deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-04 16:47:23 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
windows-itpro-docs/windows/client-management/mdm/policy-csp-dataprotection.md
Nicholas Brower b104c0cf6f Merged PR 2969: fixing admx info 
automation update: GP path, and e->English name; re-orders a few policies as well, and adjusts white-space; one null SKU deleted
2017-08-30 22:50:41 +00:00

3.5 KiB
Raw Blame History

title, description, ms.author, ms.topic, ms.prod, ms.technology, author, ms.date
title description ms.author ms.topic ms.prod ms.technology author ms.date
Policy CSP - DataProtection Policy CSP - DataProtection maricia article w10 windows nickbrower 08/30/2017

Policy CSP - DataProtection

Warning

Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

DataProtection policies

DataProtection/AllowDirectMemoryAccess

Home Pro Business Enterprise Education Mobile Mobile Enterprise
cross mark check mark check mark check mark check mark check mark

This policy setting allows you to block direct memory access (DMA) for all hot pluggable PCI downstream ports until a user logs into Windows. Once a user logs in, Windows will enumerate the PCI devices connected to the host plug PCI ports. Every time the user locks the machine, DMA will be blocked on hot plug PCI ports with no children devices until the user logs in again. Devices which were already enumerated when the machine was unlocked will continue to function until unplugged. This policy setting is only enforced when BitLocker or device encryption is enabled.

The following list shows the supported values:

  • 0 Not allowed.
  • 1 (default) Allowed.

Most restricted value is 0.

DataProtection/LegacySelectiveWipeID

Home Pro Business Enterprise Education Mobile Mobile Enterprise
check mark check mark check mark check mark cross mark cross mark

Important

This policy may change in a future release. It may be used for testing purposes, but should not be used in a production environment at this time.

 

Setting used by Windows 8.1 Selective Wipe.

Note

 This policy is not recommended for use in Windows 10.

Footnote:

  • 1 - Added in Windows 10, version 1607.
  • 2 - Added in Windows 10, version 1703.
  • 3 - Added in Windows 10, version 1709.

DataProtection policies supported by IoT Core