deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-15 23:07:23 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Update code-integrity-policy-commands.md

Browse Source
This commit is contained in:
valemieux 2022-08-08 14:49:17 -07:00
parent 339a934dbe
commit 5e833309c0
1 changed files with 10 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
windows/security/threat-protection/windows-defender-application-control/code-integrity-policy-commands.md
View File

@ -13,7 +13,7 @@ ms.custom: template-how-to
Generates Policy Commands, Token Commands, and Miscellaneous Commands for user mode code and drivers. Generates Policy Commands, Token Commands, and Miscellaneous Commands for user mode code and drivers.
# Policy Commands ## Policy Commands
| Command:|--update-policy /Path/To/Policy/File | | Command:|--update-policy /Path/To/Policy/File |
| Description: | Add or update a policy on the current system | | Description: | Add or update a policy on the current system |
@ -27,7 +27,7 @@ Generates Policy Commands, Token Commands, and Miscellaneous Commands for user m
| Description: | Dump information about all policies on the system, whether they be active or not | | Description: | Dump information about all policies on the system, whether they be active or not |
| Alias: | -lp | | Alias: | -lp |
# Token Commands ## Token Commands
| Command:|--add-token Path/To/Token/File [--token-id ID] | | Command:|--add-token Path/To/Token/File [--token-id ID] |
| Description: | Deploy a token onto the current system, with an optional specific ID. | | Description: | Deploy a token onto the current system, with an optional specific ID. |
@ -42,7 +42,7 @@ Generates Policy Commands, Token Commands, and Miscellaneous Commands for user m
| Description: | Dump information about all tokens on the system | | Description: | Dump information about all tokens on the system |
| Alias: | -lt | | Alias: | -lt |
# Miscellaneous Commands ## Miscellaneous Commands
| Command:|--device-id | | Command:|--device-id |
| Description: | Dump the Code Integrity Device Id | | Description: | Dump the Code Integrity Device Id |
@ -56,16 +56,16 @@ Generates Policy Commands, Token Commands, and Miscellaneous Commands for user m
| Description: | Display help | | Description: | Display help |
| Alias: | -h | | Alias: | -h |
#Examples ## Examples
#Example 1: Update Policy/Deploy 1. Update Policy/Deploy
Extract policy file to C:\windows\system32 Extract policy file to C:\windows\system32
```powershell ```powershell
PS C:\Users\<USER> cd \windows\system32 PS C:\Users\<USER> cd \windows\system32
PS C:\windows\system32> .\BF61FE40-8929-4FDF-9EC2-F7A767717F0B.cip -up PS C:\windows\system32> .\BF61FE40-8929-4FDF-9EC2-F7A767717F0B.cip -up
C:\Windows\System32>.\CITool.exe -update-policy \windows\system32\BF61FE40-8929-4FDF-9EC2-F7A767717F0B.cip C:\Windows\System32>.\CITool.exe -update-policy \windows\system32\BF61FE40-8929-4FDF-9EC2-F7A767717F0B.cip
Usage: CiTool.exe COMMAND <Command-Options> [-json] Usage: CiTool.exe COMMAND [Command-Options] [-json]
Commands: Commands:
----------------------------- Policy Commands --------------------------------- ----------------------------- Policy Commands ---------------------------------
--update-policy /Path/To/Policy/File --update-policy /Path/To/Policy/File
@ -103,18 +103,18 @@ Commands:
Format output as json and suppress input Format output as json and suppress input
``` ```
#Example 2: Refresh the policy 2. Refresh the policy
```powershell ```powershell
PS C:\Users\[USER] cd \windows\system32 PS C:\Users\[USER] cd \windows\system32
PS C:\Windows\System32>.\CITool.exe --refresh PS C:\Windows\System32>.\CITool.exe --refresh
Operation Successful Operation Successful
``` ```
#Example 3: Remove the policy 3. Remove the policy
```powershell ```powershell
PS C:\Users\[USER] cd \windows\system32 PS C:\Users\[USER] cd \windows\system32
PS C:\Windows\System32>.\CITool.exe --remove-policy {BF61FE40-8929-4FDF-9EC2-F7A767717F0B} PS C:\Windows\System32>.\CITool.exe --remove-policy {BF61FE40-8929-4FDF-9EC2-F7A767717F0B}
Usage: CiTool.exe COMMAND <Command-Options> [-json] Usage: CiTool.exe COMMAND [Command-Options] [-json]
Commands: Commands:
----------------------------- Policy Commands --------------------------------- ----------------------------- Policy Commands ---------------------------------
--update-policy /Path/To/Policy/File --update-policy /Path/To/Policy/File
@ -153,7 +153,7 @@ Commands:
Press Enter to Exit Press Enter to Exit
``` ```
#Example 4: Display help 4. Display help
```powershell ```powershell
PS C:\Users\[USER] cd \windows\system32 PS C:\Users\[USER] cd \windows\system32
PS C:\windows\system32> .\CITool.exe -h PS C:\windows\system32> .\CITool.exe -h