Mar 04 2020 01:21 AM
We are trying to implement Windows Defender Application Guard (WDAG) with the new chromium Microsoft Edge. I have configured a lot of the GPO's related to WDAG, and applied them on a PC. The PC gets the policies, and I can manually start Edge, and then choose the button in Edge "Start with Application Guard". And then WDAG works fine. But I can't seem to get Edge started automatically with WDAG on, when a user launches Edge. Isn't it supposed to be able to do that, so that users don't have to manually start Edge with WDAG?
I also cannot get other policies with WDAG to work, like downloading files to the OS outside of WDAG. But when i run a GPO result on the PC, it says it receives the below policies.
Has anybody got the policies above to work, and start Edge with WDAG automatically?
Note: We are using McAfee as our antivirus system, so Windows Defender is not active. But do we maybe have to use Windows Defender as our antivirus instead, to get this functionality to work?
Mar 04 2020 12:53 PM - edited Mar 04 2020 12:55 PM
@blomsterharry ... Will it be possible to restart the machine once & tell us what you observe when you go to a site which is NOT in your Network Isolation policies? Application Guard should have no co-relation to the state of your anti-virus system.
Mar 04 2020 11:40 PM
Nothing changes. It never enters Application Guard mode. It's like the policies don't get applied, but the PC says it gets applied.
Do I have to have a proxy server in my environment to get it to work?