deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-31 06:37:22 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Task ID 23142312

Browse Source 
Removed the "Enums without value start..." line and reduced the dashes in the table columns headers.
This commit is contained in:
Kim Klein 2021-05-25 12:38:05 -07:00
parent dadf73dea9
commit f3f7fe8839
1 changed files with 4 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
windows/security/threat-protection/windows-defender-application-control/event-tag-explanations.md
View File

@ -27,7 +27,7 @@ Windows Defender Application Control (WDAC) events include a number of fields wh
Represents the type of signature which verified the image. Represents the type of signature which verified the image.
| SignatureType Value | Explanation | | SignatureType Value | Explanation |
|----------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| |---|----------|
| 0 | Unsigned or verification has not been attempted | | 0 | Unsigned or verification has not been attempted |
| 1 | Embedded signature | | 1 | Embedded signature |
| 2 | Cached signature; presence of CI EA shows that file had been previously verified | | 2 | Cached signature; presence of CI EA shows that file had been previously verified |
@ -42,7 +42,7 @@ Represents the type of signature which verified the image.
Represents the signature level at which the code was verified. Represents the signature level at which the code was verified.
| ValidatedSigningLevel Value | Explanation | | ValidatedSigningLevel Value | Explanation |
|----------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| |---|----------|
| 0 | Signing level has not yet been checked | | 0 | Signing level has not yet been checked |
| 1 | File is unsigned | | 1 | File is unsigned |
| 2 | Trusted by WDAC policy | | 2 | Trusted by WDAC policy |
@ -61,7 +61,7 @@ Represents the signature level at which the code was verified.
Represents why verification failed, or if it succeeded. Represents why verification failed, or if it succeeded.
| VerificationError Value | Explanation | | VerificationError Value | Explanation |
|----------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| |---|----------|
| 0 | Successfully verified signature | | 0 | Successfully verified signature |
| 1 | File has an invalid hash | | 1 | File has an invalid hash |
| 2 | File contains shared writable sections | | 2 | File contains shared writable sections |
@ -94,8 +94,7 @@ Represents why verification failed, or if it succeeded.
## Microsoft Root CAs trusted by Windows ## Microsoft Root CAs trusted by Windows
The rule means trust anything signed by a cert that chains to this root CA. Enums without values start at 0, and increment by 1 as you go down the below list.<br> The rule means trust anything signed by a cert that chains to this root CA.
| Root ID | Root Name | | Root ID | Root Name |
|---|----------| |---|----------|
|0| None | |0| None |