Policy
Define file shares for downloading security intelligence updates
Windows 11 25H2
Policy overview
Key metadata and intent for this policy.
Supported OS tags: Windows10, Windows10RT, Windows11, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2012, WindowsServer2012R2, WindowsServer2016
This policy setting allows you to configure UNC file share sources for downloading security intelligence updates. Sources will be contacted in the order specified. The value of this setting should be entered as a pipe-separated string enumerating the security intelligence update sources. For example: "{\\unc1 | \\unc2 }". The list is empty by default. If you enable this setting, the specified sources will be contacted for security intelligence updates. Once security intelligence updates have been successfully downloaded from one specified source, the remaining sources in the list will not be contacted. If you disable or do not configure this setting, the list will remain empty by default and no sources will be contacted.
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Element | Type | Registry mapping | Constraints & behavior |
|---|---|---|---|
Define file shares for downloading security intelligence updates ID SignatureUpdate_DefinitionUpdateFileSharesSources | text | HKLM\Software\Policies\Microsoft\Windows Defender\Signature Updates\DefinitionUpdateFileSharesSources Type REG_SZ | None |
Other policies in this category
Explore related policies at the same level.
- ComputerAllow notifications to disable security intelligence based reports to Microsoft MAPSAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerAllow real-time security intelligence updates based on reports to Microsoft MAPSAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerAllow security intelligence updates from Microsoft UpdateAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerAllow security intelligence updates when running on battery powerAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerAllows Microsoft Defender Antivirus to update and communicate over a metered connection.At least Windows Server 2012, Windows 8 or Windows RT
- ComputerCheck for the latest virus and spyware security intelligence on startupAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerConfigure security intelligence updates according to the scheduler for VDI clients.At least Windows Server 2016, Windows 10 Version 1903
- ComputerDefine security intelligence location for VDI clients.At least Windows Server 2016, Windows 10 Version 1903
- ComputerDefine the number of days after which a catch-up security intelligence update is requiredAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerDefine the number of days before spyware security intelligence is considered out of dateAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerDefine the number of days before virus security intelligence is considered out of dateAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerDefine the order of sources for downloading security intelligence updatesAt least Windows Server 2012, Windows 8 or Windows RT