Microsoft Defender Antivirus • Release: 7 Benchmark Date: 05 Jan 2026

CAT II V-213431 WNDF-AV-000007

Microsoft Defender AV must be configured to enable the Automatic Exclusions feature.

Documentable No
Rule ID SV-213431r961194_rule
CCI References
CCI-001242

Discussion

This setting allows an administrator to specify if Automatic Exclusions feature for Server SKUs should be turned off.

Check Procedure

Verify the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Microsoft Defender Antivirus >> Exclusions >> "Turn off Auto Exclusions" is set to "Disabled".
     
Procedure: Use the Windows Registry Editor to navigate to the following key: 
HKLM\Software\Policies\Microsoft\Windows Defender\Exclusions

Criteria: If the value "DisableAutoExclusions" is REG_DWORD = 0, this is not a finding.

Fix Action

Set the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Microsoft Defender Antivirus >> Exclusions >> "Turn off Auto Exclusions" to "Disabled".