Forum Discussion

StuartK73's avatar
StuartK73
Iron Contributor
Apr 13, 2020

WDAC Whitelisting

Hi All

 

I am looking for a "Simple" solution to Whitelist apps via Intune.

 

And found this:

Deploy Windows Defender Application Control policies by using Microsoft Intune

 

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune

 

Which states:

 

" Intune includes native support for WDAC, which allows you to configure Windows 10 client computers to only run Windows components and Microsoft Store apps, or to also allow reputable apps as defined by the Intelligent Security Graph (ISG)."

 

So, my question would be, could approved apps be uploaded to the Microsoft Store for Business / deployed via Intune and this would count as MS Store Apps?

 

Info appreciated

  • StuartK73 Don't think that's the case. I've heard users where even Intune Management Extension was blocked by this setting ;(

     

    Have you considered Applocker and prevent unsigned apps from running?