Home

Windows Defender Application Guard updated for Olympia users!

%3CLINGO-SUB%20id%3D%22lingo-sub-181395%22%20slang%3D%22en-US%22%3EWindows%20Defender%20Application%20Guard%20updated%20for%20Olympia%20users!%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-181395%22%20slang%3D%22en-US%22%3E%3CP%3ETryout%20the%20improved%20Windows%20Defender%20Application%20Guard%20(WDAG)%20using%20%3CA%20href%3D%22https%3A%2F%2Folympia.windows.com%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3EWindows%20Insider%20Lab%20for%20Enterprise%3C%2FA%3E%20(Olympia%20Corp).%20We%20have%20streamlined%20the%20setup%20process%20so%20now%20all%20Windows%20Insider%20devices%20connected%20to%20Olympia%20will%20have%20WDAG%20turned%20on%20by%20default.%20Only%20a%20system%20restart%20is%20required%20to%20complete%20the%20optional%20component%20install%20and%20to%20fully%20activate%20the%20feature.%3C%2FP%3E%0A%3CP%3EWith%20the%20latest%20update%20of%20WDAG%20on%20RS4%20you%20will%20notice%20a%20marked%20performance%20improvement.%20For%20those%20not%20familiar%20with%20the%20feature%2C%20WDAG%20is%20a%20great%20way%20to%20ensure%20your%20device%20is%20safe%20from%20malicious%20web%20sites%20for%20both%20existing%20and%20emerging%20threats.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH3%20class%3D%22heading-with-anchor%20x-hidden-focus%22%20id%3D%22what-is-application-guard-and-how-does-it-work%22%20id%3D%22toc-hId-1426859620%22%20id%3D%22toc-hId-1569175810%22%3EWhat%20is%20Application%20Guard%20and%20how%20does%20it%20work%3F%3C%2FH3%3E%0A%3CP%20class%3D%22x-hidden-focus%22%3EDesigned%20for%20Windows%2010%20and%20Microsoft%20Edge%2C%20Application%20Guard%20helps%20to%20isolate%20enterprise-defined%20untrusted%20sites%2C%20protecting%20your%20company%20while%20your%20employees%20browse%20the%20Internet.%20As%20an%20enterprise%20administrator%2C%20you%20define%20what%20is%20among%20trusted%20web%20sites%2C%20cloud%20resources%2C%20and%20internal%20networks.%20Everything%20not%20on%20your%20list%20is%20considered%20untrusted.%3C%2FP%3E%0A%3CP%20class%3D%22x-hidden-focus%22%3EIf%20an%20employee%20goes%20to%20an%20untrusted%20site%20through%20either%20Microsoft%20Edge%20or%20Internet%20Explorer%2C%20Microsoft%20Edge%20opens%20the%20site%20in%20an%20isolated%20Hyper-V-enabled%20container%2C%20which%20is%20separate%20from%20the%20host%20operating%20system.%20This%20container%20isolation%20means%20that%20if%20the%20untrusted%20site%20turns%20out%20to%20be%20malicious%2C%20the%20host%20PC%20is%20protected%2C%20and%20the%20attacker%20can't%20get%20to%20your%20enterprise%20data.%20For%20example%2C%20this%20approach%20makes%20the%20isolated%20container%20anonymous%2C%20so%20an%20attacker%20can't%20get%20to%20your%20employee's%20enterprise%20credentials.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F31929i92B4934136850956%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22wdag3.JPG%22%20title%3D%22wdag3.JPG%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3EWDAG%20Protected%20Edge%20Instance%20(Learn%20More%20page)%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%20class%3D%22x-hidden-focus%22%3E%3CFONT%20color%3D%22%23993300%22%3E%3CFONT%20color%3D%22%23000000%22%3EFrom%20the%20Olympia%20Admin%20perspective%2C%20here%20are%20the%20properties%20we%20configured%20to%20enable%20WDAG%20for%20Olympia%20clients%3A%3C%2FFONT%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%20class%3D%22x-hidden-focus%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22x-hidden-focus%22%3E%3CFONT%20color%3D%22%23993300%22%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20889px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F31940i7DF632E3B1EF1348%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22wdag%20props2.JPG%22%20title%3D%22wdag%20props2.JPG%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3EWDAG%20policy%20definition%20for%20Olympia%20clients%3C%2FSPAN%3E%3C%2FSPAN%3E%26nbsp%3B%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%20class%3D%22x-hidden-focus%22%3E%3CFONT%20color%3D%22%23993300%22%3EWindows%20Insider%20Lab%20for%20Enterprise%3C%2FFONT%3E%20has%20Quests%20published%20that%20you%20can%20use%20to%20follow%20the%20steps%20to%20tryout%20and%20assess%20WDAG%20as%20well%20as%20many%20other%20new%20Windows%2010%20Enterprise%20and%20Security%20features.%20Are%20you%20a%20Windows%20Insider%20Interested%20in%20joining%26nbsp%3B%3CFONT%20color%3D%22%23993300%22%3E%3CSPAN%3EWindows%20Insider%20Lab%20for%20Enterprise%3C%2FSPAN%3E%3C%2FFONT%3E%3F%20It's%20easy%20-%20just%20fill%20out%20the%20survey%20at%20%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FRegisterOlympia%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Faka.ms%2FRegisterOlympia%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Mark Hansen
Microsoft

Tryout the improved Windows Defender Application Guard (WDAG) using Windows Insider Lab for Enterprise (Olympia Corp). We have streamlined the setup process so now all Windows Insider devices connected to Olympia will have WDAG turned on by default. Only a system restart is required to complete the optional component install and to fully activate the feature.

With the latest update of WDAG on RS4 you will notice a marked performance improvement. For those not familiar with the feature, WDAG is a great way to ensure your device is safe from malicious web sites for both existing and emerging threats.

 

What is Application Guard and how does it work?

Designed for Windows 10 and Microsoft Edge, Application Guard helps to isolate enterprise-defined untrusted sites, protecting your company while your employees browse the Internet. As an enterprise administrator, you define what is among trusted web sites, cloud resources, and internal networks. Everything not on your list is considered untrusted.

If an employee goes to an untrusted site through either Microsoft Edge or Internet Explorer, Microsoft Edge opens the site in an isolated Hyper-V-enabled container, which is separate from the host operating system. This container isolation means that if the untrusted site turns out to be malicious, the host PC is protected, and the attacker can't get to your enterprise data. For example, this approach makes the isolated container anonymous, so an attacker can't get to your employee's enterprise credentials.

 

wdag3.JPGWDAG Protected Edge Instance (Learn More page)

From the Olympia Admin perspective, here are the properties we configured to enable WDAG for Olympia clients:

 

wdag props2.JPGWDAG policy definition for Olympia clients 

Windows Insider Lab for Enterprise has Quests published that you can use to follow the steps to tryout and assess WDAG as well as many other new Windows 10 Enterprise and Security features. Are you a Windows Insider Interested in joining Windows Insider Lab for Enterprise? It's easy - just fill out the survey at https://aka.ms/RegisterOlympia

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
35 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies