderSecurityCenterDisableNotificationAreaUI() “Used to disable the display of the notification area control.
Optional<Boolean>	getDefenderSecurityCenterDisableRansomwareUI() “Used to disable the display of the ransomware protection area.”
Optional<Boolean>	getDefenderSecurityCenterDisableSecureBootUI() “Used to disable the display of the secure boot area under Device security.”
Optional<Boolean>	getDefenderSecurityCenterDisableTroubleshootingUI() “Used to disable the display of the security process troubleshooting under Device security.”
Optional<Boolean>	getDefenderSecurityCenterDisableVirusUI() “Used to disable the display of the virus and threat protection area.”
Optional<Boolean>	getDefenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI() “Used to disable the display of update TPM Firmware when a vulnerable firmware is detected.”
Optional<String>	getDefenderSecurityCenterHelpEmail() “The email address that is displayed to users.”
Optional<String>	getDefenderSecurityCenterHelpPhone() “The phone number or Skype ID that is displayed to users.”
Optional<String>	getDefenderSecurityCenterHelpURL() “The help portal URL this is displayed to users.”
Optional<DefenderSecurityCenterITContactDisplayType>	getDefenderSecurityCenterITContactDisplay() “Configure where to display IT contact information to end users.”
Optional<DefenderSecurityCenterNotificationsFromAppType>	getDefenderSecurityCenterNotificationsFromApp() “Notifications to show from the displayed areas of app”
Optional<String>	getDefenderSecurityCenterOrganizationDisplayName() “The company name that is displayed to the users.”
Optional<Integer>	getDefenderSignatureUpdateIntervalInHours() “Specifies the interval (in hours) that will be used to check for signatures, so instead of using the ScheduleDay and ScheduleTime the check for new signatures will be set according to the interval.
Optional<DefenderSubmitSamplesConsentType>	getDefenderSubmitSamplesConsentType() “Checks for the user consent level in Windows Defender to send data.”
Optional<DefenderProtectionType>	getDefenderUntrustedExecutable() “Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”
Optional<DefenderAttackSurfaceType>	getDefenderUntrustedExecutableType() “Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”
Optional<DefenderProtectionType>	getDefenderUntrustedUSBProcess() “Value indicating response to untrusted and unsigned processes that run from USB”
Optional<DefenderAttackSurfaceType>	getDefenderUntrustedUSBProcessType() “Value indicating response to untrusted and unsigned processes that run from USB”
Optional<Boolean>	getDeviceGuardEnableSecureBootWithDMA() “This property will be deprecated in May 2019 and will be replaced with property DeviceGuardSecureBootWithDMA.
Optional<Boolean>	getDeviceGuardEnableVirtualizationBasedSecurity() “Turns On Virtualization Based Security(VBS).”
Optional<Enablement>	getDeviceGuardLaunchSystemGuard() “Allows the IT admin to configure the launch of System Guard.”
Optional<DeviceGuardLocalSystemAuthorityCredentialGuardType>	getDeviceGuardLocalSystemAuthorityCredentialGuardSettings() “Turn on Credential Guard when Platform Security Level with Secure Boot and Virtualization Based Security are both enabled.”
Optional<SecureBootWithDMAType>	getDeviceGuardSecureBootWithDMA() “Specifies whether Platform Security Level is enabled at next reboot.”
Optional<DmaGuardDeviceEnumerationPolicyType>	getDmaGuardDeviceEnumerationPolicy() “This policy is intended to provide additional security against external DMA capable devices.
Optional<Boolean>	getFirewallBlockStatefulFTP() “Blocks stateful FTP connections to the device”
Optional<FirewallCertificateRevocationListCheckMethodType>	getFirewallCertificateRevocationListCheckMethod() “Specify how the certificate revocation list is to be enforced”
Optional<Integer>	getFirewallIdleTimeoutForSecurityAssociationInSeconds() “Configures the idle timeout for security associations, in seconds, from 300 to 3600 inclusive.
Optional<Boolean>	getFirewallIPSecExemptionsAllowDHCP() “Configures IPSec exemptions to allow both IPv4 and IPv6 DHCP traffic”
Optional<Boolean>	getFirewallIPSecExemptionsAllowICMP() “Configures IPSec exemptions to allow ICMP”
Optional<Boolean>	getFirewallIPSecExemptionsAllowNeighborDiscovery() “Configures IPSec exemptions to allow neighbor discovery IPv6 ICMP type-codes”
Optional<Boolean>	getFirewallIPSecExemptionsAllowRouterDiscovery() “Configures IPSec exemptions to allow router discovery IPv6 ICMP type-codes”
Optional<Boolean>	getFirewallMergeKeyingModuleSettings() “If an authentication set is not fully supported by a keying module, direct the module to ignore only unsupported authentication suites rather than the entire set”
Optional<FirewallPacketQueueingMethodType>	getFirewallPacketQueueingMethod() “Configures how packet queueing should be applied in the tunnel gateway scenario”
Optional<FirewallPreSharedKeyEncodingMethodType>	getFirewallPreSharedKeyEncodingMethod() “Select the preshared key encoding to be used”
Optional<WindowsFirewallNetworkProfile>	getFirewallProfileDomain() “Configures the firewall profile settings for domain networks”
Optional<WindowsFirewallNetworkProfile>	getFirewallProfilePrivate() “Configures the firewall profile settings for private networks”
Optional<WindowsFirewallNetworkProfile>	getFirewallProfilePublic() “Configures the firewall profile settings for public networks”
com.github.davidmoten.odata.client.CollectionPage<WindowsFirewallRule>	getFirewallRules() “Configures the firewall rule settings.
Optional<LanManagerAuthenticationLevel>	getLanManagerAuthenticationLevel() “This security setting determines which challenge/response authentication protocol is used for network logons.”
Optional<Boolean>	getLanManagerWorkstationDisableInsecureGuestLogons() “If enabled,the SMB client will allow insecure guest logons.
Optional<String>	getLocalSecurityOptionsAdministratorAccountName() “Define a different account name to be associated with the security identifier ( SID) for the account “Administrator”.”
Optional<LocalSecurityOptionsAdministratorElevationPromptBehaviorType>	getLocalSecurityOptionsAdministratorElevationPromptBehavior() “Define the behavior of the elevation prompt for admins in Admin Approval Mode.”
Optional<Boolean>	getLocalSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares() “This security setting determines whether to allows anonymous users to perform certain activities, such as enumerating the names of domain accounts and network shares.”
Optional<Boolean>	getLocalSecurityOptionsAllowPKU2UAuthenticationRequests() “Block PKU2U authentication requests to this device to use online identities.”
Optional<String>	getLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager() “Edit the default Security Descriptor Definition Language string to allow or deny users and groups to make remote calls to the SAM.”
Optional<Boolean>	getLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool() “UI helper boolean for LocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager entity”
Optional<Boolean>	getLocalSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn() “This security setting determines whether a computer can be shut down without having to log on to Windows.”
Optional<Boolean>	getLocalSecurityOptionsAllowUIAccessApplicationElevation() “Allow UIAccess apps to prompt for elevation without using the secure desktop.”
Optional<Boolean>	getLocalSecurityOptionsAllowUIAccessApplicationsForSecureLocations() “Allow UIAccess apps to prompt for elevation without using the secure desktop.
Optional<Boolean>	getLocalSecurityOptionsAllowUndockWithoutHavingToLogon() “Prevent a portable computer from being undocked without having to log in.”
Optional<Boolean>	getLocalSecurityOptionsBlockMicrosoftAccounts() “Prevent users from adding new Microsoft accounts to this computer.”
Optional<Boolean>	getLocalSecurityOptionsBlockRemoteLogonWithBlankPassword() “Enable Local accounts that are not password protected to log on from locations other than the physical device.Default is enabled”
Optional<Boolean>	getLocalSecurityOptionsBlockRemoteOpticalDriveAccess() “Enabling this settings allows only interactively logged on user to access CD-ROM media.”
Optional<Boolean>	getLocalSecurityOptionsBlockUsersInstallingPrinterDrivers() “Restrict installing printer drivers as part of connecting to a shared printer to admins only.”
Optional<Boolean>	getLocalSecurityOptionsClearVirtualMemoryPageFile() “This security setting determines whether the virtual memory pagefile is cleared when the system is shut down.”
Optional<Boolean>	getLocalSecurityOptionsClientDigitallySignCommunicationsAlways() “This security setting determines whether packet signing is required by the SMB client component.”
Optional<Boolean>	getLocalSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers() “If this security setting is enabled, the Server Message Block (SMB) redirector is allowed to send plaintext passwords to non-Microsoft SMB servers that do not support password encryption during authentication.”
Optional<Boolean>	getLocalSecurityOptionsDetectApplicationInstallationsAndPromptForElevation() “App installations requiring elevated privileges will prompt for admin credentials.Default is enabled”
Optional<Boolean>	getLocalSecurityOptionsDisableAdministratorAccount() “Determines whether the Local Administrator account is enabled or disabled.”
Optional<Boolean>	getLocalSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees() “This security setting determines whether the SMB client attempts to negotiate SMB packet signing.”
Optional<Boolean>	getLocalSecurityOptionsDisableGuestAccount() “Determines if the Guest account is enabled or disabled.”
Optional<Boolean>	getLocalSecurityOptionsDisableServerDigitallySignCommunicationsAlways() “This security setting determines whether packet signing is required by the SMB server component.”
Optional<Boolean>	getLocalSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees() “This security setting determines whether the SMB server will negotiate SMB packet signing with clients that request it.”
Optional<Boolean>	getLocalSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts() “This security setting determines what additional permissions will be granted for anonymous connections to the computer.”
Optional<Boolean>	getLocalSecurityOptionsDoNotRequireCtrlAltDel() “Require CTRL+ALT+DEL to be pressed before a user can log on.”
Optional<Boolean>	getLocalSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange() “This security setting determines if, at the next password change, the LAN Manager (LM) hash value for the new password is stored.
Optional<LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType>	getLocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser() “Define who is allowed to format and eject removable NTFS media.”
Optional<String>	getLocalSecurityOptionsGuestAccountName() “Define a different account name to be associated with the security identifier ( SID) for the account “Guest”.”
Optional<Boolean>	getLocalSecurityOptionsHideLastSignedInUser() “Do not display the username of the last person who signed in on this device.”
Optional<Boolean>	getLocalSecurityOptionsHideUsernameAtSignIn() “Do not display the username of the person signing in to this device after credentials are entered and before the device’s desktop is shown.”
Optional<LocalSecurityOptionsInformationDisplayedOnLockScreenType>	getLocalSecurityOptionsInformationDisplayedOnLockScreen() “Configure the user information that is displayed when the session is locked.
Optional<LocalSecurityOptionsInformationShownOnLockScreenType>	getLocalSecurityOptionsInformationShownOnLockScreen() “Configure the user information that is displayed when the session is locked.
Optional<String>	getLocalSecurityOptionsLogOnMessageText() “Set message text for users attempting to log in.”
Optional<String>	getLocalSecurityOptionsLogOnMessageTitle() “Set message title for users attempting to log in.”
Optional<Integer>	getLocalSecurityOptionsMachineInactivityLimit() “Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs.
Optional<Integer>	getLocalSecurityOptionsMachineInactivityLimitInMinutes() “Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs.
Optional<LocalSecurityOptionsMinimumSessionSecurity>	getLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients() “This security setting allows a client to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”
Optional<LocalSecurityOptionsMinimumSessionSecurity>	getLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers() “This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”
Optional<Boolean>	getLocalSecurityOptionsOnlyElevateSignedExecutables() “Enforce PKI certification path validation for a given executable file before it is permitted to run.”
Optional<Boolean>	getLocalSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares() “By default, this security setting restricts anonymous access to shares and pipes to the settings for named pipes that can be accessed anonymously and Shares that can be accessed anonymously”
Optional<LocalSecurityOptionsSmartCardRemovalBehaviorType>	getLocalSecurityOptionsSmartCardRemovalBehavior() “This security setting determines what happens when the smart card for a logged- on user is removed from the smart card reader.”
Optional<LocalSecurityOptionsStandardUserElevationPromptBehaviorType>	getLocalSecurityOptionsStandardUserElevationPromptBehavior() “Define the behavior of the elevation prompt for standard users.”
Optional<Boolean>	getLocalSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation() “Enable all elevation requests to go to the interactive user's desktop rather than the secure desktop.
Optional<Boolean>	getLocalSecurityOptionsUseAdminApprovalMode() “Defines whether the built-in admin account uses Admin Approval Mode or runs all apps with full admin privileges.Default is enabled”
Optional<Boolean>	getLocalSecurityOptionsUseAdminApprovalModeForAdministrators() “Define whether Admin Approval Mode and all UAC policy settings are enabled, default is enabled”
Optional<Boolean>	getLocalSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations() “Virtualize file and registry write failures to per user locations”
Optional<Boolean>	getSmartScreenBlockOverrideForFiles() “Allows IT Admins to control whether users can can ignore SmartScreen warnings and run malicious files.”
Optional<Boolean>	getSmartScreenEnableInShell() “Allows IT Admins to configure SmartScreen for Windows.”
com.github.davidmoten.odata.client.internal.UnmappedFields	getUnmappedFields()
Optional<DeviceManagementUserRightsSetting>	getUserRightsAccessCredentialManagerAsTrustedCaller() “This user right is used by Credential Manager during Backup/Restore.
Optional<DeviceManagementUserRightsSetting>	getUserRightsActAsPartOfTheOperatingSystem() “This user right allows a process to impersonate any user without authentication.
Optional<DeviceManagementUserRightsSetting>	getUserRightsAllowAccessFromNetwork() “This user right determines which users and groups are allowed to connect to the computer over the network.
Optional<DeviceManagementUserRightsSetting>	getUserRightsBackupData() “This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when backing up files and directories.
Optional<DeviceManagementUserRightsSetting>	getUserRightsBlockAccessFromNetwork() “This user right determines which users and groups are block from connecting to the computer over the network.
Optional<DeviceManagementUserRightsSetting>	getUserRightsChangeSystemTime() “This user right determines which users and groups can change the time and date on the internal clock of the computer.
Optional<DeviceManagementUserRightsSetting>	getUserRightsCreateGlobalObjects() “This security setting determines whether users can create global objects that are available to all sessions.
Optional<DeviceManagementUserRightsSetting>	getUserRightsCreatePageFile() “This user right determines which users and groups can call an internal API to create and change the size of a page file.
Optional<DeviceManagementUserRightsSetting>	getUserRightsCreatePermanentSharedObjects() “This user right determines which accounts can be used by processes to create a directory object using the object manager.
Optional<DeviceManagementUserRightsSetting>	getUserRightsCreateSymbolicLinks() “This user right determines if the user can create a symbolic link from the computer to which they are logged on.
Optional<DeviceManagementUserRightsSetting>	getUserRightsCreateToken() “This user right determines which users/groups can be used by processes to create a token that can then be used to get access to any local resources when the process uses an internal API to create an access token.
Optional<DeviceManagementUserRightsSetting>	getUserRightsDebugPrograms() “This user right determines which users can attach a debugger to any process or to the kernel.
Optional<DeviceManagementUserRightsSetting>	getUserRightsDelegation() “This user right determines which users can set the Trusted for Delegation setting on a user or computer object.
Optional<DeviceManagementUserRightsSetting>	getUserRightsDenyLocalLogOn() “This user right determines which users cannot log on to the computer.
Optional<DeviceManagementUserRightsSetting>	getUserRightsGenerateSecurityAudits() “This user right determines which accounts can be used by a process to add entries to the security log.
Optional<DeviceManagementUserRightsSetting>	getUserRightsImpersonateClient() “Assigning this user right to a user allows programs running on behalf of that user to impersonate a client.
Optional<DeviceManagementUserRightsSetting>	getUserRightsIncreaseSchedulingPriority() “This user right determines which accounts can use a process with Write Property access to another process to increase the execution priority assigned to the other process.
Optional<DeviceManagementUserRightsSetting>	getUserRightsLoadUnloadDrivers() “This user right determines which users can dynamically load and unload device drivers or other code in to kernel mode.
Optional<DeviceManagementUserRightsSetting>	getUserRightsLocalLogOn() “This user right determines which users can log on to the computer.
Optional<DeviceManagementUserRightsSetting>	getUserRightsLockMemory() “This user right determines which accounts can use a process to keep data in physical memory, which prevents the system from paging the data to virtual memory on disk.
Optional<DeviceManagementUserRightsSetting>	getUserRightsManageAuditingAndSecurityLogs() “This user right determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys.
Optional<DeviceManagementUserRightsSetting>	getUserRightsManageVolumes() “This user right determines which users and groups can run maintenance tasks on a volume, such as remote defragmentation.
Optional<DeviceManagementUserRightsSetting>	getUserRightsModifyFirmwareEnvironment() “This user right determines who can modify firmware environment values.
Optional<DeviceManagementUserRightsSetting>	getUserRightsModifyObjectLabels() “This user right determines which user accounts can modify the integrity label of objects, such as files, registry keys, or processes owned by other users.
Optional<DeviceManagementUserRightsSetting>	getUserRightsProfileSingleProcess() “This user right determines which users can use performance monitoring tools to monitor the performance of system processes.
Optional<DeviceManagementUserRightsSetting>	getUserRightsRemoteDesktopServicesLogOn() “This user right determines which users and groups are prohibited from logging on as a Remote Desktop Services client.
Optional<DeviceManagementUserRightsSetting>	getUserRightsRemoteShutdown() “This user right determines which users are allowed to shut down a computer from a remote location on the network.
Optional<DeviceManagementUserRightsSetting>	getUserRightsRestoreData() “This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when restoring backed up files and directories, and determines which users can set any valid security principal as the owner of an object.
Optional<DeviceManagementUserRightsSetting>	getUserRightsTakeOwnership() “This user right determines which users can take ownership of any securable object in the system, including Active Directory objects, files and folders, printers, registry keys, processes, and threads.
Optional<WindowsDefenderTamperProtectionOptions>	getWindowsDefenderTamperProtection() “Configure windows defender TamperProtection settings”
Optional<ServiceStartType>	getXboxServicesAccessoryManagementServiceStartupMode() “This setting determines whether the Accessory management service's start type is Automatic(2), Manual(3), Disabled(4).
Optional<Boolean>	getXboxServicesEnableXboxGameSaveTask() “This setting determines whether xbox game save is enabled (1) or disabled (0).”
Optional<ServiceStartType>	getXboxServicesLiveAuthManagerServiceStartupMode() “This setting determines whether Live Auth Manager service's start type is Automatic(2), Manual(3), Disabled(4).
Optional<ServiceStartType>	getXboxServicesLiveGameSaveServiceStartupMode() “This setting determines whether Live Game save service's start type is Automatic (2), Manual(3), Disabled(4).
Optional<ServiceStartType>	getXboxServicesLiveNetworkingServiceStartupMode() “This setting determines whether Networking service's start type is Automatic(2), Manual(3), Disabled(4).
String	odataTypeName()
Windows10EndpointProtectionConfiguration	patch() Submits only changed fields for update and returns an immutable copy of this with changed fields reset.
void	postInject(boolean addKeysToContextPath)
Windows10EndpointProtectionConfiguration	put() Submits all fields for update and returns an immutable copy of this with changed fields reset (they were ignored anyway).
String	toString()
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowFileSaveOnHost(Boolean applicationGuardAllowFileSaveOnHost) Returns an immutable copy of this with just the applicationGuardAllowFileSaveOnHost field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowPersistence(Boolean applicationGuardAllowPersistence) Returns an immutable copy of this with just the applicationGuardAllowPersistence field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowPrintToLocalPrinters(Boolean applicationGuardAllowPrintToLocalPrinters) Returns an immutable copy of this with just the applicationGuardAllowPrintToLocalPrinters field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowPrintToNetworkPrinters(Boolean applicationGuardAllowPrintToNetworkPrinters) Returns an immutable copy of this with just the applicationGuardAllowPrintToNetworkPrinters field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowPrintToPDF(Boolean applicationGuardAllowPrintToPDF) Returns an immutable copy of this with just the applicationGuardAllowPrintToPDF field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowPrintToXPS(Boolean applicationGuardAllowPrintToXPS) Returns an immutable copy of this with just the applicationGuardAllowPrintToXPS field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardAllowVirtualGPU(Boolean applicationGuardAllowVirtualGPU) Returns an immutable copy of this with just the applicationGuardAllowVirtualGPU field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardBlockClipboardSharing(ApplicationGuardBlockClipboardSharingType applicationGuardBlockClipboardSharing) Returns an immutable copy of this with just the applicationGuardBlockClipboardSharing field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardBlockFileTransfer(ApplicationGuardBlockFileTransferType applicationGuardBlockFileTransfer) Returns an immutable copy of this with just the applicationGuardBlockFileTransfer field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardBlockNonEnterpriseContent(Boolean applicationGuardBlockNonEnterpriseContent) Returns an immutable copy of this with just the applicationGuardBlockNonEnterpriseContent field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardEnabled(Boolean applicationGuardEnabled) Returns an immutable copy of this with just the applicationGuardEnabled field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardEnabledOptions(ApplicationGuardEnabledOptions applicationGuardEnabledOptions) Returns an immutable copy of this with just the applicationGuardEnabledOptions field changed.
Windows10EndpointProtectionConfiguration	withApplicationGuardForceAuditing(Boolean applicationGuardForceAuditing) Returns an immutable copy of this with just the applicationGuardForceAuditing field changed.
Windows10EndpointProtectionConfiguration	withAppLockerApplicationControl(AppLockerApplicationControlType appLockerApplicationControl) Returns an immutable copy of this with just the appLockerApplicationControl field changed.
Windows10EndpointProtectionConfiguration	withBitLockerAllowStandardUserEncryption(Boolean bitLockerAllowStandardUserEncryption) Returns an immutable copy of this with just the bitLockerAllowStandardUserEncryption field changed.
Windows10EndpointProtectionConfiguration	withBitLockerDisableWarningForOtherDiskEncryption(Boolean bitLockerDisableWarningForOtherDiskEncryption) Returns an immutable copy of this with just the bitLockerDisableWarningForOtherDiskEncryption field changed.
Windows10EndpointProtectionConfiguration	withBitLockerEnableStorageCardEncryptionOnMobile(Boolean bitLockerEnableStorageCardEncryptionOnMobile) Returns an immutable copy of this with just the bitLockerEnableStorageCardEncryptionOnMobile field changed.
Windows10EndpointProtectionConfiguration	withBitLockerEncryptDevice(Boolean bitLockerEncryptDevice) Returns an immutable copy of this with just the bitLockerEncryptDevice field changed.
Windows10EndpointProtectionConfiguration	withBitLockerFixedDrivePolicy(BitLockerFixedDrivePolicy bitLockerFixedDrivePolicy) Returns an immutable copy of this with just the bitLockerFixedDrivePolicy field changed.
Windows10EndpointProtectionConfiguration	withBitLockerRecoveryPasswordRotation(BitLockerRecoveryPasswordRotationType bitLockerRecoveryPasswordRotation) Returns an immutable copy of this with just the bitLockerRecoveryPasswordRotation field changed.
Windows10EndpointProtectionConfiguration	withBitLockerRemovableDrivePolicy(BitLockerRemovableDrivePolicy bitLockerRemovableDrivePolicy) Returns an immutable copy of this with just the bitLockerRemovableDrivePolicy field changed.
Windows10EndpointProtectionConfiguration	withBitLockerSystemDrivePolicy(BitLockerSystemDrivePolicy bitLockerSystemDrivePolicy) Returns an immutable copy of this with just the bitLockerSystemDrivePolicy field changed.
Windows10EndpointProtectionConfiguration	withDefenderAdobeReaderLaunchChildProcess(DefenderProtectionType defenderAdobeReaderLaunchChildProcess) Returns an immutable copy of this with just the defenderAdobeReaderLaunchChildProcess field changed.
Windows10EndpointProtectionConfiguration	withDefenderAdvancedRansomewareProtectionType(DefenderProtectionType defenderAdvancedRansomewareProtectionType) Returns an immutable copy of this with just the defenderAdvancedRansomewareProtectionType field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowBehaviorMonitoring(Boolean defenderAllowBehaviorMonitoring) Returns an immutable copy of this with just the defenderAllowBehaviorMonitoring field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowCloudProtection(Boolean defenderAllowCloudProtection) Returns an immutable copy of this with just the defenderAllowCloudProtection field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowEndUserAccess(Boolean defenderAllowEndUserAccess) Returns an immutable copy of this with just the defenderAllowEndUserAccess field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowIntrusionPreventionSystem(Boolean defenderAllowIntrusionPreventionSystem) Returns an immutable copy of this with just the defenderAllowIntrusionPreventionSystem field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowOnAccessProtection(Boolean defenderAllowOnAccessProtection) Returns an immutable copy of this with just the defenderAllowOnAccessProtection field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowRealTimeMonitoring(Boolean defenderAllowRealTimeMonitoring) Returns an immutable copy of this with just the defenderAllowRealTimeMonitoring field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowScanArchiveFiles(Boolean defenderAllowScanArchiveFiles) Returns an immutable copy of this with just the defenderAllowScanArchiveFiles field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowScanDownloads(Boolean defenderAllowScanDownloads) Returns an immutable copy of this with just the defenderAllowScanDownloads field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowScanNetworkFiles(Boolean defenderAllowScanNetworkFiles) Returns an immutable copy of this with just the defenderAllowScanNetworkFiles field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowScanRemovableDrivesDuringFullScan(Boolean defenderAllowScanRemovableDrivesDuringFullScan) Returns an immutable copy of this with just the defenderAllowScanRemovableDrivesDuringFullScan field changed.
Windows10EndpointProtectionConfiguration	withDefenderAllowScanScriptsLoadedInInternetExplorer(Boolean defenderAllowScanScriptsLoadedInInternetExplorer) Returns an immutable copy of this with just the defenderAllowScanScriptsLoadedInInternetExplorer field changed.
Windows10EndpointProtectionConfiguration	withDefenderBlockEndUserAccess(Boolean defenderBlockEndUserAccess) Returns an immutable copy of this with just the defenderBlockEndUserAccess field changed.
Windows10EndpointProtectionConfiguration	withDefenderCheckForSignaturesBeforeRunningScan(Boolean defenderCheckForSignaturesBeforeRunningScan) Returns an immutable copy of this with just the defenderCheckForSignaturesBeforeRunningScan field changed.
Windows10EndpointProtectionConfiguration	withDefenderCloudBlockLevel(DefenderCloudBlockLevelType defenderCloudBlockLevel) Returns an immutable copy of this with just the defenderCloudBlockLevel field changed.
Windows10EndpointProtectionConfiguration	withDefenderCloudExtendedTimeoutInSeconds(Integer defenderCloudExtendedTimeoutInSeconds) Returns an immutable copy of this with just the defenderCloudExtendedTimeoutInSeconds field changed.
Windows10EndpointProtectionConfiguration	withDefenderDaysBeforeDeletingQuarantinedMalware(Integer defenderDaysBeforeDeletingQuarantinedMalware) Returns an immutable copy of this with just the defenderDaysBeforeDeletingQuarantinedMalware field changed.
Windows10EndpointProtectionConfiguration	withDefenderDetectedMalwareActions(DefenderDetectedMalwareActions defenderDetectedMalwareActions) Returns an immutable copy of this with just the defenderDetectedMalwareActions field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableBehaviorMonitoring(Boolean defenderDisableBehaviorMonitoring) Returns an immutable copy of this with just the defenderDisableBehaviorMonitoring field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableCatchupFullScan(Boolean defenderDisableCatchupFullScan) Returns an immutable copy of this with just the defenderDisableCatchupFullScan field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableCatchupQuickScan(Boolean defenderDisableCatchupQuickScan) Returns an immutable copy of this with just the defenderDisableCatchupQuickScan field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableCloudProtection(Boolean defenderDisableCloudProtection) Returns an immutable copy of this with just the defenderDisableCloudProtection field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableIntrusionPreventionSystem(Boolean defenderDisableIntrusionPreventionSystem) Returns an immutable copy of this with just the defenderDisableIntrusionPreventionSystem field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableOnAccessProtection(Boolean defenderDisableOnAccessProtection) Returns an immutable copy of this with just the defenderDisableOnAccessProtection field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableRealTimeMonitoring(Boolean defenderDisableRealTimeMonitoring) Returns an immutable copy of this with just the defenderDisableRealTimeMonitoring field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableScanArchiveFiles(Boolean defenderDisableScanArchiveFiles) Returns an immutable copy of this with just the defenderDisableScanArchiveFiles field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableScanDownloads(Boolean defenderDisableScanDownloads) Returns an immutable copy of this with just the defenderDisableScanDownloads field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableScanNetworkFiles(Boolean defenderDisableScanNetworkFiles) Returns an immutable copy of this with just the defenderDisableScanNetworkFiles field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableScanRemovableDrivesDuringFullScan(Boolean defenderDisableScanRemovableDrivesDuringFullScan) Returns an immutable copy of this with just the defenderDisableScanRemovableDrivesDuringFullScan field changed.
Windows10EndpointProtectionConfiguration	withDefenderDisableScanScriptsLoadedInInternetExplorer(Boolean defenderDisableScanScriptsLoadedInInternetExplorer) Returns an immutable copy of this with just the defenderDisableScanScriptsLoadedInInternetExplorer field changed.
Windows10EndpointProtectionConfiguration	withDefenderEmailContentExecution(DefenderProtectionType defenderEmailContentExecution) Returns an immutable copy of this with just the defenderEmailContentExecution field changed.
Windows10EndpointProtectionConfiguration	withDefenderEmailContentExecutionType(DefenderAttackSurfaceType defenderEmailContentExecutionType) Returns an immutable copy of this with just the defenderEmailContentExecutionType field changed.
Windows10EndpointProtectionConfiguration	withDefenderEnableLowCpuPriority(Boolean defenderEnableLowCpuPriority) Returns an immutable copy of this with just the defenderEnableLowCpuPriority field changed.
Windows10EndpointProtectionConfiguration	withDefenderEnableScanIncomingMail(Boolean defenderEnableScanIncomingMail) Returns an immutable copy of this with just the defenderEnableScanIncomingMail field changed.
Windows10EndpointProtectionConfiguration	withDefenderEnableScanMappedNetworkDrivesDuringFullScan(Boolean defenderEnableScanMappedNetworkDrivesDuringFullScan) Returns an immutable copy of this with just the defenderEnableScanMappedNetworkDrivesDuringFullScan field changed.
Windows10EndpointProtectionConfiguration	withDefenderExploitProtectionXml(byte[] defenderExploitProtectionXml) Returns an immutable copy of this with just the defenderExploitProtectionXml field changed.
Windows10EndpointProtectionConfiguration	withDefenderExploitProtectionXmlFileName(String defenderExploitProtectionXmlFileName) Returns an immutable copy of this with just the defenderExploitProtectionXmlFileName field changed.
Windows10EndpointProtectionConfiguration	withDefenderGuardMyFoldersType(FolderProtectionType defenderGuardMyFoldersType) Returns an immutable copy of this with just the defenderGuardMyFoldersType field changed.
Windows10EndpointProtectionConfiguration	withDefenderNetworkProtectionType(DefenderProtectionType defenderNetworkProtectionType) Returns an immutable copy of this with just the defenderNetworkProtectionType field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeAppsExecutableContentCreationOrLaunch(DefenderProtectionType defenderOfficeAppsExecutableContentCreationOrLaunch) Returns an immutable copy of this with just the defenderOfficeAppsExecutableContentCreationOrLaunch field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeAppsExecutableContentCreationOrLaunchType(DefenderAttackSurfaceType defenderOfficeAppsExecutableContentCreationOrLaunchType) Returns an immutable copy of this with just the defenderOfficeAppsExecutableContentCreationOrLaunchType field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeAppsLaunchChildProcess(DefenderProtectionType defenderOfficeAppsLaunchChildProcess) Returns an immutable copy of this with just the defenderOfficeAppsLaunchChildProcess field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeAppsLaunchChildProcessType(DefenderAttackSurfaceType defenderOfficeAppsLaunchChildProcessType) Returns an immutable copy of this with just the defenderOfficeAppsLaunchChildProcessType field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeAppsOtherProcessInjection(DefenderProtectionType defenderOfficeAppsOtherProcessInjection) Returns an immutable copy of this with just the defenderOfficeAppsOtherProcessInjection field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeAppsOtherProcessInjectionType(DefenderAttackSurfaceType defenderOfficeAppsOtherProcessInjectionType) Returns an immutable copy of this with just the defenderOfficeAppsOtherProcessInjectionType field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeCommunicationAppsLaunchChildProcess(DefenderProtectionType defenderOfficeCommunicationAppsLaunchChildProcess) Returns an immutable copy of this with just the defenderOfficeCommunicationAppsLaunchChildProcess field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeMacroCodeAllowWin32Imports(DefenderProtectionType defenderOfficeMacroCodeAllowWin32Imports) Returns an immutable copy of this with just the defenderOfficeMacroCodeAllowWin32Imports field changed.
Windows10EndpointProtectionConfiguration	withDefenderOfficeMacroCodeAllowWin32ImportsType(DefenderAttackSurfaceType defenderOfficeMacroCodeAllowWin32ImportsType) Returns an immutable copy of this with just the defenderOfficeMacroCodeAllowWin32ImportsType field changed.
Windows10EndpointProtectionConfiguration	withDefenderPotentiallyUnwantedAppAction(DefenderProtectionType defenderPotentiallyUnwantedAppAction) Returns an immutable copy of this with just the defenderPotentiallyUnwantedAppAction field changed.
Windows10EndpointProtectionConfiguration	withDefenderPreventCredentialStealingType(DefenderProtectionType defenderPreventCredentialStealingType) Returns an immutable copy of this with just the defenderPreventCredentialStealingType field changed.
Windows10EndpointProtectionConfiguration	withDefenderProcessCreation(DefenderProtectionType defenderProcessCreation) Returns an immutable copy of this with just the defenderProcessCreation field changed.
Windows10EndpointProtectionConfiguration	withDefenderProcessCreationType(DefenderAttackSurfaceType defenderProcessCreationType) Returns an immutable copy of this with just the defenderProcessCreationType field changed.
Windows10EndpointProtectionConfiguration	withDefenderScanDirection(DefenderRealtimeScanDirection defenderScanDirection) Returns an immutable copy of this with just the defenderScanDirection field changed.
Windows10EndpointProtectionConfiguration	withDefenderScanMaxCpuPercentage(Integer defenderScanMaxCpuPercentage) Returns an immutable copy of this with just the defenderScanMaxCpuPercentage field changed.
Windows10EndpointProtectionConfiguration	withDefenderScanType(DefenderScanType defenderScanType) Returns an immutable copy of this with just the defenderScanType field changed.
Windows10EndpointProtectionConfiguration	withDefenderScheduledQuickScanTime(LocalTime defenderScheduledQuickScanTime) Returns an immutable copy of this with just the defenderScheduledQuickScanTime field changed.
Windows10EndpointProtectionConfiguration	withDefenderScheduledScanDay(WeeklySchedule defenderScheduledScanDay) Returns an immutable copy of this with just the defenderScheduledScanDay field changed.
Windows10EndpointProtectionConfiguration	withDefenderScheduledScanTime(LocalTime defenderScheduledScanTime) Returns an immutable copy of this with just the defenderScheduledScanTime field changed.
Windows10EndpointProtectionConfiguration	withDefenderScriptDownloadedPayloadExecution(DefenderProtectionType defenderScriptDownloadedPayloadExecution) Returns an immutable copy of this with just the defenderScriptDownloadedPayloadExecution field changed.
Windows10EndpointProtectionConfiguration	withDefenderScriptDownloadedPayloadExecutionType(DefenderAttackSurfaceType defenderScriptDownloadedPayloadExecutionType) Returns an immutable copy of this with just the defenderScriptDownloadedPayloadExecutionType field changed.
Windows10EndpointProtectionConfiguration	withDefenderScriptObfuscatedMacroCode(DefenderProtectionType defenderScriptObfuscatedMacroCode) Returns an immutable copy of this with just the defenderScriptObfuscatedMacroCode field changed.
Windows10EndpointProtectionConfiguration	withDefenderScriptObfuscatedMacroCodeType(DefenderAttackSurfaceType defenderScriptObfuscatedMacroCodeType) Returns an immutable copy of this with just the defenderScriptObfuscatedMacroCodeType field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterBlockExploitProtectionOverride(Boolean defenderSecurityCenterBlockExploitProtectionOverride) Returns an immutable copy of this with just the defenderSecurityCenterBlockExploitProtectionOverride field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableAccountUI(Boolean defenderSecurityCenterDisableAccountUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableAccountUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableAppBrowserUI(Boolean defenderSecurityCenterDisableAppBrowserUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableAppBrowserUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableClearTpmUI(Boolean defenderSecurityCenterDisableClearTpmUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableClearTpmUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableFamilyUI(Boolean defenderSecurityCenterDisableFamilyUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableFamilyUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableHardwareUI(Boolean defenderSecurityCenterDisableHardwareUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableHardwareUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableHealthUI(Boolean defenderSecurityCenterDisableHealthUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableHealthUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableNetworkUI(Boolean defenderSecurityCenterDisableNetworkUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableNetworkUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableNotificationAreaUI(Boolean defenderSecurityCenterDisableNotificationAreaUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableNotificationAreaUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableRansomwareUI(Boolean defenderSecurityCenterDisableRansomwareUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableRansomwareUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableSecureBootUI(Boolean defenderSecurityCenterDisableSecureBootUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableSecureBootUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableTroubleshootingUI(Boolean defenderSecurityCenterDisableTroubleshootingUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableTroubleshootingUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableVirusUI(Boolean defenderSecurityCenterDisableVirusUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableVirusUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI(Boolean defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI) Returns an immutable copy of this with just the defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterHelpEmail(String defenderSecurityCenterHelpEmail) Returns an immutable copy of this with just the defenderSecurityCenterHelpEmail field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterHelpPhone(String defenderSecurityCenterHelpPhone) Returns an immutable copy of this with just the defenderSecurityCenterHelpPhone field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterHelpURL(String defenderSecurityCenterHelpURL) Returns an immutable copy of this with just the defenderSecurityCenterHelpURL field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterITContactDisplay(DefenderSecurityCenterITContactDisplayType defenderSecurityCenterITContactDisplay) Returns an immutable copy of this with just the defenderSecurityCenterITContactDisplay field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterNotificationsFromApp(DefenderSecurityCenterNotificationsFromAppType defenderSecurityCenterNotificationsFromApp) Returns an immutable copy of this with just the defenderSecurityCenterNotificationsFromApp field changed.
Windows10EndpointProtectionConfiguration	withDefenderSecurityCenterOrganizationDisplayName(String defenderSecurityCenterOrganizationDisplayName) Returns an immutable copy of this with just the defenderSecurityCenterOrganizationDisplayName field changed.
Windows10EndpointProtectionConfiguration	withDefenderSignatureUpdateIntervalInHours(Integer defenderSignatureUpdateIntervalInHours) Returns an immutable copy of this with just the defenderSignatureUpdateIntervalInHours field changed.
Windows10EndpointProtectionConfiguration	withDefenderSubmitSamplesConsentType(DefenderSubmitSamplesConsentType defenderSubmitSamplesConsentType) Returns an immutable copy of this with just the defenderSubmitSamplesConsentType field changed.
Windows10EndpointProtectionConfiguration	withDefenderUntrustedExecutable(DefenderProtectionType defenderUntrustedExecutable) Returns an immutable copy of this with just the defenderUntrustedExecutable field changed.
Windows10EndpointProtectionConfiguration	withDefenderUntrustedExecutableType(DefenderAttackSurfaceType defenderUntrustedExecutableType) Returns an immutable copy of this with just the defenderUntrustedExecutableType field changed.
Windows10EndpointProtectionConfiguration	withDefenderUntrustedUSBProcess(DefenderProtectionType defenderUntrustedUSBProcess) Returns an immutable copy of this with just the defenderUntrustedUSBProcess field changed.
Windows10EndpointProtectionConfiguration	withDefenderUntrustedUSBProcessType(DefenderAttackSurfaceType defenderUntrustedUSBProcessType) Returns an immutable copy of this with just the defenderUntrustedUSBProcessType field changed.
Windows10EndpointProtectionConfiguration	withDeviceGuardEnableSecureBootWithDMA(Boolean deviceGuardEnableSecureBootWithDMA) Returns an immutable copy of this with just the deviceGuardEnableSecureBootWithDMA field changed.
Windows10EndpointProtectionConfiguration	withDeviceGuardEnableVirtualizationBasedSecurity(Boolean deviceGuardEnableVirtualizationBasedSecurity) Returns an immutable copy of this with just the deviceGuardEnableVirtualizationBasedSecurity field changed.
Windows10EndpointProtectionConfiguration	withDeviceGuardLaunchSystemGuard(Enablement deviceGuardLaunchSystemGuard) Returns an immutable copy of this with just the deviceGuardLaunchSystemGuard field changed.
Windows10EndpointProtectionConfiguration	withDeviceGuardLocalSystemAuthorityCredentialGuardSettings(DeviceGuardLocalSystemAuthorityCredentialGuardType deviceGuardLocalSystemAuthorityCredentialGuardSettings) Returns an immutable copy of this with just the deviceGuardLocalSystemAuthorityCredentialGuardSettings field changed.
Windows10EndpointProtectionConfiguration	withDeviceGuardSecureBootWithDMA(SecureBootWithDMAType deviceGuardSecureBootWithDMA) Returns an immutable copy of this with just the deviceGuardSecureBootWithDMA field changed.
Windows10EndpointProtectionConfiguration	withDmaGuardDeviceEnumerationPolicy(DmaGuardDeviceEnumerationPolicyType dmaGuardDeviceEnumerationPolicy) Returns an immutable copy of this with just the dmaGuardDeviceEnumerationPolicy field changed.
Windows10EndpointProtectionConfiguration	withFirewallBlockStatefulFTP(Boolean firewallBlockStatefulFTP) Returns an immutable copy of this with just the firewallBlockStatefulFTP field changed.
Windows10EndpointProtectionConfiguration	withFirewallCertificateRevocationListCheckMethod(FirewallCertificateRevocationListCheckMethodType firewallCertificateRevocationListCheckMethod) Returns an immutable copy of this with just the firewallCertificateRevocationListCheckMethod field changed.
Windows10EndpointProtectionConfiguration	withFirewallIdleTimeoutForSecurityAssociationInSeconds(Integer firewallIdleTimeoutForSecurityAssociationInSeconds) Returns an immutable copy of this with just the firewallIdleTimeoutForSecurityAssociationInSeconds field changed.
Windows10EndpointProtectionConfiguration	withFirewallIPSecExemptionsAllowDHCP(Boolean firewallIPSecExemptionsAllowDHCP) Returns an immutable copy of this with just the firewallIPSecExemptionsAllowDHCP field changed.
Windows10EndpointProtectionConfiguration	withFirewallIPSecExemptionsAllowICMP(Boolean firewallIPSecExemptionsAllowICMP) Returns an immutable copy of this with just the firewallIPSecExemptionsAllowICMP field changed.
Windows10EndpointProtectionConfiguration	withFirewallIPSecExemptionsAllowNeighborDiscovery(Boolean firewallIPSecExemptionsAllowNeighborDiscovery) Returns an immutable copy of this with just the firewallIPSecExemptionsAllowNeighborDiscovery field changed.
Windows10EndpointProtectionConfiguration	withFirewallIPSecExemptionsAllowRouterDiscovery(Boolean firewallIPSecExemptionsAllowRouterDiscovery) Returns an immutable copy of this with just the firewallIPSecExemptionsAllowRouterDiscovery field changed.
Windows10EndpointProtectionConfiguration	withFirewallMergeKeyingModuleSettings(Boolean firewallMergeKeyingModuleSettings) Returns an immutable copy of this with just the firewallMergeKeyingModuleSettings field changed.
Windows10EndpointProtectionConfiguration	withFirewallPacketQueueingMethod(FirewallPacketQueueingMethodType firewallPacketQueueingMethod) Returns an immutable copy of this with just the firewallPacketQueueingMethod field changed.
Windows10EndpointProtectionConfiguration	withFirewallPreSharedKeyEncodingMethod(FirewallPreSharedKeyEncodingMethodType firewallPreSharedKeyEncodingMethod) Returns an immutable copy of this with just the firewallPreSharedKeyEncodingMethod field changed.
Windows10EndpointProtectionConfiguration	withFirewallProfileDomain(WindowsFirewallNetworkProfile firewallProfileDomain) Returns an immutable copy of this with just the firewallProfileDomain field changed.
Windows10EndpointProtectionConfiguration	withFirewallProfilePrivate(WindowsFirewallNetworkProfile firewallProfilePrivate) Returns an immutable copy of this with just the firewallProfilePrivate field changed.
Windows10EndpointProtectionConfiguration	withFirewallProfilePublic(WindowsFirewallNetworkProfile firewallProfilePublic) Returns an immutable copy of this with just the firewallProfilePublic field changed.
Windows10EndpointProtectionConfiguration	withLanManagerAuthenticationLevel(LanManagerAuthenticationLevel lanManagerAuthenticationLevel) Returns an immutable copy of this with just the lanManagerAuthenticationLevel field changed.
Windows10EndpointProtectionConfiguration	withLanManagerWorkstationDisableInsecureGuestLogons(Boolean lanManagerWorkstationDisableInsecureGuestLogons) Returns an immutable copy of this with just the lanManagerWorkstationDisableInsecureGuestLogons field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAdministratorAccountName(String localSecurityOptionsAdministratorAccountName) Returns an immutable copy of this with just the localSecurityOptionsAdministratorAccountName field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAdministratorElevationPromptBehavior(LocalSecurityOptionsAdministratorElevationPromptBehaviorType localSecurityOptionsAdministratorElevationPromptBehavior) Returns an immutable copy of this with just the localSecurityOptionsAdministratorElevationPromptBehavior field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares(Boolean localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares) Returns an immutable copy of this with just the localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowPKU2UAuthenticationRequests(Boolean localSecurityOptionsAllowPKU2UAuthenticationRequests) Returns an immutable copy of this with just the localSecurityOptionsAllowPKU2UAuthenticationRequests field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager(String localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager) Returns an immutable copy of this with just the localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool(Boolean localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool) Returns an immutable copy of this with just the localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn(Boolean localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn) Returns an immutable copy of this with just the localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowUIAccessApplicationElevation(Boolean localSecurityOptionsAllowUIAccessApplicationElevation) Returns an immutable copy of this with just the localSecurityOptionsAllowUIAccessApplicationElevation field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowUIAccessApplicationsForSecureLocations(Boolean localSecurityOptionsAllowUIAccessApplicationsForSecureLocations) Returns an immutable copy of this with just the localSecurityOptionsAllowUIAccessApplicationsForSecureLocations field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsAllowUndockWithoutHavingToLogon(Boolean localSecurityOptionsAllowUndockWithoutHavingToLogon) Returns an immutable copy of this with just the localSecurityOptionsAllowUndockWithoutHavingToLogon field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsBlockMicrosoftAccounts(Boolean localSecurityOptionsBlockMicrosoftAccounts) Returns an immutable copy of this with just the localSecurityOptionsBlockMicrosoftAccounts field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsBlockRemoteLogonWithBlankPassword(Boolean localSecurityOptionsBlockRemoteLogonWithBlankPassword) Returns an immutable copy of this with just the localSecurityOptionsBlockRemoteLogonWithBlankPassword field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsBlockRemoteOpticalDriveAccess(Boolean localSecurityOptionsBlockRemoteOpticalDriveAccess) Returns an immutable copy of this with just the localSecurityOptionsBlockRemoteOpticalDriveAccess field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsBlockUsersInstallingPrinterDrivers(Boolean localSecurityOptionsBlockUsersInstallingPrinterDrivers) Returns an immutable copy of this with just the localSecurityOptionsBlockUsersInstallingPrinterDrivers field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsClearVirtualMemoryPageFile(Boolean localSecurityOptionsClearVirtualMemoryPageFile) Returns an immutable copy of this with just the localSecurityOptionsClearVirtualMemoryPageFile field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsClientDigitallySignCommunicationsAlways(Boolean localSecurityOptionsClientDigitallySignCommunicationsAlways) Returns an immutable copy of this with just the localSecurityOptionsClientDigitallySignCommunicationsAlways field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers(Boolean localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers) Returns an immutable copy of this with just the localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDetectApplicationInstallationsAndPromptForElevation(Boolean localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation) Returns an immutable copy of this with just the localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDisableAdministratorAccount(Boolean localSecurityOptionsDisableAdministratorAccount) Returns an immutable copy of this with just the localSecurityOptionsDisableAdministratorAccount field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees(Boolean localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees) Returns an immutable copy of this with just the localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDisableGuestAccount(Boolean localSecurityOptionsDisableGuestAccount) Returns an immutable copy of this with just the localSecurityOptionsDisableGuestAccount field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDisableServerDigitallySignCommunicationsAlways(Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsAlways) Returns an immutable copy of this with just the localSecurityOptionsDisableServerDigitallySignCommunicationsAlways field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees(Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees) Returns an immutable copy of this with just the localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts(Boolean localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts) Returns an immutable copy of this with just the localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDoNotRequireCtrlAltDel(Boolean localSecurityOptionsDoNotRequireCtrlAltDel) Returns an immutable copy of this with just the localSecurityOptionsDoNotRequireCtrlAltDel field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange(Boolean localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange) Returns an immutable copy of this with just the localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser(LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser) Returns an immutable copy of this with just the localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsGuestAccountName(String localSecurityOptionsGuestAccountName) Returns an immutable copy of this with just the localSecurityOptionsGuestAccountName field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsHideLastSignedInUser(Boolean localSecurityOptionsHideLastSignedInUser) Returns an immutable copy of this with just the localSecurityOptionsHideLastSignedInUser field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsHideUsernameAtSignIn(Boolean localSecurityOptionsHideUsernameAtSignIn) Returns an immutable copy of this with just the localSecurityOptionsHideUsernameAtSignIn field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsInformationDisplayedOnLockScreen(LocalSecurityOptionsInformationDisplayedOnLockScreenType localSecurityOptionsInformationDisplayedOnLockScreen) Returns an immutable copy of this with just the localSecurityOptionsInformationDisplayedOnLockScreen field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsInformationShownOnLockScreen(LocalSecurityOptionsInformationShownOnLockScreenType localSecurityOptionsInformationShownOnLockScreen) Returns an immutable copy of this with just the localSecurityOptionsInformationShownOnLockScreen field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsLogOnMessageText(String localSecurityOptionsLogOnMessageText) Returns an immutable copy of this with just the localSecurityOptionsLogOnMessageText field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsLogOnMessageTitle(String localSecurityOptionsLogOnMessageTitle) Returns an immutable copy of this with just the localSecurityOptionsLogOnMessageTitle field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsMachineInactivityLimit(Integer localSecurityOptionsMachineInactivityLimit) Returns an immutable copy of this with just the localSecurityOptionsMachineInactivityLimit field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsMachineInactivityLimitInMinutes(Integer localSecurityOptionsMachineInactivityLimitInMinutes) Returns an immutable copy of this with just the localSecurityOptionsMachineInactivityLimitInMinutes field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients(LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients) Returns an immutable copy of this with just the localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers(LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers) Returns an immutable copy of this with just the localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsOnlyElevateSignedExecutables(Boolean localSecurityOptionsOnlyElevateSignedExecutables) Returns an immutable copy of this with just the localSecurityOptionsOnlyElevateSignedExecutables field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares(Boolean localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares) Returns an immutable copy of this with just the localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsSmartCardRemovalBehavior(LocalSecurityOptionsSmartCardRemovalBehaviorType localSecurityOptionsSmartCardRemovalBehavior) Returns an immutable copy of this with just the localSecurityOptionsSmartCardRemovalBehavior field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsStandardUserElevationPromptBehavior(LocalSecurityOptionsStandardUserElevationPromptBehaviorType localSecurityOptionsStandardUserElevationPromptBehavior) Returns an immutable copy of this with just the localSecurityOptionsStandardUserElevationPromptBehavior field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation(Boolean localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation) Returns an immutable copy of this with just the localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsUseAdminApprovalMode(Boolean localSecurityOptionsUseAdminApprovalMode) Returns an immutable copy of this with just the localSecurityOptionsUseAdminApprovalMode field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsUseAdminApprovalModeForAdministrators(Boolean localSecurityOptionsUseAdminApprovalModeForAdministrators) Returns an immutable copy of this with just the localSecurityOptionsUseAdminApprovalModeForAdministrators field changed.
Windows10EndpointProtectionConfiguration	withLocalSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations(Boolean localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations) Returns an immutable copy of this with just the localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations field changed.
Windows10EndpointProtectionConfiguration	withSmartScreenBlockOverrideForFiles(Boolean smartScreenBlockOverrideForFiles) Returns an immutable copy of this with just the smartScreenBlockOverrideForFiles field changed.
Windows10EndpointProtectionConfiguration	withSmartScreenEnableInShell(Boolean smartScreenEnableInShell) Returns an immutable copy of this with just the smartScreenEnableInShell field changed.
Windows10EndpointProtectionConfiguration	withUserRightsAccessCredentialManagerAsTrustedCaller(DeviceManagementUserRightsSetting userRightsAccessCredentialManagerAsTrustedCaller) Returns an immutable copy of this with just the userRightsAccessCredentialManagerAsTrustedCaller field changed.
Windows10EndpointProtectionConfiguration	withUserRightsActAsPartOfTheOperatingSystem(DeviceManagementUserRightsSetting userRightsActAsPartOfTheOperatingSystem) Returns an immutable copy of this with just the userRightsActAsPartOfTheOperatingSystem field changed.
Windows10EndpointProtectionConfiguration	withUserRightsAllowAccessFromNetwork(DeviceManagementUserRightsSetting userRightsAllowAccessFromNetwork) Returns an immutable copy of this with just the userRightsAllowAccessFromNetwork field changed.
Windows10EndpointProtectionConfiguration	withUserRightsBackupData(DeviceManagementUserRightsSetting userRightsBackupData) Returns an immutable copy of this with just the userRightsBackupData field changed.
Windows10EndpointProtectionConfiguration	withUserRightsBlockAccessFromNetwork(DeviceManagementUserRightsSetting userRightsBlockAccessFromNetwork) Returns an immutable copy of this with just the userRightsBlockAccessFromNetwork field changed.
Windows10EndpointProtectionConfiguration	withUserRightsChangeSystemTime(DeviceManagementUserRightsSetting userRightsChangeSystemTime) Returns an immutable copy of this with just the userRightsChangeSystemTime field changed.
Windows10EndpointProtectionConfiguration	withUserRightsCreateGlobalObjects(DeviceManagementUserRightsSetting userRightsCreateGlobalObjects) Returns an immutable copy of this with just the userRightsCreateGlobalObjects field changed.
Windows10EndpointProtectionConfiguration	withUserRightsCreatePageFile(DeviceManagementUserRightsSetting userRightsCreatePageFile) Returns an immutable copy of this with just the userRightsCreatePageFile field changed.
Windows10EndpointProtectionConfiguration	withUserRightsCreatePermanentSharedObjects(DeviceManagementUserRightsSetting userRightsCreatePermanentSharedObjects) Returns an immutable copy of this with just the userRightsCreatePermanentSharedObjects field changed.
Windows10EndpointProtectionConfiguration	withUserRightsCreateSymbolicLinks(DeviceManagementUserRightsSetting userRightsCreateSymbolicLinks) Returns an immutable copy of this with just the userRightsCreateSymbolicLinks field changed.
Windows10EndpointProtectionConfiguration	withUserRightsCreateToken(DeviceManagementUserRightsSetting userRightsCreateToken) Returns an immutable copy of this with just the userRightsCreateToken field changed.
Windows10EndpointProtectionConfiguration	withUserRightsDebugPrograms(DeviceManagementUserRightsSetting userRightsDebugPrograms) Returns an immutable copy of this with just the userRightsDebugPrograms field changed.
Windows10EndpointProtectionConfiguration	withUserRightsDelegation(DeviceManagementUserRightsSetting userRightsDelegation) Returns an immutable copy of this with just the userRightsDelegation field changed.
Windows10EndpointProtectionConfiguration	withUserRightsDenyLocalLogOn(DeviceManagementUserRightsSetting userRightsDenyLocalLogOn) Returns an immutable copy of this with just the userRightsDenyLocalLogOn field changed.
Windows10EndpointProtectionConfiguration	withUserRightsGenerateSecurityAudits(DeviceManagementUserRightsSetting userRightsGenerateSecurityAudits) Returns an immutable copy of this with just the userRightsGenerateSecurityAudits field changed.
Windows10EndpointProtectionConfiguration	withUserRightsImpersonateClient(DeviceManagementUserRightsSetting userRightsImpersonateClient) Returns an immutable copy of this with just the userRightsImpersonateClient field changed.
Windows10EndpointProtectionConfiguration	withUserRightsIncreaseSchedulingPriority(DeviceManagementUserRightsSetting userRightsIncreaseSchedulingPriority) Returns an immutable copy of this with just the userRightsIncreaseSchedulingPriority field changed.
Windows10EndpointProtectionConfiguration	withUserRightsLoadUnloadDrivers(DeviceManagementUserRightsSetting userRightsLoadUnloadDrivers) Returns an immutable copy of this with just the userRightsLoadUnloadDrivers field changed.
Windows10EndpointProtectionConfiguration	withUserRightsLocalLogOn(DeviceManagementUserRightsSetting userRightsLocalLogOn) Returns an immutable copy of this with just the userRightsLocalLogOn field changed.
Windows10EndpointProtectionConfiguration	withUserRightsLockMemory(DeviceManagementUserRightsSetting userRightsLockMemory) Returns an immutable copy of this with just the userRightsLockMemory field changed.
Windows10EndpointProtectionConfiguration	withUserRightsManageAuditingAndSecurityLogs(DeviceManagementUserRightsSetting userRightsManageAuditingAndSecurityLogs) Returns an immutable copy of this with just the userRightsManageAuditingAndSecurityLogs field changed.
Windows10EndpointProtectionConfiguration	withUserRightsManageVolumes(DeviceManagementUserRightsSetting userRightsManageVolumes) Returns an immutable copy of this with just the userRightsManageVolumes field changed.
Windows10EndpointProtectionConfiguration	withUserRightsModifyFirmwareEnvironment(DeviceManagementUserRightsSetting userRightsModifyFirmwareEnvironment) Returns an immutable copy of this with just the userRightsModifyFirmwareEnvironment field changed.
Windows10EndpointProtectionConfiguration	withUserRightsModifyObjectLabels(DeviceManagementUserRightsSetting userRightsModifyObjectLabels) Returns an immutable copy of this with just the userRightsModifyObjectLabels field changed.
Windows10EndpointProtectionConfiguration	withUserRightsProfileSingleProcess(DeviceManagementUserRightsSetting userRightsProfileSingleProcess) Returns an immutable copy of this with just the userRightsProfileSingleProcess field changed.
Windows10EndpointProtectionConfiguration	withUserRightsRemoteDesktopServicesLogOn(DeviceManagementUserRightsSetting userRightsRemoteDesktopServicesLogOn) Returns an immutable copy of this with just the userRightsRemoteDesktopServicesLogOn field changed.
Windows10EndpointProtectionConfiguration	withUserRightsRemoteShutdown(DeviceManagementUserRightsSetting userRightsRemoteShutdown) Returns an immutable copy of this with just the userRightsRemoteShutdown field changed.
Windows10EndpointProtectionConfiguration	withUserRightsRestoreData(DeviceManagementUserRightsSetting userRightsRestoreData) Returns an immutable copy of this with just the userRightsRestoreData field changed.
Windows10EndpointProtectionConfiguration	withUserRightsTakeOwnership(DeviceManagementUserRightsSetting userRightsTakeOwnership) Returns an immutable copy of this with just the userRightsTakeOwnership field changed.
Windows10EndpointProtectionConfiguration	withWindowsDefenderTamperProtection(WindowsDefenderTamperProtectionOptions windowsDefenderTamperProtection) Returns an immutable copy of this with just the windowsDefenderTamperProtection field changed.
Windows10EndpointProtectionConfiguration	withXboxServicesAccessoryManagementServiceStartupMode(ServiceStartType xboxServicesAccessoryManagementServiceStartupMode) Returns an immutable copy of this with just the xboxServicesAccessoryManagementServiceStartupMode field changed.
Windows10EndpointProtectionConfiguration	withXboxServicesEnableXboxGameSaveTask(Boolean xboxServicesEnableXboxGameSaveTask) Returns an immutable copy of this with just the xboxServicesEnableXboxGameSaveTask field changed.
Windows10EndpointProtectionConfiguration	withXboxServicesLiveAuthManagerServiceStartupMode(ServiceStartType xboxServicesLiveAuthManagerServiceStartupMode) Returns an immutable copy of this with just the xboxServicesLiveAuthManagerServiceStartupMode field changed.
Windows10EndpointProtectionConfiguration	withXboxServicesLiveGameSaveServiceStartupMode(ServiceStartType xboxServicesLiveGameSaveServiceStartupMode) Returns an immutable copy of this with just the xboxServicesLiveGameSaveServiceStartupMode field changed.
Windows10EndpointProtectionConfiguration	withXboxServicesLiveNetworkingServiceStartupMode(ServiceStartType xboxServicesLiveNetworkingServiceStartupMode) Returns an immutable copy of this with just the xboxServicesLiveNetworkingServiceStartupMode field changed.

Methods inherited from class odata.msgraph.client.beta.entity.DeviceConfiguration

assign, assignedAccessMultiModeProfiles, getAssignments, getCreatedDateTime, getDescription, getDeviceManagementApplicabilityRuleDeviceMode, getDeviceManagementApplicabilityRuleOsEdition, getDeviceManagementApplicabilityRuleOsVersion, getDeviceSettingStateSummaries, getDeviceStatuses, getDeviceStatusOverview, getDisplayName, getGroupAssignments, getLastModifiedDateTime, getRoleScopeTagIds, getSupportsScopeTags, getUserStatuses, getUserStatusOverview, getVersion, windowsPrivacyAccessControls, withCreatedDateTime, withDescription, withDeviceManagementApplicabilityRuleDeviceMode, withDeviceManagementApplicabilityRuleOsEdition, withDeviceManagementApplicabilityRuleOsVersion, withDisplayName, withLastModifiedDateTime, withSupportsScopeTags, withVersion

Methods inherited from class odata.msgraph.client.beta.entity.Entity

getId, withId

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Detail

dmaGuardDeviceEnumerationPolicy

protected DmaGuardDeviceEnumerationPolicyType dmaGuardDeviceEnumerationPolicy

firewallRules

protected List<WindowsFirewallRule> firewallRules

firewallRulesNextLink

protected String firewallRulesNextLink

userRightsAccessCredentialManagerAsTrustedCaller

protected DeviceManagementUserRightsSetting userRightsAccessCredentialManagerAsTrustedCaller

userRightsAllowAccessFromNetwork

protected DeviceManagementUserRightsSetting userRightsAllowAccessFromNetwork

userRightsBlockAccessFromNetwork

protected DeviceManagementUserRightsSetting userRightsBlockAccessFromNetwork

userRightsActAsPartOfTheOperatingSystem

protected DeviceManagementUserRightsSetting userRightsActAsPartOfTheOperatingSystem

userRightsLocalLogOn

protected DeviceManagementUserRightsSetting userRightsLocalLogOn

userRightsDenyLocalLogOn

protected DeviceManagementUserRightsSetting userRightsDenyLocalLogOn

userRightsBackupData

protected DeviceManagementUserRightsSetting userRightsBackupData

userRightsChangeSystemTime

protected DeviceManagementUserRightsSetting userRightsChangeSystemTime

userRightsCreateGlobalObjects

protected DeviceManagementUserRightsSetting userRightsCreateGlobalObjects

userRightsCreatePageFile

protected DeviceManagementUserRightsSetting userRightsCreatePageFile

userRightsCreatePermanentSharedObjects

protected DeviceManagementUserRightsSetting userRightsCreatePermanentSharedObjects

userRightsCreateSymbolicLinks

protected DeviceManagementUserRightsSetting userRightsCreateSymbolicLinks

userRightsCreateToken

protected DeviceManagementUserRightsSetting userRightsCreateToken

userRightsDebugPrograms

protected DeviceManagementUserRightsSetting userRightsDebugPrograms

userRightsRemoteDesktopServicesLogOn

protected DeviceManagementUserRightsSetting userRightsRemoteDesktopServicesLogOn

userRightsDelegation

protected DeviceManagementUserRightsSetting userRightsDelegation

userRightsGenerateSecurityAudits

protected DeviceManagementUserRightsSetting userRightsGenerateSecurityAudits

userRightsImpersonateClient

protected DeviceManagementUserRightsSetting userRightsImpersonateClient

userRightsIncreaseSchedulingPriority

protected DeviceManagementUserRightsSetting userRightsIncreaseSchedulingPriority

userRightsLoadUnloadDrivers

protected DeviceManagementUserRightsSetting userRightsLoadUnloadDrivers

userRightsLockMemory

protected DeviceManagementUserRightsSetting userRightsLockMemory

userRightsManageAuditingAndSecurityLogs

protected DeviceManagementUserRightsSetting userRightsManageAuditingAndSecurityLogs

userRightsManageVolumes

protected DeviceManagementUserRightsSetting userRightsManageVolumes

userRightsModifyFirmwareEnvironment

protected DeviceManagementUserRightsSetting userRightsModifyFirmwareEnvironment

userRightsModifyObjectLabels

protected DeviceManagementUserRightsSetting userRightsModifyObjectLabels

userRightsProfileSingleProcess

protected DeviceManagementUserRightsSetting userRightsProfileSingleProcess

userRightsRemoteShutdown

protected DeviceManagementUserRightsSetting userRightsRemoteShutdown

userRightsRestoreData

protected DeviceManagementUserRightsSetting userRightsRestoreData

userRightsTakeOwnership

protected DeviceManagementUserRightsSetting userRightsTakeOwnership

xboxServicesEnableXboxGameSaveTask

protected Boolean xboxServicesEnableXboxGameSaveTask

xboxServicesAccessoryManagementServiceStartupMode

protected ServiceStartType xboxServicesAccessoryManagementServiceStartupMode

xboxServicesLiveAuthManagerServiceStartupMode

protected ServiceStartType xboxServicesLiveAuthManagerServiceStartupMode

xboxServicesLiveGameSaveServiceStartupMode

protected ServiceStartType xboxServicesLiveGameSaveServiceStartupMode

xboxServicesLiveNetworkingServiceStartupMode

protected ServiceStartType xboxServicesLiveNetworkingServiceStartupMode

localSecurityOptionsBlockMicrosoftAccounts

protected Boolean localSecurityOptionsBlockMicrosoftAccounts

localSecurityOptionsBlockRemoteLogonWithBlankPassword

protected Boolean localSecurityOptionsBlockRemoteLogonWithBlankPassword

localSecurityOptionsDisableAdministratorAccount

protected Boolean localSecurityOptionsDisableAdministratorAccount

localSecurityOptionsAdministratorAccountName

protected String localSecurityOptionsAdministratorAccountName

localSecurityOptionsDisableGuestAccount

protected Boolean localSecurityOptionsDisableGuestAccount

localSecurityOptionsGuestAccountName

protected String localSecurityOptionsGuestAccountName

localSecurityOptionsAllowUndockWithoutHavingToLogon

protected Boolean localSecurityOptionsAllowUndockWithoutHavingToLogon

localSecurityOptionsBlockUsersInstallingPrinterDrivers

protected Boolean localSecurityOptionsBlockUsersInstallingPrinterDrivers

localSecurityOptionsBlockRemoteOpticalDriveAccess

protected Boolean localSecurityOptionsBlockRemoteOpticalDriveAccess

localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser

protected LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser

localSecurityOptionsMachineInactivityLimit

protected Integer localSecurityOptionsMachineInactivityLimit

localSecurityOptionsMachineInactivityLimitInMinutes

protected Integer localSecurityOptionsMachineInactivityLimitInMinutes

localSecurityOptionsDoNotRequireCtrlAltDel

protected Boolean localSecurityOptionsDoNotRequireCtrlAltDel

localSecurityOptionsHideLastSignedInUser

protected Boolean localSecurityOptionsHideLastSignedInUser

localSecurityOptionsHideUsernameAtSignIn

protected Boolean localSecurityOptionsHideUsernameAtSignIn

localSecurityOptionsLogOnMessageTitle

protected String localSecurityOptionsLogOnMessageTitle

localSecurityOptionsLogOnMessageText

protected String localSecurityOptionsLogOnMessageText

localSecurityOptionsAllowPKU2UAuthenticationRequests

protected Boolean localSecurityOptionsAllowPKU2UAuthenticationRequests

localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool

protected Boolean localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool

localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager

protected String localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager

localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients

protected LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients

localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers

protected LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers

lanManagerAuthenticationLevel

protected LanManagerAuthenticationLevel lanManagerAuthenticationLevel

lanManagerWorkstationDisableInsecureGuestLogons

protected Boolean lanManagerWorkstationDisableInsecureGuestLogons

localSecurityOptionsClearVirtualMemoryPageFile

protected Boolean localSecurityOptionsClearVirtualMemoryPageFile

localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn

protected Boolean localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn

localSecurityOptionsAllowUIAccessApplicationElevation

protected Boolean localSecurityOptionsAllowUIAccessApplicationElevation

localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations

protected Boolean localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations

localSecurityOptionsOnlyElevateSignedExecutables

protected Boolean localSecurityOptionsOnlyElevateSignedExecutables

localSecurityOptionsAdministratorElevationPromptBehavior

protected LocalSecurityOptionsAdministratorElevationPromptBehaviorType localSecurityOptionsAdministratorElevationPromptBehavior

localSecurityOptionsStandardUserElevationPromptBehavior

protected LocalSecurityOptionsStandardUserElevationPromptBehaviorType localSecurityOptionsStandardUserElevationPromptBehavior

localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation

protected Boolean localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation

localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation

protected Boolean localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation

localSecurityOptionsAllowUIAccessApplicationsForSecureLocations

protected Boolean localSecurityOptionsAllowUIAccessApplicationsForSecureLocations

localSecurityOptionsUseAdminApprovalMode

protected Boolean localSecurityOptionsUseAdminApprovalMode

localSecurityOptionsUseAdminApprovalModeForAdministrators

protected Boolean localSecurityOptionsUseAdminApprovalModeForAdministrators

localSecurityOptionsInformationShownOnLockScreen

protected LocalSecurityOptionsInformationShownOnLockScreenType localSecurityOptionsInformationShownOnLockScreen

localSecurityOptionsInformationDisplayedOnLockScreen

protected LocalSecurityOptionsInformationDisplayedOnLockScreenType localSecurityOptionsInformationDisplayedOnLockScreen

localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees

protected Boolean localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees

localSecurityOptionsClientDigitallySignCommunicationsAlways

protected Boolean localSecurityOptionsClientDigitallySignCommunicationsAlways

localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers

protected Boolean localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers

localSecurityOptionsDisableServerDigitallySignCommunicationsAlways

protected Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsAlways

localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees

protected Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees

localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares

protected Boolean localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares

localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts

protected Boolean localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts

localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares

protected Boolean localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares

localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange

protected Boolean localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange

localSecurityOptionsSmartCardRemovalBehavior

protected LocalSecurityOptionsSmartCardRemovalBehaviorType localSecurityOptionsSmartCardRemovalBehavior

defenderSecurityCenterDisableAppBrowserUI

protected Boolean defenderSecurityCenterDisableAppBrowserUI

defenderSecurityCenterDisableFamilyUI

protected Boolean defenderSecurityCenterDisableFamilyUI

defenderSecurityCenterDisableHealthUI

protected Boolean defenderSecurityCenterDisableHealthUI

defenderSecurityCenterDisableNetworkUI

protected Boolean defenderSecurityCenterDisableNetworkUI

defenderSecurityCenterDisableVirusUI

protected Boolean defenderSecurityCenterDisableVirusUI

defenderSecurityCenterDisableAccountUI

protected Boolean defenderSecurityCenterDisableAccountUI

defenderSecurityCenterDisableClearTpmUI

protected Boolean defenderSecurityCenterDisableClearTpmUI

defenderSecurityCenterDisableHardwareUI

protected Boolean defenderSecurityCenterDisableHardwareUI

defenderSecurityCenterDisableNotificationAreaUI

protected Boolean defenderSecurityCenterDisableNotificationAreaUI

defenderSecurityCenterDisableRansomwareUI

protected Boolean defenderSecurityCenterDisableRansomwareUI

defenderSecurityCenterDisableSecureBootUI

protected Boolean defenderSecurityCenterDisableSecureBootUI

defenderSecurityCenterDisableTroubleshootingUI

protected Boolean defenderSecurityCenterDisableTroubleshootingUI

defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI

protected Boolean defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI

defenderSecurityCenterOrganizationDisplayName

protected String defenderSecurityCenterOrganizationDisplayName

defenderSecurityCenterHelpEmail

protected String defenderSecurityCenterHelpEmail

defenderSecurityCenterHelpPhone

protected String defenderSecurityCenterHelpPhone

defenderSecurityCenterHelpURL

protected String defenderSecurityCenterHelpURL

defenderSecurityCenterNotificationsFromApp

protected DefenderSecurityCenterNotificationsFromAppType defenderSecurityCenterNotificationsFromApp

defenderSecurityCenterITContactDisplay

protected DefenderSecurityCenterITContactDisplayType defenderSecurityCenterITContactDisplay

windowsDefenderTamperProtection

protected WindowsDefenderTamperProtectionOptions windowsDefenderTamperProtection

firewallBlockStatefulFTP

protected Boolean firewallBlockStatefulFTP

firewallIdleTimeoutForSecurityAssociationInSeconds

protected Integer firewallIdleTimeoutForSecurityAssociationInSeconds

firewallPreSharedKeyEncodingMethod

protected FirewallPreSharedKeyEncodingMethodType firewallPreSharedKeyEncodingMethod

firewallIPSecExemptionsAllowNeighborDiscovery

protected Boolean firewallIPSecExemptionsAllowNeighborDiscovery

firewallIPSecExemptionsAllowICMP

protected Boolean firewallIPSecExemptionsAllowICMP

firewallIPSecExemptionsAllowRouterDiscovery

protected Boolean firewallIPSecExemptionsAllowRouterDiscovery

firewallIPSecExemptionsAllowDHCP

protected Boolean firewallIPSecExemptionsAllowDHCP

firewallCertificateRevocationListCheckMethod

protected FirewallCertificateRevocationListCheckMethodType firewallCertificateRevocationListCheckMethod

firewallMergeKeyingModuleSettings

protected Boolean firewallMergeKeyingModuleSettings

firewallPacketQueueingMethod

protected FirewallPacketQueueingMethodType firewallPacketQueueingMethod

firewallProfileDomain

protected WindowsFirewallNetworkProfile firewallProfileDomain

firewallProfilePublic

protected WindowsFirewallNetworkProfile firewallProfilePublic

firewallProfilePrivate

protected WindowsFirewallNetworkProfile firewallProfilePrivate

defenderAdobeReaderLaunchChildProcess

protected DefenderProtectionType defenderAdobeReaderLaunchChildProcess

defenderAttackSurfaceReductionExcludedPaths

protected List<String> defenderAttackSurfaceReductionExcludedPaths

defenderAttackSurfaceReductionExcludedPathsNextLink

protected String defenderAttackSurfaceReductionExcludedPathsNextLink

defenderOfficeAppsOtherProcessInjectionType

protected DefenderAttackSurfaceType defenderOfficeAppsOtherProcessInjectionType

defenderOfficeAppsOtherProcessInjection

protected DefenderProtectionType defenderOfficeAppsOtherProcessInjection

defenderOfficeCommunicationAppsLaunchChildProcess

protected DefenderProtectionType defenderOfficeCommunicationAppsLaunchChildProcess

defenderOfficeAppsExecutableContentCreationOrLaunchType

protected DefenderAttackSurfaceType defenderOfficeAppsExecutableContentCreationOrLaunchType

defenderOfficeAppsExecutableContentCreationOrLaunch

protected DefenderProtectionType defenderOfficeAppsExecutableContentCreationOrLaunch

defenderOfficeAppsLaunchChildProcessType

protected DefenderAttackSurfaceType defenderOfficeAppsLaunchChildProcessType

defenderOfficeAppsLaunchChildProcess

protected DefenderProtectionType defenderOfficeAppsLaunchChildProcess

defenderOfficeMacroCodeAllowWin32ImportsType

protected DefenderAttackSurfaceType defenderOfficeMacroCodeAllowWin32ImportsType

defenderOfficeMacroCodeAllowWin32Imports

protected DefenderProtectionType defenderOfficeMacroCodeAllowWin32Imports

defenderScriptObfuscatedMacroCodeType

protected DefenderAttackSurfaceType defenderScriptObfuscatedMacroCodeType

defenderScriptObfuscatedMacroCode

protected DefenderProtectionType defenderScriptObfuscatedMacroCode

defenderScriptDownloadedPayloadExecutionType

protected DefenderAttackSurfaceType defenderScriptDownloadedPayloadExecutionType

defenderScriptDownloadedPayloadExecution

protected DefenderProtectionType defenderScriptDownloadedPayloadExecution

defenderPreventCredentialStealingType

protected DefenderProtectionType defenderPreventCredentialStealingType

defenderProcessCreationType

protected DefenderAttackSurfaceType defenderProcessCreationType

defenderProcessCreation

protected DefenderProtectionType defenderProcessCreation

defenderUntrustedUSBProcessType

protected DefenderAttackSurfaceType defenderUntrustedUSBProcessType

defenderUntrustedUSBProcess

protected DefenderProtectionType defenderUntrustedUSBProcess

defenderUntrustedExecutableType

protected DefenderAttackSurfaceType defenderUntrustedExecutableType

defenderUntrustedExecutable

protected DefenderProtectionType defenderUntrustedExecutable

defenderEmailContentExecutionType

protected DefenderAttackSurfaceType defenderEmailContentExecutionType

defenderEmailContentExecution

protected DefenderProtectionType defenderEmailContentExecution

defenderAdvancedRansomewareProtectionType

protected DefenderProtectionType defenderAdvancedRansomewareProtectionType

defenderGuardMyFoldersType

protected FolderProtectionType defenderGuardMyFoldersType

defenderGuardedFoldersAllowedAppPaths

protected List<String> defenderGuardedFoldersAllowedAppPaths

defenderGuardedFoldersAllowedAppPathsNextLink

protected String defenderGuardedFoldersAllowedAppPathsNextLink

defenderAdditionalGuardedFolders

protected List<String> defenderAdditionalGuardedFolders

defenderAdditionalGuardedFoldersNextLink

protected String defenderAdditionalGuardedFoldersNextLink

defenderNetworkProtectionType

protected DefenderProtectionType defenderNetworkProtectionType

defenderExploitProtectionXml

protected byte[] defenderExploitProtectionXml

defenderExploitProtectionXmlFileName

protected String defenderExploitProtectionXmlFileName

defenderSecurityCenterBlockExploitProtectionOverride

protected Boolean defenderSecurityCenterBlockExploitProtectionOverride

appLockerApplicationControl

protected AppLockerApplicationControlType appLockerApplicationControl

deviceGuardLocalSystemAuthorityCredentialGuardSettings

protected DeviceGuardLocalSystemAuthorityCredentialGuardType deviceGuardLocalSystemAuthorityCredentialGuardSettings

deviceGuardEnableVirtualizationBasedSecurity

protected Boolean deviceGuardEnableVirtualizationBasedSecurity

deviceGuardEnableSecureBootWithDMA

protected Boolean deviceGuardEnableSecureBootWithDMA

deviceGuardSecureBootWithDMA

protected SecureBootWithDMAType deviceGuardSecureBootWithDMA

deviceGuardLaunchSystemGuard

protected Enablement deviceGuardLaunchSystemGuard

smartScreenEnableInShell

protected Boolean smartScreenEnableInShell

smartScreenBlockOverrideForFiles

protected Boolean smartScreenBlockOverrideForFiles

applicationGuardEnabled

protected Boolean applicationGuardEnabled

applicationGuardEnabledOptions

protected ApplicationGuardEnabledOptions applicationGuardEnabledOptions

applicationGuardBlockFileTransfer

protected ApplicationGuardBlockFileTransferType applicationGuardBlockFileTransfer

applicationGuardBlockNonEnterpriseContent

protected Boolean applicationGuardBlockNonEnterpriseContent

applicationGuardAllowPersistence

protected Boolean applicationGuardAllowPersistence

applicationGuardForceAuditing

protected Boolean applicationGuardForceAuditing

applicationGuardBlockClipboardSharing

protected ApplicationGuardBlockClipboardSharingType applicationGuardBlockClipboardSharing

applicationGuardAllowPrintToPDF

protected Boolean applicationGuardAllowPrintToPDF

applicationGuardAllowPrintToXPS

protected Boolean applicationGuardAllowPrintToXPS

applicationGuardAllowPrintToLocalPrinters

protected Boolean applicationGuardAllowPrintToLocalPrinters

applicationGuardAllowPrintToNetworkPrinters

protected Boolean applicationGuardAllowPrintToNetworkPrinters

applicationGuardAllowVirtualGPU

protected Boolean applicationGuardAllowVirtualGPU

applicationGuardAllowFileSaveOnHost

protected Boolean applicationGuardAllowFileSaveOnHost

bitLockerAllowStandardUserEncryption

protected Boolean bitLockerAllowStandardUserEncryption

bitLockerDisableWarningForOtherDiskEncryption

protected Boolean bitLockerDisableWarningForOtherDiskEncryption

bitLockerEnableStorageCardEncryptionOnMobile

protected Boolean bitLockerEnableStorageCardEncryptionOnMobile

bitLockerEncryptDevice

protected Boolean bitLockerEncryptDevice

bitLockerSystemDrivePolicy

protected BitLockerSystemDrivePolicy bitLockerSystemDrivePolicy

bitLockerFixedDrivePolicy

protected BitLockerFixedDrivePolicy bitLockerFixedDrivePolicy

bitLockerRemovableDrivePolicy

protected BitLockerRemovableDrivePolicy bitLockerRemovableDrivePolicy

bitLockerRecoveryPasswordRotation

protected BitLockerRecoveryPasswordRotationType bitLockerRecoveryPasswordRotation

defenderDisableScanArchiveFiles

protected Boolean defenderDisableScanArchiveFiles

defenderAllowScanArchiveFiles

protected Boolean defenderAllowScanArchiveFiles

defenderDisableBehaviorMonitoring

protected Boolean defenderDisableBehaviorMonitoring

defenderAllowBehaviorMonitoring

protected Boolean defenderAllowBehaviorMonitoring

defenderDisableCloudProtection

protected Boolean defenderDisableCloudProtection

defenderAllowCloudProtection

protected Boolean defenderAllowCloudProtection

defenderEnableScanIncomingMail

protected Boolean defenderEnableScanIncomingMail

defenderEnableScanMappedNetworkDrivesDuringFullScan

protected Boolean defenderEnableScanMappedNetworkDrivesDuringFullScan

defenderDisableScanRemovableDrivesDuringFullScan

protected Boolean defenderDisableScanRemovableDrivesDuringFullScan

defenderAllowScanRemovableDrivesDuringFullScan

protected Boolean defenderAllowScanRemovableDrivesDuringFullScan

defenderDisableScanDownloads

protected Boolean defenderDisableScanDownloads

defenderAllowScanDownloads

protected Boolean defenderAllowScanDownloads

defenderDisableIntrusionPreventionSystem

protected Boolean defenderDisableIntrusionPreventionSystem

defenderAllowIntrusionPreventionSystem

protected Boolean defenderAllowIntrusionPreventionSystem

defenderDisableOnAccessProtection

protected Boolean defenderDisableOnAccessProtection

defenderAllowOnAccessProtection

protected Boolean defenderAllowOnAccessProtection

defenderDisableRealTimeMonitoring

protected Boolean defenderDisableRealTimeMonitoring

defenderAllowRealTimeMonitoring

protected Boolean defenderAllowRealTimeMonitoring

defenderDisableScanNetworkFiles

protected Boolean defenderDisableScanNetworkFiles

defenderAllowScanNetworkFiles

protected Boolean defenderAllowScanNetworkFiles

defenderDisableScanScriptsLoadedInInternetExplorer

protected Boolean defenderDisableScanScriptsLoadedInInternetExplorer

defenderAllowScanScriptsLoadedInInternetExplorer

protected Boolean defenderAllowScanScriptsLoadedInInternetExplorer

defenderBlockEndUserAccess

protected Boolean defenderBlockEndUserAccess

defenderAllowEndUserAccess

protected Boolean defenderAllowEndUserAccess

defenderScanMaxCpuPercentage

protected Integer defenderScanMaxCpuPercentage

defenderCheckForSignaturesBeforeRunningScan

protected Boolean defenderCheckForSignaturesBeforeRunningScan

defenderCloudBlockLevel

protected DefenderCloudBlockLevelType defenderCloudBlockLevel

defenderCloudExtendedTimeoutInSeconds

protected Integer defenderCloudExtendedTimeoutInSeconds

defenderDaysBeforeDeletingQuarantinedMalware

protected Integer defenderDaysBeforeDeletingQuarantinedMalware

defenderDisableCatchupFullScan

protected Boolean defenderDisableCatchupFullScan

defenderDisableCatchupQuickScan

protected Boolean defenderDisableCatchupQuickScan

defenderEnableLowCpuPriority

protected Boolean defenderEnableLowCpuPriority

defenderFileExtensionsToExclude

protected List<String> defenderFileExtensionsToExclude

defenderFileExtensionsToExcludeNextLink

protected String defenderFileExtensionsToExcludeNextLink

defenderFilesAndFoldersToExclude

protected List<String> defenderFilesAndFoldersToExclude

defenderFilesAndFoldersToExcludeNextLink

protected String defenderFilesAndFoldersToExcludeNextLink

defenderProcessesToExclude

protected List<String> defenderProcessesToExclude

defenderProcessesToExcludeNextLink

protected String defenderProcessesToExcludeNextLink

defenderPotentiallyUnwantedAppAction

protected DefenderProtectionType defenderPotentiallyUnwantedAppAction

defenderScanDirection

protected DefenderRealtimeScanDirection defenderScanDirection

defenderScanType

protected DefenderScanType defenderScanType

defenderScheduledQuickScanTime

protected LocalTime defenderScheduledQuickScanTime

defenderScheduledScanDay

protected WeeklySchedule defenderScheduledScanDay

defenderScheduledScanTime

protected LocalTime defenderScheduledScanTime

defenderSignatureUpdateIntervalInHours

protected Integer defenderSignatureUpdateIntervalInHours

defenderSubmitSamplesConsentType

protected DefenderSubmitSamplesConsentType defenderSubmitSamplesConsentType

defenderDetectedMalwareActions

protected DefenderDetectedMalwareActions defenderDetectedMalwareActions

Constructor Detail

Windows10EndpointProtectionConfiguration

protected Windows10EndpointProtectionConfiguration()

Method Detail

odataTypeName

public String odataTypeName()

Specified by:

odataTypeName in interface com.github.davidmoten.odata.client.ODataType

Overrides:

odataTypeName in class DeviceConfiguration

builderWindows10EndpointProtectionConfiguration

public static Windows10EndpointProtectionConfiguration.Builder builderWindows10EndpointProtectionConfiguration()

Returns a builder which is used to create a new instance of this class (given that this class is immutable).

Returns:

a new Builder for this class

getChangedFields

public com.github.davidmoten.odata.client.internal.ChangedFields getChangedFields()

Specified by:

getChangedFields in interface com.github.davidmoten.odata.client.ODataEntityType

Overrides:

getChangedFields in class DeviceConfiguration

postInject

public void postInject(boolean addKeysToContextPath)

Specified by:

postInject in interface com.github.davidmoten.odata.client.ODataType

Overrides:

postInject in class DeviceConfiguration

getDmaGuardDeviceEnumerationPolicy

public Optional<DmaGuardDeviceEnumerationPolicyType> getDmaGuardDeviceEnumerationPolicy()

“This policy is intended to provide additional security against external DMA capable devices. It allows for more control over the enumeration of external DMA capable devices incompatible with DMA Remapping/device memory isolation and sandboxing. This policy only takes effect when Kernel DMA Protection is supported and enabled by the system firmware. Kernel DMA Protection is a platform feature that cannot be controlled via policy or by end user. It has to be supported by the system at the time of manufacturing. To check if the system supports Kernel DMA Protection, please check the Kernel DMA Protection field in the Summary page of MSINFO32.exe.”

Returns:

property dmaGuardDeviceEnumerationPolicy

withDmaGuardDeviceEnumerationPolicy

public Windows10EndpointProtectionConfiguration withDmaGuardDeviceEnumerationPolicy(DmaGuardDeviceEnumerationPolicyType dmaGuardDeviceEnumerationPolicy)

Returns an immutable copy of this with just the dmaGuardDeviceEnumerationPolicy field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This policy is intended to provide additional security against external DMA capable devices. It allows for more control over the enumeration of external DMA capable devices incompatible with DMA Remapping/device memory isolation and sandboxing. This policy only takes effect when Kernel DMA Protection is supported and enabled by the system firmware. Kernel DMA Protection is a platform feature that cannot be controlled via policy or by end user. It has to be supported by the system at the time of manufacturing. To check if the system supports Kernel DMA Protection, please check the Kernel DMA Protection field in the Summary page of MSINFO32.exe.”

Parameters:

dmaGuardDeviceEnumerationPolicy - new value of dmaGuardDeviceEnumerationPolicy field (as defined in service metadata)

Returns:

immutable copy of this with just the dmaGuardDeviceEnumerationPolicy field changed

getFirewallRules

public com.github.davidmoten.odata.client.CollectionPage<WindowsFirewallRule> getFirewallRules()

“Configures the firewall rule settings. This collection can contain a maximum of 150 elements.”

Returns:

property firewallRules

getUserRightsAccessCredentialManagerAsTrustedCaller

public Optional<DeviceManagementUserRightsSetting> getUserRightsAccessCredentialManagerAsTrustedCaller()

“This user right is used by Credential Manager during Backup/Restore. Users' saved credentials might be compromised if this privilege is given to other entities. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsAccessCredentialManagerAsTrustedCaller

withUserRightsAccessCredentialManagerAsTrustedCaller

public Windows10EndpointProtectionConfiguration withUserRightsAccessCredentialManagerAsTrustedCaller(DeviceManagementUserRightsSetting userRightsAccessCredentialManagerAsTrustedCaller)

Returns an immutable copy of this with just the userRightsAccessCredentialManagerAsTrustedCaller field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right is used by Credential Manager during Backup/Restore. Users' saved credentials might be compromised if this privilege is given to other entities. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsAccessCredentialManagerAsTrustedCaller - new value of userRightsAccessCredentialManagerAsTrustedCaller field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsAccessCredentialManagerAsTrustedCaller field changed

getUserRightsAllowAccessFromNetwork

public Optional<DeviceManagementUserRightsSetting> getUserRightsAllowAccessFromNetwork()

“This user right determines which users and groups are allowed to connect to the computer over the network. State Allowed is supported.”

Returns:

property userRightsAllowAccessFromNetwork

withUserRightsAllowAccessFromNetwork

public Windows10EndpointProtectionConfiguration withUserRightsAllowAccessFromNetwork(DeviceManagementUserRightsSetting userRightsAllowAccessFromNetwork)

Returns an immutable copy of this with just the userRightsAllowAccessFromNetwork field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users and groups are allowed to connect to the computer over the network. State Allowed is supported.”

Parameters:

userRightsAllowAccessFromNetwork - new value of userRightsAllowAccessFromNetwork field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsAllowAccessFromNetwork field changed

getUserRightsBlockAccessFromNetwork

public Optional<DeviceManagementUserRightsSetting> getUserRightsBlockAccessFromNetwork()

“This user right determines which users and groups are block from connecting to the computer over the network. State Block is supported.”

Returns:

property userRightsBlockAccessFromNetwork

withUserRightsBlockAccessFromNetwork

public Windows10EndpointProtectionConfiguration withUserRightsBlockAccessFromNetwork(DeviceManagementUserRightsSetting userRightsBlockAccessFromNetwork)

Returns an immutable copy of this with just the userRightsBlockAccessFromNetwork field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users and groups are block from connecting to the computer over the network. State Block is supported.”

Parameters:

userRightsBlockAccessFromNetwork - new value of userRightsBlockAccessFromNetwork field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsBlockAccessFromNetwork field changed

getUserRightsActAsPartOfTheOperatingSystem

public Optional<DeviceManagementUserRightsSetting> getUserRightsActAsPartOfTheOperatingSystem()

“This user right allows a process to impersonate any user without authentication. The process can therefore gain access to the same local resources as that user. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsActAsPartOfTheOperatingSystem

withUserRightsActAsPartOfTheOperatingSystem

public Windows10EndpointProtectionConfiguration withUserRightsActAsPartOfTheOperatingSystem(DeviceManagementUserRightsSetting userRightsActAsPartOfTheOperatingSystem)

Returns an immutable copy of this with just the userRightsActAsPartOfTheOperatingSystem field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right allows a process to impersonate any user without authentication. The process can therefore gain access to the same local resources as that user. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsActAsPartOfTheOperatingSystem - new value of userRightsActAsPartOfTheOperatingSystem field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsActAsPartOfTheOperatingSystem field changed

getUserRightsLocalLogOn

public Optional<DeviceManagementUserRightsSetting> getUserRightsLocalLogOn()

“This user right determines which users can log on to the computer. States NotConfigured, Allowed are supported”

Returns:

property userRightsLocalLogOn

withUserRightsLocalLogOn

public Windows10EndpointProtectionConfiguration withUserRightsLocalLogOn(DeviceManagementUserRightsSetting userRightsLocalLogOn)

Returns an immutable copy of this with just the userRightsLocalLogOn field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can log on to the computer. States NotConfigured, Allowed are supported”

Parameters:

userRightsLocalLogOn - new value of userRightsLocalLogOn field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsLocalLogOn field changed

getUserRightsDenyLocalLogOn

public Optional<DeviceManagementUserRightsSetting> getUserRightsDenyLocalLogOn()

“This user right determines which users cannot log on to the computer. States NotConfigured, Blocked are supported”

Returns:

property userRightsDenyLocalLogOn

withUserRightsDenyLocalLogOn

public Windows10EndpointProtectionConfiguration withUserRightsDenyLocalLogOn(DeviceManagementUserRightsSetting userRightsDenyLocalLogOn)

Returns an immutable copy of this with just the userRightsDenyLocalLogOn field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users cannot log on to the computer. States NotConfigured, Blocked are supported”

Parameters:

userRightsDenyLocalLogOn - new value of userRightsDenyLocalLogOn field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsDenyLocalLogOn field changed

getUserRightsBackupData

public Optional<DeviceManagementUserRightsSetting> getUserRightsBackupData()

“This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when backing up files and directories. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsBackupData

withUserRightsBackupData

public Windows10EndpointProtectionConfiguration withUserRightsBackupData(DeviceManagementUserRightsSetting userRightsBackupData)

Returns an immutable copy of this with just the userRightsBackupData field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when backing up files and directories. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsBackupData - new value of userRightsBackupData field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsBackupData field changed

getUserRightsChangeSystemTime

public Optional<DeviceManagementUserRightsSetting> getUserRightsChangeSystemTime()

“This user right determines which users and groups can change the time and date on the internal clock of the computer. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsChangeSystemTime

withUserRightsChangeSystemTime

public Windows10EndpointProtectionConfiguration withUserRightsChangeSystemTime(DeviceManagementUserRightsSetting userRightsChangeSystemTime)

Returns an immutable copy of this with just the userRightsChangeSystemTime field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users and groups can change the time and date on the internal clock of the computer. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsChangeSystemTime - new value of userRightsChangeSystemTime field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsChangeSystemTime field changed

getUserRightsCreateGlobalObjects

public Optional<DeviceManagementUserRightsSetting> getUserRightsCreateGlobalObjects()

“This security setting determines whether users can create global objects that are available to all sessions. Users who can create global objects could affect processes that run under other users' sessions, which could lead to application failure or data corruption. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsCreateGlobalObjects

withUserRightsCreateGlobalObjects

public Windows10EndpointProtectionConfiguration withUserRightsCreateGlobalObjects(DeviceManagementUserRightsSetting userRightsCreateGlobalObjects)

Returns an immutable copy of this with just the userRightsCreateGlobalObjects field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether users can create global objects that are available to all sessions. Users who can create global objects could affect processes that run under other users' sessions, which could lead to application failure or data corruption. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsCreateGlobalObjects - new value of userRightsCreateGlobalObjects field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsCreateGlobalObjects field changed

getUserRightsCreatePageFile

public Optional<DeviceManagementUserRightsSetting> getUserRightsCreatePageFile()

“This user right determines which users and groups can call an internal API to create and change the size of a page file. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsCreatePageFile

withUserRightsCreatePageFile

public Windows10EndpointProtectionConfiguration withUserRightsCreatePageFile(DeviceManagementUserRightsSetting userRightsCreatePageFile)

Returns an immutable copy of this with just the userRightsCreatePageFile field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users and groups can call an internal API to create and change the size of a page file. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsCreatePageFile - new value of userRightsCreatePageFile field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsCreatePageFile field changed

getUserRightsCreatePermanentSharedObjects

public Optional<DeviceManagementUserRightsSetting> getUserRightsCreatePermanentSharedObjects()

“This user right determines which accounts can be used by processes to create a directory object using the object manager. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsCreatePermanentSharedObjects

withUserRightsCreatePermanentSharedObjects

public Windows10EndpointProtectionConfiguration withUserRightsCreatePermanentSharedObjects(DeviceManagementUserRightsSetting userRightsCreatePermanentSharedObjects)

Returns an immutable copy of this with just the userRightsCreatePermanentSharedObjects field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which accounts can be used by processes to create a directory object using the object manager. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsCreatePermanentSharedObjects - new value of userRightsCreatePermanentSharedObjects field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsCreatePermanentSharedObjects field changed

getUserRightsCreateSymbolicLinks

public Optional<DeviceManagementUserRightsSetting> getUserRightsCreateSymbolicLinks()

“This user right determines if the user can create a symbolic link from the computer to which they are logged on. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsCreateSymbolicLinks

withUserRightsCreateSymbolicLinks

public Windows10EndpointProtectionConfiguration withUserRightsCreateSymbolicLinks(DeviceManagementUserRightsSetting userRightsCreateSymbolicLinks)

Returns an immutable copy of this with just the userRightsCreateSymbolicLinks field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines if the user can create a symbolic link from the computer to which they are logged on. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsCreateSymbolicLinks - new value of userRightsCreateSymbolicLinks field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsCreateSymbolicLinks field changed

getUserRightsCreateToken

public Optional<DeviceManagementUserRightsSetting> getUserRightsCreateToken()

“This user right determines which users/groups can be used by processes to create a token that can then be used to get access to any local resources when the process uses an internal API to create an access token. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsCreateToken

withUserRightsCreateToken

public Windows10EndpointProtectionConfiguration withUserRightsCreateToken(DeviceManagementUserRightsSetting userRightsCreateToken)

Returns an immutable copy of this with just the userRightsCreateToken field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users/groups can be used by processes to create a token that can then be used to get access to any local resources when the process uses an internal API to create an access token. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsCreateToken - new value of userRightsCreateToken field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsCreateToken field changed

getUserRightsDebugPrograms

public Optional<DeviceManagementUserRightsSetting> getUserRightsDebugPrograms()

“This user right determines which users can attach a debugger to any process or to the kernel. Only states NotConfigured and Allowed are supported”

Returns:

property userRightsDebugPrograms

withUserRightsDebugPrograms

public Windows10EndpointProtectionConfiguration withUserRightsDebugPrograms(DeviceManagementUserRightsSetting userRightsDebugPrograms)

Returns an immutable copy of this with just the userRightsDebugPrograms field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can attach a debugger to any process or to the kernel. Only states NotConfigured and Allowed are supported”

Parameters:

userRightsDebugPrograms - new value of userRightsDebugPrograms field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsDebugPrograms field changed

getUserRightsRemoteDesktopServicesLogOn

public Optional<DeviceManagementUserRightsSetting> getUserRightsRemoteDesktopServicesLogOn()

“This user right determines which users and groups are prohibited from logging on as a Remote Desktop Services client. Only states NotConfigured and Blocked are supported”

Returns:

property userRightsRemoteDesktopServicesLogOn

withUserRightsRemoteDesktopServicesLogOn

public Windows10EndpointProtectionConfiguration withUserRightsRemoteDesktopServicesLogOn(DeviceManagementUserRightsSetting userRightsRemoteDesktopServicesLogOn)

Returns an immutable copy of this with just the userRightsRemoteDesktopServicesLogOn field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users and groups are prohibited from logging on as a Remote Desktop Services client. Only states NotConfigured and Blocked are supported”

Parameters:

userRightsRemoteDesktopServicesLogOn - new value of userRightsRemoteDesktopServicesLogOn field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsRemoteDesktopServicesLogOn field changed

getUserRightsDelegation

public Optional<DeviceManagementUserRightsSetting> getUserRightsDelegation()

“This user right determines which users can set the Trusted for Delegation setting on a user or computer object. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsDelegation

withUserRightsDelegation

public Windows10EndpointProtectionConfiguration withUserRightsDelegation(DeviceManagementUserRightsSetting userRightsDelegation)

Returns an immutable copy of this with just the userRightsDelegation field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can set the Trusted for Delegation setting on a user or computer object. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsDelegation - new value of userRightsDelegation field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsDelegation field changed

getUserRightsGenerateSecurityAudits

public Optional<DeviceManagementUserRightsSetting> getUserRightsGenerateSecurityAudits()

“This user right determines which accounts can be used by a process to add entries to the security log. The security log is used to trace unauthorized system access. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsGenerateSecurityAudits

withUserRightsGenerateSecurityAudits

public Windows10EndpointProtectionConfiguration withUserRightsGenerateSecurityAudits(DeviceManagementUserRightsSetting userRightsGenerateSecurityAudits)

Returns an immutable copy of this with just the userRightsGenerateSecurityAudits field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which accounts can be used by a process to add entries to the security log. The security log is used to trace unauthorized system access. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsGenerateSecurityAudits - new value of userRightsGenerateSecurityAudits field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsGenerateSecurityAudits field changed

getUserRightsImpersonateClient

public Optional<DeviceManagementUserRightsSetting> getUserRightsImpersonateClient()

“Assigning this user right to a user allows programs running on behalf of that user to impersonate a client. Requiring this user right for this kind of impersonation prevents an unauthorized user from convincing a client to connect to a service that they have created and then impersonating that client, which can elevate the unauthorized user's permissions to administrative or system levels. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsImpersonateClient

withUserRightsImpersonateClient

public Windows10EndpointProtectionConfiguration withUserRightsImpersonateClient(DeviceManagementUserRightsSetting userRightsImpersonateClient)

Returns an immutable copy of this with just the userRightsImpersonateClient field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Assigning this user right to a user allows programs running on behalf of that user to impersonate a client. Requiring this user right for this kind of impersonation prevents an unauthorized user from convincing a client to connect to a service that they have created and then impersonating that client, which can elevate the unauthorized user's permissions to administrative or system levels. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsImpersonateClient - new value of userRightsImpersonateClient field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsImpersonateClient field changed

getUserRightsIncreaseSchedulingPriority

public Optional<DeviceManagementUserRightsSetting> getUserRightsIncreaseSchedulingPriority()

“This user right determines which accounts can use a process with Write Property access to another process to increase the execution priority assigned to the other process. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsIncreaseSchedulingPriority

withUserRightsIncreaseSchedulingPriority

public Windows10EndpointProtectionConfiguration withUserRightsIncreaseSchedulingPriority(DeviceManagementUserRightsSetting userRightsIncreaseSchedulingPriority)

Returns an immutable copy of this with just the userRightsIncreaseSchedulingPriority field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which accounts can use a process with Write Property access to another process to increase the execution priority assigned to the other process. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsIncreaseSchedulingPriority - new value of userRightsIncreaseSchedulingPriority field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsIncreaseSchedulingPriority field changed

getUserRightsLoadUnloadDrivers

public Optional<DeviceManagementUserRightsSetting> getUserRightsLoadUnloadDrivers()

“This user right determines which users can dynamically load and unload device drivers or other code in to kernel mode. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsLoadUnloadDrivers

withUserRightsLoadUnloadDrivers

public Windows10EndpointProtectionConfiguration withUserRightsLoadUnloadDrivers(DeviceManagementUserRightsSetting userRightsLoadUnloadDrivers)

Returns an immutable copy of this with just the userRightsLoadUnloadDrivers field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can dynamically load and unload device drivers or other code in to kernel mode. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsLoadUnloadDrivers - new value of userRightsLoadUnloadDrivers field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsLoadUnloadDrivers field changed

getUserRightsLockMemory

public Optional<DeviceManagementUserRightsSetting> getUserRightsLockMemory()

“This user right determines which accounts can use a process to keep data in physical memory, which prevents the system from paging the data to virtual memory on disk. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsLockMemory

withUserRightsLockMemory

public Windows10EndpointProtectionConfiguration withUserRightsLockMemory(DeviceManagementUserRightsSetting userRightsLockMemory)

Returns an immutable copy of this with just the userRightsLockMemory field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which accounts can use a process to keep data in physical memory, which prevents the system from paging the data to virtual memory on disk. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsLockMemory - new value of userRightsLockMemory field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsLockMemory field changed

getUserRightsManageAuditingAndSecurityLogs

public Optional<DeviceManagementUserRightsSetting> getUserRightsManageAuditingAndSecurityLogs()

“This user right determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsManageAuditingAndSecurityLogs

withUserRightsManageAuditingAndSecurityLogs

public Windows10EndpointProtectionConfiguration withUserRightsManageAuditingAndSecurityLogs(DeviceManagementUserRightsSetting userRightsManageAuditingAndSecurityLogs)

Returns an immutable copy of this with just the userRightsManageAuditingAndSecurityLogs field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsManageAuditingAndSecurityLogs - new value of userRightsManageAuditingAndSecurityLogs field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsManageAuditingAndSecurityLogs field changed

getUserRightsManageVolumes

public Optional<DeviceManagementUserRightsSetting> getUserRightsManageVolumes()

“This user right determines which users and groups can run maintenance tasks on a volume, such as remote defragmentation. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsManageVolumes

withUserRightsManageVolumes

public Windows10EndpointProtectionConfiguration withUserRightsManageVolumes(DeviceManagementUserRightsSetting userRightsManageVolumes)

Returns an immutable copy of this with just the userRightsManageVolumes field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users and groups can run maintenance tasks on a volume, such as remote defragmentation. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsManageVolumes - new value of userRightsManageVolumes field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsManageVolumes field changed

getUserRightsModifyFirmwareEnvironment

public Optional<DeviceManagementUserRightsSetting> getUserRightsModifyFirmwareEnvironment()

“This user right determines who can modify firmware environment values. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsModifyFirmwareEnvironment

withUserRightsModifyFirmwareEnvironment

public Windows10EndpointProtectionConfiguration withUserRightsModifyFirmwareEnvironment(DeviceManagementUserRightsSetting userRightsModifyFirmwareEnvironment)

Returns an immutable copy of this with just the userRightsModifyFirmwareEnvironment field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines who can modify firmware environment values. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsModifyFirmwareEnvironment - new value of userRightsModifyFirmwareEnvironment field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsModifyFirmwareEnvironment field changed

getUserRightsModifyObjectLabels

public Optional<DeviceManagementUserRightsSetting> getUserRightsModifyObjectLabels()

“This user right determines which user accounts can modify the integrity label of objects, such as files, registry keys, or processes owned by other users. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsModifyObjectLabels

withUserRightsModifyObjectLabels

public Windows10EndpointProtectionConfiguration withUserRightsModifyObjectLabels(DeviceManagementUserRightsSetting userRightsModifyObjectLabels)

Returns an immutable copy of this with just the userRightsModifyObjectLabels field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which user accounts can modify the integrity label of objects, such as files, registry keys, or processes owned by other users. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsModifyObjectLabels - new value of userRightsModifyObjectLabels field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsModifyObjectLabels field changed

getUserRightsProfileSingleProcess

public Optional<DeviceManagementUserRightsSetting> getUserRightsProfileSingleProcess()

“This user right determines which users can use performance monitoring tools to monitor the performance of system processes. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsProfileSingleProcess

withUserRightsProfileSingleProcess

public Windows10EndpointProtectionConfiguration withUserRightsProfileSingleProcess(DeviceManagementUserRightsSetting userRightsProfileSingleProcess)

Returns an immutable copy of this with just the userRightsProfileSingleProcess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can use performance monitoring tools to monitor the performance of system processes. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsProfileSingleProcess - new value of userRightsProfileSingleProcess field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsProfileSingleProcess field changed

getUserRightsRemoteShutdown

public Optional<DeviceManagementUserRightsSetting> getUserRightsRemoteShutdown()

“This user right determines which users are allowed to shut down a computer from a remote location on the network. Misuse of this user right can result in a denial of service. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsRemoteShutdown

withUserRightsRemoteShutdown

public Windows10EndpointProtectionConfiguration withUserRightsRemoteShutdown(DeviceManagementUserRightsSetting userRightsRemoteShutdown)

Returns an immutable copy of this with just the userRightsRemoteShutdown field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users are allowed to shut down a computer from a remote location on the network. Misuse of this user right can result in a denial of service. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsRemoteShutdown - new value of userRightsRemoteShutdown field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsRemoteShutdown field changed

getUserRightsRestoreData

public Optional<DeviceManagementUserRightsSetting> getUserRightsRestoreData()

“This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when restoring backed up files and directories, and determines which users can set any valid security principal as the owner of an object. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsRestoreData

withUserRightsRestoreData

public Windows10EndpointProtectionConfiguration withUserRightsRestoreData(DeviceManagementUserRightsSetting userRightsRestoreData)

Returns an immutable copy of this with just the userRightsRestoreData field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when restoring backed up files and directories, and determines which users can set any valid security principal as the owner of an object. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsRestoreData - new value of userRightsRestoreData field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsRestoreData field changed

getUserRightsTakeOwnership

public Optional<DeviceManagementUserRightsSetting> getUserRightsTakeOwnership()

“This user right determines which users can take ownership of any securable object in the system, including Active Directory objects, files and folders, printers, registry keys, processes, and threads. Only states NotConfigured and Allowed are supported.”

Returns:

property userRightsTakeOwnership

withUserRightsTakeOwnership

public Windows10EndpointProtectionConfiguration withUserRightsTakeOwnership(DeviceManagementUserRightsSetting userRightsTakeOwnership)

Returns an immutable copy of this with just the userRightsTakeOwnership field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This user right determines which users can take ownership of any securable object in the system, including Active Directory objects, files and folders, printers, registry keys, processes, and threads. Only states NotConfigured and Allowed are supported.”

Parameters:

userRightsTakeOwnership - new value of userRightsTakeOwnership field (as defined in service metadata)

Returns:

immutable copy of this with just the userRightsTakeOwnership field changed

getXboxServicesEnableXboxGameSaveTask

public Optional<Boolean> getXboxServicesEnableXboxGameSaveTask()

“This setting determines whether xbox game save is enabled (1) or disabled (0).”

Returns:

property xboxServicesEnableXboxGameSaveTask

withXboxServicesEnableXboxGameSaveTask

public Windows10EndpointProtectionConfiguration withXboxServicesEnableXboxGameSaveTask(Boolean xboxServicesEnableXboxGameSaveTask)

Returns an immutable copy of this with just the xboxServicesEnableXboxGameSaveTask field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This setting determines whether xbox game save is enabled (1) or disabled (0).”

Parameters:

xboxServicesEnableXboxGameSaveTask - new value of xboxServicesEnableXboxGameSaveTask field (as defined in service metadata)

Returns:

immutable copy of this with just the xboxServicesEnableXboxGameSaveTask field changed

getXboxServicesAccessoryManagementServiceStartupMode

public Optional<ServiceStartType> getXboxServicesAccessoryManagementServiceStartupMode()

“This setting determines whether the Accessory management service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”

Returns:

property xboxServicesAccessoryManagementServiceStartupMode

withXboxServicesAccessoryManagementServiceStartupMode

public Windows10EndpointProtectionConfiguration withXboxServicesAccessoryManagementServiceStartupMode(ServiceStartType xboxServicesAccessoryManagementServiceStartupMode)

Returns an immutable copy of this with just the xboxServicesAccessoryManagementServiceStartupMode field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This setting determines whether the Accessory management service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”

Parameters:

xboxServicesAccessoryManagementServiceStartupMode - new value of xboxServicesAccessoryManagementServiceStartupMode field (as defined in service metadata)

Returns:

immutable copy of this with just the xboxServicesAccessoryManagementServiceStartupMode field changed

getXboxServicesLiveAuthManagerServiceStartupMode

public Optional<ServiceStartType> getXboxServicesLiveAuthManagerServiceStartupMode()

“This setting determines whether Live Auth Manager service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”

Returns:

property xboxServicesLiveAuthManagerServiceStartupMode

withXboxServicesLiveAuthManagerServiceStartupMode

public Windows10EndpointProtectionConfiguration withXboxServicesLiveAuthManagerServiceStartupMode(ServiceStartType xboxServicesLiveAuthManagerServiceStartupMode)

Returns an immutable copy of this with just the xboxServicesLiveAuthManagerServiceStartupMode field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This setting determines whether Live Auth Manager service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”

Parameters:

xboxServicesLiveAuthManagerServiceStartupMode - new value of xboxServicesLiveAuthManagerServiceStartupMode field (as defined in service metadata)

Returns:

immutable copy of this with just the xboxServicesLiveAuthManagerServiceStartupMode field changed

getXboxServicesLiveGameSaveServiceStartupMode

public Optional<ServiceStartType> getXboxServicesLiveGameSaveServiceStartupMode()

“This setting determines whether Live Game save service's start type is Automatic (2), Manual(3), Disabled(4). Default: Manual.”

Returns:

property xboxServicesLiveGameSaveServiceStartupMode

withXboxServicesLiveGameSaveServiceStartupMode

public Windows10EndpointProtectionConfiguration withXboxServicesLiveGameSaveServiceStartupMode(ServiceStartType xboxServicesLiveGameSaveServiceStartupMode)

Returns an immutable copy of this with just the xboxServicesLiveGameSaveServiceStartupMode field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This setting determines whether Live Game save service's start type is Automatic (2), Manual(3), Disabled(4). Default: Manual.”

Parameters:

xboxServicesLiveGameSaveServiceStartupMode - new value of xboxServicesLiveGameSaveServiceStartupMode field (as defined in service metadata)

Returns:

immutable copy of this with just the xboxServicesLiveGameSaveServiceStartupMode field changed

getXboxServicesLiveNetworkingServiceStartupMode

public Optional<ServiceStartType> getXboxServicesLiveNetworkingServiceStartupMode()

“This setting determines whether Networking service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”

Returns:

property xboxServicesLiveNetworkingServiceStartupMode

withXboxServicesLiveNetworkingServiceStartupMode

public Windows10EndpointProtectionConfiguration withXboxServicesLiveNetworkingServiceStartupMode(ServiceStartType xboxServicesLiveNetworkingServiceStartupMode)

Returns an immutable copy of this with just the xboxServicesLiveNetworkingServiceStartupMode field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This setting determines whether Networking service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”

Parameters:

xboxServicesLiveNetworkingServiceStartupMode - new value of xboxServicesLiveNetworkingServiceStartupMode field (as defined in service metadata)

Returns:

immutable copy of this with just the xboxServicesLiveNetworkingServiceStartupMode field changed

getLocalSecurityOptionsBlockMicrosoftAccounts

public Optional<Boolean> getLocalSecurityOptionsBlockMicrosoftAccounts()

“Prevent users from adding new Microsoft accounts to this computer.”

Returns:

property localSecurityOptionsBlockMicrosoftAccounts

withLocalSecurityOptionsBlockMicrosoftAccounts

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsBlockMicrosoftAccounts(Boolean localSecurityOptionsBlockMicrosoftAccounts)

Returns an immutable copy of this with just the localSecurityOptionsBlockMicrosoftAccounts field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Prevent users from adding new Microsoft accounts to this computer.”

Parameters:

localSecurityOptionsBlockMicrosoftAccounts - new value of localSecurityOptionsBlockMicrosoftAccounts field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsBlockMicrosoftAccounts field changed

getLocalSecurityOptionsBlockRemoteLogonWithBlankPassword

public Optional<Boolean> getLocalSecurityOptionsBlockRemoteLogonWithBlankPassword()

“Enable Local accounts that are not password protected to log on from locations other than the physical device.Default is enabled”

Returns:

property localSecurityOptionsBlockRemoteLogonWithBlankPassword

withLocalSecurityOptionsBlockRemoteLogonWithBlankPassword

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsBlockRemoteLogonWithBlankPassword(Boolean localSecurityOptionsBlockRemoteLogonWithBlankPassword)

Returns an immutable copy of this with just the localSecurityOptionsBlockRemoteLogonWithBlankPassword field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enable Local accounts that are not password protected to log on from locations other than the physical device.Default is enabled”

Parameters:

localSecurityOptionsBlockRemoteLogonWithBlankPassword - new value of localSecurityOptionsBlockRemoteLogonWithBlankPassword field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsBlockRemoteLogonWithBlankPassword field changed

getLocalSecurityOptionsDisableAdministratorAccount

public Optional<Boolean> getLocalSecurityOptionsDisableAdministratorAccount()

“Determines whether the Local Administrator account is enabled or disabled.”

Returns:

property localSecurityOptionsDisableAdministratorAccount

withLocalSecurityOptionsDisableAdministratorAccount

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDisableAdministratorAccount(Boolean localSecurityOptionsDisableAdministratorAccount)

Returns an immutable copy of this with just the localSecurityOptionsDisableAdministratorAccount field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Determines whether the Local Administrator account is enabled or disabled.”

Parameters:

localSecurityOptionsDisableAdministratorAccount - new value of localSecurityOptionsDisableAdministratorAccount field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDisableAdministratorAccount field changed

getLocalSecurityOptionsAdministratorAccountName

public Optional<String> getLocalSecurityOptionsAdministratorAccountName()

“Define a different account name to be associated with the security identifier ( SID) for the account “Administrator”.”

Returns:

property localSecurityOptionsAdministratorAccountName

withLocalSecurityOptionsAdministratorAccountName

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAdministratorAccountName(String localSecurityOptionsAdministratorAccountName)

Returns an immutable copy of this with just the localSecurityOptionsAdministratorAccountName field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define a different account name to be associated with the security identifier ( SID) for the account “Administrator”.”

Parameters:

localSecurityOptionsAdministratorAccountName - new value of localSecurityOptionsAdministratorAccountName field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAdministratorAccountName field changed

getLocalSecurityOptionsDisableGuestAccount

public Optional<Boolean> getLocalSecurityOptionsDisableGuestAccount()

“Determines if the Guest account is enabled or disabled.”

Returns:

property localSecurityOptionsDisableGuestAccount

withLocalSecurityOptionsDisableGuestAccount

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDisableGuestAccount(Boolean localSecurityOptionsDisableGuestAccount)

Returns an immutable copy of this with just the localSecurityOptionsDisableGuestAccount field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Determines if the Guest account is enabled or disabled.”

Parameters:

localSecurityOptionsDisableGuestAccount - new value of localSecurityOptionsDisableGuestAccount field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDisableGuestAccount field changed

getLocalSecurityOptionsGuestAccountName

public Optional<String> getLocalSecurityOptionsGuestAccountName()

“Define a different account name to be associated with the security identifier ( SID) for the account “Guest”.”

Returns:

property localSecurityOptionsGuestAccountName

withLocalSecurityOptionsGuestAccountName

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsGuestAccountName(String localSecurityOptionsGuestAccountName)

Returns an immutable copy of this with just the localSecurityOptionsGuestAccountName field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define a different account name to be associated with the security identifier ( SID) for the account “Guest”.”

Parameters:

localSecurityOptionsGuestAccountName - new value of localSecurityOptionsGuestAccountName field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsGuestAccountName field changed

getLocalSecurityOptionsAllowUndockWithoutHavingToLogon

public Optional<Boolean> getLocalSecurityOptionsAllowUndockWithoutHavingToLogon()

“Prevent a portable computer from being undocked without having to log in.”

Returns:

property localSecurityOptionsAllowUndockWithoutHavingToLogon

withLocalSecurityOptionsAllowUndockWithoutHavingToLogon

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowUndockWithoutHavingToLogon(Boolean localSecurityOptionsAllowUndockWithoutHavingToLogon)

Returns an immutable copy of this with just the localSecurityOptionsAllowUndockWithoutHavingToLogon field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Prevent a portable computer from being undocked without having to log in.”

Parameters:

localSecurityOptionsAllowUndockWithoutHavingToLogon - new value of localSecurityOptionsAllowUndockWithoutHavingToLogon field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowUndockWithoutHavingToLogon field changed

getLocalSecurityOptionsBlockUsersInstallingPrinterDrivers

public Optional<Boolean> getLocalSecurityOptionsBlockUsersInstallingPrinterDrivers()

“Restrict installing printer drivers as part of connecting to a shared printer to admins only.”

Returns:

property localSecurityOptionsBlockUsersInstallingPrinterDrivers

withLocalSecurityOptionsBlockUsersInstallingPrinterDrivers

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsBlockUsersInstallingPrinterDrivers(Boolean localSecurityOptionsBlockUsersInstallingPrinterDrivers)

Returns an immutable copy of this with just the localSecurityOptionsBlockUsersInstallingPrinterDrivers field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Restrict installing printer drivers as part of connecting to a shared printer to admins only.”

Parameters:

localSecurityOptionsBlockUsersInstallingPrinterDrivers - new value of localSecurityOptionsBlockUsersInstallingPrinterDrivers field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsBlockUsersInstallingPrinterDrivers field changed

getLocalSecurityOptionsBlockRemoteOpticalDriveAccess

public Optional<Boolean> getLocalSecurityOptionsBlockRemoteOpticalDriveAccess()

“Enabling this settings allows only interactively logged on user to access CD-ROM media.”

Returns:

property localSecurityOptionsBlockRemoteOpticalDriveAccess

withLocalSecurityOptionsBlockRemoteOpticalDriveAccess

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsBlockRemoteOpticalDriveAccess(Boolean localSecurityOptionsBlockRemoteOpticalDriveAccess)

Returns an immutable copy of this with just the localSecurityOptionsBlockRemoteOpticalDriveAccess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enabling this settings allows only interactively logged on user to access CD-ROM media.”

Parameters:

localSecurityOptionsBlockRemoteOpticalDriveAccess - new value of localSecurityOptionsBlockRemoteOpticalDriveAccess field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsBlockRemoteOpticalDriveAccess field changed

getLocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser

public Optional<LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType> getLocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser()

“Define who is allowed to format and eject removable NTFS media.”

Returns:

property localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser

withLocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser(LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser)

Returns an immutable copy of this with just the localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define who is allowed to format and eject removable NTFS media.”

Parameters:

localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser - new value of localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser field changed

getLocalSecurityOptionsMachineInactivityLimit

public Optional<Integer> getLocalSecurityOptionsMachineInactivityLimit()

“Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs. Valid values 0 to 9999”

Returns:

property localSecurityOptionsMachineInactivityLimit

withLocalSecurityOptionsMachineInactivityLimit

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsMachineInactivityLimit(Integer localSecurityOptionsMachineInactivityLimit)

Returns an immutable copy of this with just the localSecurityOptionsMachineInactivityLimit field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs. Valid values 0 to 9999”

Parameters:

localSecurityOptionsMachineInactivityLimit - new value of localSecurityOptionsMachineInactivityLimit field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsMachineInactivityLimit field changed

getLocalSecurityOptionsMachineInactivityLimitInMinutes

public Optional<Integer> getLocalSecurityOptionsMachineInactivityLimitInMinutes()

“Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs. Valid values 0 to 9999”

Returns:

property localSecurityOptionsMachineInactivityLimitInMinutes

withLocalSecurityOptionsMachineInactivityLimitInMinutes

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsMachineInactivityLimitInMinutes(Integer localSecurityOptionsMachineInactivityLimitInMinutes)

Returns an immutable copy of this with just the localSecurityOptionsMachineInactivityLimitInMinutes field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs. Valid values 0 to 9999”

Parameters:

localSecurityOptionsMachineInactivityLimitInMinutes - new value of localSecurityOptionsMachineInactivityLimitInMinutes field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsMachineInactivityLimitInMinutes field changed

getLocalSecurityOptionsDoNotRequireCtrlAltDel

public Optional<Boolean> getLocalSecurityOptionsDoNotRequireCtrlAltDel()

“Require CTRL+ALT+DEL to be pressed before a user can log on.”

Returns:

property localSecurityOptionsDoNotRequireCtrlAltDel

withLocalSecurityOptionsDoNotRequireCtrlAltDel

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDoNotRequireCtrlAltDel(Boolean localSecurityOptionsDoNotRequireCtrlAltDel)

Returns an immutable copy of this with just the localSecurityOptionsDoNotRequireCtrlAltDel field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Require CTRL+ALT+DEL to be pressed before a user can log on.”

Parameters:

localSecurityOptionsDoNotRequireCtrlAltDel - new value of localSecurityOptionsDoNotRequireCtrlAltDel field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDoNotRequireCtrlAltDel field changed

getLocalSecurityOptionsHideLastSignedInUser

public Optional<Boolean> getLocalSecurityOptionsHideLastSignedInUser()

“Do not display the username of the last person who signed in on this device.”

Returns:

property localSecurityOptionsHideLastSignedInUser

withLocalSecurityOptionsHideLastSignedInUser

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsHideLastSignedInUser(Boolean localSecurityOptionsHideLastSignedInUser)

Returns an immutable copy of this with just the localSecurityOptionsHideLastSignedInUser field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Do not display the username of the last person who signed in on this device.”

Parameters:

localSecurityOptionsHideLastSignedInUser - new value of localSecurityOptionsHideLastSignedInUser field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsHideLastSignedInUser field changed

getLocalSecurityOptionsHideUsernameAtSignIn

public Optional<Boolean> getLocalSecurityOptionsHideUsernameAtSignIn()

“Do not display the username of the person signing in to this device after credentials are entered and before the device’s desktop is shown.”

Returns:

property localSecurityOptionsHideUsernameAtSignIn

withLocalSecurityOptionsHideUsernameAtSignIn

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsHideUsernameAtSignIn(Boolean localSecurityOptionsHideUsernameAtSignIn)

Returns an immutable copy of this with just the localSecurityOptionsHideUsernameAtSignIn field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Do not display the username of the person signing in to this device after credentials are entered and before the device’s desktop is shown.”

Parameters:

localSecurityOptionsHideUsernameAtSignIn - new value of localSecurityOptionsHideUsernameAtSignIn field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsHideUsernameAtSignIn field changed

getLocalSecurityOptionsLogOnMessageTitle

public Optional<String> getLocalSecurityOptionsLogOnMessageTitle()

“Set message title for users attempting to log in.”

Returns:

property localSecurityOptionsLogOnMessageTitle

withLocalSecurityOptionsLogOnMessageTitle

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsLogOnMessageTitle(String localSecurityOptionsLogOnMessageTitle)

Returns an immutable copy of this with just the localSecurityOptionsLogOnMessageTitle field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Set message title for users attempting to log in.”

Parameters:

localSecurityOptionsLogOnMessageTitle - new value of localSecurityOptionsLogOnMessageTitle field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsLogOnMessageTitle field changed

getLocalSecurityOptionsLogOnMessageText

public Optional<String> getLocalSecurityOptionsLogOnMessageText()

“Set message text for users attempting to log in.”

Returns:

property localSecurityOptionsLogOnMessageText

withLocalSecurityOptionsLogOnMessageText

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsLogOnMessageText(String localSecurityOptionsLogOnMessageText)

Returns an immutable copy of this with just the localSecurityOptionsLogOnMessageText field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Set message text for users attempting to log in.”

Parameters:

localSecurityOptionsLogOnMessageText - new value of localSecurityOptionsLogOnMessageText field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsLogOnMessageText field changed

getLocalSecurityOptionsAllowPKU2UAuthenticationRequests

public Optional<Boolean> getLocalSecurityOptionsAllowPKU2UAuthenticationRequests()

“Block PKU2U authentication requests to this device to use online identities.”

Returns:

property localSecurityOptionsAllowPKU2UAuthenticationRequests

withLocalSecurityOptionsAllowPKU2UAuthenticationRequests

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowPKU2UAuthenticationRequests(Boolean localSecurityOptionsAllowPKU2UAuthenticationRequests)

Returns an immutable copy of this with just the localSecurityOptionsAllowPKU2UAuthenticationRequests field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Block PKU2U authentication requests to this device to use online identities.”

Parameters:

localSecurityOptionsAllowPKU2UAuthenticationRequests - new value of localSecurityOptionsAllowPKU2UAuthenticationRequests field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowPKU2UAuthenticationRequests field changed

getLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool

public Optional<Boolean> getLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool()

“UI helper boolean for LocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager entity”

Returns:

property localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool

withLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool(Boolean localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool)

Returns an immutable copy of this with just the localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“UI helper boolean for LocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager entity”

Parameters:

localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool - new value of localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool field changed

getLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager

public Optional<String> getLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager()

“Edit the default Security Descriptor Definition Language string to allow or deny users and groups to make remote calls to the SAM.”

Returns:

property localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager

withLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager(String localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager)

Returns an immutable copy of this with just the localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Edit the default Security Descriptor Definition Language string to allow or deny users and groups to make remote calls to the SAM.”

Parameters:

localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager - new value of localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager field changed

getLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients

public Optional<LocalSecurityOptionsMinimumSessionSecurity> getLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients()

“This security setting allows a client to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”

Returns:

property localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients

withLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients(LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients)

Returns an immutable copy of this with just the localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting allows a client to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”

Parameters:

localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients - new value of localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients field changed

getLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers

public Optional<LocalSecurityOptionsMinimumSessionSecurity> getLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers()

“This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”

Returns:

property localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers

withLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers(LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers)

Returns an immutable copy of this with just the localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”

Parameters:

localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers - new value of localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers field changed

getLanManagerAuthenticationLevel

public Optional<LanManagerAuthenticationLevel> getLanManagerAuthenticationLevel()

“This security setting determines which challenge/response authentication protocol is used for network logons.”

Returns:

property lanManagerAuthenticationLevel

withLanManagerAuthenticationLevel

public Windows10EndpointProtectionConfiguration withLanManagerAuthenticationLevel(LanManagerAuthenticationLevel lanManagerAuthenticationLevel)

Returns an immutable copy of this with just the lanManagerAuthenticationLevel field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines which challenge/response authentication protocol is used for network logons.”

Parameters:

lanManagerAuthenticationLevel - new value of lanManagerAuthenticationLevel field (as defined in service metadata)

Returns:

immutable copy of this with just the lanManagerAuthenticationLevel field changed

getLanManagerWorkstationDisableInsecureGuestLogons

public Optional<Boolean> getLanManagerWorkstationDisableInsecureGuestLogons()

“If enabled,the SMB client will allow insecure guest logons. If not configured, the SMB client will reject insecure guest logons.”

Returns:

property lanManagerWorkstationDisableInsecureGuestLogons

withLanManagerWorkstationDisableInsecureGuestLogons

public Windows10EndpointProtectionConfiguration withLanManagerWorkstationDisableInsecureGuestLogons(Boolean lanManagerWorkstationDisableInsecureGuestLogons)

Returns an immutable copy of this with just the lanManagerWorkstationDisableInsecureGuestLogons field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“If enabled,the SMB client will allow insecure guest logons. If not configured, the SMB client will reject insecure guest logons.”

Parameters:

lanManagerWorkstationDisableInsecureGuestLogons - new value of lanManagerWorkstationDisableInsecureGuestLogons field (as defined in service metadata)

Returns:

immutable copy of this with just the lanManagerWorkstationDisableInsecureGuestLogons field changed

getLocalSecurityOptionsClearVirtualMemoryPageFile

public Optional<Boolean> getLocalSecurityOptionsClearVirtualMemoryPageFile()

“This security setting determines whether the virtual memory pagefile is cleared when the system is shut down.”

Returns:

property localSecurityOptionsClearVirtualMemoryPageFile

withLocalSecurityOptionsClearVirtualMemoryPageFile

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsClearVirtualMemoryPageFile(Boolean localSecurityOptionsClearVirtualMemoryPageFile)

Returns an immutable copy of this with just the localSecurityOptionsClearVirtualMemoryPageFile field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether the virtual memory pagefile is cleared when the system is shut down.”

Parameters:

localSecurityOptionsClearVirtualMemoryPageFile - new value of localSecurityOptionsClearVirtualMemoryPageFile field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsClearVirtualMemoryPageFile field changed

getLocalSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn

public Optional<Boolean> getLocalSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn()

“This security setting determines whether a computer can be shut down without having to log on to Windows.”

Returns:

property localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn

withLocalSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn(Boolean localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn)

Returns an immutable copy of this with just the localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether a computer can be shut down without having to log on to Windows.”

Parameters:

localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn - new value of localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn field changed

getLocalSecurityOptionsAllowUIAccessApplicationElevation

public Optional<Boolean> getLocalSecurityOptionsAllowUIAccessApplicationElevation()

“Allow UIAccess apps to prompt for elevation without using the secure desktop.”

Returns:

property localSecurityOptionsAllowUIAccessApplicationElevation

withLocalSecurityOptionsAllowUIAccessApplicationElevation

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowUIAccessApplicationElevation(Boolean localSecurityOptionsAllowUIAccessApplicationElevation)

Returns an immutable copy of this with just the localSecurityOptionsAllowUIAccessApplicationElevation field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow UIAccess apps to prompt for elevation without using the secure desktop.”

Parameters:

localSecurityOptionsAllowUIAccessApplicationElevation - new value of localSecurityOptionsAllowUIAccessApplicationElevation field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowUIAccessApplicationElevation field changed

getLocalSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations

public Optional<Boolean> getLocalSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations()

“Virtualize file and registry write failures to per user locations”

Returns:

property localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations

withLocalSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations(Boolean localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations)

Returns an immutable copy of this with just the localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this. patch() is called (if available)on the returned object only the changed fields are submitted.

“Virtualize file and registry write failures to per user locations”

Parameters:

localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations - new value of localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations field changed

getLocalSecurityOptionsOnlyElevateSignedExecutables

public Optional<Boolean> getLocalSecurityOptionsOnlyElevateSignedExecutables()

“Enforce PKI certification path validation for a given executable file before it is permitted to run.”

Returns:

property localSecurityOptionsOnlyElevateSignedExecutables

withLocalSecurityOptionsOnlyElevateSignedExecutables

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsOnlyElevateSignedExecutables(Boolean localSecurityOptionsOnlyElevateSignedExecutables)

Returns an immutable copy of this with just the localSecurityOptionsOnlyElevateSignedExecutables field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enforce PKI certification path validation for a given executable file before it is permitted to run.”

Parameters:

localSecurityOptionsOnlyElevateSignedExecutables - new value of localSecurityOptionsOnlyElevateSignedExecutables field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsOnlyElevateSignedExecutables field changed

getLocalSecurityOptionsAdministratorElevationPromptBehavior

public Optional<LocalSecurityOptionsAdministratorElevationPromptBehaviorType> getLocalSecurityOptionsAdministratorElevationPromptBehavior()

“Define the behavior of the elevation prompt for admins in Admin Approval Mode.”

Returns:

property localSecurityOptionsAdministratorElevationPromptBehavior

withLocalSecurityOptionsAdministratorElevationPromptBehavior

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAdministratorElevationPromptBehavior(LocalSecurityOptionsAdministratorElevationPromptBehaviorType localSecurityOptionsAdministratorElevationPromptBehavior)

Returns an immutable copy of this with just the localSecurityOptionsAdministratorElevationPromptBehavior field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define the behavior of the elevation prompt for admins in Admin Approval Mode.”

Parameters:

localSecurityOptionsAdministratorElevationPromptBehavior - new value of localSecurityOptionsAdministratorElevationPromptBehavior field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAdministratorElevationPromptBehavior field changed

getLocalSecurityOptionsStandardUserElevationPromptBehavior

public Optional<LocalSecurityOptionsStandardUserElevationPromptBehaviorType> getLocalSecurityOptionsStandardUserElevationPromptBehavior()

“Define the behavior of the elevation prompt for standard users.”

Returns:

property localSecurityOptionsStandardUserElevationPromptBehavior

withLocalSecurityOptionsStandardUserElevationPromptBehavior

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsStandardUserElevationPromptBehavior(LocalSecurityOptionsStandardUserElevationPromptBehaviorType localSecurityOptionsStandardUserElevationPromptBehavior)

Returns an immutable copy of this with just the localSecurityOptionsStandardUserElevationPromptBehavior field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define the behavior of the elevation prompt for standard users.”

Parameters:

localSecurityOptionsStandardUserElevationPromptBehavior - new value of localSecurityOptionsStandardUserElevationPromptBehavior field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsStandardUserElevationPromptBehavior field changed

getLocalSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation

public Optional<Boolean> getLocalSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation()

“Enable all elevation requests to go to the interactive user's desktop rather than the secure desktop. Prompt behavior policy settings for admins and standard users are used.”

Returns:

property localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation

withLocalSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation(Boolean localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation)

Returns an immutable copy of this with just the localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enable all elevation requests to go to the interactive user's desktop rather than the secure desktop. Prompt behavior policy settings for admins and standard users are used.”

Parameters:

localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation - new value of localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation field changed

getLocalSecurityOptionsDetectApplicationInstallationsAndPromptForElevation

public Optional<Boolean> getLocalSecurityOptionsDetectApplicationInstallationsAndPromptForElevation()

“App installations requiring elevated privileges will prompt for admin credentials.Default is enabled”

Returns:

property localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation

withLocalSecurityOptionsDetectApplicationInstallationsAndPromptForElevation

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDetectApplicationInstallationsAndPromptForElevation(Boolean localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation)

Returns an immutable copy of this with just the localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“App installations requiring elevated privileges will prompt for admin credentials.Default is enabled”

Parameters:

localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation - new value of localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation field changed

getLocalSecurityOptionsAllowUIAccessApplicationsForSecureLocations

public Optional<Boolean> getLocalSecurityOptionsAllowUIAccessApplicationsForSecureLocations()

“Allow UIAccess apps to prompt for elevation without using the secure desktop. Default is enabled”

Returns:

property localSecurityOptionsAllowUIAccessApplicationsForSecureLocations

withLocalSecurityOptionsAllowUIAccessApplicationsForSecureLocations

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowUIAccessApplicationsForSecureLocations(Boolean localSecurityOptionsAllowUIAccessApplicationsForSecureLocations)

Returns an immutable copy of this with just the localSecurityOptionsAllowUIAccessApplicationsForSecureLocations field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow UIAccess apps to prompt for elevation without using the secure desktop. Default is enabled”

Parameters:

localSecurityOptionsAllowUIAccessApplicationsForSecureLocations - new value of localSecurityOptionsAllowUIAccessApplicationsForSecureLocations field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowUIAccessApplicationsForSecureLocations field changed

getLocalSecurityOptionsUseAdminApprovalMode

public Optional<Boolean> getLocalSecurityOptionsUseAdminApprovalMode()

“Defines whether the built-in admin account uses Admin Approval Mode or runs all apps with full admin privileges.Default is enabled”

Returns:

property localSecurityOptionsUseAdminApprovalMode

withLocalSecurityOptionsUseAdminApprovalMode

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsUseAdminApprovalMode(Boolean localSecurityOptionsUseAdminApprovalMode)

Returns an immutable copy of this with just the localSecurityOptionsUseAdminApprovalMode field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Defines whether the built-in admin account uses Admin Approval Mode or runs all apps with full admin privileges.Default is enabled”

Parameters:

localSecurityOptionsUseAdminApprovalMode - new value of localSecurityOptionsUseAdminApprovalMode field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsUseAdminApprovalMode field changed

getLocalSecurityOptionsUseAdminApprovalModeForAdministrators

public Optional<Boolean> getLocalSecurityOptionsUseAdminApprovalModeForAdministrators()

“Define whether Admin Approval Mode and all UAC policy settings are enabled, default is enabled”

Returns:

property localSecurityOptionsUseAdminApprovalModeForAdministrators

withLocalSecurityOptionsUseAdminApprovalModeForAdministrators

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsUseAdminApprovalModeForAdministrators(Boolean localSecurityOptionsUseAdminApprovalModeForAdministrators)

Returns an immutable copy of this with just the localSecurityOptionsUseAdminApprovalModeForAdministrators field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Define whether Admin Approval Mode and all UAC policy settings are enabled, default is enabled”

Parameters:

localSecurityOptionsUseAdminApprovalModeForAdministrators - new value of localSecurityOptionsUseAdminApprovalModeForAdministrators field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsUseAdminApprovalModeForAdministrators field changed

getLocalSecurityOptionsInformationShownOnLockScreen

public Optional<LocalSecurityOptionsInformationShownOnLockScreenType> getLocalSecurityOptionsInformationShownOnLockScreen()

“Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown”

Returns:

property localSecurityOptionsInformationShownOnLockScreen

withLocalSecurityOptionsInformationShownOnLockScreen

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsInformationShownOnLockScreen(LocalSecurityOptionsInformationShownOnLockScreenType localSecurityOptionsInformationShownOnLockScreen)

Returns an immutable copy of this with just the localSecurityOptionsInformationShownOnLockScreen field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown”

Parameters:

localSecurityOptionsInformationShownOnLockScreen - new value of localSecurityOptionsInformationShownOnLockScreen field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsInformationShownOnLockScreen field changed

getLocalSecurityOptionsInformationDisplayedOnLockScreen

public Optional<LocalSecurityOptionsInformationDisplayedOnLockScreenType> getLocalSecurityOptionsInformationDisplayedOnLockScreen()

“Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown”

Returns:

property localSecurityOptionsInformationDisplayedOnLockScreen

withLocalSecurityOptionsInformationDisplayedOnLockScreen

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsInformationDisplayedOnLockScreen(LocalSecurityOptionsInformationDisplayedOnLockScreenType localSecurityOptionsInformationDisplayedOnLockScreen)

Returns an immutable copy of this with just the localSecurityOptionsInformationDisplayedOnLockScreen field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown”

Parameters:

localSecurityOptionsInformationDisplayedOnLockScreen - new value of localSecurityOptionsInformationDisplayedOnLockScreen field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsInformationDisplayedOnLockScreen field changed

getLocalSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees

public Optional<Boolean> getLocalSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees()

“This security setting determines whether the SMB client attempts to negotiate SMB packet signing.”

Returns:

property localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees

withLocalSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees(Boolean localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees)

Returns an immutable copy of this with just the localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this. patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether the SMB client attempts to negotiate SMB packet signing.”

Parameters:

localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees - new value of localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees field changed

getLocalSecurityOptionsClientDigitallySignCommunicationsAlways

public Optional<Boolean> getLocalSecurityOptionsClientDigitallySignCommunicationsAlways()

“This security setting determines whether packet signing is required by the SMB client component.”

Returns:

property localSecurityOptionsClientDigitallySignCommunicationsAlways

withLocalSecurityOptionsClientDigitallySignCommunicationsAlways

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsClientDigitallySignCommunicationsAlways(Boolean localSecurityOptionsClientDigitallySignCommunicationsAlways)

Returns an immutable copy of this with just the localSecurityOptionsClientDigitallySignCommunicationsAlways field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether packet signing is required by the SMB client component.”

Parameters:

localSecurityOptionsClientDigitallySignCommunicationsAlways - new value of localSecurityOptionsClientDigitallySignCommunicationsAlways field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsClientDigitallySignCommunicationsAlways field changed

getLocalSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers

public Optional<Boolean> getLocalSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers()

“If this security setting is enabled, the Server Message Block (SMB) redirector is allowed to send plaintext passwords to non-Microsoft SMB servers that do not support password encryption during authentication.”

Returns:

property localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers

withLocalSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers(Boolean localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers)

Returns an immutable copy of this with just the localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“If this security setting is enabled, the Server Message Block (SMB) redirector is allowed to send plaintext passwords to non-Microsoft SMB servers that do not support password encryption during authentication.”

Parameters:

localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers - new value of localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers field changed

getLocalSecurityOptionsDisableServerDigitallySignCommunicationsAlways

public Optional<Boolean> getLocalSecurityOptionsDisableServerDigitallySignCommunicationsAlways()

“This security setting determines whether packet signing is required by the SMB server component.”

Returns:

property localSecurityOptionsDisableServerDigitallySignCommunicationsAlways

withLocalSecurityOptionsDisableServerDigitallySignCommunicationsAlways

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDisableServerDigitallySignCommunicationsAlways(Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsAlways)

Returns an immutable copy of this with just the localSecurityOptionsDisableServerDigitallySignCommunicationsAlways field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether packet signing is required by the SMB server component.”

Parameters:

localSecurityOptionsDisableServerDigitallySignCommunicationsAlways - new value of localSecurityOptionsDisableServerDigitallySignCommunicationsAlways field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDisableServerDigitallySignCommunicationsAlways field changed

getLocalSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees

public Optional<Boolean> getLocalSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees()

“This security setting determines whether the SMB server will negotiate SMB packet signing with clients that request it.”

Returns:

property localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees

withLocalSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees(Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees)

Returns an immutable copy of this with just the localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this. patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether the SMB server will negotiate SMB packet signing with clients that request it.”

Parameters:

localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees - new value of localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees field changed

getLocalSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares

public Optional<Boolean> getLocalSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares()

“By default, this security setting restricts anonymous access to shares and pipes to the settings for named pipes that can be accessed anonymously and Shares that can be accessed anonymously”

Returns:

property localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares

withLocalSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares(Boolean localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares)

Returns an immutable copy of this with just the localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“By default, this security setting restricts anonymous access to shares and pipes to the settings for named pipes that can be accessed anonymously and Shares that can be accessed anonymously”

Parameters:

localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares - new value of localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares field changed

getLocalSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts

public Optional<Boolean> getLocalSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts()

“This security setting determines what additional permissions will be granted for anonymous connections to the computer.”

Returns:

property localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts

withLocalSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts(Boolean localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts)

Returns an immutable copy of this with just the localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines what additional permissions will be granted for anonymous connections to the computer.”

Parameters:

localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts - new value of localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts field changed

getLocalSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares

public Optional<Boolean> getLocalSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares()

“This security setting determines whether to allows anonymous users to perform certain activities, such as enumerating the names of domain accounts and network shares.”

Returns:

property localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares

withLocalSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares(Boolean localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares)

Returns an immutable copy of this with just the localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines whether to allows anonymous users to perform certain activities, such as enumerating the names of domain accounts and network shares.”

Parameters:

localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares - new value of localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares field changed

getLocalSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange

public Optional<Boolean> getLocalSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange()

“This security setting determines if, at the next password change, the LAN Manager (LM) hash value for the new password is stored. It’s not stored by default.”

Returns:

property localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange

withLocalSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange(Boolean localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange)

Returns an immutable copy of this with just the localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines if, at the next password change, the LAN Manager (LM) hash value for the new password is stored. It’s not stored by default.”

Parameters:

localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange - new value of localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange field changed

getLocalSecurityOptionsSmartCardRemovalBehavior

public Optional<LocalSecurityOptionsSmartCardRemovalBehaviorType> getLocalSecurityOptionsSmartCardRemovalBehavior()

“This security setting determines what happens when the smart card for a logged- on user is removed from the smart card reader.”

Returns:

property localSecurityOptionsSmartCardRemovalBehavior

withLocalSecurityOptionsSmartCardRemovalBehavior

public Windows10EndpointProtectionConfiguration withLocalSecurityOptionsSmartCardRemovalBehavior(LocalSecurityOptionsSmartCardRemovalBehaviorType localSecurityOptionsSmartCardRemovalBehavior)

Returns an immutable copy of this with just the localSecurityOptionsSmartCardRemovalBehavior field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This security setting determines what happens when the smart card for a logged- on user is removed from the smart card reader.”

Parameters:

localSecurityOptionsSmartCardRemovalBehavior - new value of localSecurityOptionsSmartCardRemovalBehavior field (as defined in service metadata)

Returns:

immutable copy of this with just the localSecurityOptionsSmartCardRemovalBehavior field changed

getDefenderSecurityCenterDisableAppBrowserUI

public Optional<Boolean> getDefenderSecurityCenterDisableAppBrowserUI()

“Used to disable the display of the app and browser protection area.”

Returns:

property defenderSecurityCenterDisableAppBrowserUI

withDefenderSecurityCenterDisableAppBrowserUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableAppBrowserUI(Boolean defenderSecurityCenterDisableAppBrowserUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableAppBrowserUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the app and browser protection area.”

Parameters:

defenderSecurityCenterDisableAppBrowserUI - new value of defenderSecurityCenterDisableAppBrowserUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableAppBrowserUI field changed

getDefenderSecurityCenterDisableFamilyUI

public Optional<Boolean> getDefenderSecurityCenterDisableFamilyUI()

“Used to disable the display of the family options area.”

Returns:

property defenderSecurityCenterDisableFamilyUI

withDefenderSecurityCenterDisableFamilyUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableFamilyUI(Boolean defenderSecurityCenterDisableFamilyUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableFamilyUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the family options area.”

Parameters:

defenderSecurityCenterDisableFamilyUI - new value of defenderSecurityCenterDisableFamilyUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableFamilyUI field changed

getDefenderSecurityCenterDisableHealthUI

public Optional<Boolean> getDefenderSecurityCenterDisableHealthUI()

“Used to disable the display of the device performance and health area.”

Returns:

property defenderSecurityCenterDisableHealthUI

withDefenderSecurityCenterDisableHealthUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableHealthUI(Boolean defenderSecurityCenterDisableHealthUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableHealthUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the device performance and health area.”

Parameters:

defenderSecurityCenterDisableHealthUI - new value of defenderSecurityCenterDisableHealthUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableHealthUI field changed

getDefenderSecurityCenterDisableNetworkUI

public Optional<Boolean> getDefenderSecurityCenterDisableNetworkUI()

“Used to disable the display of the firewall and network protection area.”

Returns:

property defenderSecurityCenterDisableNetworkUI

withDefenderSecurityCenterDisableNetworkUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableNetworkUI(Boolean defenderSecurityCenterDisableNetworkUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableNetworkUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the firewall and network protection area.”

Parameters:

defenderSecurityCenterDisableNetworkUI - new value of defenderSecurityCenterDisableNetworkUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableNetworkUI field changed

getDefenderSecurityCenterDisableVirusUI

public Optional<Boolean> getDefenderSecurityCenterDisableVirusUI()

“Used to disable the display of the virus and threat protection area.”

Returns:

property defenderSecurityCenterDisableVirusUI

withDefenderSecurityCenterDisableVirusUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableVirusUI(Boolean defenderSecurityCenterDisableVirusUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableVirusUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the virus and threat protection area.”

Parameters:

defenderSecurityCenterDisableVirusUI - new value of defenderSecurityCenterDisableVirusUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableVirusUI field changed

getDefenderSecurityCenterDisableAccountUI

public Optional<Boolean> getDefenderSecurityCenterDisableAccountUI()

“Used to disable the display of the account protection area.”

Returns:

property defenderSecurityCenterDisableAccountUI

withDefenderSecurityCenterDisableAccountUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableAccountUI(Boolean defenderSecurityCenterDisableAccountUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableAccountUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the account protection area.”

Parameters:

defenderSecurityCenterDisableAccountUI - new value of defenderSecurityCenterDisableAccountUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableAccountUI field changed

getDefenderSecurityCenterDisableClearTpmUI

public Optional<Boolean> getDefenderSecurityCenterDisableClearTpmUI()

“Used to disable the display of the Clear TPM button.”

Returns:

property defenderSecurityCenterDisableClearTpmUI

withDefenderSecurityCenterDisableClearTpmUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableClearTpmUI(Boolean defenderSecurityCenterDisableClearTpmUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableClearTpmUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the Clear TPM button.”

Parameters:

defenderSecurityCenterDisableClearTpmUI - new value of defenderSecurityCenterDisableClearTpmUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableClearTpmUI field changed

getDefenderSecurityCenterDisableHardwareUI

public Optional<Boolean> getDefenderSecurityCenterDisableHardwareUI()

“Used to disable the display of the hardware protection area.”

Returns:

property defenderSecurityCenterDisableHardwareUI

withDefenderSecurityCenterDisableHardwareUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableHardwareUI(Boolean defenderSecurityCenterDisableHardwareUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableHardwareUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the hardware protection area.”

Parameters:

defenderSecurityCenterDisableHardwareUI - new value of defenderSecurityCenterDisableHardwareUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableHardwareUI field changed

getDefenderSecurityCenterDisableNotificationAreaUI

public Optional<Boolean> getDefenderSecurityCenterDisableNotificationAreaUI()

“Used to disable the display of the notification area control. The user needs to either sign out and sign in or reboot the computer for this setting to take effect.”

Returns:

property defenderSecurityCenterDisableNotificationAreaUI

withDefenderSecurityCenterDisableNotificationAreaUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableNotificationAreaUI(Boolean defenderSecurityCenterDisableNotificationAreaUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableNotificationAreaUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the notification area control. The user needs to either sign out and sign in or reboot the computer for this setting to take effect.”

Parameters:

defenderSecurityCenterDisableNotificationAreaUI - new value of defenderSecurityCenterDisableNotificationAreaUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableNotificationAreaUI field changed

getDefenderSecurityCenterDisableRansomwareUI

public Optional<Boolean> getDefenderSecurityCenterDisableRansomwareUI()

“Used to disable the display of the ransomware protection area.”

Returns:

property defenderSecurityCenterDisableRansomwareUI

withDefenderSecurityCenterDisableRansomwareUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableRansomwareUI(Boolean defenderSecurityCenterDisableRansomwareUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableRansomwareUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the ransomware protection area.”

Parameters:

defenderSecurityCenterDisableRansomwareUI - new value of defenderSecurityCenterDisableRansomwareUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableRansomwareUI field changed

getDefenderSecurityCenterDisableSecureBootUI

public Optional<Boolean> getDefenderSecurityCenterDisableSecureBootUI()

“Used to disable the display of the secure boot area under Device security.”

Returns:

property defenderSecurityCenterDisableSecureBootUI

withDefenderSecurityCenterDisableSecureBootUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableSecureBootUI(Boolean defenderSecurityCenterDisableSecureBootUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableSecureBootUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the secure boot area under Device security.”

Parameters:

defenderSecurityCenterDisableSecureBootUI - new value of defenderSecurityCenterDisableSecureBootUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableSecureBootUI field changed

getDefenderSecurityCenterDisableTroubleshootingUI

public Optional<Boolean> getDefenderSecurityCenterDisableTroubleshootingUI()

“Used to disable the display of the security process troubleshooting under Device security.”

Returns:

property defenderSecurityCenterDisableTroubleshootingUI

withDefenderSecurityCenterDisableTroubleshootingUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableTroubleshootingUI(Boolean defenderSecurityCenterDisableTroubleshootingUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableTroubleshootingUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of the security process troubleshooting under Device security.”

Parameters:

defenderSecurityCenterDisableTroubleshootingUI - new value of defenderSecurityCenterDisableTroubleshootingUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableTroubleshootingUI field changed

getDefenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI

public Optional<Boolean> getDefenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI()

“Used to disable the display of update TPM Firmware when a vulnerable firmware is detected.”

Returns:

property defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI

withDefenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI(Boolean defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI)

Returns an immutable copy of this with just the defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Used to disable the display of update TPM Firmware when a vulnerable firmware is detected.”

Parameters:

defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI - new value of defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI field changed

getDefenderSecurityCenterOrganizationDisplayName

public Optional<String> getDefenderSecurityCenterOrganizationDisplayName()

“The company name that is displayed to the users.”

Returns:

property defenderSecurityCenterOrganizationDisplayName

withDefenderSecurityCenterOrganizationDisplayName

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterOrganizationDisplayName(String defenderSecurityCenterOrganizationDisplayName)

Returns an immutable copy of this with just the defenderSecurityCenterOrganizationDisplayName field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“The company name that is displayed to the users.”

Parameters:

defenderSecurityCenterOrganizationDisplayName - new value of defenderSecurityCenterOrganizationDisplayName field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterOrganizationDisplayName field changed

getDefenderSecurityCenterHelpEmail

public Optional<String> getDefenderSecurityCenterHelpEmail()

“The email address that is displayed to users.”

Returns:

property defenderSecurityCenterHelpEmail

withDefenderSecurityCenterHelpEmail

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterHelpEmail(String defenderSecurityCenterHelpEmail)

Returns an immutable copy of this with just the defenderSecurityCenterHelpEmail field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“The email address that is displayed to users.”

Parameters:

defenderSecurityCenterHelpEmail - new value of defenderSecurityCenterHelpEmail field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterHelpEmail field changed

getDefenderSecurityCenterHelpPhone

public Optional<String> getDefenderSecurityCenterHelpPhone()

“The phone number or Skype ID that is displayed to users.”

Returns:

property defenderSecurityCenterHelpPhone

withDefenderSecurityCenterHelpPhone

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterHelpPhone(String defenderSecurityCenterHelpPhone)

Returns an immutable copy of this with just the defenderSecurityCenterHelpPhone field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“The phone number or Skype ID that is displayed to users.”

Parameters:

defenderSecurityCenterHelpPhone - new value of defenderSecurityCenterHelpPhone field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterHelpPhone field changed

getDefenderSecurityCenterHelpURL

public Optional<String> getDefenderSecurityCenterHelpURL()

“The help portal URL this is displayed to users.”

Returns:

property defenderSecurityCenterHelpURL

withDefenderSecurityCenterHelpURL

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterHelpURL(String defenderSecurityCenterHelpURL)

Returns an immutable copy of this with just the defenderSecurityCenterHelpURL field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“The help portal URL this is displayed to users.”

Parameters:

defenderSecurityCenterHelpURL - new value of defenderSecurityCenterHelpURL field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterHelpURL field changed

getDefenderSecurityCenterNotificationsFromApp

public Optional<DefenderSecurityCenterNotificationsFromAppType> getDefenderSecurityCenterNotificationsFromApp()

“Notifications to show from the displayed areas of app”

Returns:

property defenderSecurityCenterNotificationsFromApp

withDefenderSecurityCenterNotificationsFromApp

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterNotificationsFromApp(DefenderSecurityCenterNotificationsFromAppType defenderSecurityCenterNotificationsFromApp)

Returns an immutable copy of this with just the defenderSecurityCenterNotificationsFromApp field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Notifications to show from the displayed areas of app”

Parameters:

defenderSecurityCenterNotificationsFromApp - new value of defenderSecurityCenterNotificationsFromApp field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterNotificationsFromApp field changed

getDefenderSecurityCenterITContactDisplay

public Optional<DefenderSecurityCenterITContactDisplayType> getDefenderSecurityCenterITContactDisplay()

“Configure where to display IT contact information to end users.”

Returns:

property defenderSecurityCenterITContactDisplay

withDefenderSecurityCenterITContactDisplay

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterITContactDisplay(DefenderSecurityCenterITContactDisplayType defenderSecurityCenterITContactDisplay)

Returns an immutable copy of this with just the defenderSecurityCenterITContactDisplay field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configure where to display IT contact information to end users.”

Parameters:

defenderSecurityCenterITContactDisplay - new value of defenderSecurityCenterITContactDisplay field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterITContactDisplay field changed

getWindowsDefenderTamperProtection

public Optional<WindowsDefenderTamperProtectionOptions> getWindowsDefenderTamperProtection()

“Configure windows defender TamperProtection settings”

Returns:

property windowsDefenderTamperProtection

withWindowsDefenderTamperProtection

public Windows10EndpointProtectionConfiguration withWindowsDefenderTamperProtection(WindowsDefenderTamperProtectionOptions windowsDefenderTamperProtection)

Returns an immutable copy of this with just the windowsDefenderTamperProtection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configure windows defender TamperProtection settings”

Parameters:

windowsDefenderTamperProtection - new value of windowsDefenderTamperProtection field (as defined in service metadata)

Returns:

immutable copy of this with just the windowsDefenderTamperProtection field changed

getFirewallBlockStatefulFTP

public Optional<Boolean> getFirewallBlockStatefulFTP()

“Blocks stateful FTP connections to the device”

Returns:

property firewallBlockStatefulFTP

withFirewallBlockStatefulFTP

public Windows10EndpointProtectionConfiguration withFirewallBlockStatefulFTP(Boolean firewallBlockStatefulFTP)

Returns an immutable copy of this with just the firewallBlockStatefulFTP field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Blocks stateful FTP connections to the device”

Parameters:

firewallBlockStatefulFTP - new value of firewallBlockStatefulFTP field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallBlockStatefulFTP field changed

getFirewallIdleTimeoutForSecurityAssociationInSeconds

public Optional<Integer> getFirewallIdleTimeoutForSecurityAssociationInSeconds()

“Configures the idle timeout for security associations, in seconds, from 300 to 3600 inclusive. This is the period after which security associations will expire and be deleted. Valid values 300 to 3600”

Returns:

property firewallIdleTimeoutForSecurityAssociationInSeconds

withFirewallIdleTimeoutForSecurityAssociationInSeconds

public Windows10EndpointProtectionConfiguration withFirewallIdleTimeoutForSecurityAssociationInSeconds(Integer firewallIdleTimeoutForSecurityAssociationInSeconds)

Returns an immutable copy of this with just the firewallIdleTimeoutForSecurityAssociationInSeconds field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures the idle timeout for security associations, in seconds, from 300 to 3600 inclusive. This is the period after which security associations will expire and be deleted. Valid values 300 to 3600”

Parameters:

firewallIdleTimeoutForSecurityAssociationInSeconds - new value of firewallIdleTimeoutForSecurityAssociationInSeconds field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallIdleTimeoutForSecurityAssociationInSeconds field changed

getFirewallPreSharedKeyEncodingMethod

public Optional<FirewallPreSharedKeyEncodingMethodType> getFirewallPreSharedKeyEncodingMethod()

“Select the preshared key encoding to be used”

Returns:

property firewallPreSharedKeyEncodingMethod

withFirewallPreSharedKeyEncodingMethod

public Windows10EndpointProtectionConfiguration withFirewallPreSharedKeyEncodingMethod(FirewallPreSharedKeyEncodingMethodType firewallPreSharedKeyEncodingMethod)

Returns an immutable copy of this with just the firewallPreSharedKeyEncodingMethod field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Select the preshared key encoding to be used”

Parameters:

firewallPreSharedKeyEncodingMethod - new value of firewallPreSharedKeyEncodingMethod field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallPreSharedKeyEncodingMethod field changed

getFirewallIPSecExemptionsAllowNeighborDiscovery

public Optional<Boolean> getFirewallIPSecExemptionsAllowNeighborDiscovery()

“Configures IPSec exemptions to allow neighbor discovery IPv6 ICMP type-codes”

Returns:

property firewallIPSecExemptionsAllowNeighborDiscovery

withFirewallIPSecExemptionsAllowNeighborDiscovery

public Windows10EndpointProtectionConfiguration withFirewallIPSecExemptionsAllowNeighborDiscovery(Boolean firewallIPSecExemptionsAllowNeighborDiscovery)

Returns an immutable copy of this with just the firewallIPSecExemptionsAllowNeighborDiscovery field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures IPSec exemptions to allow neighbor discovery IPv6 ICMP type-codes”

Parameters:

firewallIPSecExemptionsAllowNeighborDiscovery - new value of firewallIPSecExemptionsAllowNeighborDiscovery field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallIPSecExemptionsAllowNeighborDiscovery field changed

getFirewallIPSecExemptionsAllowICMP

public Optional<Boolean> getFirewallIPSecExemptionsAllowICMP()

“Configures IPSec exemptions to allow ICMP”

Returns:

property firewallIPSecExemptionsAllowICMP

withFirewallIPSecExemptionsAllowICMP

public Windows10EndpointProtectionConfiguration withFirewallIPSecExemptionsAllowICMP(Boolean firewallIPSecExemptionsAllowICMP)

Returns an immutable copy of this with just the firewallIPSecExemptionsAllowICMP field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures IPSec exemptions to allow ICMP”

Parameters:

firewallIPSecExemptionsAllowICMP - new value of firewallIPSecExemptionsAllowICMP field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallIPSecExemptionsAllowICMP field changed

getFirewallIPSecExemptionsAllowRouterDiscovery

public Optional<Boolean> getFirewallIPSecExemptionsAllowRouterDiscovery()

“Configures IPSec exemptions to allow router discovery IPv6 ICMP type-codes”

Returns:

property firewallIPSecExemptionsAllowRouterDiscovery

withFirewallIPSecExemptionsAllowRouterDiscovery

public Windows10EndpointProtectionConfiguration withFirewallIPSecExemptionsAllowRouterDiscovery(Boolean firewallIPSecExemptionsAllowRouterDiscovery)

Returns an immutable copy of this with just the firewallIPSecExemptionsAllowRouterDiscovery field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures IPSec exemptions to allow router discovery IPv6 ICMP type-codes”

Parameters:

firewallIPSecExemptionsAllowRouterDiscovery - new value of firewallIPSecExemptionsAllowRouterDiscovery field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallIPSecExemptionsAllowRouterDiscovery field changed

getFirewallIPSecExemptionsAllowDHCP

public Optional<Boolean> getFirewallIPSecExemptionsAllowDHCP()

“Configures IPSec exemptions to allow both IPv4 and IPv6 DHCP traffic”

Returns:

property firewallIPSecExemptionsAllowDHCP

withFirewallIPSecExemptionsAllowDHCP

public Windows10EndpointProtectionConfiguration withFirewallIPSecExemptionsAllowDHCP(Boolean firewallIPSecExemptionsAllowDHCP)

Returns an immutable copy of this with just the firewallIPSecExemptionsAllowDHCP field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures IPSec exemptions to allow both IPv4 and IPv6 DHCP traffic”

Parameters:

firewallIPSecExemptionsAllowDHCP - new value of firewallIPSecExemptionsAllowDHCP field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallIPSecExemptionsAllowDHCP field changed

getFirewallCertificateRevocationListCheckMethod

public Optional<FirewallCertificateRevocationListCheckMethodType> getFirewallCertificateRevocationListCheckMethod()

“Specify how the certificate revocation list is to be enforced”

Returns:

property firewallCertificateRevocationListCheckMethod

withFirewallCertificateRevocationListCheckMethod

public Windows10EndpointProtectionConfiguration withFirewallCertificateRevocationListCheckMethod(FirewallCertificateRevocationListCheckMethodType firewallCertificateRevocationListCheckMethod)

Returns an immutable copy of this with just the firewallCertificateRevocationListCheckMethod field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Specify how the certificate revocation list is to be enforced”

Parameters:

firewallCertificateRevocationListCheckMethod - new value of firewallCertificateRevocationListCheckMethod field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallCertificateRevocationListCheckMethod field changed

getFirewallMergeKeyingModuleSettings

public Optional<Boolean> getFirewallMergeKeyingModuleSettings()

“If an authentication set is not fully supported by a keying module, direct the module to ignore only unsupported authentication suites rather than the entire set”

Returns:

property firewallMergeKeyingModuleSettings

withFirewallMergeKeyingModuleSettings

public Windows10EndpointProtectionConfiguration withFirewallMergeKeyingModuleSettings(Boolean firewallMergeKeyingModuleSettings)

Returns an immutable copy of this with just the firewallMergeKeyingModuleSettings field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“If an authentication set is not fully supported by a keying module, direct the module to ignore only unsupported authentication suites rather than the entire set”

Parameters:

firewallMergeKeyingModuleSettings - new value of firewallMergeKeyingModuleSettings field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallMergeKeyingModuleSettings field changed

getFirewallPacketQueueingMethod

public Optional<FirewallPacketQueueingMethodType> getFirewallPacketQueueingMethod()

“Configures how packet queueing should be applied in the tunnel gateway scenario”

Returns:

property firewallPacketQueueingMethod

withFirewallPacketQueueingMethod

public Windows10EndpointProtectionConfiguration withFirewallPacketQueueingMethod(FirewallPacketQueueingMethodType firewallPacketQueueingMethod)

Returns an immutable copy of this with just the firewallPacketQueueingMethod field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures how packet queueing should be applied in the tunnel gateway scenario”

Parameters:

firewallPacketQueueingMethod - new value of firewallPacketQueueingMethod field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallPacketQueueingMethod field changed

getFirewallProfileDomain

public Optional<WindowsFirewallNetworkProfile> getFirewallProfileDomain()

“Configures the firewall profile settings for domain networks”

Returns:

property firewallProfileDomain

withFirewallProfileDomain

public Windows10EndpointProtectionConfiguration withFirewallProfileDomain(WindowsFirewallNetworkProfile firewallProfileDomain)

Returns an immutable copy of this with just the firewallProfileDomain field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures the firewall profile settings for domain networks”

Parameters:

firewallProfileDomain - new value of firewallProfileDomain field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallProfileDomain field changed

getFirewallProfilePublic

public Optional<WindowsFirewallNetworkProfile> getFirewallProfilePublic()

“Configures the firewall profile settings for public networks”

Returns:

property firewallProfilePublic

withFirewallProfilePublic

public Windows10EndpointProtectionConfiguration withFirewallProfilePublic(WindowsFirewallNetworkProfile firewallProfilePublic)

Returns an immutable copy of this with just the firewallProfilePublic field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures the firewall profile settings for public networks”

Parameters:

firewallProfilePublic - new value of firewallProfilePublic field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallProfilePublic field changed

getFirewallProfilePrivate

public Optional<WindowsFirewallNetworkProfile> getFirewallProfilePrivate()

“Configures the firewall profile settings for private networks”

Returns:

property firewallProfilePrivate

withFirewallProfilePrivate

public Windows10EndpointProtectionConfiguration withFirewallProfilePrivate(WindowsFirewallNetworkProfile firewallProfilePrivate)

Returns an immutable copy of this with just the firewallProfilePrivate field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Configures the firewall profile settings for private networks”

Parameters:

firewallProfilePrivate - new value of firewallProfilePrivate field (as defined in service metadata)

Returns:

immutable copy of this with just the firewallProfilePrivate field changed

getDefenderAdobeReaderLaunchChildProcess

public Optional<DefenderProtectionType> getDefenderAdobeReaderLaunchChildProcess()

“Value indicating the behavior of Adobe Reader from creating child processes”

Returns:

property defenderAdobeReaderLaunchChildProcess

withDefenderAdobeReaderLaunchChildProcess

public Windows10EndpointProtectionConfiguration withDefenderAdobeReaderLaunchChildProcess(DefenderProtectionType defenderAdobeReaderLaunchChildProcess)

Returns an immutable copy of this with just the defenderAdobeReaderLaunchChildProcess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Adobe Reader from creating child processes”

Parameters:

defenderAdobeReaderLaunchChildProcess - new value of defenderAdobeReaderLaunchChildProcess field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAdobeReaderLaunchChildProcess field changed

getDefenderAttackSurfaceReductionExcludedPaths

public com.github.davidmoten.odata.client.CollectionPage<String> getDefenderAttackSurfaceReductionExcludedPaths()

“List of exe files and folders to be excluded from attack surface reduction rules”

Returns:

property defenderAttackSurfaceReductionExcludedPaths

getDefenderOfficeAppsOtherProcessInjectionType

public Optional<DefenderAttackSurfaceType> getDefenderOfficeAppsOtherProcessInjectionType()

“Value indicating the behavior of Office applications injecting into other processes”

Returns:

property defenderOfficeAppsOtherProcessInjectionType

withDefenderOfficeAppsOtherProcessInjectionType

public Windows10EndpointProtectionConfiguration withDefenderOfficeAppsOtherProcessInjectionType(DefenderAttackSurfaceType defenderOfficeAppsOtherProcessInjectionType)

Returns an immutable copy of this with just the defenderOfficeAppsOtherProcessInjectionType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office applications injecting into other processes”

Parameters:

defenderOfficeAppsOtherProcessInjectionType - new value of defenderOfficeAppsOtherProcessInjectionType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeAppsOtherProcessInjectionType field changed

getDefenderOfficeAppsOtherProcessInjection

public Optional<DefenderProtectionType> getDefenderOfficeAppsOtherProcessInjection()

“Value indicating the behavior of Office applications injecting into other processes”

Returns:

property defenderOfficeAppsOtherProcessInjection

withDefenderOfficeAppsOtherProcessInjection

public Windows10EndpointProtectionConfiguration withDefenderOfficeAppsOtherProcessInjection(DefenderProtectionType defenderOfficeAppsOtherProcessInjection)

Returns an immutable copy of this with just the defenderOfficeAppsOtherProcessInjection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office applications injecting into other processes”

Parameters:

defenderOfficeAppsOtherProcessInjection - new value of defenderOfficeAppsOtherProcessInjection field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeAppsOtherProcessInjection field changed

getDefenderOfficeCommunicationAppsLaunchChildProcess

public Optional<DefenderProtectionType> getDefenderOfficeCommunicationAppsLaunchChildProcess()

“Value indicating the behavior of Office communication applications, including Microsoft Outlook, from creating child processes”

Returns:

property defenderOfficeCommunicationAppsLaunchChildProcess

withDefenderOfficeCommunicationAppsLaunchChildProcess

public Windows10EndpointProtectionConfiguration withDefenderOfficeCommunicationAppsLaunchChildProcess(DefenderProtectionType defenderOfficeCommunicationAppsLaunchChildProcess)

Returns an immutable copy of this with just the defenderOfficeCommunicationAppsLaunchChildProcess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office communication applications, including Microsoft Outlook, from creating child processes”

Parameters:

defenderOfficeCommunicationAppsLaunchChildProcess - new value of defenderOfficeCommunicationAppsLaunchChildProcess field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeCommunicationAppsLaunchChildProcess field changed

getDefenderOfficeAppsExecutableContentCreationOrLaunchType

public Optional<DefenderAttackSurfaceType> getDefenderOfficeAppsExecutableContentCreationOrLaunchType()

“Value indicating the behavior of Office applications/macros creating or launching executable content”

Returns:

property defenderOfficeAppsExecutableContentCreationOrLaunchType

withDefenderOfficeAppsExecutableContentCreationOrLaunchType

public Windows10EndpointProtectionConfiguration withDefenderOfficeAppsExecutableContentCreationOrLaunchType(DefenderAttackSurfaceType defenderOfficeAppsExecutableContentCreationOrLaunchType)

Returns an immutable copy of this with just the defenderOfficeAppsExecutableContentCreationOrLaunchType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office applications/macros creating or launching executable content”

Parameters:

defenderOfficeAppsExecutableContentCreationOrLaunchType - new value of defenderOfficeAppsExecutableContentCreationOrLaunchType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeAppsExecutableContentCreationOrLaunchType field changed

getDefenderOfficeAppsExecutableContentCreationOrLaunch

public Optional<DefenderProtectionType> getDefenderOfficeAppsExecutableContentCreationOrLaunch()

“Value indicating the behavior of Office applications/macros creating or launching executable content”

Returns:

property defenderOfficeAppsExecutableContentCreationOrLaunch

withDefenderOfficeAppsExecutableContentCreationOrLaunch

public Windows10EndpointProtectionConfiguration withDefenderOfficeAppsExecutableContentCreationOrLaunch(DefenderProtectionType defenderOfficeAppsExecutableContentCreationOrLaunch)

Returns an immutable copy of this with just the defenderOfficeAppsExecutableContentCreationOrLaunch field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office applications/macros creating or launching executable content”

Parameters:

defenderOfficeAppsExecutableContentCreationOrLaunch - new value of defenderOfficeAppsExecutableContentCreationOrLaunch field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeAppsExecutableContentCreationOrLaunch field changed

getDefenderOfficeAppsLaunchChildProcessType

public Optional<DefenderAttackSurfaceType> getDefenderOfficeAppsLaunchChildProcessType()

“Value indicating the behavior of Office application launching child processes”

Returns:

property defenderOfficeAppsLaunchChildProcessType

withDefenderOfficeAppsLaunchChildProcessType

public Windows10EndpointProtectionConfiguration withDefenderOfficeAppsLaunchChildProcessType(DefenderAttackSurfaceType defenderOfficeAppsLaunchChildProcessType)

Returns an immutable copy of this with just the defenderOfficeAppsLaunchChildProcessType field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office application launching child processes”

Parameters:

defenderOfficeAppsLaunchChildProcessType - new value of defenderOfficeAppsLaunchChildProcessType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeAppsLaunchChildProcessType field changed

getDefenderOfficeAppsLaunchChildProcess

public Optional<DefenderProtectionType> getDefenderOfficeAppsLaunchChildProcess()

“Value indicating the behavior of Office application launching child processes”

Returns:

property defenderOfficeAppsLaunchChildProcess

withDefenderOfficeAppsLaunchChildProcess

public Windows10EndpointProtectionConfiguration withDefenderOfficeAppsLaunchChildProcess(DefenderProtectionType defenderOfficeAppsLaunchChildProcess)

Returns an immutable copy of this with just the defenderOfficeAppsLaunchChildProcess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Office application launching child processes”

Parameters:

defenderOfficeAppsLaunchChildProcess - new value of defenderOfficeAppsLaunchChildProcess field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeAppsLaunchChildProcess field changed

getDefenderOfficeMacroCodeAllowWin32ImportsType

public Optional<DefenderAttackSurfaceType> getDefenderOfficeMacroCodeAllowWin32ImportsType()

“Value indicating the behavior of Win32 imports from Macro code in Office”

Returns:

property defenderOfficeMacroCodeAllowWin32ImportsType

withDefenderOfficeMacroCodeAllowWin32ImportsType

public Windows10EndpointProtectionConfiguration withDefenderOfficeMacroCodeAllowWin32ImportsType(DefenderAttackSurfaceType defenderOfficeMacroCodeAllowWin32ImportsType)

Returns an immutable copy of this with just the defenderOfficeMacroCodeAllowWin32ImportsType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Win32 imports from Macro code in Office”

Parameters:

defenderOfficeMacroCodeAllowWin32ImportsType - new value of defenderOfficeMacroCodeAllowWin32ImportsType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeMacroCodeAllowWin32ImportsType field changed

getDefenderOfficeMacroCodeAllowWin32Imports

public Optional<DefenderProtectionType> getDefenderOfficeMacroCodeAllowWin32Imports()

“Value indicating the behavior of Win32 imports from Macro code in Office”

Returns:

property defenderOfficeMacroCodeAllowWin32Imports

withDefenderOfficeMacroCodeAllowWin32Imports

public Windows10EndpointProtectionConfiguration withDefenderOfficeMacroCodeAllowWin32Imports(DefenderProtectionType defenderOfficeMacroCodeAllowWin32Imports)

Returns an immutable copy of this with just the defenderOfficeMacroCodeAllowWin32Imports field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of Win32 imports from Macro code in Office”

Parameters:

defenderOfficeMacroCodeAllowWin32Imports - new value of defenderOfficeMacroCodeAllowWin32Imports field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderOfficeMacroCodeAllowWin32Imports field changed

getDefenderScriptObfuscatedMacroCodeType

public Optional<DefenderAttackSurfaceType> getDefenderScriptObfuscatedMacroCodeType()

“Value indicating the behavior of obfuscated js/vbs/ps/macro code”

Returns:

property defenderScriptObfuscatedMacroCodeType

withDefenderScriptObfuscatedMacroCodeType

public Windows10EndpointProtectionConfiguration withDefenderScriptObfuscatedMacroCodeType(DefenderAttackSurfaceType defenderScriptObfuscatedMacroCodeType)

Returns an immutable copy of this with just the defenderScriptObfuscatedMacroCodeType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of obfuscated js/vbs/ps/macro code”

Parameters:

defenderScriptObfuscatedMacroCodeType - new value of defenderScriptObfuscatedMacroCodeType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScriptObfuscatedMacroCodeType field changed

getDefenderScriptObfuscatedMacroCode

public Optional<DefenderProtectionType> getDefenderScriptObfuscatedMacroCode()

“Value indicating the behavior of obfuscated js/vbs/ps/macro code”

Returns:

property defenderScriptObfuscatedMacroCode

withDefenderScriptObfuscatedMacroCode

public Windows10EndpointProtectionConfiguration withDefenderScriptObfuscatedMacroCode(DefenderProtectionType defenderScriptObfuscatedMacroCode)

Returns an immutable copy of this with just the defenderScriptObfuscatedMacroCode field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of obfuscated js/vbs/ps/macro code”

Parameters:

defenderScriptObfuscatedMacroCode - new value of defenderScriptObfuscatedMacroCode field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScriptObfuscatedMacroCode field changed

getDefenderScriptDownloadedPayloadExecutionType

public Optional<DefenderAttackSurfaceType> getDefenderScriptDownloadedPayloadExecutionType()

“Value indicating the behavior of js/vbs executing payload downloaded from Internet”

Returns:

property defenderScriptDownloadedPayloadExecutionType

withDefenderScriptDownloadedPayloadExecutionType

public Windows10EndpointProtectionConfiguration withDefenderScriptDownloadedPayloadExecutionType(DefenderAttackSurfaceType defenderScriptDownloadedPayloadExecutionType)

Returns an immutable copy of this with just the defenderScriptDownloadedPayloadExecutionType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of js/vbs executing payload downloaded from Internet”

Parameters:

defenderScriptDownloadedPayloadExecutionType - new value of defenderScriptDownloadedPayloadExecutionType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScriptDownloadedPayloadExecutionType field changed

getDefenderScriptDownloadedPayloadExecution

public Optional<DefenderProtectionType> getDefenderScriptDownloadedPayloadExecution()

“Value indicating the behavior of js/vbs executing payload downloaded from Internet”

Returns:

property defenderScriptDownloadedPayloadExecution

withDefenderScriptDownloadedPayloadExecution

public Windows10EndpointProtectionConfiguration withDefenderScriptDownloadedPayloadExecution(DefenderProtectionType defenderScriptDownloadedPayloadExecution)

Returns an immutable copy of this with just the defenderScriptDownloadedPayloadExecution field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of js/vbs executing payload downloaded from Internet”

Parameters:

defenderScriptDownloadedPayloadExecution - new value of defenderScriptDownloadedPayloadExecution field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScriptDownloadedPayloadExecution field changed

getDefenderPreventCredentialStealingType

public Optional<DefenderProtectionType> getDefenderPreventCredentialStealingType()

“Value indicating if credential stealing from the Windows local security authority subsystem is permitted”

Returns:

property defenderPreventCredentialStealingType

withDefenderPreventCredentialStealingType

public Windows10EndpointProtectionConfiguration withDefenderPreventCredentialStealingType(DefenderProtectionType defenderPreventCredentialStealingType)

Returns an immutable copy of this with just the defenderPreventCredentialStealingType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating if credential stealing from the Windows local security authority subsystem is permitted”

Parameters:

defenderPreventCredentialStealingType - new value of defenderPreventCredentialStealingType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderPreventCredentialStealingType field changed

getDefenderProcessCreationType

public Optional<DefenderAttackSurfaceType> getDefenderProcessCreationType()

“Value indicating response to process creations originating from PSExec and WMI commands”

Returns:

property defenderProcessCreationType

withDefenderProcessCreationType

public Windows10EndpointProtectionConfiguration withDefenderProcessCreationType(DefenderAttackSurfaceType defenderProcessCreationType)

Returns an immutable copy of this with just the defenderProcessCreationType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating response to process creations originating from PSExec and WMI commands”

Parameters:

defenderProcessCreationType - new value of defenderProcessCreationType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderProcessCreationType field changed

getDefenderProcessCreation

public Optional<DefenderProtectionType> getDefenderProcessCreation()

“Value indicating response to process creations originating from PSExec and WMI commands”

Returns:

property defenderProcessCreation

withDefenderProcessCreation

public Windows10EndpointProtectionConfiguration withDefenderProcessCreation(DefenderProtectionType defenderProcessCreation)

Returns an immutable copy of this with just the defenderProcessCreation field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating response to process creations originating from PSExec and WMI commands”

Parameters:

defenderProcessCreation - new value of defenderProcessCreation field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderProcessCreation field changed

getDefenderUntrustedUSBProcessType

public Optional<DefenderAttackSurfaceType> getDefenderUntrustedUSBProcessType()

“Value indicating response to untrusted and unsigned processes that run from USB”

Returns:

property defenderUntrustedUSBProcessType

withDefenderUntrustedUSBProcessType

public Windows10EndpointProtectionConfiguration withDefenderUntrustedUSBProcessType(DefenderAttackSurfaceType defenderUntrustedUSBProcessType)

Returns an immutable copy of this with just the defenderUntrustedUSBProcessType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating response to untrusted and unsigned processes that run from USB”

Parameters:

defenderUntrustedUSBProcessType - new value of defenderUntrustedUSBProcessType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderUntrustedUSBProcessType field changed

getDefenderUntrustedUSBProcess

public Optional<DefenderProtectionType> getDefenderUntrustedUSBProcess()

“Value indicating response to untrusted and unsigned processes that run from USB”

Returns:

property defenderUntrustedUSBProcess

withDefenderUntrustedUSBProcess

public Windows10EndpointProtectionConfiguration withDefenderUntrustedUSBProcess(DefenderProtectionType defenderUntrustedUSBProcess)

Returns an immutable copy of this with just the defenderUntrustedUSBProcess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating response to untrusted and unsigned processes that run from USB”

Parameters:

defenderUntrustedUSBProcess - new value of defenderUntrustedUSBProcess field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderUntrustedUSBProcess field changed

getDefenderUntrustedExecutableType

public Optional<DefenderAttackSurfaceType> getDefenderUntrustedExecutableType()

“Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”

Returns:

property defenderUntrustedExecutableType

withDefenderUntrustedExecutableType

public Windows10EndpointProtectionConfiguration withDefenderUntrustedExecutableType(DefenderAttackSurfaceType defenderUntrustedExecutableType)

Returns an immutable copy of this with just the defenderUntrustedExecutableType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”

Parameters:

defenderUntrustedExecutableType - new value of defenderUntrustedExecutableType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderUntrustedExecutableType field changed

getDefenderUntrustedExecutable

public Optional<DefenderProtectionType> getDefenderUntrustedExecutable()

“Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”

Returns:

property defenderUntrustedExecutable

withDefenderUntrustedExecutable

public Windows10EndpointProtectionConfiguration withDefenderUntrustedExecutable(DefenderProtectionType defenderUntrustedExecutable)

Returns an immutable copy of this with just the defenderUntrustedExecutable field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”

Parameters:

defenderUntrustedExecutable - new value of defenderUntrustedExecutable field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderUntrustedExecutable field changed

getDefenderEmailContentExecutionType

public Optional<DefenderAttackSurfaceType> getDefenderEmailContentExecutionType()

“Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”

Returns:

property defenderEmailContentExecutionType

withDefenderEmailContentExecutionType

public Windows10EndpointProtectionConfiguration withDefenderEmailContentExecutionType(DefenderAttackSurfaceType defenderEmailContentExecutionType)

Returns an immutable copy of this with just the defenderEmailContentExecutionType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”

Parameters:

defenderEmailContentExecutionType - new value of defenderEmailContentExecutionType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderEmailContentExecutionType field changed

getDefenderEmailContentExecution

public Optional<DefenderProtectionType> getDefenderEmailContentExecution()

“Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”

Returns:

property defenderEmailContentExecution

withDefenderEmailContentExecution

public Windows10EndpointProtectionConfiguration withDefenderEmailContentExecution(DefenderProtectionType defenderEmailContentExecution)

Returns an immutable copy of this with just the defenderEmailContentExecution field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”

Parameters:

defenderEmailContentExecution - new value of defenderEmailContentExecution field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderEmailContentExecution field changed

getDefenderAdvancedRansomewareProtectionType

public Optional<DefenderProtectionType> getDefenderAdvancedRansomewareProtectionType()

“Value indicating use of advanced protection against ransomeware”

Returns:

property defenderAdvancedRansomewareProtectionType

withDefenderAdvancedRansomewareProtectionType

public Windows10EndpointProtectionConfiguration withDefenderAdvancedRansomewareProtectionType(DefenderProtectionType defenderAdvancedRansomewareProtectionType)

Returns an immutable copy of this with just the defenderAdvancedRansomewareProtectionType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating use of advanced protection against ransomeware”

Parameters:

defenderAdvancedRansomewareProtectionType - new value of defenderAdvancedRansomewareProtectionType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAdvancedRansomewareProtectionType field changed

getDefenderGuardMyFoldersType

public Optional<FolderProtectionType> getDefenderGuardMyFoldersType()

“Value indicating the behavior of protected folders”

Returns:

property defenderGuardMyFoldersType

withDefenderGuardMyFoldersType

public Windows10EndpointProtectionConfiguration withDefenderGuardMyFoldersType(FolderProtectionType defenderGuardMyFoldersType)

Returns an immutable copy of this with just the defenderGuardMyFoldersType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of protected folders”

Parameters:

defenderGuardMyFoldersType - new value of defenderGuardMyFoldersType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderGuardMyFoldersType field changed

getDefenderGuardedFoldersAllowedAppPaths

public com.github.davidmoten.odata.client.CollectionPage<String> getDefenderGuardedFoldersAllowedAppPaths()

“List of paths to exe that are allowed to access protected folders”

Returns:

property defenderGuardedFoldersAllowedAppPaths

getDefenderAdditionalGuardedFolders

public com.github.davidmoten.odata.client.CollectionPage<String> getDefenderAdditionalGuardedFolders()

“List of folder paths to be added to the list of protected folders”

Returns:

property defenderAdditionalGuardedFolders

getDefenderNetworkProtectionType

public Optional<DefenderProtectionType> getDefenderNetworkProtectionType()

“Value indicating the behavior of NetworkProtection”

Returns:

property defenderNetworkProtectionType

withDefenderNetworkProtectionType

public Windows10EndpointProtectionConfiguration withDefenderNetworkProtectionType(DefenderProtectionType defenderNetworkProtectionType)

Returns an immutable copy of this with just the defenderNetworkProtectionType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Value indicating the behavior of NetworkProtection”

Parameters:

defenderNetworkProtectionType - new value of defenderNetworkProtectionType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderNetworkProtectionType field changed

getDefenderExploitProtectionXml

public Optional<byte[]> getDefenderExploitProtectionXml()

“Xml content containing information regarding exploit protection details.”

Returns:

property defenderExploitProtectionXml

withDefenderExploitProtectionXml

public Windows10EndpointProtectionConfiguration withDefenderExploitProtectionXml(byte[] defenderExploitProtectionXml)

Returns an immutable copy of this with just the defenderExploitProtectionXml field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Xml content containing information regarding exploit protection details.”

Parameters:

defenderExploitProtectionXml - new value of defenderExploitProtectionXml field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderExploitProtectionXml field changed

getDefenderExploitProtectionXmlFileName

public Optional<String> getDefenderExploitProtectionXmlFileName()

“Name of the file from which DefenderExploitProtectionXml was obtained.”

Returns:

property defenderExploitProtectionXmlFileName

withDefenderExploitProtectionXmlFileName

public Windows10EndpointProtectionConfiguration withDefenderExploitProtectionXmlFileName(String defenderExploitProtectionXmlFileName)

Returns an immutable copy of this with just the defenderExploitProtectionXmlFileName field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Name of the file from which DefenderExploitProtectionXml was obtained.”

Parameters:

defenderExploitProtectionXmlFileName - new value of defenderExploitProtectionXmlFileName field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderExploitProtectionXmlFileName field changed

getDefenderSecurityCenterBlockExploitProtectionOverride

public Optional<Boolean> getDefenderSecurityCenterBlockExploitProtectionOverride()

“Indicates whether or not to block user from overriding Exploit Protection settings.”

Returns:

property defenderSecurityCenterBlockExploitProtectionOverride

withDefenderSecurityCenterBlockExploitProtectionOverride

public Windows10EndpointProtectionConfiguration withDefenderSecurityCenterBlockExploitProtectionOverride(Boolean defenderSecurityCenterBlockExploitProtectionOverride)

Returns an immutable copy of this with just the defenderSecurityCenterBlockExploitProtectionOverride field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Indicates whether or not to block user from overriding Exploit Protection settings.”

Parameters:

defenderSecurityCenterBlockExploitProtectionOverride - new value of defenderSecurityCenterBlockExploitProtectionOverride field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSecurityCenterBlockExploitProtectionOverride field changed

getAppLockerApplicationControl

public Optional<AppLockerApplicationControlType> getAppLockerApplicationControl()

“Enables the Admin to choose what types of app to allow on devices.”

Returns:

property appLockerApplicationControl

withAppLockerApplicationControl

public Windows10EndpointProtectionConfiguration withAppLockerApplicationControl(AppLockerApplicationControlType appLockerApplicationControl)

Returns an immutable copy of this with just the appLockerApplicationControl field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enables the Admin to choose what types of app to allow on devices.”

Parameters:

appLockerApplicationControl - new value of appLockerApplicationControl field (as defined in service metadata)

Returns:

immutable copy of this with just the appLockerApplicationControl field changed

getDeviceGuardLocalSystemAuthorityCredentialGuardSettings

public Optional<DeviceGuardLocalSystemAuthorityCredentialGuardType> getDeviceGuardLocalSystemAuthorityCredentialGuardSettings()

“Turn on Credential Guard when Platform Security Level with Secure Boot and Virtualization Based Security are both enabled.”

Returns:

property deviceGuardLocalSystemAuthorityCredentialGuardSettings

withDeviceGuardLocalSystemAuthorityCredentialGuardSettings

public Windows10EndpointProtectionConfiguration withDeviceGuardLocalSystemAuthorityCredentialGuardSettings(DeviceGuardLocalSystemAuthorityCredentialGuardType deviceGuardLocalSystemAuthorityCredentialGuardSettings)

Returns an immutable copy of this with just the deviceGuardLocalSystemAuthorityCredentialGuardSettings field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Turn on Credential Guard when Platform Security Level with Secure Boot and Virtualization Based Security are both enabled.”

Parameters:

deviceGuardLocalSystemAuthorityCredentialGuardSettings - new value of deviceGuardLocalSystemAuthorityCredentialGuardSettings field (as defined in service metadata)

Returns:

immutable copy of this with just the deviceGuardLocalSystemAuthorityCredentialGuardSettings field changed

getDeviceGuardEnableVirtualizationBasedSecurity

public Optional<Boolean> getDeviceGuardEnableVirtualizationBasedSecurity()

“Turns On Virtualization Based Security(VBS).”

Returns:

property deviceGuardEnableVirtualizationBasedSecurity

withDeviceGuardEnableVirtualizationBasedSecurity

public Windows10EndpointProtectionConfiguration withDeviceGuardEnableVirtualizationBasedSecurity(Boolean deviceGuardEnableVirtualizationBasedSecurity)

Returns an immutable copy of this with just the deviceGuardEnableVirtualizationBasedSecurity field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Turns On Virtualization Based Security(VBS).”

Parameters:

deviceGuardEnableVirtualizationBasedSecurity - new value of deviceGuardEnableVirtualizationBasedSecurity field (as defined in service metadata)

Returns:

immutable copy of this with just the deviceGuardEnableVirtualizationBasedSecurity field changed

getDeviceGuardEnableSecureBootWithDMA

public Optional<Boolean> getDeviceGuardEnableSecureBootWithDMA()

“This property will be deprecated in May 2019 and will be replaced with property DeviceGuardSecureBootWithDMA. Specifies whether Platform Security Level is enabled at next reboot.”

Returns:

property deviceGuardEnableSecureBootWithDMA

withDeviceGuardEnableSecureBootWithDMA

public Windows10EndpointProtectionConfiguration withDeviceGuardEnableSecureBootWithDMA(Boolean deviceGuardEnableSecureBootWithDMA)

Returns an immutable copy of this with just the deviceGuardEnableSecureBootWithDMA field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This property will be deprecated in May 2019 and will be replaced with property DeviceGuardSecureBootWithDMA. Specifies whether Platform Security Level is enabled at next reboot.”

Parameters:

deviceGuardEnableSecureBootWithDMA - new value of deviceGuardEnableSecureBootWithDMA field (as defined in service metadata)

Returns:

immutable copy of this with just the deviceGuardEnableSecureBootWithDMA field changed

getDeviceGuardSecureBootWithDMA

public Optional<SecureBootWithDMAType> getDeviceGuardSecureBootWithDMA()

“Specifies whether Platform Security Level is enabled at next reboot.”

Returns:

property deviceGuardSecureBootWithDMA

withDeviceGuardSecureBootWithDMA

public Windows10EndpointProtectionConfiguration withDeviceGuardSecureBootWithDMA(SecureBootWithDMAType deviceGuardSecureBootWithDMA)

Returns an immutable copy of this with just the deviceGuardSecureBootWithDMA field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Specifies whether Platform Security Level is enabled at next reboot.”

Parameters:

deviceGuardSecureBootWithDMA - new value of deviceGuardSecureBootWithDMA field (as defined in service metadata)

Returns:

immutable copy of this with just the deviceGuardSecureBootWithDMA field changed

getDeviceGuardLaunchSystemGuard

public Optional<Enablement> getDeviceGuardLaunchSystemGuard()

“Allows the IT admin to configure the launch of System Guard.”

Returns:

property deviceGuardLaunchSystemGuard

withDeviceGuardLaunchSystemGuard

public Windows10EndpointProtectionConfiguration withDeviceGuardLaunchSystemGuard(Enablement deviceGuardLaunchSystemGuard)

Returns an immutable copy of this with just the deviceGuardLaunchSystemGuard field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows the IT admin to configure the launch of System Guard.”

Parameters:

deviceGuardLaunchSystemGuard - new value of deviceGuardLaunchSystemGuard field (as defined in service metadata)

Returns:

immutable copy of this with just the deviceGuardLaunchSystemGuard field changed

getSmartScreenEnableInShell

public Optional<Boolean> getSmartScreenEnableInShell()

“Allows IT Admins to configure SmartScreen for Windows.”

Returns:

property smartScreenEnableInShell

withSmartScreenEnableInShell

public Windows10EndpointProtectionConfiguration withSmartScreenEnableInShell(Boolean smartScreenEnableInShell)

Returns an immutable copy of this with just the smartScreenEnableInShell field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows IT Admins to configure SmartScreen for Windows.”

Parameters:

smartScreenEnableInShell - new value of smartScreenEnableInShell field (as defined in service metadata)

Returns:

immutable copy of this with just the smartScreenEnableInShell field changed

getSmartScreenBlockOverrideForFiles

public Optional<Boolean> getSmartScreenBlockOverrideForFiles()

“Allows IT Admins to control whether users can can ignore SmartScreen warnings and run malicious files.”

Returns:

property smartScreenBlockOverrideForFiles

withSmartScreenBlockOverrideForFiles

public Windows10EndpointProtectionConfiguration withSmartScreenBlockOverrideForFiles(Boolean smartScreenBlockOverrideForFiles)

Returns an immutable copy of this with just the smartScreenBlockOverrideForFiles field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows IT Admins to control whether users can can ignore SmartScreen warnings and run malicious files.”

Parameters:

smartScreenBlockOverrideForFiles - new value of smartScreenBlockOverrideForFiles field (as defined in service metadata)

Returns:

immutable copy of this with just the smartScreenBlockOverrideForFiles field changed

getApplicationGuardEnabled

public Optional<Boolean> getApplicationGuardEnabled()

“Enable Windows Defender Application Guard”

Returns:

property applicationGuardEnabled

withApplicationGuardEnabled

public Windows10EndpointProtectionConfiguration withApplicationGuardEnabled(Boolean applicationGuardEnabled)

Returns an immutable copy of this with just the applicationGuardEnabled field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enable Windows Defender Application Guard”

Parameters:

applicationGuardEnabled - new value of applicationGuardEnabled field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardEnabled field changed

getApplicationGuardEnabledOptions

public Optional<ApplicationGuardEnabledOptions> getApplicationGuardEnabledOptions()

“Enable Windows Defender Application Guard for newer Windows builds”

Returns:

property applicationGuardEnabledOptions

withApplicationGuardEnabledOptions

public Windows10EndpointProtectionConfiguration withApplicationGuardEnabledOptions(ApplicationGuardEnabledOptions applicationGuardEnabledOptions)

Returns an immutable copy of this with just the applicationGuardEnabledOptions field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Enable Windows Defender Application Guard for newer Windows builds”

Parameters:

applicationGuardEnabledOptions - new value of applicationGuardEnabledOptions field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardEnabledOptions field changed

getApplicationGuardBlockFileTransfer

public Optional<ApplicationGuardBlockFileTransferType> getApplicationGuardBlockFileTransfer()

“Block clipboard to transfer image file, text file or neither of them”

Returns:

property applicationGuardBlockFileTransfer

withApplicationGuardBlockFileTransfer

public Windows10EndpointProtectionConfiguration withApplicationGuardBlockFileTransfer(ApplicationGuardBlockFileTransferType applicationGuardBlockFileTransfer)

Returns an immutable copy of this with just the applicationGuardBlockFileTransfer field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Block clipboard to transfer image file, text file or neither of them”

Parameters:

applicationGuardBlockFileTransfer - new value of applicationGuardBlockFileTransfer field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardBlockFileTransfer field changed

getApplicationGuardBlockNonEnterpriseContent

public Optional<Boolean> getApplicationGuardBlockNonEnterpriseContent()

“Block enterprise sites to load non-enterprise content, such as third party plug- ins”

Returns:

property applicationGuardBlockNonEnterpriseContent

withApplicationGuardBlockNonEnterpriseContent

public Windows10EndpointProtectionConfiguration withApplicationGuardBlockNonEnterpriseContent(Boolean applicationGuardBlockNonEnterpriseContent)

Returns an immutable copy of this with just the applicationGuardBlockNonEnterpriseContent field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Block enterprise sites to load non-enterprise content, such as third party plug- ins”

Parameters:

applicationGuardBlockNonEnterpriseContent - new value of applicationGuardBlockNonEnterpriseContent field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardBlockNonEnterpriseContent field changed

getApplicationGuardAllowPersistence

public Optional<Boolean> getApplicationGuardAllowPersistence()

“Allow persisting user generated data inside the App Guard Containter (favorites, cookies, web passwords, etc.)”

Returns:

property applicationGuardAllowPersistence

withApplicationGuardAllowPersistence

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowPersistence(Boolean applicationGuardAllowPersistence)

Returns an immutable copy of this with just the applicationGuardAllowPersistence field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow persisting user generated data inside the App Guard Containter (favorites, cookies, web passwords, etc.)”

Parameters:

applicationGuardAllowPersistence - new value of applicationGuardAllowPersistence field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowPersistence field changed

getApplicationGuardForceAuditing

public Optional<Boolean> getApplicationGuardForceAuditing()

“Force auditing will persist Windows logs and events to meet security/compliance criteria (sample events are user login-logoff, use of privilege rights, software installation, system changes, etc.)”

Returns:

property applicationGuardForceAuditing

withApplicationGuardForceAuditing

public Windows10EndpointProtectionConfiguration withApplicationGuardForceAuditing(Boolean applicationGuardForceAuditing)

Returns an immutable copy of this with just the applicationGuardForceAuditing field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Force auditing will persist Windows logs and events to meet security/compliance criteria (sample events are user login-logoff, use of privilege rights, software installation, system changes, etc.)”

Parameters:

applicationGuardForceAuditing - new value of applicationGuardForceAuditing field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardForceAuditing field changed

getApplicationGuardBlockClipboardSharing

public Optional<ApplicationGuardBlockClipboardSharingType> getApplicationGuardBlockClipboardSharing()

“Block clipboard to share data from Host to Container, or from Container to Host, or both ways, or neither ways.”

Returns:

property applicationGuardBlockClipboardSharing

withApplicationGuardBlockClipboardSharing

public Windows10EndpointProtectionConfiguration withApplicationGuardBlockClipboardSharing(ApplicationGuardBlockClipboardSharingType applicationGuardBlockClipboardSharing)

Returns an immutable copy of this with just the applicationGuardBlockClipboardSharing field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Block clipboard to share data from Host to Container, or from Container to Host, or both ways, or neither ways.”

Parameters:

applicationGuardBlockClipboardSharing - new value of applicationGuardBlockClipboardSharing field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardBlockClipboardSharing field changed

getApplicationGuardAllowPrintToPDF

public Optional<Boolean> getApplicationGuardAllowPrintToPDF()

“Allow printing to PDF from Container”

Returns:

property applicationGuardAllowPrintToPDF

withApplicationGuardAllowPrintToPDF

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowPrintToPDF(Boolean applicationGuardAllowPrintToPDF)

Returns an immutable copy of this with just the applicationGuardAllowPrintToPDF field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow printing to PDF from Container”

Parameters:

applicationGuardAllowPrintToPDF - new value of applicationGuardAllowPrintToPDF field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowPrintToPDF field changed

getApplicationGuardAllowPrintToXPS

public Optional<Boolean> getApplicationGuardAllowPrintToXPS()

“Allow printing to XPS from Container”

Returns:

property applicationGuardAllowPrintToXPS

withApplicationGuardAllowPrintToXPS

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowPrintToXPS(Boolean applicationGuardAllowPrintToXPS)

Returns an immutable copy of this with just the applicationGuardAllowPrintToXPS field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow printing to XPS from Container”

Parameters:

applicationGuardAllowPrintToXPS - new value of applicationGuardAllowPrintToXPS field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowPrintToXPS field changed

getApplicationGuardAllowPrintToLocalPrinters

public Optional<Boolean> getApplicationGuardAllowPrintToLocalPrinters()

“Allow printing to Local Printers from Container”

Returns:

property applicationGuardAllowPrintToLocalPrinters

withApplicationGuardAllowPrintToLocalPrinters

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowPrintToLocalPrinters(Boolean applicationGuardAllowPrintToLocalPrinters)

Returns an immutable copy of this with just the applicationGuardAllowPrintToLocalPrinters field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow printing to Local Printers from Container”

Parameters:

applicationGuardAllowPrintToLocalPrinters - new value of applicationGuardAllowPrintToLocalPrinters field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowPrintToLocalPrinters field changed

getApplicationGuardAllowPrintToNetworkPrinters

public Optional<Boolean> getApplicationGuardAllowPrintToNetworkPrinters()

“Allow printing to Network Printers from Container”

Returns:

property applicationGuardAllowPrintToNetworkPrinters

withApplicationGuardAllowPrintToNetworkPrinters

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowPrintToNetworkPrinters(Boolean applicationGuardAllowPrintToNetworkPrinters)

Returns an immutable copy of this with just the applicationGuardAllowPrintToNetworkPrinters field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow printing to Network Printers from Container”

Parameters:

applicationGuardAllowPrintToNetworkPrinters - new value of applicationGuardAllowPrintToNetworkPrinters field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowPrintToNetworkPrinters field changed

getApplicationGuardAllowVirtualGPU

public Optional<Boolean> getApplicationGuardAllowVirtualGPU()

“Allow application guard to use virtual GPU”

Returns:

property applicationGuardAllowVirtualGPU

withApplicationGuardAllowVirtualGPU

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowVirtualGPU(Boolean applicationGuardAllowVirtualGPU)

Returns an immutable copy of this with just the applicationGuardAllowVirtualGPU field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow application guard to use virtual GPU”

Parameters:

applicationGuardAllowVirtualGPU - new value of applicationGuardAllowVirtualGPU field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowVirtualGPU field changed

getApplicationGuardAllowFileSaveOnHost

public Optional<Boolean> getApplicationGuardAllowFileSaveOnHost()

“Allow users to download files from Edge in the application guard container and save them on the host file system”

Returns:

property applicationGuardAllowFileSaveOnHost

withApplicationGuardAllowFileSaveOnHost

public Windows10EndpointProtectionConfiguration withApplicationGuardAllowFileSaveOnHost(Boolean applicationGuardAllowFileSaveOnHost)

Returns an immutable copy of this with just the applicationGuardAllowFileSaveOnHost field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allow users to download files from Edge in the application guard container and save them on the host file system”

Parameters:

applicationGuardAllowFileSaveOnHost - new value of applicationGuardAllowFileSaveOnHost field (as defined in service metadata)

Returns:

immutable copy of this with just the applicationGuardAllowFileSaveOnHost field changed

getBitLockerAllowStandardUserEncryption

public Optional<Boolean> getBitLockerAllowStandardUserEncryption()

“Allows the admin to allow standard users to enable encrpytion during Azure AD Join.”

Returns:

property bitLockerAllowStandardUserEncryption

withBitLockerAllowStandardUserEncryption

public Windows10EndpointProtectionConfiguration withBitLockerAllowStandardUserEncryption(Boolean bitLockerAllowStandardUserEncryption)

Returns an immutable copy of this with just the bitLockerAllowStandardUserEncryption field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows the admin to allow standard users to enable encrpytion during Azure AD Join.”

Parameters:

bitLockerAllowStandardUserEncryption - new value of bitLockerAllowStandardUserEncryption field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerAllowStandardUserEncryption field changed

getBitLockerDisableWarningForOtherDiskEncryption

public Optional<Boolean> getBitLockerDisableWarningForOtherDiskEncryption()

“Allows the Admin to disable the warning prompt for other disk encryption on the user machines.”

Returns:

property bitLockerDisableWarningForOtherDiskEncryption

withBitLockerDisableWarningForOtherDiskEncryption

public Windows10EndpointProtectionConfiguration withBitLockerDisableWarningForOtherDiskEncryption(Boolean bitLockerDisableWarningForOtherDiskEncryption)

Returns an immutable copy of this with just the bitLockerDisableWarningForOtherDiskEncryption field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows the Admin to disable the warning prompt for other disk encryption on the user machines.”

Parameters:

bitLockerDisableWarningForOtherDiskEncryption - new value of bitLockerDisableWarningForOtherDiskEncryption field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerDisableWarningForOtherDiskEncryption field changed

getBitLockerEnableStorageCardEncryptionOnMobile

public Optional<Boolean> getBitLockerEnableStorageCardEncryptionOnMobile()

“Allows the admin to require encryption to be turned on using BitLocker. This policy is valid only for a mobile SKU.”

Returns:

property bitLockerEnableStorageCardEncryptionOnMobile

withBitLockerEnableStorageCardEncryptionOnMobile

public Windows10EndpointProtectionConfiguration withBitLockerEnableStorageCardEncryptionOnMobile(Boolean bitLockerEnableStorageCardEncryptionOnMobile)

Returns an immutable copy of this with just the bitLockerEnableStorageCardEncryptionOnMobile field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows the admin to require encryption to be turned on using BitLocker. This policy is valid only for a mobile SKU.”

Parameters:

bitLockerEnableStorageCardEncryptionOnMobile - new value of bitLockerEnableStorageCardEncryptionOnMobile field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerEnableStorageCardEncryptionOnMobile field changed

getBitLockerEncryptDevice

public Optional<Boolean> getBitLockerEncryptDevice()

“Allows the admin to require encryption to be turned on using BitLocker.”

Returns:

property bitLockerEncryptDevice

withBitLockerEncryptDevice

public Windows10EndpointProtectionConfiguration withBitLockerEncryptDevice(Boolean bitLockerEncryptDevice)

Returns an immutable copy of this with just the bitLockerEncryptDevice field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows the admin to require encryption to be turned on using BitLocker.”

Parameters:

bitLockerEncryptDevice - new value of bitLockerEncryptDevice field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerEncryptDevice field changed

getBitLockerSystemDrivePolicy

public Optional<BitLockerSystemDrivePolicy> getBitLockerSystemDrivePolicy()

“BitLocker System Drive Policy.”

Returns:

property bitLockerSystemDrivePolicy

withBitLockerSystemDrivePolicy

public Windows10EndpointProtectionConfiguration withBitLockerSystemDrivePolicy(BitLockerSystemDrivePolicy bitLockerSystemDrivePolicy)

Returns an immutable copy of this with just the bitLockerSystemDrivePolicy field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“BitLocker System Drive Policy.”

Parameters:

bitLockerSystemDrivePolicy - new value of bitLockerSystemDrivePolicy field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerSystemDrivePolicy field changed

getBitLockerFixedDrivePolicy

public Optional<BitLockerFixedDrivePolicy> getBitLockerFixedDrivePolicy()

“BitLocker Fixed Drive Policy.”

Returns:

property bitLockerFixedDrivePolicy

withBitLockerFixedDrivePolicy

public Windows10EndpointProtectionConfiguration withBitLockerFixedDrivePolicy(BitLockerFixedDrivePolicy bitLockerFixedDrivePolicy)

Returns an immutable copy of this with just the bitLockerFixedDrivePolicy field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“BitLocker Fixed Drive Policy.”

Parameters:

bitLockerFixedDrivePolicy - new value of bitLockerFixedDrivePolicy field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerFixedDrivePolicy field changed

getBitLockerRemovableDrivePolicy

public Optional<BitLockerRemovableDrivePolicy> getBitLockerRemovableDrivePolicy()

“BitLocker Removable Drive Policy.”

Returns:

property bitLockerRemovableDrivePolicy

withBitLockerRemovableDrivePolicy

public Windows10EndpointProtectionConfiguration withBitLockerRemovableDrivePolicy(BitLockerRemovableDrivePolicy bitLockerRemovableDrivePolicy)

Returns an immutable copy of this with just the bitLockerRemovableDrivePolicy field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“BitLocker Removable Drive Policy.”

Parameters:

bitLockerRemovableDrivePolicy - new value of bitLockerRemovableDrivePolicy field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerRemovableDrivePolicy field changed

getBitLockerRecoveryPasswordRotation

public Optional<BitLockerRecoveryPasswordRotationType> getBitLockerRecoveryPasswordRotation()

“This setting initiates a client-driven recovery password rotation after an OS drive recovery (either by using bootmgr or WinRE).”

Returns:

property bitLockerRecoveryPasswordRotation

withBitLockerRecoveryPasswordRotation

public Windows10EndpointProtectionConfiguration withBitLockerRecoveryPasswordRotation(BitLockerRecoveryPasswordRotationType bitLockerRecoveryPasswordRotation)

Returns an immutable copy of this with just the bitLockerRecoveryPasswordRotation field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This setting initiates a client-driven recovery password rotation after an OS drive recovery (either by using bootmgr or WinRE).”

Parameters:

bitLockerRecoveryPasswordRotation - new value of bitLockerRecoveryPasswordRotation field (as defined in service metadata)

Returns:

immutable copy of this with just the bitLockerRecoveryPasswordRotation field changed

getDefenderDisableScanArchiveFiles

public Optional<Boolean> getDefenderDisableScanArchiveFiles()

“Allows or disallows scanning of archives.”

Returns:

property defenderDisableScanArchiveFiles

withDefenderDisableScanArchiveFiles

public Windows10EndpointProtectionConfiguration withDefenderDisableScanArchiveFiles(Boolean defenderDisableScanArchiveFiles)

Returns an immutable copy of this with just the defenderDisableScanArchiveFiles field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows scanning of archives.”

Parameters:

defenderDisableScanArchiveFiles - new value of defenderDisableScanArchiveFiles field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableScanArchiveFiles field changed

getDefenderAllowScanArchiveFiles

public Optional<Boolean> getDefenderAllowScanArchiveFiles()

“Allows or disallows scanning of archives.”

Returns:

property defenderAllowScanArchiveFiles

withDefenderAllowScanArchiveFiles

public Windows10EndpointProtectionConfiguration withDefenderAllowScanArchiveFiles(Boolean defenderAllowScanArchiveFiles)

Returns an immutable copy of this with just the defenderAllowScanArchiveFiles field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows scanning of archives.”

Parameters:

defenderAllowScanArchiveFiles - new value of defenderAllowScanArchiveFiles field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowScanArchiveFiles field changed

getDefenderDisableBehaviorMonitoring

public Optional<Boolean> getDefenderDisableBehaviorMonitoring()

“Allows or disallows Windows Defender Behavior Monitoring functionality.”

Returns:

property defenderDisableBehaviorMonitoring

withDefenderDisableBehaviorMonitoring

public Windows10EndpointProtectionConfiguration withDefenderDisableBehaviorMonitoring(Boolean defenderDisableBehaviorMonitoring)

Returns an immutable copy of this with just the defenderDisableBehaviorMonitoring field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Behavior Monitoring functionality.”

Parameters:

defenderDisableBehaviorMonitoring - new value of defenderDisableBehaviorMonitoring field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableBehaviorMonitoring field changed

getDefenderAllowBehaviorMonitoring

public Optional<Boolean> getDefenderAllowBehaviorMonitoring()

“Allows or disallows Windows Defender Behavior Monitoring functionality.”

Returns:

property defenderAllowBehaviorMonitoring

withDefenderAllowBehaviorMonitoring

public Windows10EndpointProtectionConfiguration withDefenderAllowBehaviorMonitoring(Boolean defenderAllowBehaviorMonitoring)

Returns an immutable copy of this with just the defenderAllowBehaviorMonitoring field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Behavior Monitoring functionality.”

Parameters:

defenderAllowBehaviorMonitoring - new value of defenderAllowBehaviorMonitoring field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowBehaviorMonitoring field changed

getDefenderDisableCloudProtection

public Optional<Boolean> getDefenderDisableCloudProtection()

“To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.”

Returns:

property defenderDisableCloudProtection

withDefenderDisableCloudProtection

public Windows10EndpointProtectionConfiguration withDefenderDisableCloudProtection(Boolean defenderDisableCloudProtection)

Returns an immutable copy of this with just the defenderDisableCloudProtection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.”

Parameters:

defenderDisableCloudProtection - new value of defenderDisableCloudProtection field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableCloudProtection field changed

getDefenderAllowCloudProtection

public Optional<Boolean> getDefenderAllowCloudProtection()

“To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.”

Returns:

property defenderAllowCloudProtection

withDefenderAllowCloudProtection

public Windows10EndpointProtectionConfiguration withDefenderAllowCloudProtection(Boolean defenderAllowCloudProtection)

Returns an immutable copy of this with just the defenderAllowCloudProtection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.”

Parameters:

defenderAllowCloudProtection - new value of defenderAllowCloudProtection field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowCloudProtection field changed

getDefenderEnableScanIncomingMail

public Optional<Boolean> getDefenderEnableScanIncomingMail()

“Allows or disallows scanning of email.”

Returns:

property defenderEnableScanIncomingMail

withDefenderEnableScanIncomingMail

public Windows10EndpointProtectionConfiguration withDefenderEnableScanIncomingMail(Boolean defenderEnableScanIncomingMail)

Returns an immutable copy of this with just the defenderEnableScanIncomingMail field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows scanning of email.”

Parameters:

defenderEnableScanIncomingMail - new value of defenderEnableScanIncomingMail field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderEnableScanIncomingMail field changed

getDefenderEnableScanMappedNetworkDrivesDuringFullScan

public Optional<Boolean> getDefenderEnableScanMappedNetworkDrivesDuringFullScan()

“Allows or disallows a full scan of mapped network drives.”

Returns:

property defenderEnableScanMappedNetworkDrivesDuringFullScan

withDefenderEnableScanMappedNetworkDrivesDuringFullScan

public Windows10EndpointProtectionConfiguration withDefenderEnableScanMappedNetworkDrivesDuringFullScan(Boolean defenderEnableScanMappedNetworkDrivesDuringFullScan)

Returns an immutable copy of this with just the defenderEnableScanMappedNetworkDrivesDuringFullScan field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows a full scan of mapped network drives.”

Parameters:

defenderEnableScanMappedNetworkDrivesDuringFullScan - new value of defenderEnableScanMappedNetworkDrivesDuringFullScan field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderEnableScanMappedNetworkDrivesDuringFullScan field changed

getDefenderDisableScanRemovableDrivesDuringFullScan

public Optional<Boolean> getDefenderDisableScanRemovableDrivesDuringFullScan()

“Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.”

Returns:

property defenderDisableScanRemovableDrivesDuringFullScan

withDefenderDisableScanRemovableDrivesDuringFullScan

public Windows10EndpointProtectionConfiguration withDefenderDisableScanRemovableDrivesDuringFullScan(Boolean defenderDisableScanRemovableDrivesDuringFullScan)

Returns an immutable copy of this with just the defenderDisableScanRemovableDrivesDuringFullScan field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.”

Parameters:

defenderDisableScanRemovableDrivesDuringFullScan - new value of defenderDisableScanRemovableDrivesDuringFullScan field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableScanRemovableDrivesDuringFullScan field changed

getDefenderAllowScanRemovableDrivesDuringFullScan

public Optional<Boolean> getDefenderAllowScanRemovableDrivesDuringFullScan()

“Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.”

Returns:

property defenderAllowScanRemovableDrivesDuringFullScan

withDefenderAllowScanRemovableDrivesDuringFullScan

public Windows10EndpointProtectionConfiguration withDefenderAllowScanRemovableDrivesDuringFullScan(Boolean defenderAllowScanRemovableDrivesDuringFullScan)

Returns an immutable copy of this with just the defenderAllowScanRemovableDrivesDuringFullScan field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.”

Parameters:

defenderAllowScanRemovableDrivesDuringFullScan - new value of defenderAllowScanRemovableDrivesDuringFullScan field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowScanRemovableDrivesDuringFullScan field changed

getDefenderDisableScanDownloads

public Optional<Boolean> getDefenderDisableScanDownloads()

“Allows or disallows Windows Defender IOAVP Protection functionality.”

Returns:

property defenderDisableScanDownloads

withDefenderDisableScanDownloads

public Windows10EndpointProtectionConfiguration withDefenderDisableScanDownloads(Boolean defenderDisableScanDownloads)

Returns an immutable copy of this with just the defenderDisableScanDownloads field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender IOAVP Protection functionality.”

Parameters:

defenderDisableScanDownloads - new value of defenderDisableScanDownloads field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableScanDownloads field changed

getDefenderAllowScanDownloads

public Optional<Boolean> getDefenderAllowScanDownloads()

“Allows or disallows Windows Defender IOAVP Protection functionality.”

Returns:

property defenderAllowScanDownloads

withDefenderAllowScanDownloads

public Windows10EndpointProtectionConfiguration withDefenderAllowScanDownloads(Boolean defenderAllowScanDownloads)

Returns an immutable copy of this with just the defenderAllowScanDownloads field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender IOAVP Protection functionality.”

Parameters:

defenderAllowScanDownloads - new value of defenderAllowScanDownloads field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowScanDownloads field changed

getDefenderDisableIntrusionPreventionSystem

public Optional<Boolean> getDefenderDisableIntrusionPreventionSystem()

“Allows or disallows Windows Defender Intrusion Prevention functionality.”

Returns:

property defenderDisableIntrusionPreventionSystem

withDefenderDisableIntrusionPreventionSystem

public Windows10EndpointProtectionConfiguration withDefenderDisableIntrusionPreventionSystem(Boolean defenderDisableIntrusionPreventionSystem)

Returns an immutable copy of this with just the defenderDisableIntrusionPreventionSystem field changed. Field description below . The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Intrusion Prevention functionality.”

Parameters:

defenderDisableIntrusionPreventionSystem - new value of defenderDisableIntrusionPreventionSystem field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableIntrusionPreventionSystem field changed

getDefenderAllowIntrusionPreventionSystem

public Optional<Boolean> getDefenderAllowIntrusionPreventionSystem()

“Allows or disallows Windows Defender Intrusion Prevention functionality.”

Returns:

property defenderAllowIntrusionPreventionSystem

withDefenderAllowIntrusionPreventionSystem

public Windows10EndpointProtectionConfiguration withDefenderAllowIntrusionPreventionSystem(Boolean defenderAllowIntrusionPreventionSystem)

Returns an immutable copy of this with just the defenderAllowIntrusionPreventionSystem field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Intrusion Prevention functionality.”

Parameters:

defenderAllowIntrusionPreventionSystem - new value of defenderAllowIntrusionPreventionSystem field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowIntrusionPreventionSystem field changed

getDefenderDisableOnAccessProtection

public Optional<Boolean> getDefenderDisableOnAccessProtection()

“Allows or disallows Windows Defender On Access Protection functionality.”

Returns:

property defenderDisableOnAccessProtection

withDefenderDisableOnAccessProtection

public Windows10EndpointProtectionConfiguration withDefenderDisableOnAccessProtection(Boolean defenderDisableOnAccessProtection)

Returns an immutable copy of this with just the defenderDisableOnAccessProtection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender On Access Protection functionality.”

Parameters:

defenderDisableOnAccessProtection - new value of defenderDisableOnAccessProtection field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableOnAccessProtection field changed

getDefenderAllowOnAccessProtection

public Optional<Boolean> getDefenderAllowOnAccessProtection()

“Allows or disallows Windows Defender On Access Protection functionality.”

Returns:

property defenderAllowOnAccessProtection

withDefenderAllowOnAccessProtection

public Windows10EndpointProtectionConfiguration withDefenderAllowOnAccessProtection(Boolean defenderAllowOnAccessProtection)

Returns an immutable copy of this with just the defenderAllowOnAccessProtection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender On Access Protection functionality.”

Parameters:

defenderAllowOnAccessProtection - new value of defenderAllowOnAccessProtection field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowOnAccessProtection field changed

getDefenderDisableRealTimeMonitoring

public Optional<Boolean> getDefenderDisableRealTimeMonitoring()

“Allows or disallows Windows Defender Realtime Monitoring functionality.”

Returns:

property defenderDisableRealTimeMonitoring

withDefenderDisableRealTimeMonitoring

public Windows10EndpointProtectionConfiguration withDefenderDisableRealTimeMonitoring(Boolean defenderDisableRealTimeMonitoring)

Returns an immutable copy of this with just the defenderDisableRealTimeMonitoring field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Realtime Monitoring functionality.”

Parameters:

defenderDisableRealTimeMonitoring - new value of defenderDisableRealTimeMonitoring field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableRealTimeMonitoring field changed

getDefenderAllowRealTimeMonitoring

public Optional<Boolean> getDefenderAllowRealTimeMonitoring()

“Allows or disallows Windows Defender Realtime Monitoring functionality.”

Returns:

property defenderAllowRealTimeMonitoring

withDefenderAllowRealTimeMonitoring

public Windows10EndpointProtectionConfiguration withDefenderAllowRealTimeMonitoring(Boolean defenderAllowRealTimeMonitoring)

Returns an immutable copy of this with just the defenderAllowRealTimeMonitoring field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Realtime Monitoring functionality.”

Parameters:

defenderAllowRealTimeMonitoring - new value of defenderAllowRealTimeMonitoring field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowRealTimeMonitoring field changed

getDefenderDisableScanNetworkFiles

public Optional<Boolean> getDefenderDisableScanNetworkFiles()

“Allows or disallows a scanning of network files.”

Returns:

property defenderDisableScanNetworkFiles

withDefenderDisableScanNetworkFiles

public Windows10EndpointProtectionConfiguration withDefenderDisableScanNetworkFiles(Boolean defenderDisableScanNetworkFiles)

Returns an immutable copy of this with just the defenderDisableScanNetworkFiles field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows a scanning of network files.”

Parameters:

defenderDisableScanNetworkFiles - new value of defenderDisableScanNetworkFiles field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableScanNetworkFiles field changed

getDefenderAllowScanNetworkFiles

public Optional<Boolean> getDefenderAllowScanNetworkFiles()

“Allows or disallows a scanning of network files.”

Returns:

property defenderAllowScanNetworkFiles

withDefenderAllowScanNetworkFiles

public Windows10EndpointProtectionConfiguration withDefenderAllowScanNetworkFiles(Boolean defenderAllowScanNetworkFiles)

Returns an immutable copy of this with just the defenderAllowScanNetworkFiles field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows a scanning of network files.”

Parameters:

defenderAllowScanNetworkFiles - new value of defenderAllowScanNetworkFiles field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowScanNetworkFiles field changed

getDefenderDisableScanScriptsLoadedInInternetExplorer

public Optional<Boolean> getDefenderDisableScanScriptsLoadedInInternetExplorer()

“Allows or disallows Windows Defender Script Scanning functionality.”

Returns:

property defenderDisableScanScriptsLoadedInInternetExplorer

withDefenderDisableScanScriptsLoadedInInternetExplorer

public Windows10EndpointProtectionConfiguration withDefenderDisableScanScriptsLoadedInInternetExplorer(Boolean defenderDisableScanScriptsLoadedInInternetExplorer)

Returns an immutable copy of this with just the defenderDisableScanScriptsLoadedInInternetExplorer field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Script Scanning functionality.”

Parameters:

defenderDisableScanScriptsLoadedInInternetExplorer - new value of defenderDisableScanScriptsLoadedInInternetExplorer field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableScanScriptsLoadedInInternetExplorer field changed

getDefenderAllowScanScriptsLoadedInInternetExplorer

public Optional<Boolean> getDefenderAllowScanScriptsLoadedInInternetExplorer()

“Allows or disallows Windows Defender Script Scanning functionality.”

Returns:

property defenderAllowScanScriptsLoadedInInternetExplorer

withDefenderAllowScanScriptsLoadedInInternetExplorer

public Windows10EndpointProtectionConfiguration withDefenderAllowScanScriptsLoadedInInternetExplorer(Boolean defenderAllowScanScriptsLoadedInInternetExplorer)

Returns an immutable copy of this with just the defenderAllowScanScriptsLoadedInInternetExplorer field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows Windows Defender Script Scanning functionality.”

Parameters:

defenderAllowScanScriptsLoadedInInternetExplorer - new value of defenderAllowScanScriptsLoadedInInternetExplorer field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowScanScriptsLoadedInInternetExplorer field changed

getDefenderBlockEndUserAccess

public Optional<Boolean> getDefenderBlockEndUserAccess()

“Allows or disallows user access to the Windows Defender UI. If disallowed, all Windows Defender notifications will also be suppressed.”

Returns:

property defenderBlockEndUserAccess

withDefenderBlockEndUserAccess

public Windows10EndpointProtectionConfiguration withDefenderBlockEndUserAccess(Boolean defenderBlockEndUserAccess)

Returns an immutable copy of this with just the defenderBlockEndUserAccess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows user access to the Windows Defender UI. If disallowed, all Windows Defender notifications will also be suppressed.”

Parameters:

defenderBlockEndUserAccess - new value of defenderBlockEndUserAccess field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderBlockEndUserAccess field changed

getDefenderAllowEndUserAccess

public Optional<Boolean> getDefenderAllowEndUserAccess()

“Allows or disallows user access to the Windows Defender UI. If disallowed, all Windows Defender notifications will also be suppressed.”

Returns:

property defenderAllowEndUserAccess

withDefenderAllowEndUserAccess

public Windows10EndpointProtectionConfiguration withDefenderAllowEndUserAccess(Boolean defenderAllowEndUserAccess)

Returns an immutable copy of this with just the defenderAllowEndUserAccess field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows or disallows user access to the Windows Defender UI. If disallowed, all Windows Defender notifications will also be suppressed.”

Parameters:

defenderAllowEndUserAccess - new value of defenderAllowEndUserAccess field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderAllowEndUserAccess field changed

getDefenderScanMaxCpuPercentage

public Optional<Integer> getDefenderScanMaxCpuPercentage()

“Represents the average CPU load factor for the Windows Defender scan (in percent ). The default value is 50. Valid values 0 to 100”

Returns:

property defenderScanMaxCpuPercentage

withDefenderScanMaxCpuPercentage

public Windows10EndpointProtectionConfiguration withDefenderScanMaxCpuPercentage(Integer defenderScanMaxCpuPercentage)

Returns an immutable copy of this with just the defenderScanMaxCpuPercentage field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Represents the average CPU load factor for the Windows Defender scan (in percent ). The default value is 50. Valid values 0 to 100”

Parameters:

defenderScanMaxCpuPercentage - new value of defenderScanMaxCpuPercentage field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScanMaxCpuPercentage field changed

getDefenderCheckForSignaturesBeforeRunningScan

public Optional<Boolean> getDefenderCheckForSignaturesBeforeRunningScan()

“This policy setting allows you to manage whether a check for new virus and spyware definitions will occur before running a scan.”

Returns:

property defenderCheckForSignaturesBeforeRunningScan

withDefenderCheckForSignaturesBeforeRunningScan

public Windows10EndpointProtectionConfiguration withDefenderCheckForSignaturesBeforeRunningScan(Boolean defenderCheckForSignaturesBeforeRunningScan)

Returns an immutable copy of this with just the defenderCheckForSignaturesBeforeRunningScan field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This policy setting allows you to manage whether a check for new virus and spyware definitions will occur before running a scan.”

Parameters:

defenderCheckForSignaturesBeforeRunningScan - new value of defenderCheckForSignaturesBeforeRunningScan field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderCheckForSignaturesBeforeRunningScan field changed

getDefenderCloudBlockLevel

public Optional<DefenderCloudBlockLevelType> getDefenderCloudBlockLevel()

“Added in Windows 10, version 1709. This policy setting determines how aggressive Windows Defender Antivirus will be in blocking and scanning suspicious files. Value type is integer. This feature requires the "Join Microsoft MAPS" setting enabled in order to function.”

Returns:

property defenderCloudBlockLevel

withDefenderCloudBlockLevel

public Windows10EndpointProtectionConfiguration withDefenderCloudBlockLevel(DefenderCloudBlockLevelType defenderCloudBlockLevel)

Returns an immutable copy of this with just the defenderCloudBlockLevel field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Added in Windows 10, version 1709. This policy setting determines how aggressive Windows Defender Antivirus will be in blocking and scanning suspicious files. Value type is integer. This feature requires the "Join Microsoft MAPS" setting enabled in order to function.”

Parameters:

defenderCloudBlockLevel - new value of defenderCloudBlockLevel field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderCloudBlockLevel field changed

getDefenderCloudExtendedTimeoutInSeconds

public Optional<Integer> getDefenderCloudExtendedTimeoutInSeconds()

“Added in Windows 10, version 1709. This feature allows Windows Defender Antivirus to block a suspicious file for up to 60 seconds, and scan it in the cloud to make sure it's safe. Value type is integer, range is 0 - 50. This feature depends on three other MAPS settings the must all be enabled- "Configure the 'Block at First Sight' feature; "Join Microsoft MAPS"; "Send file samples when further analysis is required". Valid values 0 to 50”

Returns:

property defenderCloudExtendedTimeoutInSeconds

withDefenderCloudExtendedTimeoutInSeconds

public Windows10EndpointProtectionConfiguration withDefenderCloudExtendedTimeoutInSeconds(Integer defenderCloudExtendedTimeoutInSeconds)

Returns an immutable copy of this with just the defenderCloudExtendedTimeoutInSeconds field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Added in Windows 10, version 1709. This feature allows Windows Defender Antivirus to block a suspicious file for up to 60 seconds, and scan it in the cloud to make sure it's safe. Value type is integer, range is 0 - 50. This feature depends on three other MAPS settings the must all be enabled- "Configure the 'Block at First Sight' feature; "Join Microsoft MAPS"; "Send file samples when further analysis is required". Valid values 0 to 50”

Parameters:

defenderCloudExtendedTimeoutInSeconds - new value of defenderCloudExtendedTimeoutInSeconds field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderCloudExtendedTimeoutInSeconds field changed

getDefenderDaysBeforeDeletingQuarantinedMalware

public Optional<Integer> getDefenderDaysBeforeDeletingQuarantinedMalware()

“Time period (in days) that quarantine items will be stored on the system. Valid values 0 to 90”

Returns:

property defenderDaysBeforeDeletingQuarantinedMalware

withDefenderDaysBeforeDeletingQuarantinedMalware

public Windows10EndpointProtectionConfiguration withDefenderDaysBeforeDeletingQuarantinedMalware(Integer defenderDaysBeforeDeletingQuarantinedMalware)

Returns an immutable copy of this with just the defenderDaysBeforeDeletingQuarantinedMalware field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Time period (in days) that quarantine items will be stored on the system. Valid values 0 to 90”

Parameters:

defenderDaysBeforeDeletingQuarantinedMalware - new value of defenderDaysBeforeDeletingQuarantinedMalware field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDaysBeforeDeletingQuarantinedMalware field changed

getDefenderDisableCatchupFullScan

public Optional<Boolean> getDefenderDisableCatchupFullScan()

“This policy setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.”

Returns:

property defenderDisableCatchupFullScan

withDefenderDisableCatchupFullScan

public Windows10EndpointProtectionConfiguration withDefenderDisableCatchupFullScan(Boolean defenderDisableCatchupFullScan)

Returns an immutable copy of this with just the defenderDisableCatchupFullScan field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This policy setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.”

Parameters:

defenderDisableCatchupFullScan - new value of defenderDisableCatchupFullScan field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableCatchupFullScan field changed

getDefenderDisableCatchupQuickScan

public Optional<Boolean> getDefenderDisableCatchupQuickScan()

“This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.”

Returns:

property defenderDisableCatchupQuickScan

withDefenderDisableCatchupQuickScan

public Windows10EndpointProtectionConfiguration withDefenderDisableCatchupQuickScan(Boolean defenderDisableCatchupQuickScan)

Returns an immutable copy of this with just the defenderDisableCatchupQuickScan field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.”

Parameters:

defenderDisableCatchupQuickScan - new value of defenderDisableCatchupQuickScan field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDisableCatchupQuickScan field changed

getDefenderEnableLowCpuPriority

public Optional<Boolean> getDefenderEnableLowCpuPriority()

“This policy setting allows you to enable or disable low CPU priority for scheduled scans.”

Returns:

property defenderEnableLowCpuPriority

withDefenderEnableLowCpuPriority

public Windows10EndpointProtectionConfiguration withDefenderEnableLowCpuPriority(Boolean defenderEnableLowCpuPriority)

Returns an immutable copy of this with just the defenderEnableLowCpuPriority field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“This policy setting allows you to enable or disable low CPU priority for scheduled scans.”

Parameters:

defenderEnableLowCpuPriority - new value of defenderEnableLowCpuPriority field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderEnableLowCpuPriority field changed

getDefenderFileExtensionsToExclude

public com.github.davidmoten.odata.client.CollectionPage<String> getDefenderFileExtensionsToExclude()

“File extensions to exclude from scans and real time protection.”

Returns:

property defenderFileExtensionsToExclude

getDefenderFilesAndFoldersToExclude

public com.github.davidmoten.odata.client.CollectionPage<String> getDefenderFilesAndFoldersToExclude()

“Files and folder to exclude from scans and real time protection.”

Returns:

property defenderFilesAndFoldersToExclude

getDefenderProcessesToExclude

public com.github.davidmoten.odata.client.CollectionPage<String> getDefenderProcessesToExclude()

“Processes to exclude from scans and real time protection.”

Returns:

property defenderProcessesToExclude

getDefenderPotentiallyUnwantedAppAction

public Optional<DefenderProtectionType> getDefenderPotentiallyUnwantedAppAction()

“Added in Windows 10, version 1607. Specifies the level of detection for potentially unwanted applications (PUAs). Windows Defender alerts you when potentially unwanted software is being downloaded or attempts to install itself on your computer.”

Returns:

property defenderPotentiallyUnwantedAppAction

withDefenderPotentiallyUnwantedAppAction

public Windows10EndpointProtectionConfiguration withDefenderPotentiallyUnwantedAppAction(DefenderProtectionType defenderPotentiallyUnwantedAppAction)

Returns an immutable copy of this with just the defenderPotentiallyUnwantedAppAction field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Added in Windows 10, version 1607. Specifies the level of detection for potentially unwanted applications (PUAs). Windows Defender alerts you when potentially unwanted software is being downloaded or attempts to install itself on your computer.”

Parameters:

defenderPotentiallyUnwantedAppAction - new value of defenderPotentiallyUnwantedAppAction field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderPotentiallyUnwantedAppAction field changed

getDefenderScanDirection

public Optional<DefenderRealtimeScanDirection> getDefenderScanDirection()

“Controls which sets of files should be monitored.”

Returns:

property defenderScanDirection

withDefenderScanDirection

public Windows10EndpointProtectionConfiguration withDefenderScanDirection(DefenderRealtimeScanDirection defenderScanDirection)

Returns an immutable copy of this with just the defenderScanDirection field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Controls which sets of files should be monitored.”

Parameters:

defenderScanDirection - new value of defenderScanDirection field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScanDirection field changed

getDefenderScanType

public Optional<DefenderScanType> getDefenderScanType()

“Selects whether to perform a quick scan or full scan.”

Returns:

property defenderScanType

withDefenderScanType

public Windows10EndpointProtectionConfiguration withDefenderScanType(DefenderScanType defenderScanType)

Returns an immutable copy of this with just the defenderScanType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this. patch() is called (if available)on the returned object only the changed fields are submitted.

“Selects whether to perform a quick scan or full scan.”

Parameters:

defenderScanType - new value of defenderScanType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScanType field changed

getDefenderScheduledQuickScanTime

public Optional<LocalTime> getDefenderScheduledQuickScanTime()

“Selects the time of day that the Windows Defender quick scan should run. For example, a value of 0=12:00AM, a value of 60=1:00AM, a value of 120=2:00, and so on, up to a value of 1380=11:00PM. The default value is 120”

Returns:

property defenderScheduledQuickScanTime

withDefenderScheduledQuickScanTime

public Windows10EndpointProtectionConfiguration withDefenderScheduledQuickScanTime(LocalTime defenderScheduledQuickScanTime)

Returns an immutable copy of this with just the defenderScheduledQuickScanTime field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Selects the time of day that the Windows Defender quick scan should run. For example, a value of 0=12:00AM, a value of 60=1:00AM, a value of 120=2:00, and so on, up to a value of 1380=11:00PM. The default value is 120”

Parameters:

defenderScheduledQuickScanTime - new value of defenderScheduledQuickScanTime field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScheduledQuickScanTime field changed

getDefenderScheduledScanDay

public Optional<WeeklySchedule> getDefenderScheduledScanDay()

“Selects the day that the Windows Defender scan should run.”

Returns:

property defenderScheduledScanDay

withDefenderScheduledScanDay

public Windows10EndpointProtectionConfiguration withDefenderScheduledScanDay(WeeklySchedule defenderScheduledScanDay)

Returns an immutable copy of this with just the defenderScheduledScanDay field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Selects the day that the Windows Defender scan should run.”

Parameters:

defenderScheduledScanDay - new value of defenderScheduledScanDay field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScheduledScanDay field changed

getDefenderScheduledScanTime

public Optional<LocalTime> getDefenderScheduledScanTime()

“Selects the time of day that the Windows Defender scan should run.”

Returns:

property defenderScheduledScanTime

withDefenderScheduledScanTime

public Windows10EndpointProtectionConfiguration withDefenderScheduledScanTime(LocalTime defenderScheduledScanTime)

Returns an immutable copy of this with just the defenderScheduledScanTime field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Selects the time of day that the Windows Defender scan should run.”

Parameters:

defenderScheduledScanTime - new value of defenderScheduledScanTime field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderScheduledScanTime field changed

getDefenderSignatureUpdateIntervalInHours

public Optional<Integer> getDefenderSignatureUpdateIntervalInHours()

“Specifies the interval (in hours) that will be used to check for signatures, so instead of using the ScheduleDay and ScheduleTime the check for new signatures will be set according to the interval. Valid values 0 to 24”

Returns:

property defenderSignatureUpdateIntervalInHours

withDefenderSignatureUpdateIntervalInHours

public Windows10EndpointProtectionConfiguration withDefenderSignatureUpdateIntervalInHours(Integer defenderSignatureUpdateIntervalInHours)

Returns an immutable copy of this with just the defenderSignatureUpdateIntervalInHours field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Specifies the interval (in hours) that will be used to check for signatures, so instead of using the ScheduleDay and ScheduleTime the check for new signatures will be set according to the interval. Valid values 0 to 24”

Parameters:

defenderSignatureUpdateIntervalInHours - new value of defenderSignatureUpdateIntervalInHours field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSignatureUpdateIntervalInHours field changed

getDefenderSubmitSamplesConsentType

public Optional<DefenderSubmitSamplesConsentType> getDefenderSubmitSamplesConsentType()

“Checks for the user consent level in Windows Defender to send data.”

Returns:

property defenderSubmitSamplesConsentType

withDefenderSubmitSamplesConsentType

public Windows10EndpointProtectionConfiguration withDefenderSubmitSamplesConsentType(DefenderSubmitSamplesConsentType defenderSubmitSamplesConsentType)

Returns an immutable copy of this with just the defenderSubmitSamplesConsentType field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Checks for the user consent level in Windows Defender to send data.”

Parameters:

defenderSubmitSamplesConsentType - new value of defenderSubmitSamplesConsentType field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderSubmitSamplesConsentType field changed

getDefenderDetectedMalwareActions

public Optional<DefenderDetectedMalwareActions> getDefenderDetectedMalwareActions()

“Allows an administrator to specify any valid threat severity levels and the corresponding default action ID to take.”

Returns:

property defenderDetectedMalwareActions

withDefenderDetectedMalwareActions

public Windows10EndpointProtectionConfiguration withDefenderDetectedMalwareActions(DefenderDetectedMalwareActions defenderDetectedMalwareActions)

Returns an immutable copy of this with just the defenderDetectedMalwareActions field changed. Field description below. The field name is also added to an internal map of changed fields in the returned object so that when this.patch() is called (if available)on the returned object only the changed fields are submitted.

“Allows an administrator to specify any valid threat severity levels and the corresponding default action ID to take.”

Parameters:

defenderDetectedMalwareActions - new value of defenderDetectedMalwareActions field (as defined in service metadata)

Returns:

immutable copy of this with just the defenderDetectedMalwareActions field changed

getUnmappedFields

public com.github.davidmoten.odata.client.internal.UnmappedFields getUnmappedFields()

Specified by:

getUnmappedFields in interface com.github.davidmoten.odata.client.ODataType

Overrides:

getUnmappedFields in class DeviceConfiguration

patch

public Windows10EndpointProtectionConfiguration patch()

Submits only changed fields for update and returns an immutable copy of this with changed fields reset.

Overrides:

patch in class DeviceConfiguration

Returns:

a copy of this with changed fields reset

Throws:

com.github.davidmoten.odata.client.ClientException - if HTTP response is not as expected

put

public Windows10EndpointProtectionConfiguration put()

Submits all fields for update and returns an immutable copy of this with changed fields reset (they were ignored anyway).

Overrides:

put in class DeviceConfiguration

Returns:

a copy of this with changed fields reset

Throws:

com.github.davidmoten.odata.client.ClientException - if HTTP response is not as expected

toString

public String toString()

Overrides:

toString in class DeviceConfiguration