Set exclusions from Brute-Force Protection

Supported on: At least Windows Server 2016, Windows 10 Version 1607

Registry

HKLM Software\Policies\Microsoft\Windows Defender\Remediation\Behavioral Network Blocks\Brute Force Protection

Value name: BruteForceProtection_Exclusions

Options

List (registry values) list - list under

Software\Policies\Microsoft\Windows Defender\Remediation\Behavioral Network Blocks\Brute Force Protection\BruteForceProtectionExclusions

Description

Specify IP addresses, subnets or workstation names to exclude from Brute-Force Protection. Excluded IP addresses will not be checked for possible brute force activity. Note that attackers can spoof excluded addresses and names to bypass protection. Ensure the names are unique and unlikely to be guessed by attackers. Enter each address or subnet on a new line as a name-value pair: - Name column: Enter an IP address, subnet name, or workstation name. For example, "1.1.127.0" will exclude this IP address from getting blocked by BFP. - Value column: Enter "0" for each item