Microsoft Technical Takeoff: Windows and Microsoft Intune
Oct 24 2022 07:00 AM - Oct 27 2022 12:00 PM (PDT)

SCCM WDAC - Retrocompatibility

Occasional Visitor

Hello, 

 

I would like to deploy WDAC for my clients using an SCCM endpoint security policy , but I wish to exclude all applications that has been previously installed through the Configuration Manager Installer and only those, from the scope of WDAC.

 

An additional constraint is to not use the absolute path binary whitelist as a mean to achieve this goal, for security concerns.

 

Is there any  way (that doesn't imply absolute path whitelisting) to apply WDAC through SCCM while keeping the formerly deployed applications active ?

 

Best regards

 

0 Replies