how to whitelist an application when defender for endpoint has app restrictions enabled

David Broggy 5,716 Reputation points MVP
2022-09-12T15:22:03.747+00:00

Hi there,
I'd like to use the Defender for endpoint app restriction feature on windows server (2016 or higher).
What is the procedure to whitelist applications so when App Restriction is enabled those apps will work?
A simple example is appreciated.
Thanks!

Windows Server Management
Windows Server Management
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Management: The act or process of organizing, handling, directing or controlling something.
434 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. David Broggy 5,716 Reputation points MVP
    2022-09-13T19:18:16.907+00:00

    figured out how to add exclusions, however these don't seem to work when app restriction is applied in Defender.

    240665-image.png

    0 comments No comments

  2. David Broggy 5,716 Reputation points MVP
    2022-09-15T13:34:42.437+00:00

    It seems to me that when App Restriction is enabled from the M365 Defender UI, that none of the exclusions apply.
    I.e. it seems to be a fixed policy that does not include any customer policies/exclusions.
    If anyone can say otherwise I'd be interested in seeing your tests to prove otherwise.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.