1.5 KiB
title, description, ms.reviewer, ms.author, ms.prod, ms.localizationpriority, author, manager, ms.collection, ms.topic, ms.date, ms.technology
| title | description | ms.reviewer | ms.author | ms.prod | ms.localizationpriority | author | manager | ms.collection | ms.topic | ms.date | ms.technology |
|---|---|---|---|---|---|---|---|---|---|---|---|
| Isolated Domain GPOs (Windows) | Learn about GPOs for isolated domains in this example configuration of Windows Defender Firewall with Advanced Security. | dansimp | m365-security | medium | dansimp | dansimp | M365-security-compliance | conceptual | 09/08/2021 | windows-sec |
Isolated Domain GPOs
Applies to
- Windows 10
- Windows 11
- Windows Server 2016 and above
All of the devices in the isolated domain are added to the group CG_DOMISO_IsolatedDomain. You must create multiple GPOs to align with this group, one for each Windows operating system that must have different rules or settings to implement the basic isolated domain functionality that you have in your isolated domain. This group is granted Read and Apply Group Policy permissions on all the GPOs described in this section.
Each GPO has a security group filter that prevents the GPO from applying to members of the group GP_DOMISO_No_IPsec. A WMI filter is attached to each GPO to ensure that the GPO is applied to only the specified version of Windows. For more information, see the Planning GPO Deployment section.
The GPOs created for the Woodgrove Bank isolated domain include: