---
title: ExploitGuard Policy CSP
description: Learn more about the ExploitGuard Area in Policy CSP.
ms.date: 01/18/2024
---
# Policy CSP - ExploitGuard
## ExploitProtectionSettings
| Scope | Editions | Applicable OS |
|:--|:--|:--|
| ✅ Device
❌ User | ✅ Pro
✅ Enterprise
✅ Education
✅ Windows SE
✅ IoT Enterprise / IoT Enterprise LTSC | ✅ Windows 10, version 1709 [10.0.16299] and later |
```Device
./Device/Vendor/MSFT/Policy/Config/ExploitGuard/ExploitProtectionSettings
```
Enables the IT admin to push out a configuration representing the desired system and application mitigation options to all the devices in the organization. The configuration is represented by an XML. For more information Exploit Protection, see [Enable Exploit Protection on Devices](/microsoft-365/security/defender-endpoint/enable-exploit-protection) and [Import, export, and deploy Exploit Protection configurations](/windows/threat-protection/windows-defender-exploit-guard/import-export-exploit-protection-emet-xml). The system settings require a reboot; the application settings don't require a reboot.
**Description framework properties**:
| Property name | Property value |
|:--|:--|
| Format | `chr` (string) |
| Access Type | Add, Delete, Get, Replace |
**Group policy mapping**:
| Name | Value |
|:--|:--|
| Name | ExploitProtection_Name |
| Friendly Name | Use a common set of exploit protection settings |
| Element Name | Type the location (local path, UNC path, or URL) of the mitigation settings configuration XML file. |
| Location | Computer Configuration |
| Path | Windows Components > Microsoft Defender Exploit Guard > Exploit Protection |
| Registry Key Name | Software\Policies\Microsoft\Windows Defender ExploitGuard\Exploit Protection |
| ADMX File Name | ExploitGuard.admx |
**Example**:
```xml
$CmdId$
-
chr
text/plain
./Vendor/MSFT/Policy/Config/ExploitGuard/ExploitProtectionSettings
]]>
```
## Related articles
[Policy configuration service provider](policy-configuration-service-provider.md)