WDAC DLL-Blocking

Copper Contributor

Hi everyone, I am currently trying to implement WDAC with Intune as a managed installer and have followed the documentation (Allow apps deployed with a WDAC managed installer - Windows Security | Microsoft Learn) for this.

 

This works pretty well so far, most applications that are packaged and deployed via Intune are allowed to run.

 

What surprises me, though:

In the WDAC policy, I left out policy rule option 19 (Enabled: Dynamic Code Security) because we don't want to block DLLs.

 

Nevertheless, it happens from time to time that DLLs are blocked. Nevertheless, it happens from time to time that DLLs are blocked. The errors then look like this:

 

Code Integrity determined that a process (\Device\HarddiskVolume3\Users\xxxxx\AppData\Roaming\Autodesk\ADPSDK\bin\AdpSDKUtil.exe) attempted to load \Device\HarddiskVolume3\Users\xxxxxx\AppData\Roaming\Autodesk\ADPSDK\bin\AdpSDKIdentityWrapper.dll that did not meet the Enterprise signing level requirements or violated code integrity policy (Policy ID:{xxxxxxxx).

 

Is there any way to disable this behavior or have I overlooked something here?

Is it at all possible to disable blocking of DLLs completely?

 

 

The AppLocker configuration for the managed installer:

MI.png

 

The Rule Options selected in the WDAC Wizard:

flychrome_1-1686057792173.png

 

0 Replies