question

gabrielsztejnworcel-3009 avatar image
0 Votes"
gabrielsztejnworcel-3009 asked ·

Windows Defender Application Control WDAC Deployment Questions

Hi,

Some questions about WDAC:
1. Are there any hardware requirements for running WDAC? I've seen some articles that mention things like HVCI, UEFI and secure boot, but no clear documentation. I'm trying to understand if I can run it on any Windows Server 2016/2019 machine, physical or virtual.
2. Is it possible to configure WDAC to verify signatures only for user mode applications? I mean no drivers.
3. Can I manually edit the generated XML file from a scan?
4. My use case - I would like to ship my product together with a policy that customers can import to their machines that run my application so my signed files will actually be verified. Does it make sense? Are there any problems with this approach or things I should pay attention to?

Thanks,
Gabriel

windows-server-2016windows-server-2019windows-10-securitywindows-server-security
· 1
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi,
Based on my research, Windows Defender Application Control is a software-based security layer that enforces an explicit list of software that is allowed to run on a PC. On its own, Application Control does not have any hardware or firmware prerequisites.

I would try to locate resources who are familiar with the WDAC Deployment ,If there are any progress ,i would update here!
Thanks for your understanding.

Best Regards,

1 Vote 1 ·

1 Answer

Reza-Ameri avatar image
0 Votes"
Reza-Ameri answered ·

To learn more about Application Control, take a look at:
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control
This feature is available if PCs are part of domain or are managed PC and is not recommended for shipment. In addition, when you deploy standalone policy, it might cause conflict with existing policies.

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.