Limit Windows 10 sideloading sources

New Contributor
Hi Everyone.

We develop internal applications in .NET and are changing over to APPX/MSIX installations for deployment. We would like to avoid using any kind of internal Store by using sideloading. We would obviously have to allow non-admins the ability to do so via group policy.

Is there any way to control what they can install more specifically? Say, who signed the application? Or is it a pure "all-or-nothing" setting.


2 Replies
best response confirmed by John Vintzel (Microsoft)

Hi @ernie, You can use the WDAC Wizard to create policies  to only allow certain application to be installed by your users. More information go to: and/or

Thanks @Dian Hartono.  That could be something to look into.