deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-18 08:17:23 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Merge branch 'main' of github.com:MicrosoftDocs/windows-docs-pr into pm-20221214-whfb-hybrid

Browse Source
This commit is contained in:
Paolo Matarazzo 2023-01-04 16:46:10 -05:00
commit 868e485f90
16 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Accounts: Administrator account status # Accounts: Administrator account status
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Accounts: Administrator account status** security policy setting. Describes the best practices, location, values, and security considerations for the **Accounts: Administrator account status** security policy setting.

1
windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Accounts: Block Microsoft accounts # Accounts: Block Microsoft accounts
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, management, and security considerations for the **Accounts: Block Microsoft accounts** security policy setting. Describes the best practices, location, values, management, and security considerations for the **Accounts: Block Microsoft accounts** security policy setting.

1
windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Accounts: Guest account status - security policy setting # Accounts: Guest account status - security policy setting
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Accounts: Guest account status** security policy setting. Describes the best practices, location, values, and security considerations for the **Accounts: Guest account status** security policy setting.

1
windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Accounts: Limit local account use of blank passwords to console logon only # Accounts: Limit local account use of blank passwords to console logon only
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Accounts: Limit local account use of blank passwords to console logon only** security policy setting. Describes the best practices, location, values, and security considerations for the **Accounts: Limit local account use of blank passwords to console logon only** security policy setting.

1
windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Accounts: Rename administrator account # Accounts: Rename administrator account
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
This security policy reference topic for the IT professional describes the best practices, location, values, and security considerations for this policy setting. This security policy reference topic for the IT professional describes the best practices, location, values, and security considerations for this policy setting.

1
windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Accounts: Rename guest account - security policy setting # Accounts: Rename guest account - security policy setting
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Accounts: Rename guest account** security policy setting. Describes the best practices, location, values, and security considerations for the **Accounts: Rename guest account** security policy setting.

1
windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Audit: Audit the use of Backup and Restore privilege # Audit: Audit the use of Backup and Restore privilege
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Audit: Audit the use of Backup and Restore privilege** security policy setting. Describes the best practices, location, values, and security considerations for the **Audit: Audit the use of Backup and Restore privilege** security policy setting.

1
windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings # Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings** security policy setting. Describes the best practices, location, values, and security considerations for the **Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings** security policy setting.

1
windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Audit: Shut down system immediately if unable to log security audits # Audit: Shut down system immediately if unable to log security audits
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, management practices, and security considerations for the **Audit: Shut down system immediately if unable to log security audits** security policy setting. Describes the best practices, location, values, management practices, and security considerations for the **Audit: Shut down system immediately if unable to log security audits** security policy setting.

1
windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax # DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax** security policy setting. Describes the best practices, location, values, and security considerations for the **DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax** security policy setting.

1
windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Devices: Allow undock without having to log on # Devices: Allow undock without having to log on
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Devices: Allow undock without having to log on** security policy setting. Describes the best practices, location, values, and security considerations for the **Devices: Allow undock without having to log on** security policy setting.

1
windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Devices: Allowed to format and eject removable media # Devices: Allowed to format and eject removable media
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Devices: Allowed to format and eject removable media** security policy setting. Describes the best practices, location, values, and security considerations for the **Devices: Allowed to format and eject removable media** security policy setting.

1
windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Devices: Prevent users from installing printer drivers # Devices: Prevent users from installing printer drivers
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Devices: Prevent users from installing printer drivers** security policy setting. Describes the best practices, location, values, and security considerations for the **Devices: Prevent users from installing printer drivers** security policy setting.

1
windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
View File

@ -20,6 +20,7 @@ ms.technology: itpro-security
# Devices: Restrict CD-ROM access to locally logged-on user only # Devices: Restrict CD-ROM access to locally logged-on user only
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Describes the best practices, location, values, and security considerations for the **Devices: Restrict CD-ROM access to locally logged-on user only** security policy setting. Describes the best practices, location, values, and security considerations for the **Devices: Restrict CD-ROM access to locally logged-on user only** security policy setting.

1
windows/security/threat-protection/security-policy-settings/security-options.md
View File

@ -19,6 +19,7 @@ ms.topic: conceptual
# Security Options # Security Options
**Applies to** **Applies to**
- Windows 11
- Windows 10 - Windows 10
Provides an introduction to the **Security Options** settings for local security policies and links to more information. Provides an introduction to the **Security Options** settings for local security policies and links to more information.

4
windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
View File

@ -70,6 +70,10 @@ One attribute:
- The setting needs to be placed in the order of ASCII values (first by Provider, then Key, then ValueName) - The setting needs to be placed in the order of ASCII values (first by Provider, then Key, then ValueName)
### Multiple policy considerations
Similar to executable files, COM objects must pass each policy on the system to be allowed by WDAC. For example, if the COM object under evaluation passes most but not all of your WDAC policies, the COM object will not be allowed. If you are using a combination of base and supplemental policies, the COM object just needs to be allowlisted in either the base policy or one of the supplemental policies.
### Examples ### Examples
Example 1: Allows registration of all COM object GUIDs in any provider Example 1: Allows registration of all COM object GUIDs in any provider