deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-20 21:03:42 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Task ID 23142312

Browse Source 
Fine tuning Root Cert section.
This commit is contained in:
Kim Klein
2021-05-25 12:24:24 -07:00
parent 8faa81c72b
commit dadf73dea9
1 changed files with 23 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

46
windows/security/threat-protection/windows-defender-application-control/event-tag-explanations.md
View File

@ -94,29 +94,29 @@ Represents why verification failed, or if it succeeded.
## Microsoft Root CAs trusted by Windows ## Microsoft Root CAs trusted by Windows
The rule means trust anything signed by a cert that chains to this root CA. Enums without values start at 0, and increment by 1 as you go down the below list. The rule means trust anything signed by a cert that chains to this root CA. Enums without values start at 0, and increment by 1 as you go down the below list.<br>
typedef enum _MINCRYPT_KNOWN_ROOT_ID { | Root ID | Root Name |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootNone, <mark><-- 0</mark><br> |---|----------|
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootUnknown,<br> |0| None |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootSelfsigned,<br> |1| Unknown |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftAuthenticodeRoot,<br> |2 | Self-Signed |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftProductRoot1997,<br> |3 | Authenticode |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftProductRoot2001,<br> |4 | Microsoft Product Root 1997 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftProductRoot2010,<br> |5 | Microsoft Product Root 2001 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftStandardRoot2011,<br> |6 | Microsoft Product Root 2010 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftCodeVerificationRoot2006,<br> |7 | Microsoft Standard Root 2011 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftTestRoot1999,<br> |8 | Microsoft Code Verification Root 2006 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftTestRoot2010,<br> |9 | Microsoft Test Root 1999 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftDMDTestRoot2005,<br> |10 | Microsoft Tes\t Root 2010 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftDMDRoot2005,<br> |11 | Microsoft DMD Test Root 2005 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftDMDPreviewRoot2005,<br> |12 | Microsoft DMDRoot 2005 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftFlightRoot2014,<br> |13 | Microsoft DMD Preview Root 2005 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftThirdPartyMarketplaceRoot,<br> |14 | Microsoft Flight Root 2014 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftEccTestingRootCa2017,<br> |15 | Microsoft Third Party Marketplace Root |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftEccDevelopmentRootCa2018,<br> |16 | Microsoft Ecc Testing Root Ca2017 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftEccProductRootCa2018,<br> |17 | Microsoft Ecc Developmen tRoot Ca 2018 |
&nbsp;&nbsp;&nbsp;&nbsp;MincryptKnownRootMicrosoftEccDevicesRootCa2017,<br> |18 | Microsoft Ecc Product Root Ca 2018 |
} MINCRYPT_KNOWN_ROOT_ID, *PMINCRYPT_KNOWN_ROOT_ID;<br> |19 | Microsoft Ecc Devices Root Ca 2017 |
For well-known roots, the TBS hashes for the certificates are baked into the code for WDAC. For example, they dont need to be listed as TBS hashes in the policy file. For well-known roots, the TBS hashes for the certificates are baked into the code for WDAC. For example, they dont need to be listed as TBS hashes in the policy file.