Introduction #
By default, users are allowed to download files when a virus has been found within the file.
Microsoft 365 helps protect your environment by detecting viruses and malware in file that users upload to SharePoint Online. Files are scanned for viruses after they are uploaded. If the file is found to contain malware, we recommend setting this to true to stop users from being able to download or sync the infected file.
User Impact #
Low
Users will not be able to download or sync any infected files from SharePoint online document libraries. They will only be allowed to Delete the file from SharePoint Online.
Admin Portal Reference #
This setting must be switched on via PowerShell. The following cmdlet is run on the tenants SharePoint Online.
Set-SPOTenant –DisallowInfectedFileDownload $true
If Action is set to Notify #
We report the setting is compliant if Set-SPOTenant –DisallowInfectedFileDownload is set to $true.
We report the setting is non-compliant if Set-SPOTenant –DisallowInfectedFileDownload is set to $false.
If Action is set to Enforce #
We report the setting is compliant if Set-SPOTenant –DisallowInfectedFileDownload is set to $true.
We report the setting is compliant-fixed if Set-SPOTenant –DisallowInfectedFileDownload was set to $false but we changed the setting to $true.