Dear IT Pros,
Today we discuss about All things about WDAC – Windows Defender Application Control.
WDAC was introduced with Windows 10 and could be applied to Windows server 2016 and l...
Updated Jun 25, 2021
Version 5.0
Blog Post
mbrown2180 and/or TanTran
I have a question...
At this moment we are using WDAC with MSI files.
We thought everything was working fine, we have signed the MSI files, also whitelisted the publisher.
At this moment we are seeing problems with MSI files with MST/MSP.
Deploying only MSI file is succesfull installed, no problems.
The same MSI file with MST file, installation failed.
We see events in the Applocker MSI and Script logs that the MST file (not MSI) is prevented from running due to Config CI Policy. (Event ID 8029)
Do we have to sign the MST also? That seems to be working when tested, but is that the Best Practice?
Why is WDAC/Applocker blocking the MST file, MSI is allowed...
We also see the same problem with MSP files, must we also allow them in the policy?