The WDAG policy is enabled for all Olympia users, but there are still manual steps needed to activate it on your client device. There is work going on now that will allow the full activation via Intune console that will be ready in January. Until then, please activate it using these steps, then try it out and provide feedback using Feedback Hub. Thank you - the Olympia Crew.
1) Ensure that hypervisor capabilities are enabled in the BIOS on the device
2) Open up Control Panel
- Click on "Programs"
- Click on "Programs and Features"
- Click on "Turn Windows features on or off" in the sidebar
- Check the box next to "Windows Defender Application Guard"
- Click "OK"
3) Reboot the device when prompted
4) After logging in after the reboot, based on the Olympia WDAG policy, some sites will automatically open Edge in an isolated Edge window (with orange chrome at the top)
Note - You can also manually turn on WDAG for any given Edge session by following above instructions, and after the reboot (step 3), do the following:
- Open Edge, click on the three dots in the top right, and click on the "New Application Guard window" option.
- A dialog stating "Windows Defender Application Guard is starting" will now come up
- Soon after, a new isolated Edge window with orange chrome at the top should open
- You should now be able to navigate to websites inside the isolated Edge window like you can in normal Edge
- For more information on using WDAG in standalone mode - see this post
The following device specifications are required to install the WDAG feature:
- At least 8 GB of RAM
- At least 5 GB of free disk space
- At least 4 CPU cores
