Configure Microsoft Defender Application Control using Intune Endpoint Security profiles

Показать описание

Previously known as Windows Defender Application Control, Microsoft Defender Application Control (MDAC) is now even more accessible to organizations through the removal of the Windows 10 Enterprise / Education requirement. Now, organizations using Windows 10/11 Professional are able to leverage the feature to gain greater insight and control of their Windows device estate.

Microsoft Defender Application Control builds upon the foundations set in AppLocker, which was initially introduced in Windows 7 to allow organizations to control exactly which applications can run on their Windows devices.

There are a few ways to enable and manage Microsoft Defender Application Control, and each method should be explored to ensure the right one is chosen for the use case.
In this series, I will walk through each method for deploying Microsoft Defender Application Control so that you can make an informed decision.

1) Method 1 – Microsoft Endpoint Manager (Intune) Endpoint Security configuration [this video]
2) Method 2 – Microsoft Endpoint Manager (Intune) Endpoint Protection Policy configuration
4) Method 4 – Microsoft Endpoint Configuration Manager (ConfigMgr)

Рекомендации по теме

Комментарии

Hands up if you've bricked a machine with AppLocker

tehsimo

Thank you for your video. Can you please create a video to block all third party application but allow managed application (Pushed from intune). Is it possible?

mdmmde

Looks like you found exactly what we did when trying to enable this. It breaks EVERYTHING. Dll's failing all over the place, common well known applications not working anymore. Unusable in a production environment in this state imo.

andytaylor

That was very helpful. Thank you so much!

badisthebest

Thanks for the video. What about viewing the audit logs via 365 admin centre's though? Is that possible? If i want to find out what software users are installing into C:\users\username\AppData I don't want to have to manually view each computers event viewer logs. Don't currently have the audit option turned on but considering it. Cheers

Woodeh

Hi What if the application is deployed in Intune??

jeshielmicoangulo

How can we allow specific app, say i want to allow surf shark VPN, how can i do one app.

obaidshaukat

Is there a way to whitelist certain application in conjunction with the policy you created? Do you have a video on it?

rashantha

Thanks! Great video.

Is it possible for a profile to be based on a whitelist?

DukePaul

Great video Thanks, Question please what is th deference between Microsoft 365 Defender
and Microsoft Defender for Cloud Apps it make me confused ? could you make a Leeson in each one ! please

khaldunazar

Great video.

We are trying to block installation of any softwares for non admin users. we have applied security baseline but it's allowing few apps like firefox and discord.
Can you tell me if there is any more efficient policy

Shrikml

Great video. Isn't it a bit scary to see all the native Windows components get blocked? This will impact system reliability downstream.

tomasbohunek

Great vídeo. a question. If I want both 7zip and vlc to run, is there a way that I don't enforce the policy on those applications? Create a whitelist of allowed apps or something similar.

soydlm

Good vid... plus applocker was so broken. When they first released 10, if you applied applocker with ANY policy it restricted the new xaml made start menu. #fail lol

summoner

can we shorten the channel name please¿ lol

marcusaurielius

Configure Microsoft Defender Application Control using Intune Endpoint Security profiles

Configuring Windows Defender Application Control (WDAC)

Microsoft Defender Application Control

Enable Windows Defender Application Control with Microsoft Intune

Configure Microsoft Defender Application Control using Custom Profiles

Windows Defender Application Control (WDAC) Basics

How to configure Windows Defender Application Control: Microsoft Exam AZ-801

Configure Microsoft Defender Application Control using Intune Endpoint Security profiles

Balancing security and flexibility when implementing Windows Defender Application Control (WDAC)

#AzureBacktoSchool 2024 - Uros Babic - Unified Security Operations with Sentinel and Defender XDR

Basics of deploying Windows Defender Application Control (WDAC) using Intune

Using Windows Application Control via an Intune template

60. Configure Microsoft Defender Application Guard using Microsoft Intune

Building a Windows Defender Application Control (WDAC) policy from scratch: User Mode Code Integrity

fix your organization used windows defender application control to block this app 2019

Windows Defender Application Control (WDAC) part 1 of 3 with MVP Kim Oppalfens

Enable ALL These Windows Security Features!

Microsoft defender smartscreen prevented an unrecognised app from starting #tutorial #pc

How to Create, Deploy and Audit WDAC (Windows Defender Application Control) Policies | WDACConfig

(SOLVED) Your organization used Windows Defender Application Control to block this app

YOUR ORGANIZATION USED WINDOWS DEFENDER APPLICATION CONTROL TO BLOCK THIS APP

Fix: 'Your organisation used Windows Defender Application Control to block this app' Error

MS128 - Manage Approved app for Windows devices with Application Control policy & Managed Instal...

Blue Security Podcast - 2022-02-13 - Microsoft Defender Application Control

ADAPTIVE APPLICATION CONTROL IN MICROSOFT DEFENDER FOR CLOUD