cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

WDAG - Microsoft Defender Application Guard for Office - No Attachment protection

molislaegers
Brass Contributor

‎Oct 21 2021 02:26 AM

‎Oct 21 2021 02:26 AM

WDAG - Microsoft Defender Application Guard for Office - No Attachment protection

After trying on Reddit, Let's try to find an answers here. 

 

I've enabled Microsoft Defender Application Guard for Office for a few test devices/users in our organisation.

 

I've used Microsoft Endpoint Manager / Endpoint Security for this:

Enable MDAG for Office (not for Edge)Enable MDAG for Office (not for Edge)Add the network Rules (hidden company specific url parts)Add the network Rules (hidden company specific url parts)Neutral resources (hidden company url)Neutral resources (hidden company url)

 

This configuration works great for Downloads, but doesn't trigger on opening Outlook attachments.

 

After a lot of searching, I've found the Microsoft Word Trust Center and the tick for Enable Application Guard for Outlook Attachments is off (and greyed out).

 

Enable Application Guard for Outlook Attachments greyed outEnable Application Guard for Outlook Attachments greyed out

 

How can I make sure this will be turned on?

 

Related question 2: Is it possible that this is because I have Safe documents on?

Screenshot 2021-10-21 111435.png

 

 

 

1,838 Views
0 Likes
1 Reply
Reply
1 Reply
molislaegers

‎Nov 11 2021 12:46 PM

‎Nov 11 2021 12:46 PM

Re: WDAG - Microsoft Defender Application Guard for Office - No Attachment protection

Finally Found it:
We had an old Group Policy converted to Intune with this setting:

"Turn off Protected View for attachments opened from Outlook"

As soon as I disabled it, WDAG for Office started to work for Outlook attachments!
0 Likes
Reply