Package odata.msgraph.client.beta.entity

Class Windows10EndpointProtectionConfiguration.Builder

    • Method Detail

      • applicationGuardAllowCameraMicrophoneRedirection

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowCameraMicrophoneRedirection​(Boolean applicationGuardAllowCameraMicrophoneRedirection)
        “Gets or sets whether applications inside Microsoft Defender Application Guard can access the device’s camera and microphone.”
        Parameters:
        applicationGuardAllowCameraMicrophoneRedirection - value of applicationGuardAllowCameraMicrophoneRedirection property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowFileSaveOnHost

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowFileSaveOnHost​(Boolean applicationGuardAllowFileSaveOnHost)
        “Allow users to download files from Edge in the application guard container and save them on the host file system”
        Parameters:
        applicationGuardAllowFileSaveOnHost - value of applicationGuardAllowFileSaveOnHost property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowPersistence

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowPersistence​(Boolean applicationGuardAllowPersistence)
        “Allow persisting user generated data inside the App Guard Containter (favorites, cookies, web passwords, etc.)”
        Parameters:
        applicationGuardAllowPersistence - value of applicationGuardAllowPersistence property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowPrintToLocalPrinters

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowPrintToLocalPrinters​(Boolean applicationGuardAllowPrintToLocalPrinters)
        “Allow printing to Local Printers from Container”
        Parameters:
        applicationGuardAllowPrintToLocalPrinters - value of applicationGuardAllowPrintToLocalPrinters property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowPrintToNetworkPrinters

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowPrintToNetworkPrinters​(Boolean applicationGuardAllowPrintToNetworkPrinters)
        “Allow printing to Network Printers from Container”
        Parameters:
        applicationGuardAllowPrintToNetworkPrinters - value of applicationGuardAllowPrintToNetworkPrinters property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowPrintToPDF

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowPrintToPDF​(Boolean applicationGuardAllowPrintToPDF)
        “Allow printing to PDF from Container”
        Parameters:
        applicationGuardAllowPrintToPDF - value of applicationGuardAllowPrintToPDF property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowPrintToXPS

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowPrintToXPS​(Boolean applicationGuardAllowPrintToXPS)
        “Allow printing to XPS from Container”
        Parameters:
        applicationGuardAllowPrintToXPS - value of applicationGuardAllowPrintToXPS property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardAllowVirtualGPU

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardAllowVirtualGPU​(Boolean applicationGuardAllowVirtualGPU)
        “Allow application guard to use virtual GPU”
        Parameters:
        applicationGuardAllowVirtualGPU - value of applicationGuardAllowVirtualGPU property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardBlockClipboardSharing

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardBlockClipboardSharing​(ApplicationGuardBlockClipboardSharingType applicationGuardBlockClipboardSharing)
        “Block clipboard to share data from Host to Container, or from Container to Host, or both ways, or neither ways.”
        Parameters:
        applicationGuardBlockClipboardSharing - value of applicationGuardBlockClipboardSharing property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardBlockFileTransfer

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardBlockFileTransfer​(ApplicationGuardBlockFileTransferType applicationGuardBlockFileTransfer)
        “Block clipboard to transfer image file, text file or neither of them”
        Parameters:
        applicationGuardBlockFileTransfer - value of applicationGuardBlockFileTransfer property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardBlockNonEnterpriseContent

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardBlockNonEnterpriseContent​(Boolean applicationGuardBlockNonEnterpriseContent)
        “Block enterprise sites to load non-enterprise content, such as third party plug- ins”
        Parameters:
        applicationGuardBlockNonEnterpriseContent - value of applicationGuardBlockNonEnterpriseContent property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardCertificateThumbprints

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardCertificateThumbprints​(List<String> applicationGuardCertificateThumbprints)
        “Allows certain device level Root Certificates to be shared with the Microsoft Defender Application Guard container.”
        Parameters:
        applicationGuardCertificateThumbprints - value of applicationGuardCertificateThumbprints property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardCertificateThumbprints

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardCertificateThumbprints​(String... applicationGuardCertificateThumbprints)
        “Allows certain device level Root Certificates to be shared with the Microsoft Defender Application Guard container.”
        Parameters:
        applicationGuardCertificateThumbprints - value of applicationGuardCertificateThumbprints property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardCertificateThumbprintsNextLink

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardCertificateThumbprintsNextLink​(String applicationGuardCertificateThumbprintsNextLink)
        “Allows certain device level Root Certificates to be shared with the Microsoft Defender Application Guard container.”
        Parameters:
        applicationGuardCertificateThumbprintsNextLink - value of applicationGuardCertificateThumbprints@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardEnabled

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardEnabled​(Boolean applicationGuardEnabled)
        “Enable Windows Defender Application Guard”
        Parameters:
        applicationGuardEnabled - value of applicationGuardEnabled property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardEnabledOptions

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardEnabledOptions​(ApplicationGuardEnabledOptions applicationGuardEnabledOptions)
        “Enable Windows Defender Application Guard for newer Windows builds”
        Parameters:
        applicationGuardEnabledOptions - value of applicationGuardEnabledOptions property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • applicationGuardForceAuditing

        public Windows10EndpointProtectionConfiguration.Builder applicationGuardForceAuditing​(Boolean applicationGuardForceAuditing)
        “Force auditing will persist Windows logs and events to meet security/compliance criteria (sample events are user login-logoff, use of privilege rights, software installation, system changes, etc.)”
        Parameters:
        applicationGuardForceAuditing - value of applicationGuardForceAuditing property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • appLockerApplicationControl

        public Windows10EndpointProtectionConfiguration.Builder appLockerApplicationControl​(AppLockerApplicationControlType appLockerApplicationControl)
        “Enables the Admin to choose what types of app to allow on devices.”
        Parameters:
        appLockerApplicationControl - value of appLockerApplicationControl property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • bitLockerAllowStandardUserEncryption

        public Windows10EndpointProtectionConfiguration.Builder bitLockerAllowStandardUserEncryption​(Boolean bitLockerAllowStandardUserEncryption)
        “Allows the admin to allow standard users to enable encrpytion during Azure AD Join.”
        Parameters:
        bitLockerAllowStandardUserEncryption - value of bitLockerAllowStandardUserEncryption property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • bitLockerDisableWarningForOtherDiskEncryption

        public Windows10EndpointProtectionConfiguration.Builder bitLockerDisableWarningForOtherDiskEncryption​(Boolean bitLockerDisableWarningForOtherDiskEncryption)
        “Allows the Admin to disable the warning prompt for other disk encryption on the user machines.”
        Parameters:
        bitLockerDisableWarningForOtherDiskEncryption - value of bitLockerDisableWarningForOtherDiskEncryption property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • bitLockerEnableStorageCardEncryptionOnMobile

        public Windows10EndpointProtectionConfiguration.Builder bitLockerEnableStorageCardEncryptionOnMobile​(Boolean bitLockerEnableStorageCardEncryptionOnMobile)
        “Allows the admin to require encryption to be turned on using BitLocker. This policy is valid only for a mobile SKU.”
        Parameters:
        bitLockerEnableStorageCardEncryptionOnMobile - value of bitLockerEnableStorageCardEncryptionOnMobile property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • bitLockerEncryptDevice

        public Windows10EndpointProtectionConfiguration.Builder bitLockerEncryptDevice​(Boolean bitLockerEncryptDevice)
        “Allows the admin to require encryption to be turned on using BitLocker.”
        Parameters:
        bitLockerEncryptDevice - value of bitLockerEncryptDevice property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • bitLockerRecoveryPasswordRotation

        public Windows10EndpointProtectionConfiguration.Builder bitLockerRecoveryPasswordRotation​(BitLockerRecoveryPasswordRotationType bitLockerRecoveryPasswordRotation)
        “This setting initiates a client-driven recovery password rotation after an OS drive recovery (either by using bootmgr or WinRE).”
        Parameters:
        bitLockerRecoveryPasswordRotation - value of bitLockerRecoveryPasswordRotation property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • bitLockerRemovableDrivePolicy

        public Windows10EndpointProtectionConfiguration.Builder bitLockerRemovableDrivePolicy​(BitLockerRemovableDrivePolicy bitLockerRemovableDrivePolicy)
        “BitLocker Removable Drive Policy.”
        Parameters:
        bitLockerRemovableDrivePolicy - value of bitLockerRemovableDrivePolicy property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAdditionalGuardedFolders

        public Windows10EndpointProtectionConfiguration.Builder defenderAdditionalGuardedFolders​(List<String> defenderAdditionalGuardedFolders)
        “List of folder paths to be added to the list of protected folders”
        Parameters:
        defenderAdditionalGuardedFolders - value of defenderAdditionalGuardedFolders property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAdditionalGuardedFolders

        public Windows10EndpointProtectionConfiguration.Builder defenderAdditionalGuardedFolders​(String... defenderAdditionalGuardedFolders)
        “List of folder paths to be added to the list of protected folders”
        Parameters:
        defenderAdditionalGuardedFolders - value of defenderAdditionalGuardedFolders property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAdditionalGuardedFoldersNextLink

        public Windows10EndpointProtectionConfiguration.Builder defenderAdditionalGuardedFoldersNextLink​(String defenderAdditionalGuardedFoldersNextLink)
        “List of folder paths to be added to the list of protected folders”
        Parameters:
        defenderAdditionalGuardedFoldersNextLink - value of defenderAdditionalGuardedFolders@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAdobeReaderLaunchChildProcess

        public Windows10EndpointProtectionConfiguration.Builder defenderAdobeReaderLaunchChildProcess​(DefenderProtectionType defenderAdobeReaderLaunchChildProcess)
        “Value indicating the behavior of Adobe Reader from creating child processes”
        Parameters:
        defenderAdobeReaderLaunchChildProcess - value of defenderAdobeReaderLaunchChildProcess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAdvancedRansomewareProtectionType

        public Windows10EndpointProtectionConfiguration.Builder defenderAdvancedRansomewareProtectionType​(DefenderProtectionType defenderAdvancedRansomewareProtectionType)
        “Value indicating use of advanced protection against ransomeware”
        Parameters:
        defenderAdvancedRansomewareProtectionType - value of defenderAdvancedRansomewareProtectionType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowBehaviorMonitoring

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowBehaviorMonitoring​(Boolean defenderAllowBehaviorMonitoring)
        “Allows or disallows Windows Defender Behavior Monitoring functionality.”
        Parameters:
        defenderAllowBehaviorMonitoring - value of defenderAllowBehaviorMonitoring property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowCloudProtection

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowCloudProtection​(Boolean defenderAllowCloudProtection)
        “To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.”
        Parameters:
        defenderAllowCloudProtection - value of defenderAllowCloudProtection property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowEndUserAccess

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowEndUserAccess​(Boolean defenderAllowEndUserAccess)
        “Allows or disallows user access to the Windows Defender UI. If disallowed, all Windows Defender notifications will also be suppressed.”
        Parameters:
        defenderAllowEndUserAccess - value of defenderAllowEndUserAccess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowIntrusionPreventionSystem

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowIntrusionPreventionSystem​(Boolean defenderAllowIntrusionPreventionSystem)
        “Allows or disallows Windows Defender Intrusion Prevention functionality.”
        Parameters:
        defenderAllowIntrusionPreventionSystem - value of defenderAllowIntrusionPreventionSystem property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowOnAccessProtection

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowOnAccessProtection​(Boolean defenderAllowOnAccessProtection)
        “Allows or disallows Windows Defender On Access Protection functionality.”
        Parameters:
        defenderAllowOnAccessProtection - value of defenderAllowOnAccessProtection property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowRealTimeMonitoring

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowRealTimeMonitoring​(Boolean defenderAllowRealTimeMonitoring)
        “Allows or disallows Windows Defender Realtime Monitoring functionality.”
        Parameters:
        defenderAllowRealTimeMonitoring - value of defenderAllowRealTimeMonitoring property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowScanArchiveFiles

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowScanArchiveFiles​(Boolean defenderAllowScanArchiveFiles)
        “Allows or disallows scanning of archives.”
        Parameters:
        defenderAllowScanArchiveFiles - value of defenderAllowScanArchiveFiles property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowScanDownloads

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowScanDownloads​(Boolean defenderAllowScanDownloads)
        “Allows or disallows Windows Defender IOAVP Protection functionality.”
        Parameters:
        defenderAllowScanDownloads - value of defenderAllowScanDownloads property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowScanNetworkFiles

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowScanNetworkFiles​(Boolean defenderAllowScanNetworkFiles)
        “Allows or disallows a scanning of network files.”
        Parameters:
        defenderAllowScanNetworkFiles - value of defenderAllowScanNetworkFiles property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowScanRemovableDrivesDuringFullScan

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowScanRemovableDrivesDuringFullScan​(Boolean defenderAllowScanRemovableDrivesDuringFullScan)
        “Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.”
        Parameters:
        defenderAllowScanRemovableDrivesDuringFullScan - value of defenderAllowScanRemovableDrivesDuringFullScan property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAllowScanScriptsLoadedInInternetExplorer

        public Windows10EndpointProtectionConfiguration.Builder defenderAllowScanScriptsLoadedInInternetExplorer​(Boolean defenderAllowScanScriptsLoadedInInternetExplorer)
        “Allows or disallows Windows Defender Script Scanning functionality.”
        Parameters:
        defenderAllowScanScriptsLoadedInInternetExplorer - value of defenderAllowScanScriptsLoadedInInternetExplorer property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAttackSurfaceReductionExcludedPaths

        public Windows10EndpointProtectionConfiguration.Builder defenderAttackSurfaceReductionExcludedPaths​(List<String> defenderAttackSurfaceReductionExcludedPaths)
        “List of exe files and folders to be excluded from attack surface reduction rules”
        Parameters:
        defenderAttackSurfaceReductionExcludedPaths - value of defenderAttackSurfaceReductionExcludedPaths property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAttackSurfaceReductionExcludedPaths

        public Windows10EndpointProtectionConfiguration.Builder defenderAttackSurfaceReductionExcludedPaths​(String... defenderAttackSurfaceReductionExcludedPaths)
        “List of exe files and folders to be excluded from attack surface reduction rules”
        Parameters:
        defenderAttackSurfaceReductionExcludedPaths - value of defenderAttackSurfaceReductionExcludedPaths property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderAttackSurfaceReductionExcludedPathsNextLink

        public Windows10EndpointProtectionConfiguration.Builder defenderAttackSurfaceReductionExcludedPathsNextLink​(String defenderAttackSurfaceReductionExcludedPathsNextLink)
        “List of exe files and folders to be excluded from attack surface reduction rules”
        Parameters:
        defenderAttackSurfaceReductionExcludedPathsNextLink - value of defenderAttackSurfaceReductionExcludedPaths@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderBlockEndUserAccess

        public Windows10EndpointProtectionConfiguration.Builder defenderBlockEndUserAccess​(Boolean defenderBlockEndUserAccess)
        “Allows or disallows user access to the Windows Defender UI. If disallowed, all Windows Defender notifications will also be suppressed.”
        Parameters:
        defenderBlockEndUserAccess - value of defenderBlockEndUserAccess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderBlockPersistenceThroughWmiType

        public Windows10EndpointProtectionConfiguration.Builder defenderBlockPersistenceThroughWmiType​(DefenderAttackSurfaceType defenderBlockPersistenceThroughWmiType)
        “Value indicating the behavior of Block persistence through WMI event subscription”
        Parameters:
        defenderBlockPersistenceThroughWmiType - value of defenderBlockPersistenceThroughWmiType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderCheckForSignaturesBeforeRunningScan

        public Windows10EndpointProtectionConfiguration.Builder defenderCheckForSignaturesBeforeRunningScan​(Boolean defenderCheckForSignaturesBeforeRunningScan)
        “This policy setting allows you to manage whether a check for new virus and spyware definitions will occur before running a scan.”
        Parameters:
        defenderCheckForSignaturesBeforeRunningScan - value of defenderCheckForSignaturesBeforeRunningScan property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderCloudBlockLevel

        public Windows10EndpointProtectionConfiguration.Builder defenderCloudBlockLevel​(DefenderCloudBlockLevelType defenderCloudBlockLevel)
        “Added in Windows 10, version 1709. This policy setting determines how aggressive Windows Defender Antivirus will be in blocking and scanning suspicious files. Value type is integer. This feature requires the "Join Microsoft MAPS" setting enabled in order to function.”
        Parameters:
        defenderCloudBlockLevel - value of defenderCloudBlockLevel property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderCloudExtendedTimeoutInSeconds

        public Windows10EndpointProtectionConfiguration.Builder defenderCloudExtendedTimeoutInSeconds​(Integer defenderCloudExtendedTimeoutInSeconds)
        “Added in Windows 10, version 1709. This feature allows Windows Defender Antivirus to block a suspicious file for up to 60 seconds, and scan it in the cloud to make sure it's safe. Value type is integer, range is 0 - 50. This feature depends on three other MAPS settings the must all be enabled- "Configure the 'Block at First Sight' feature; "Join Microsoft MAPS"; "Send file samples when further analysis is required". Valid values 0 to 50”
        Parameters:
        defenderCloudExtendedTimeoutInSeconds - value of defenderCloudExtendedTimeoutInSeconds property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDaysBeforeDeletingQuarantinedMalware

        public Windows10EndpointProtectionConfiguration.Builder defenderDaysBeforeDeletingQuarantinedMalware​(Integer defenderDaysBeforeDeletingQuarantinedMalware)
        “Time period (in days) that quarantine items will be stored on the system. Valid values 0 to 90”
        Parameters:
        defenderDaysBeforeDeletingQuarantinedMalware - value of defenderDaysBeforeDeletingQuarantinedMalware property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDetectedMalwareActions

        public Windows10EndpointProtectionConfiguration.Builder defenderDetectedMalwareActions​(DefenderDetectedMalwareActions defenderDetectedMalwareActions)
        “Allows an administrator to specify any valid threat severity levels and the corresponding default action ID to take.”
        Parameters:
        defenderDetectedMalwareActions - value of defenderDetectedMalwareActions property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableBehaviorMonitoring

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableBehaviorMonitoring​(Boolean defenderDisableBehaviorMonitoring)
        “Allows or disallows Windows Defender Behavior Monitoring functionality.”
        Parameters:
        defenderDisableBehaviorMonitoring - value of defenderDisableBehaviorMonitoring property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableCatchupFullScan

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableCatchupFullScan​(Boolean defenderDisableCatchupFullScan)
        “This policy setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.”
        Parameters:
        defenderDisableCatchupFullScan - value of defenderDisableCatchupFullScan property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableCatchupQuickScan

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableCatchupQuickScan​(Boolean defenderDisableCatchupQuickScan)
        “This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.”
        Parameters:
        defenderDisableCatchupQuickScan - value of defenderDisableCatchupQuickScan property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableCloudProtection

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableCloudProtection​(Boolean defenderDisableCloudProtection)
        “To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.”
        Parameters:
        defenderDisableCloudProtection - value of defenderDisableCloudProtection property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableIntrusionPreventionSystem

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableIntrusionPreventionSystem​(Boolean defenderDisableIntrusionPreventionSystem)
        “Allows or disallows Windows Defender Intrusion Prevention functionality.”
        Parameters:
        defenderDisableIntrusionPreventionSystem - value of defenderDisableIntrusionPreventionSystem property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableOnAccessProtection

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableOnAccessProtection​(Boolean defenderDisableOnAccessProtection)
        “Allows or disallows Windows Defender On Access Protection functionality.”
        Parameters:
        defenderDisableOnAccessProtection - value of defenderDisableOnAccessProtection property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableRealTimeMonitoring

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableRealTimeMonitoring​(Boolean defenderDisableRealTimeMonitoring)
        “Allows or disallows Windows Defender Realtime Monitoring functionality.”
        Parameters:
        defenderDisableRealTimeMonitoring - value of defenderDisableRealTimeMonitoring property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableScanArchiveFiles

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableScanArchiveFiles​(Boolean defenderDisableScanArchiveFiles)
        “Allows or disallows scanning of archives.”
        Parameters:
        defenderDisableScanArchiveFiles - value of defenderDisableScanArchiveFiles property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableScanDownloads

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableScanDownloads​(Boolean defenderDisableScanDownloads)
        “Allows or disallows Windows Defender IOAVP Protection functionality.”
        Parameters:
        defenderDisableScanDownloads - value of defenderDisableScanDownloads property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableScanNetworkFiles

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableScanNetworkFiles​(Boolean defenderDisableScanNetworkFiles)
        “Allows or disallows a scanning of network files.”
        Parameters:
        defenderDisableScanNetworkFiles - value of defenderDisableScanNetworkFiles property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableScanRemovableDrivesDuringFullScan

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableScanRemovableDrivesDuringFullScan​(Boolean defenderDisableScanRemovableDrivesDuringFullScan)
        “Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.”
        Parameters:
        defenderDisableScanRemovableDrivesDuringFullScan - value of defenderDisableScanRemovableDrivesDuringFullScan property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderDisableScanScriptsLoadedInInternetExplorer

        public Windows10EndpointProtectionConfiguration.Builder defenderDisableScanScriptsLoadedInInternetExplorer​(Boolean defenderDisableScanScriptsLoadedInInternetExplorer)
        “Allows or disallows Windows Defender Script Scanning functionality.”
        Parameters:
        defenderDisableScanScriptsLoadedInInternetExplorer - value of defenderDisableScanScriptsLoadedInInternetExplorer property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderEmailContentExecution

        public Windows10EndpointProtectionConfiguration.Builder defenderEmailContentExecution​(DefenderProtectionType defenderEmailContentExecution)
        “Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”
        Parameters:
        defenderEmailContentExecution - value of defenderEmailContentExecution property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderEmailContentExecutionType

        public Windows10EndpointProtectionConfiguration.Builder defenderEmailContentExecutionType​(DefenderAttackSurfaceType defenderEmailContentExecutionType)
        “Value indicating if execution of executable content (exe, dll, ps, js, vbs, etc) should be dropped from email (webmail/mail-client)”
        Parameters:
        defenderEmailContentExecutionType - value of defenderEmailContentExecutionType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderEnableLowCpuPriority

        public Windows10EndpointProtectionConfiguration.Builder defenderEnableLowCpuPriority​(Boolean defenderEnableLowCpuPriority)
        “This policy setting allows you to enable or disable low CPU priority for scheduled scans.”
        Parameters:
        defenderEnableLowCpuPriority - value of defenderEnableLowCpuPriority property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderEnableScanIncomingMail

        public Windows10EndpointProtectionConfiguration.Builder defenderEnableScanIncomingMail​(Boolean defenderEnableScanIncomingMail)
        “Allows or disallows scanning of email.”
        Parameters:
        defenderEnableScanIncomingMail - value of defenderEnableScanIncomingMail property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderEnableScanMappedNetworkDrivesDuringFullScan

        public Windows10EndpointProtectionConfiguration.Builder defenderEnableScanMappedNetworkDrivesDuringFullScan​(Boolean defenderEnableScanMappedNetworkDrivesDuringFullScan)
        “Allows or disallows a full scan of mapped network drives.”
        Parameters:
        defenderEnableScanMappedNetworkDrivesDuringFullScan - value of defenderEnableScanMappedNetworkDrivesDuringFullScan property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderExploitProtectionXml

        public Windows10EndpointProtectionConfiguration.Builder defenderExploitProtectionXml​(byte[] defenderExploitProtectionXml)
        “Xml content containing information regarding exploit protection details.”
        Parameters:
        defenderExploitProtectionXml - value of defenderExploitProtectionXml property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderExploitProtectionXmlFileName

        public Windows10EndpointProtectionConfiguration.Builder defenderExploitProtectionXmlFileName​(String defenderExploitProtectionXmlFileName)
        “Name of the file from which DefenderExploitProtectionXml was obtained.”
        Parameters:
        defenderExploitProtectionXmlFileName - value of defenderExploitProtectionXmlFileName property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderFileExtensionsToExclude

        public Windows10EndpointProtectionConfiguration.Builder defenderFileExtensionsToExclude​(List<String> defenderFileExtensionsToExclude)
        “File extensions to exclude from scans and real time protection.”
        Parameters:
        defenderFileExtensionsToExclude - value of defenderFileExtensionsToExclude property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderFileExtensionsToExclude

        public Windows10EndpointProtectionConfiguration.Builder defenderFileExtensionsToExclude​(String... defenderFileExtensionsToExclude)
        “File extensions to exclude from scans and real time protection.”
        Parameters:
        defenderFileExtensionsToExclude - value of defenderFileExtensionsToExclude property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderFileExtensionsToExcludeNextLink

        public Windows10EndpointProtectionConfiguration.Builder defenderFileExtensionsToExcludeNextLink​(String defenderFileExtensionsToExcludeNextLink)
        “File extensions to exclude from scans and real time protection.”
        Parameters:
        defenderFileExtensionsToExcludeNextLink - value of defenderFileExtensionsToExclude@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderFilesAndFoldersToExclude

        public Windows10EndpointProtectionConfiguration.Builder defenderFilesAndFoldersToExclude​(List<String> defenderFilesAndFoldersToExclude)
        “Files and folder to exclude from scans and real time protection.”
        Parameters:
        defenderFilesAndFoldersToExclude - value of defenderFilesAndFoldersToExclude property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderFilesAndFoldersToExclude

        public Windows10EndpointProtectionConfiguration.Builder defenderFilesAndFoldersToExclude​(String... defenderFilesAndFoldersToExclude)
        “Files and folder to exclude from scans and real time protection.”
        Parameters:
        defenderFilesAndFoldersToExclude - value of defenderFilesAndFoldersToExclude property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderFilesAndFoldersToExcludeNextLink

        public Windows10EndpointProtectionConfiguration.Builder defenderFilesAndFoldersToExcludeNextLink​(String defenderFilesAndFoldersToExcludeNextLink)
        “Files and folder to exclude from scans and real time protection.”
        Parameters:
        defenderFilesAndFoldersToExcludeNextLink - value of defenderFilesAndFoldersToExclude@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderGuardedFoldersAllowedAppPaths

        public Windows10EndpointProtectionConfiguration.Builder defenderGuardedFoldersAllowedAppPaths​(List<String> defenderGuardedFoldersAllowedAppPaths)
        “List of paths to exe that are allowed to access protected folders”
        Parameters:
        defenderGuardedFoldersAllowedAppPaths - value of defenderGuardedFoldersAllowedAppPaths property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderGuardedFoldersAllowedAppPaths

        public Windows10EndpointProtectionConfiguration.Builder defenderGuardedFoldersAllowedAppPaths​(String... defenderGuardedFoldersAllowedAppPaths)
        “List of paths to exe that are allowed to access protected folders”
        Parameters:
        defenderGuardedFoldersAllowedAppPaths - value of defenderGuardedFoldersAllowedAppPaths property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderGuardedFoldersAllowedAppPathsNextLink

        public Windows10EndpointProtectionConfiguration.Builder defenderGuardedFoldersAllowedAppPathsNextLink​(String defenderGuardedFoldersAllowedAppPathsNextLink)
        “List of paths to exe that are allowed to access protected folders”
        Parameters:
        defenderGuardedFoldersAllowedAppPathsNextLink - value of defenderGuardedFoldersAllowedAppPaths@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderGuardMyFoldersType

        public Windows10EndpointProtectionConfiguration.Builder defenderGuardMyFoldersType​(FolderProtectionType defenderGuardMyFoldersType)
        “Value indicating the behavior of protected folders”
        Parameters:
        defenderGuardMyFoldersType - value of defenderGuardMyFoldersType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderNetworkProtectionType

        public Windows10EndpointProtectionConfiguration.Builder defenderNetworkProtectionType​(DefenderProtectionType defenderNetworkProtectionType)
        “Value indicating the behavior of NetworkProtection”
        Parameters:
        defenderNetworkProtectionType - value of defenderNetworkProtectionType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeAppsExecutableContentCreationOrLaunch

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeAppsExecutableContentCreationOrLaunch​(DefenderProtectionType defenderOfficeAppsExecutableContentCreationOrLaunch)
        “Value indicating the behavior of Office applications/macros creating or launching executable content”
        Parameters:
        defenderOfficeAppsExecutableContentCreationOrLaunch - value of defenderOfficeAppsExecutableContentCreationOrLaunch property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeAppsExecutableContentCreationOrLaunchType

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeAppsExecutableContentCreationOrLaunchType​(DefenderAttackSurfaceType defenderOfficeAppsExecutableContentCreationOrLaunchType)
        “Value indicating the behavior of Office applications/macros creating or launching executable content”
        Parameters:
        defenderOfficeAppsExecutableContentCreationOrLaunchType - value of defenderOfficeAppsExecutableContentCreationOrLaunchType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeAppsLaunchChildProcess

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeAppsLaunchChildProcess​(DefenderProtectionType defenderOfficeAppsLaunchChildProcess)
        “Value indicating the behavior of Office application launching child processes”
        Parameters:
        defenderOfficeAppsLaunchChildProcess - value of defenderOfficeAppsLaunchChildProcess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeAppsLaunchChildProcessType

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeAppsLaunchChildProcessType​(DefenderAttackSurfaceType defenderOfficeAppsLaunchChildProcessType)
        “Value indicating the behavior of Office application launching child processes”
        Parameters:
        defenderOfficeAppsLaunchChildProcessType - value of defenderOfficeAppsLaunchChildProcessType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeAppsOtherProcessInjection

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeAppsOtherProcessInjection​(DefenderProtectionType defenderOfficeAppsOtherProcessInjection)
        “Value indicating the behavior of  Office applications injecting into other processes”
        Parameters:
        defenderOfficeAppsOtherProcessInjection - value of defenderOfficeAppsOtherProcessInjection property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeAppsOtherProcessInjectionType

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeAppsOtherProcessInjectionType​(DefenderAttackSurfaceType defenderOfficeAppsOtherProcessInjectionType)
        “Value indicating the behavior of Office applications injecting into other processes”
        Parameters:
        defenderOfficeAppsOtherProcessInjectionType - value of defenderOfficeAppsOtherProcessInjectionType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeCommunicationAppsLaunchChildProcess

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeCommunicationAppsLaunchChildProcess​(DefenderProtectionType defenderOfficeCommunicationAppsLaunchChildProcess)
        “Value indicating the behavior of Office communication applications, including Microsoft Outlook, from creating child processes”
        Parameters:
        defenderOfficeCommunicationAppsLaunchChildProcess - value of defenderOfficeCommunicationAppsLaunchChildProcess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeMacroCodeAllowWin32Imports

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeMacroCodeAllowWin32Imports​(DefenderProtectionType defenderOfficeMacroCodeAllowWin32Imports)
        “Value indicating the behavior of Win32 imports from Macro code in Office”
        Parameters:
        defenderOfficeMacroCodeAllowWin32Imports - value of defenderOfficeMacroCodeAllowWin32Imports property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderOfficeMacroCodeAllowWin32ImportsType

        public Windows10EndpointProtectionConfiguration.Builder defenderOfficeMacroCodeAllowWin32ImportsType​(DefenderAttackSurfaceType defenderOfficeMacroCodeAllowWin32ImportsType)
        “Value indicating the behavior of Win32 imports from Macro code in Office”
        Parameters:
        defenderOfficeMacroCodeAllowWin32ImportsType - value of defenderOfficeMacroCodeAllowWin32ImportsType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderPotentiallyUnwantedAppAction

        public Windows10EndpointProtectionConfiguration.Builder defenderPotentiallyUnwantedAppAction​(DefenderProtectionType defenderPotentiallyUnwantedAppAction)
        “Added in Windows 10, version 1607. Specifies the level of detection for potentially unwanted applications (PUAs). Windows Defender alerts you when potentially unwanted software is being downloaded or attempts to install itself on your computer.”
        Parameters:
        defenderPotentiallyUnwantedAppAction - value of defenderPotentiallyUnwantedAppAction property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderPreventCredentialStealingType

        public Windows10EndpointProtectionConfiguration.Builder defenderPreventCredentialStealingType​(DefenderProtectionType defenderPreventCredentialStealingType)
        “Value indicating if credential stealing from the Windows local security authority subsystem is permitted”
        Parameters:
        defenderPreventCredentialStealingType - value of defenderPreventCredentialStealingType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderProcessCreation

        public Windows10EndpointProtectionConfiguration.Builder defenderProcessCreation​(DefenderProtectionType defenderProcessCreation)
        “Value indicating response to process creations originating from PSExec and WMI commands”
        Parameters:
        defenderProcessCreation - value of defenderProcessCreation property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderProcessCreationType

        public Windows10EndpointProtectionConfiguration.Builder defenderProcessCreationType​(DefenderAttackSurfaceType defenderProcessCreationType)
        “Value indicating response to process creations originating from PSExec and WMI commands”
        Parameters:
        defenderProcessCreationType - value of defenderProcessCreationType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderProcessesToExclude

        public Windows10EndpointProtectionConfiguration.Builder defenderProcessesToExclude​(List<String> defenderProcessesToExclude)
        “Processes to exclude from scans and real time protection.”
        Parameters:
        defenderProcessesToExclude - value of defenderProcessesToExclude property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderProcessesToExclude

        public Windows10EndpointProtectionConfiguration.Builder defenderProcessesToExclude​(String... defenderProcessesToExclude)
        “Processes to exclude from scans and real time protection.”
        Parameters:
        defenderProcessesToExclude - value of defenderProcessesToExclude property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderProcessesToExcludeNextLink

        public Windows10EndpointProtectionConfiguration.Builder defenderProcessesToExcludeNextLink​(String defenderProcessesToExcludeNextLink)
        “Processes to exclude from scans and real time protection.”
        Parameters:
        defenderProcessesToExcludeNextLink - value of defenderProcessesToExclude@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScanMaxCpuPercentage

        public Windows10EndpointProtectionConfiguration.Builder defenderScanMaxCpuPercentage​(Integer defenderScanMaxCpuPercentage)
        “Represents the average CPU load factor for the Windows Defender scan (in percent ). The default value is 50. Valid values 0 to 100”
        Parameters:
        defenderScanMaxCpuPercentage - value of defenderScanMaxCpuPercentage property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScanType

        public Windows10EndpointProtectionConfiguration.Builder defenderScanType​(DefenderScanType defenderScanType)
        “Selects whether to perform a quick scan or full scan.”
        Parameters:
        defenderScanType - value of defenderScanType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScheduledQuickScanTime

        public Windows10EndpointProtectionConfiguration.Builder defenderScheduledQuickScanTime​(LocalTime defenderScheduledQuickScanTime)
        “Selects the time of day that the Windows Defender quick scan should run. For example, a value of 0=12:00AM, a value of 60=1:00AM, a value of 120=2:00, and so on, up to a value of 1380=11:00PM. The default value is 120”
        Parameters:
        defenderScheduledQuickScanTime - value of defenderScheduledQuickScanTime property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScheduledScanDay

        public Windows10EndpointProtectionConfiguration.Builder defenderScheduledScanDay​(WeeklySchedule defenderScheduledScanDay)
        “Selects the day that the Windows Defender scan should run.”
        Parameters:
        defenderScheduledScanDay - value of defenderScheduledScanDay property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScheduledScanTime

        public Windows10EndpointProtectionConfiguration.Builder defenderScheduledScanTime​(LocalTime defenderScheduledScanTime)
        “Selects the time of day that the Windows Defender scan should run.”
        Parameters:
        defenderScheduledScanTime - value of defenderScheduledScanTime property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScriptDownloadedPayloadExecution

        public Windows10EndpointProtectionConfiguration.Builder defenderScriptDownloadedPayloadExecution​(DefenderProtectionType defenderScriptDownloadedPayloadExecution)
        “Value indicating the behavior of js/vbs executing payload downloaded from Internet”
        Parameters:
        defenderScriptDownloadedPayloadExecution - value of defenderScriptDownloadedPayloadExecution property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScriptDownloadedPayloadExecutionType

        public Windows10EndpointProtectionConfiguration.Builder defenderScriptDownloadedPayloadExecutionType​(DefenderAttackSurfaceType defenderScriptDownloadedPayloadExecutionType)
        “Value indicating the behavior of js/vbs executing payload downloaded from Internet”
        Parameters:
        defenderScriptDownloadedPayloadExecutionType - value of defenderScriptDownloadedPayloadExecutionType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScriptObfuscatedMacroCode

        public Windows10EndpointProtectionConfiguration.Builder defenderScriptObfuscatedMacroCode​(DefenderProtectionType defenderScriptObfuscatedMacroCode)
        “Value indicating the behavior of obfuscated js/vbs/ps/macro code”
        Parameters:
        defenderScriptObfuscatedMacroCode - value of defenderScriptObfuscatedMacroCode property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderScriptObfuscatedMacroCodeType

        public Windows10EndpointProtectionConfiguration.Builder defenderScriptObfuscatedMacroCodeType​(DefenderAttackSurfaceType defenderScriptObfuscatedMacroCodeType)
        “Value indicating the behavior of obfuscated js/vbs/ps/macro code”
        Parameters:
        defenderScriptObfuscatedMacroCodeType - value of defenderScriptObfuscatedMacroCodeType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterBlockExploitProtectionOverride

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterBlockExploitProtectionOverride​(Boolean defenderSecurityCenterBlockExploitProtectionOverride)
        “Indicates whether or not to block user from overriding Exploit Protection settings.”
        Parameters:
        defenderSecurityCenterBlockExploitProtectionOverride - value of defenderSecurityCenterBlockExploitProtectionOverride property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableAccountUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableAccountUI​(Boolean defenderSecurityCenterDisableAccountUI)
        “Used to disable the display of the account protection area.”
        Parameters:
        defenderSecurityCenterDisableAccountUI - value of defenderSecurityCenterDisableAccountUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableAppBrowserUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableAppBrowserUI​(Boolean defenderSecurityCenterDisableAppBrowserUI)
        “Used to disable the display of the app and browser protection area.”
        Parameters:
        defenderSecurityCenterDisableAppBrowserUI - value of defenderSecurityCenterDisableAppBrowserUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableClearTpmUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableClearTpmUI​(Boolean defenderSecurityCenterDisableClearTpmUI)
        “Used to disable the display of the Clear TPM button.”
        Parameters:
        defenderSecurityCenterDisableClearTpmUI - value of defenderSecurityCenterDisableClearTpmUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableFamilyUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableFamilyUI​(Boolean defenderSecurityCenterDisableFamilyUI)
        “Used to disable the display of the family options area.”
        Parameters:
        defenderSecurityCenterDisableFamilyUI - value of defenderSecurityCenterDisableFamilyUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableHardwareUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableHardwareUI​(Boolean defenderSecurityCenterDisableHardwareUI)
        “Used to disable the display of the hardware protection area.”
        Parameters:
        defenderSecurityCenterDisableHardwareUI - value of defenderSecurityCenterDisableHardwareUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableHealthUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableHealthUI​(Boolean defenderSecurityCenterDisableHealthUI)
        “Used to disable the display of the device performance and health area.”
        Parameters:
        defenderSecurityCenterDisableHealthUI - value of defenderSecurityCenterDisableHealthUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableNetworkUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableNetworkUI​(Boolean defenderSecurityCenterDisableNetworkUI)
        “Used to disable the display of the firewall and network protection area.”
        Parameters:
        defenderSecurityCenterDisableNetworkUI - value of defenderSecurityCenterDisableNetworkUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableNotificationAreaUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableNotificationAreaUI​(Boolean defenderSecurityCenterDisableNotificationAreaUI)
        “Used to disable the display of the notification area control. The user needs to either sign out and sign in or reboot the computer for this setting to take effect.”
        Parameters:
        defenderSecurityCenterDisableNotificationAreaUI - value of defenderSecurityCenterDisableNotificationAreaUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableRansomwareUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableRansomwareUI​(Boolean defenderSecurityCenterDisableRansomwareUI)
        “Used to disable the display of the ransomware protection area.”
        Parameters:
        defenderSecurityCenterDisableRansomwareUI - value of defenderSecurityCenterDisableRansomwareUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableSecureBootUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableSecureBootUI​(Boolean defenderSecurityCenterDisableSecureBootUI)
        “Used to disable the display of the secure boot area under Device security.”
        Parameters:
        defenderSecurityCenterDisableSecureBootUI - value of defenderSecurityCenterDisableSecureBootUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableTroubleshootingUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableTroubleshootingUI​(Boolean defenderSecurityCenterDisableTroubleshootingUI)
        “Used to disable the display of the security process troubleshooting under Device security.”
        Parameters:
        defenderSecurityCenterDisableTroubleshootingUI - value of defenderSecurityCenterDisableTroubleshootingUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableVirusUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableVirusUI​(Boolean defenderSecurityCenterDisableVirusUI)
        “Used to disable the display of the virus and threat protection area.”
        Parameters:
        defenderSecurityCenterDisableVirusUI - value of defenderSecurityCenterDisableVirusUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI​(Boolean defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI)
        “Used to disable the display of update TPM Firmware when a vulnerable firmware is detected.”
        Parameters:
        defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI - value of defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUI property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterHelpEmail

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterHelpEmail​(String defenderSecurityCenterHelpEmail)
        “The email address that is displayed to users.”
        Parameters:
        defenderSecurityCenterHelpEmail - value of defenderSecurityCenterHelpEmail property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterHelpPhone

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterHelpPhone​(String defenderSecurityCenterHelpPhone)
        “The phone number or Skype ID that is displayed to users.”
        Parameters:
        defenderSecurityCenterHelpPhone - value of defenderSecurityCenterHelpPhone property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterHelpURL

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterHelpURL​(String defenderSecurityCenterHelpURL)
        “The help portal URL this is displayed to users.”
        Parameters:
        defenderSecurityCenterHelpURL - value of defenderSecurityCenterHelpURL property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterITContactDisplay

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterITContactDisplay​(DefenderSecurityCenterITContactDisplayType defenderSecurityCenterITContactDisplay)
        “Configure where to display IT contact information to end users.”
        Parameters:
        defenderSecurityCenterITContactDisplay - value of defenderSecurityCenterITContactDisplay property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterNotificationsFromApp

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterNotificationsFromApp​(DefenderSecurityCenterNotificationsFromAppType defenderSecurityCenterNotificationsFromApp)
        “Notifications to show from the displayed areas of app”
        Parameters:
        defenderSecurityCenterNotificationsFromApp - value of defenderSecurityCenterNotificationsFromApp property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSecurityCenterOrganizationDisplayName

        public Windows10EndpointProtectionConfiguration.Builder defenderSecurityCenterOrganizationDisplayName​(String defenderSecurityCenterOrganizationDisplayName)
        “The company name that is displayed to the users.”
        Parameters:
        defenderSecurityCenterOrganizationDisplayName - value of defenderSecurityCenterOrganizationDisplayName property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSignatureUpdateIntervalInHours

        public Windows10EndpointProtectionConfiguration.Builder defenderSignatureUpdateIntervalInHours​(Integer defenderSignatureUpdateIntervalInHours)
        “Specifies the interval (in hours) that will be used to check for signatures, so instead of using the ScheduleDay and ScheduleTime the check for new signatures will be set according to the interval. Valid values 0 to 24”
        Parameters:
        defenderSignatureUpdateIntervalInHours - value of defenderSignatureUpdateIntervalInHours property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderSubmitSamplesConsentType

        public Windows10EndpointProtectionConfiguration.Builder defenderSubmitSamplesConsentType​(DefenderSubmitSamplesConsentType defenderSubmitSamplesConsentType)
        “Checks for the user consent level in Windows Defender to send data.”
        Parameters:
        defenderSubmitSamplesConsentType - value of defenderSubmitSamplesConsentType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderUntrustedExecutable

        public Windows10EndpointProtectionConfiguration.Builder defenderUntrustedExecutable​(DefenderProtectionType defenderUntrustedExecutable)
        “Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”
        Parameters:
        defenderUntrustedExecutable - value of defenderUntrustedExecutable property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderUntrustedExecutableType

        public Windows10EndpointProtectionConfiguration.Builder defenderUntrustedExecutableType​(DefenderAttackSurfaceType defenderUntrustedExecutableType)
        “Value indicating response to executables that don't meet a prevalence, age, or trusted list criteria”
        Parameters:
        defenderUntrustedExecutableType - value of defenderUntrustedExecutableType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderUntrustedUSBProcess

        public Windows10EndpointProtectionConfiguration.Builder defenderUntrustedUSBProcess​(DefenderProtectionType defenderUntrustedUSBProcess)
        “Value indicating response to untrusted and unsigned processes that run from USB”
        Parameters:
        defenderUntrustedUSBProcess - value of defenderUntrustedUSBProcess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • defenderUntrustedUSBProcessType

        public Windows10EndpointProtectionConfiguration.Builder defenderUntrustedUSBProcessType​(DefenderAttackSurfaceType defenderUntrustedUSBProcessType)
        “Value indicating response to untrusted and unsigned processes that run from USB”
        Parameters:
        defenderUntrustedUSBProcessType - value of defenderUntrustedUSBProcessType property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • deviceGuardEnableSecureBootWithDMA

        public Windows10EndpointProtectionConfiguration.Builder deviceGuardEnableSecureBootWithDMA​(Boolean deviceGuardEnableSecureBootWithDMA)
        “This property will be deprecated in May 2019 and will be replaced with property DeviceGuardSecureBootWithDMA. Specifies whether Platform Security Level is enabled at next reboot.”
        Parameters:
        deviceGuardEnableSecureBootWithDMA - value of deviceGuardEnableSecureBootWithDMA property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • deviceGuardEnableVirtualizationBasedSecurity

        public Windows10EndpointProtectionConfiguration.Builder deviceGuardEnableVirtualizationBasedSecurity​(Boolean deviceGuardEnableVirtualizationBasedSecurity)
        “Turns On Virtualization Based Security(VBS).”
        Parameters:
        deviceGuardEnableVirtualizationBasedSecurity - value of deviceGuardEnableVirtualizationBasedSecurity property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • deviceGuardLaunchSystemGuard

        public Windows10EndpointProtectionConfiguration.Builder deviceGuardLaunchSystemGuard​(Enablement deviceGuardLaunchSystemGuard)
        “Allows the IT admin to configure the launch of System Guard.”
        Parameters:
        deviceGuardLaunchSystemGuard - value of deviceGuardLaunchSystemGuard property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • deviceGuardLocalSystemAuthorityCredentialGuardSettings

        public Windows10EndpointProtectionConfiguration.Builder deviceGuardLocalSystemAuthorityCredentialGuardSettings​(DeviceGuardLocalSystemAuthorityCredentialGuardType deviceGuardLocalSystemAuthorityCredentialGuardSettings)
        “Turn on Credential Guard when Platform Security Level with Secure Boot and Virtualization Based Security are both enabled.”
        Parameters:
        deviceGuardLocalSystemAuthorityCredentialGuardSettings - value of deviceGuardLocalSystemAuthorityCredentialGuardSettings property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • deviceGuardSecureBootWithDMA

        public Windows10EndpointProtectionConfiguration.Builder deviceGuardSecureBootWithDMA​(SecureBootWithDMAType deviceGuardSecureBootWithDMA)
        “Specifies whether Platform Security Level is enabled at next reboot.”
        Parameters:
        deviceGuardSecureBootWithDMA - value of deviceGuardSecureBootWithDMA property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • dmaGuardDeviceEnumerationPolicy

        public Windows10EndpointProtectionConfiguration.Builder dmaGuardDeviceEnumerationPolicy​(DmaGuardDeviceEnumerationPolicyType dmaGuardDeviceEnumerationPolicy)
        “This policy is intended to provide additional security against external DMA capable devices. It allows for more control over the enumeration of external DMA capable devices incompatible with DMA Remapping/device memory isolation and sandboxing. This policy only takes effect when Kernel DMA Protection is supported and enabled by the system firmware. Kernel DMA Protection is a platform feature that cannot be controlled via policy or by end user. It has to be supported by the system at the time of manufacturing. To check if the system supports Kernel DMA Protection, please check the Kernel DMA Protection field in the Summary page of MSINFO32.exe.”
        Parameters:
        dmaGuardDeviceEnumerationPolicy - value of dmaGuardDeviceEnumerationPolicy property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallBlockStatefulFTP

        public Windows10EndpointProtectionConfiguration.Builder firewallBlockStatefulFTP​(Boolean firewallBlockStatefulFTP)
        “Blocks stateful FTP connections to the device”
        Parameters:
        firewallBlockStatefulFTP - value of firewallBlockStatefulFTP property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallCertificateRevocationListCheckMethod

        public Windows10EndpointProtectionConfiguration.Builder firewallCertificateRevocationListCheckMethod​(FirewallCertificateRevocationListCheckMethodType firewallCertificateRevocationListCheckMethod)
        “Specify how the certificate revocation list is to be enforced”
        Parameters:
        firewallCertificateRevocationListCheckMethod - value of firewallCertificateRevocationListCheckMethod property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallIdleTimeoutForSecurityAssociationInSeconds

        public Windows10EndpointProtectionConfiguration.Builder firewallIdleTimeoutForSecurityAssociationInSeconds​(Integer firewallIdleTimeoutForSecurityAssociationInSeconds)
        “Configures the idle timeout for security associations, in seconds, from 300 to 3600 inclusive. This is the period after which security associations will expire and be deleted. Valid values 300 to 3600”
        Parameters:
        firewallIdleTimeoutForSecurityAssociationInSeconds - value of firewallIdleTimeoutForSecurityAssociationInSeconds property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallIPSecExemptionsAllowDHCP

        public Windows10EndpointProtectionConfiguration.Builder firewallIPSecExemptionsAllowDHCP​(Boolean firewallIPSecExemptionsAllowDHCP)
        “Configures IPSec exemptions to allow both IPv4 and IPv6 DHCP traffic”
        Parameters:
        firewallIPSecExemptionsAllowDHCP - value of firewallIPSecExemptionsAllowDHCP property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallIPSecExemptionsAllowICMP

        public Windows10EndpointProtectionConfiguration.Builder firewallIPSecExemptionsAllowICMP​(Boolean firewallIPSecExemptionsAllowICMP)
        “Configures IPSec exemptions to allow ICMP”
        Parameters:
        firewallIPSecExemptionsAllowICMP - value of firewallIPSecExemptionsAllowICMP property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallIPSecExemptionsAllowNeighborDiscovery

        public Windows10EndpointProtectionConfiguration.Builder firewallIPSecExemptionsAllowNeighborDiscovery​(Boolean firewallIPSecExemptionsAllowNeighborDiscovery)
        “Configures IPSec exemptions to allow neighbor discovery IPv6 ICMP type-codes”
        Parameters:
        firewallIPSecExemptionsAllowNeighborDiscovery - value of firewallIPSecExemptionsAllowNeighborDiscovery property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallIPSecExemptionsAllowRouterDiscovery

        public Windows10EndpointProtectionConfiguration.Builder firewallIPSecExemptionsAllowRouterDiscovery​(Boolean firewallIPSecExemptionsAllowRouterDiscovery)
        “Configures IPSec exemptions to allow router discovery IPv6 ICMP type-codes”
        Parameters:
        firewallIPSecExemptionsAllowRouterDiscovery - value of firewallIPSecExemptionsAllowRouterDiscovery property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallIPSecExemptionsNone

        public Windows10EndpointProtectionConfiguration.Builder firewallIPSecExemptionsNone​(Boolean firewallIPSecExemptionsNone)
        “Configures IPSec exemptions to no exemptions”
        Parameters:
        firewallIPSecExemptionsNone - value of firewallIPSecExemptionsNone property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallMergeKeyingModuleSettings

        public Windows10EndpointProtectionConfiguration.Builder firewallMergeKeyingModuleSettings​(Boolean firewallMergeKeyingModuleSettings)
        “If an authentication set is not fully supported by a keying module, direct the module to ignore only unsupported authentication suites rather than the entire set”
        Parameters:
        firewallMergeKeyingModuleSettings - value of firewallMergeKeyingModuleSettings property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallPacketQueueingMethod

        public Windows10EndpointProtectionConfiguration.Builder firewallPacketQueueingMethod​(FirewallPacketQueueingMethodType firewallPacketQueueingMethod)
        “Configures how packet queueing should be applied in the tunnel gateway scenario”
        Parameters:
        firewallPacketQueueingMethod - value of firewallPacketQueueingMethod property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallPreSharedKeyEncodingMethod

        public Windows10EndpointProtectionConfiguration.Builder firewallPreSharedKeyEncodingMethod​(FirewallPreSharedKeyEncodingMethodType firewallPreSharedKeyEncodingMethod)
        “Select the preshared key encoding to be used”
        Parameters:
        firewallPreSharedKeyEncodingMethod - value of firewallPreSharedKeyEncodingMethod property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallRules

        public Windows10EndpointProtectionConfiguration.Builder firewallRules​(List<WindowsFirewallRule> firewallRules)
        “Configures the firewall rule settings. This collection can contain a maximum of 150 elements.”
        Parameters:
        firewallRules - value of firewallRules property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallRules

        public Windows10EndpointProtectionConfiguration.Builder firewallRules​(WindowsFirewallRule... firewallRules)
        “Configures the firewall rule settings. This collection can contain a maximum of 150 elements.”
        Parameters:
        firewallRules - value of firewallRules property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • firewallRulesNextLink

        public Windows10EndpointProtectionConfiguration.Builder firewallRulesNextLink​(String firewallRulesNextLink)
        “Configures the firewall rule settings. This collection can contain a maximum of 150 elements.”
        Parameters:
        firewallRulesNextLink - value of firewallRules@nextLink property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • lanManagerAuthenticationLevel

        public Windows10EndpointProtectionConfiguration.Builder lanManagerAuthenticationLevel​(LanManagerAuthenticationLevel lanManagerAuthenticationLevel)
        “This security setting determines which challenge/response authentication protocol is used for network logons.”
        Parameters:
        lanManagerAuthenticationLevel - value of lanManagerAuthenticationLevel property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • lanManagerWorkstationDisableInsecureGuestLogons

        public Windows10EndpointProtectionConfiguration.Builder lanManagerWorkstationDisableInsecureGuestLogons​(Boolean lanManagerWorkstationDisableInsecureGuestLogons)
        “If enabled,the SMB client will allow insecure guest logons. If not configured, the SMB client will reject insecure guest logons.”
        Parameters:
        lanManagerWorkstationDisableInsecureGuestLogons - value of lanManagerWorkstationDisableInsecureGuestLogons property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAdministratorAccountName

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAdministratorAccountName​(String localSecurityOptionsAdministratorAccountName)
        “Define a different account name to be associated with the security identifier ( SID) for the account “Administrator”.”
        Parameters:
        localSecurityOptionsAdministratorAccountName - value of localSecurityOptionsAdministratorAccountName property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAdministratorElevationPromptBehavior

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAdministratorElevationPromptBehavior​(LocalSecurityOptionsAdministratorElevationPromptBehaviorType localSecurityOptionsAdministratorElevationPromptBehavior)
        “Define the behavior of the elevation prompt for admins in Admin Approval Mode.”
        Parameters:
        localSecurityOptionsAdministratorElevationPromptBehavior - value of localSecurityOptionsAdministratorElevationPromptBehavior property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares​(Boolean localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares)
        “This security setting determines whether to allows anonymous users to perform certain activities, such as enumerating the names of domain accounts and network shares.”
        Parameters:
        localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares - value of localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndShares property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowPKU2UAuthenticationRequests

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowPKU2UAuthenticationRequests​(Boolean localSecurityOptionsAllowPKU2UAuthenticationRequests)
        “Block PKU2U authentication requests to this device to use online identities.”
        Parameters:
        localSecurityOptionsAllowPKU2UAuthenticationRequests - value of localSecurityOptionsAllowPKU2UAuthenticationRequests property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager​(String localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager)
        “Edit the default Security Descriptor Definition Language string to allow or deny users and groups to make remote calls to the SAM.”
        Parameters:
        localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager - value of localSecurityOptionsAllowRemoteCallsToSecurityAccountsManager property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool​(Boolean localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool)
        “UI helper boolean for LocalSecurityOptionsAllowRemoteCallsToSecurityAccountsManager entity”
        Parameters:
        localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool - value of localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerHelperBool property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn​(Boolean localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn)
        “This security setting determines whether a computer can be shut down without having to log on to Windows.”
        Parameters:
        localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn - value of localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOn property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowUIAccessApplicationElevation

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowUIAccessApplicationElevation​(Boolean localSecurityOptionsAllowUIAccessApplicationElevation)
        “Allow UIAccess apps to prompt for elevation without using the secure desktop.”
        Parameters:
        localSecurityOptionsAllowUIAccessApplicationElevation - value of localSecurityOptionsAllowUIAccessApplicationElevation property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowUIAccessApplicationsForSecureLocations

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowUIAccessApplicationsForSecureLocations​(Boolean localSecurityOptionsAllowUIAccessApplicationsForSecureLocations)
        “Allow UIAccess apps to prompt for elevation without using the secure desktop. Default is enabled”
        Parameters:
        localSecurityOptionsAllowUIAccessApplicationsForSecureLocations - value of localSecurityOptionsAllowUIAccessApplicationsForSecureLocations property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsAllowUndockWithoutHavingToLogon

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsAllowUndockWithoutHavingToLogon​(Boolean localSecurityOptionsAllowUndockWithoutHavingToLogon)
        “Prevent a portable computer from being undocked without having to log in.”
        Parameters:
        localSecurityOptionsAllowUndockWithoutHavingToLogon - value of localSecurityOptionsAllowUndockWithoutHavingToLogon property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsBlockMicrosoftAccounts

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsBlockMicrosoftAccounts​(Boolean localSecurityOptionsBlockMicrosoftAccounts)
        “Prevent users from adding new Microsoft accounts to this computer.”
        Parameters:
        localSecurityOptionsBlockMicrosoftAccounts - value of localSecurityOptionsBlockMicrosoftAccounts property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsBlockRemoteLogonWithBlankPassword

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsBlockRemoteLogonWithBlankPassword​(Boolean localSecurityOptionsBlockRemoteLogonWithBlankPassword)
        “Enable Local accounts that are not password protected to log on from locations other than the physical device.Default is enabled”
        Parameters:
        localSecurityOptionsBlockRemoteLogonWithBlankPassword - value of localSecurityOptionsBlockRemoteLogonWithBlankPassword property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsBlockRemoteOpticalDriveAccess

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsBlockRemoteOpticalDriveAccess​(Boolean localSecurityOptionsBlockRemoteOpticalDriveAccess)
        “Enabling this settings allows only interactively logged on user to access CD-ROM media.”
        Parameters:
        localSecurityOptionsBlockRemoteOpticalDriveAccess - value of localSecurityOptionsBlockRemoteOpticalDriveAccess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsBlockUsersInstallingPrinterDrivers

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsBlockUsersInstallingPrinterDrivers​(Boolean localSecurityOptionsBlockUsersInstallingPrinterDrivers)
        “Restrict installing printer drivers as part of connecting to a shared printer to admins only.”
        Parameters:
        localSecurityOptionsBlockUsersInstallingPrinterDrivers - value of localSecurityOptionsBlockUsersInstallingPrinterDrivers property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsClearVirtualMemoryPageFile

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsClearVirtualMemoryPageFile​(Boolean localSecurityOptionsClearVirtualMemoryPageFile)
        “This security setting determines whether the virtual memory pagefile is cleared when the system is shut down.”
        Parameters:
        localSecurityOptionsClearVirtualMemoryPageFile - value of localSecurityOptionsClearVirtualMemoryPageFile property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsClientDigitallySignCommunicationsAlways

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsClientDigitallySignCommunicationsAlways​(Boolean localSecurityOptionsClientDigitallySignCommunicationsAlways)
        “This security setting determines whether packet signing is required by the SMB client component.”
        Parameters:
        localSecurityOptionsClientDigitallySignCommunicationsAlways - value of localSecurityOptionsClientDigitallySignCommunicationsAlways property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers​(Boolean localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers)
        “If this security setting is enabled, the Server Message Block (SMB) redirector is allowed to send plaintext passwords to non-Microsoft SMB servers that do not support password encryption during authentication.”
        Parameters:
        localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers - value of localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServers property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation​(Boolean localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation)
        “App installations requiring elevated privileges will prompt for admin credentials.Default is enabled”
        Parameters:
        localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation - value of localSecurityOptionsDetectApplicationInstallationsAndPromptForElevation property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDisableAdministratorAccount

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDisableAdministratorAccount​(Boolean localSecurityOptionsDisableAdministratorAccount)
        “Determines whether the Local Administrator account is enabled or disabled.”
        Parameters:
        localSecurityOptionsDisableAdministratorAccount - value of localSecurityOptionsDisableAdministratorAccount property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees​(Boolean localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees)
        “This security setting determines whether the SMB client attempts to negotiate SMB packet signing.”
        Parameters:
        localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees - value of localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgrees property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDisableGuestAccount

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDisableGuestAccount​(Boolean localSecurityOptionsDisableGuestAccount)
        “Determines if the Guest account is enabled or disabled.”
        Parameters:
        localSecurityOptionsDisableGuestAccount - value of localSecurityOptionsDisableGuestAccount property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDisableServerDigitallySignCommunicationsAlways

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDisableServerDigitallySignCommunicationsAlways​(Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsAlways)
        “This security setting determines whether packet signing is required by the SMB server component.”
        Parameters:
        localSecurityOptionsDisableServerDigitallySignCommunicationsAlways - value of localSecurityOptionsDisableServerDigitallySignCommunicationsAlways property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees​(Boolean localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees)
        “This security setting determines whether the SMB server will negotiate SMB packet signing with clients that request it.”
        Parameters:
        localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees - value of localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgrees property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts​(Boolean localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts)
        “This security setting determines what additional permissions will be granted for anonymous connections to the computer.”
        Parameters:
        localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts - value of localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccounts property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDoNotRequireCtrlAltDel

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDoNotRequireCtrlAltDel​(Boolean localSecurityOptionsDoNotRequireCtrlAltDel)
        “Require CTRL+ALT+DEL to be pressed before a user can log on.”
        Parameters:
        localSecurityOptionsDoNotRequireCtrlAltDel - value of localSecurityOptionsDoNotRequireCtrlAltDel property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange​(Boolean localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange)
        “This security setting determines if, at the next password change, the LAN Manager (LM) hash value for the new password is stored. It’s not stored by default.”
        Parameters:
        localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange - value of localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChange property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser​(LocalSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserType localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser)
        “Define who is allowed to format and eject removable NTFS media.”
        Parameters:
        localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser - value of localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUser property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsGuestAccountName

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsGuestAccountName​(String localSecurityOptionsGuestAccountName)
        “Define a different account name to be associated with the security identifier ( SID) for the account “Guest”.”
        Parameters:
        localSecurityOptionsGuestAccountName - value of localSecurityOptionsGuestAccountName property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsHideLastSignedInUser

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsHideLastSignedInUser​(Boolean localSecurityOptionsHideLastSignedInUser)
        “Do not display the username of the last person who signed in on this device.”
        Parameters:
        localSecurityOptionsHideLastSignedInUser - value of localSecurityOptionsHideLastSignedInUser property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsHideUsernameAtSignIn

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsHideUsernameAtSignIn​(Boolean localSecurityOptionsHideUsernameAtSignIn)
        “Do not display the username of the person signing in to this device after credentials are entered and before the device’s desktop is shown.”
        Parameters:
        localSecurityOptionsHideUsernameAtSignIn - value of localSecurityOptionsHideUsernameAtSignIn property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsInformationDisplayedOnLockScreen

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsInformationDisplayedOnLockScreen​(LocalSecurityOptionsInformationDisplayedOnLockScreenType localSecurityOptionsInformationDisplayedOnLockScreen)
        “Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown”
        Parameters:
        localSecurityOptionsInformationDisplayedOnLockScreen - value of localSecurityOptionsInformationDisplayedOnLockScreen property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsInformationShownOnLockScreen

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsInformationShownOnLockScreen​(LocalSecurityOptionsInformationShownOnLockScreenType localSecurityOptionsInformationShownOnLockScreen)
        “Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown”
        Parameters:
        localSecurityOptionsInformationShownOnLockScreen - value of localSecurityOptionsInformationShownOnLockScreen property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsLogOnMessageText

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsLogOnMessageText​(String localSecurityOptionsLogOnMessageText)
        “Set message text for users attempting to log in.”
        Parameters:
        localSecurityOptionsLogOnMessageText - value of localSecurityOptionsLogOnMessageText property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsLogOnMessageTitle

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsLogOnMessageTitle​(String localSecurityOptionsLogOnMessageTitle)
        “Set message title for users attempting to log in.”
        Parameters:
        localSecurityOptionsLogOnMessageTitle - value of localSecurityOptionsLogOnMessageTitle property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsMachineInactivityLimit

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsMachineInactivityLimit​(Integer localSecurityOptionsMachineInactivityLimit)
        “Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs. Valid values 0 to 9999”
        Parameters:
        localSecurityOptionsMachineInactivityLimit - value of localSecurityOptionsMachineInactivityLimit property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsMachineInactivityLimitInMinutes

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsMachineInactivityLimitInMinutes​(Integer localSecurityOptionsMachineInactivityLimitInMinutes)
        “Define maximum minutes of inactivity on the interactive desktop’s login screen until the screen saver runs. Valid values 0 to 9999”
        Parameters:
        localSecurityOptionsMachineInactivityLimitInMinutes - value of localSecurityOptionsMachineInactivityLimitInMinutes property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients​(LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients)
        “This security setting allows a client to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”
        Parameters:
        localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients - value of localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClients property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers​(LocalSecurityOptionsMinimumSessionSecurity localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers)
        “This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security.”
        Parameters:
        localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers - value of localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServers property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsOnlyElevateSignedExecutables

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsOnlyElevateSignedExecutables​(Boolean localSecurityOptionsOnlyElevateSignedExecutables)
        “Enforce PKI certification path validation for a given executable file before it is permitted to run.”
        Parameters:
        localSecurityOptionsOnlyElevateSignedExecutables - value of localSecurityOptionsOnlyElevateSignedExecutables property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares​(Boolean localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares)
        “By default, this security setting restricts anonymous access to shares and pipes to the settings for named pipes that can be accessed anonymously and Shares that can be accessed anonymously”
        Parameters:
        localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares - value of localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndShares property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsSmartCardRemovalBehavior

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsSmartCardRemovalBehavior​(LocalSecurityOptionsSmartCardRemovalBehaviorType localSecurityOptionsSmartCardRemovalBehavior)
        “This security setting determines what happens when the smart card for a logged- on user is removed from the smart card reader.”
        Parameters:
        localSecurityOptionsSmartCardRemovalBehavior - value of localSecurityOptionsSmartCardRemovalBehavior property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsStandardUserElevationPromptBehavior

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsStandardUserElevationPromptBehavior​(LocalSecurityOptionsStandardUserElevationPromptBehaviorType localSecurityOptionsStandardUserElevationPromptBehavior)
        “Define the behavior of the elevation prompt for standard users.”
        Parameters:
        localSecurityOptionsStandardUserElevationPromptBehavior - value of localSecurityOptionsStandardUserElevationPromptBehavior property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation​(Boolean localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation)
        “Enable all elevation requests to go to the interactive user's desktop rather than the secure desktop. Prompt behavior policy settings for admins and standard users are used.”
        Parameters:
        localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation - value of localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevation property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsUseAdminApprovalMode

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsUseAdminApprovalMode​(Boolean localSecurityOptionsUseAdminApprovalMode)
        “Defines whether the built-in admin account uses Admin Approval Mode or runs all apps with full admin privileges.Default is enabled”
        Parameters:
        localSecurityOptionsUseAdminApprovalMode - value of localSecurityOptionsUseAdminApprovalMode property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsUseAdminApprovalModeForAdministrators

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsUseAdminApprovalModeForAdministrators​(Boolean localSecurityOptionsUseAdminApprovalModeForAdministrators)
        “Define whether Admin Approval Mode and all UAC policy settings are enabled, default is enabled”
        Parameters:
        localSecurityOptionsUseAdminApprovalModeForAdministrators - value of localSecurityOptionsUseAdminApprovalModeForAdministrators property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations

        public Windows10EndpointProtectionConfiguration.Builder localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations​(Boolean localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations)
        “Virtualize file and registry write failures to per user locations”
        Parameters:
        localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations - value of localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocations property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • smartScreenBlockOverrideForFiles

        public Windows10EndpointProtectionConfiguration.Builder smartScreenBlockOverrideForFiles​(Boolean smartScreenBlockOverrideForFiles)
        “Allows IT Admins to control whether users can can ignore SmartScreen warnings and run malicious files.”
        Parameters:
        smartScreenBlockOverrideForFiles - value of smartScreenBlockOverrideForFiles property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • smartScreenEnableInShell

        public Windows10EndpointProtectionConfiguration.Builder smartScreenEnableInShell​(Boolean smartScreenEnableInShell)
        “Allows IT Admins to configure SmartScreen for Windows.”
        Parameters:
        smartScreenEnableInShell - value of smartScreenEnableInShell property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsAccessCredentialManagerAsTrustedCaller

        public Windows10EndpointProtectionConfiguration.Builder userRightsAccessCredentialManagerAsTrustedCaller​(DeviceManagementUserRightsSetting userRightsAccessCredentialManagerAsTrustedCaller)
        “This user right is used by Credential Manager during Backup/Restore. Users' saved credentials might be compromised if this privilege is given to other entities. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsAccessCredentialManagerAsTrustedCaller - value of userRightsAccessCredentialManagerAsTrustedCaller property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsActAsPartOfTheOperatingSystem

        public Windows10EndpointProtectionConfiguration.Builder userRightsActAsPartOfTheOperatingSystem​(DeviceManagementUserRightsSetting userRightsActAsPartOfTheOperatingSystem)
        “This user right allows a process to impersonate any user without authentication. The process can therefore gain access to the same local resources as that user. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsActAsPartOfTheOperatingSystem - value of userRightsActAsPartOfTheOperatingSystem property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsAllowAccessFromNetwork

        public Windows10EndpointProtectionConfiguration.Builder userRightsAllowAccessFromNetwork​(DeviceManagementUserRightsSetting userRightsAllowAccessFromNetwork)
        “This user right determines which users and groups are allowed to connect to the computer over the network. State Allowed is supported.”
        Parameters:
        userRightsAllowAccessFromNetwork - value of userRightsAllowAccessFromNetwork property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsBackupData

        public Windows10EndpointProtectionConfiguration.Builder userRightsBackupData​(DeviceManagementUserRightsSetting userRightsBackupData)
        “This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when backing up files and directories. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsBackupData - value of userRightsBackupData property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsBlockAccessFromNetwork

        public Windows10EndpointProtectionConfiguration.Builder userRightsBlockAccessFromNetwork​(DeviceManagementUserRightsSetting userRightsBlockAccessFromNetwork)
        “This user right determines which users and groups are block from connecting to the computer over the network. State Block is supported.”
        Parameters:
        userRightsBlockAccessFromNetwork - value of userRightsBlockAccessFromNetwork property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsChangeSystemTime

        public Windows10EndpointProtectionConfiguration.Builder userRightsChangeSystemTime​(DeviceManagementUserRightsSetting userRightsChangeSystemTime)
        “This user right determines which users and groups can change the time and date on the internal clock of the computer. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsChangeSystemTime - value of userRightsChangeSystemTime property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsCreateGlobalObjects

        public Windows10EndpointProtectionConfiguration.Builder userRightsCreateGlobalObjects​(DeviceManagementUserRightsSetting userRightsCreateGlobalObjects)
        “This security setting determines whether users can create global objects that are available to all sessions. Users who can create global objects could affect processes that run under other users' sessions, which could lead to application failure or data corruption. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsCreateGlobalObjects - value of userRightsCreateGlobalObjects property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsCreatePageFile

        public Windows10EndpointProtectionConfiguration.Builder userRightsCreatePageFile​(DeviceManagementUserRightsSetting userRightsCreatePageFile)
        “This user right determines which users and groups can call an internal API to create and change the size of a page file. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsCreatePageFile - value of userRightsCreatePageFile property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsCreatePermanentSharedObjects

        public Windows10EndpointProtectionConfiguration.Builder userRightsCreatePermanentSharedObjects​(DeviceManagementUserRightsSetting userRightsCreatePermanentSharedObjects)
        “This user right determines which accounts can be used by processes to create a directory object using the object manager. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsCreatePermanentSharedObjects - value of userRightsCreatePermanentSharedObjects property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsCreateSymbolicLinks

        public Windows10EndpointProtectionConfiguration.Builder userRightsCreateSymbolicLinks​(DeviceManagementUserRightsSetting userRightsCreateSymbolicLinks)
        “This user right determines if the user can create a symbolic link from the computer to which they are logged on. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsCreateSymbolicLinks - value of userRightsCreateSymbolicLinks property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsCreateToken

        public Windows10EndpointProtectionConfiguration.Builder userRightsCreateToken​(DeviceManagementUserRightsSetting userRightsCreateToken)
        “This user right determines which users/groups can be used by processes to create a token that can then be used to get access to any local resources when the process uses an internal API to create an access token. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsCreateToken - value of userRightsCreateToken property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsDebugPrograms

        public Windows10EndpointProtectionConfiguration.Builder userRightsDebugPrograms​(DeviceManagementUserRightsSetting userRightsDebugPrograms)
        “This user right determines which users can attach a debugger to any process or to the kernel. Only states NotConfigured and Allowed are supported”
        Parameters:
        userRightsDebugPrograms - value of userRightsDebugPrograms property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsDelegation

        public Windows10EndpointProtectionConfiguration.Builder userRightsDelegation​(DeviceManagementUserRightsSetting userRightsDelegation)
        “This user right determines which users can set the Trusted for Delegation setting on a user or computer object. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsDelegation - value of userRightsDelegation property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsDenyLocalLogOn

        public Windows10EndpointProtectionConfiguration.Builder userRightsDenyLocalLogOn​(DeviceManagementUserRightsSetting userRightsDenyLocalLogOn)
        “This user right determines which users cannot log on to the computer. States NotConfigured, Blocked are supported”
        Parameters:
        userRightsDenyLocalLogOn - value of userRightsDenyLocalLogOn property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsGenerateSecurityAudits

        public Windows10EndpointProtectionConfiguration.Builder userRightsGenerateSecurityAudits​(DeviceManagementUserRightsSetting userRightsGenerateSecurityAudits)
        “This user right determines which accounts can be used by a process to add entries to the security log. The security log is used to trace unauthorized system access. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsGenerateSecurityAudits - value of userRightsGenerateSecurityAudits property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsImpersonateClient

        public Windows10EndpointProtectionConfiguration.Builder userRightsImpersonateClient​(DeviceManagementUserRightsSetting userRightsImpersonateClient)
        “Assigning this user right to a user allows programs running on behalf of that user to impersonate a client. Requiring this user right for this kind of impersonation prevents an unauthorized user from convincing a client to connect to a service that they have created and then impersonating that client, which can elevate the unauthorized user's permissions to administrative or system levels. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsImpersonateClient - value of userRightsImpersonateClient property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsIncreaseSchedulingPriority

        public Windows10EndpointProtectionConfiguration.Builder userRightsIncreaseSchedulingPriority​(DeviceManagementUserRightsSetting userRightsIncreaseSchedulingPriority)
        “This user right determines which accounts can use a process with Write Property access to another process to increase the execution priority assigned to the other process. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsIncreaseSchedulingPriority - value of userRightsIncreaseSchedulingPriority property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsLoadUnloadDrivers

        public Windows10EndpointProtectionConfiguration.Builder userRightsLoadUnloadDrivers​(DeviceManagementUserRightsSetting userRightsLoadUnloadDrivers)
        “This user right determines which users can dynamically load and unload device drivers or other code in to kernel mode. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsLoadUnloadDrivers - value of userRightsLoadUnloadDrivers property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsLocalLogOn

        public Windows10EndpointProtectionConfiguration.Builder userRightsLocalLogOn​(DeviceManagementUserRightsSetting userRightsLocalLogOn)
        “This user right determines which users can log on to the computer. States NotConfigured, Allowed are supported”
        Parameters:
        userRightsLocalLogOn - value of userRightsLocalLogOn property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsLockMemory

        public Windows10EndpointProtectionConfiguration.Builder userRightsLockMemory​(DeviceManagementUserRightsSetting userRightsLockMemory)
        “This user right determines which accounts can use a process to keep data in physical memory, which prevents the system from paging the data to virtual memory on disk. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsLockMemory - value of userRightsLockMemory property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsManageAuditingAndSecurityLogs

        public Windows10EndpointProtectionConfiguration.Builder userRightsManageAuditingAndSecurityLogs​(DeviceManagementUserRightsSetting userRightsManageAuditingAndSecurityLogs)
        “This user right determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsManageAuditingAndSecurityLogs - value of userRightsManageAuditingAndSecurityLogs property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsManageVolumes

        public Windows10EndpointProtectionConfiguration.Builder userRightsManageVolumes​(DeviceManagementUserRightsSetting userRightsManageVolumes)
        “This user right determines which users and groups can run maintenance tasks on a volume, such as remote defragmentation. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsManageVolumes - value of userRightsManageVolumes property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsModifyFirmwareEnvironment

        public Windows10EndpointProtectionConfiguration.Builder userRightsModifyFirmwareEnvironment​(DeviceManagementUserRightsSetting userRightsModifyFirmwareEnvironment)
        “This user right determines who can modify firmware environment values. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsModifyFirmwareEnvironment - value of userRightsModifyFirmwareEnvironment property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsModifyObjectLabels

        public Windows10EndpointProtectionConfiguration.Builder userRightsModifyObjectLabels​(DeviceManagementUserRightsSetting userRightsModifyObjectLabels)
        “This user right determines which user accounts can modify the integrity label of objects, such as files, registry keys, or processes owned by other users. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsModifyObjectLabels - value of userRightsModifyObjectLabels property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsProfileSingleProcess

        public Windows10EndpointProtectionConfiguration.Builder userRightsProfileSingleProcess​(DeviceManagementUserRightsSetting userRightsProfileSingleProcess)
        “This user right determines which users can use performance monitoring tools to monitor the performance of system processes. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsProfileSingleProcess - value of userRightsProfileSingleProcess property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsRemoteDesktopServicesLogOn

        public Windows10EndpointProtectionConfiguration.Builder userRightsRemoteDesktopServicesLogOn​(DeviceManagementUserRightsSetting userRightsRemoteDesktopServicesLogOn)
        “This user right determines which users and groups are prohibited from logging on as a Remote Desktop Services client. Only states NotConfigured and Blocked are supported”
        Parameters:
        userRightsRemoteDesktopServicesLogOn - value of userRightsRemoteDesktopServicesLogOn property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsRemoteShutdown

        public Windows10EndpointProtectionConfiguration.Builder userRightsRemoteShutdown​(DeviceManagementUserRightsSetting userRightsRemoteShutdown)
        “This user right determines which users are allowed to shut down a computer from a remote location on the network. Misuse of this user right can result in a denial of service. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsRemoteShutdown - value of userRightsRemoteShutdown property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsRestoreData

        public Windows10EndpointProtectionConfiguration.Builder userRightsRestoreData​(DeviceManagementUserRightsSetting userRightsRestoreData)
        “This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when restoring backed up files and directories, and determines which users can set any valid security principal as the owner of an object. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsRestoreData - value of userRightsRestoreData property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • userRightsTakeOwnership

        public Windows10EndpointProtectionConfiguration.Builder userRightsTakeOwnership​(DeviceManagementUserRightsSetting userRightsTakeOwnership)
        “This user right determines which users can take ownership of any securable object in the system, including Active Directory objects, files and folders, printers, registry keys, processes, and threads. Only states NotConfigured and Allowed are supported.”
        Parameters:
        userRightsTakeOwnership - value of userRightsTakeOwnership property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • xboxServicesAccessoryManagementServiceStartupMode

        public Windows10EndpointProtectionConfiguration.Builder xboxServicesAccessoryManagementServiceStartupMode​(ServiceStartType xboxServicesAccessoryManagementServiceStartupMode)
        “This setting determines whether the Accessory management service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”
        Parameters:
        xboxServicesAccessoryManagementServiceStartupMode - value of xboxServicesAccessoryManagementServiceStartupMode property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • xboxServicesEnableXboxGameSaveTask

        public Windows10EndpointProtectionConfiguration.Builder xboxServicesEnableXboxGameSaveTask​(Boolean xboxServicesEnableXboxGameSaveTask)
        “This setting determines whether xbox game save is enabled (1) or disabled (0).”
        Parameters:
        xboxServicesEnableXboxGameSaveTask - value of xboxServicesEnableXboxGameSaveTask property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • xboxServicesLiveAuthManagerServiceStartupMode

        public Windows10EndpointProtectionConfiguration.Builder xboxServicesLiveAuthManagerServiceStartupMode​(ServiceStartType xboxServicesLiveAuthManagerServiceStartupMode)
        “This setting determines whether Live Auth Manager service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”
        Parameters:
        xboxServicesLiveAuthManagerServiceStartupMode - value of xboxServicesLiveAuthManagerServiceStartupMode property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • xboxServicesLiveGameSaveServiceStartupMode

        public Windows10EndpointProtectionConfiguration.Builder xboxServicesLiveGameSaveServiceStartupMode​(ServiceStartType xboxServicesLiveGameSaveServiceStartupMode)
        “This setting determines whether Live Game save service's start type is Automatic (2), Manual(3), Disabled(4). Default: Manual.”
        Parameters:
        xboxServicesLiveGameSaveServiceStartupMode - value of xboxServicesLiveGameSaveServiceStartupMode property (as defined in service metadata)
        Returns:
        this (for method chaining)

      • xboxServicesLiveNetworkingServiceStartupMode

        public Windows10EndpointProtectionConfiguration.Builder xboxServicesLiveNetworkingServiceStartupMode​(ServiceStartType xboxServicesLiveNetworkingServiceStartupMode)
        “This setting determines whether Networking service's start type is Automatic(2), Manual(3), Disabled(4). Default: Manual.”
        Parameters:
        xboxServicesLiveNetworkingServiceStartupMode - value of xboxServicesLiveNetworkingServiceStartupMode property (as defined in service metadata)
        Returns:
        this (for method chaining)