The Microsoft article referenced earlier,
More about AMSI integration with Exchange Server, has steps on how to disable the AMSI feature on Microsoft Exchange Server while retaining the installed Exchange rollup updates.
We recommend keeping the AMSI features in ENS Threat Prevention, ENS ATP, and MVISION Endpoint enabled. But, you can find the AMSI configuration items within the respective product policies in ePO:
- ENS Threat Prevention: Policy Catalog, Endpoint Security Threat Prevention, On-Access Scan, <Policy Name>, Enable AMSI (provides enhanced script scanning)
- ENS ATP: Policy Catalog, Endpoint Security Adaptive Threat Protection, Options, <Policy Name>, Enable enhanced script scanning (includes AMSI integration)
- MVISION Endpoint: Policy Catalog, MVISION Endpoint, General, <Policy Name>, Enable script scanning