Data Loss Prevention (DLP) support for Windows Defender Exploit Guard
Article ID: 170968
Updated On:
Products
Data Loss Prevention Endpoint Prevent
Environment
Windows 10 "Fall Creators Update" v1706
DLP 14.6 MP2 agent
DLP 15.x agent
DLP 14.6 MP2 agent
DLP 15.x agent
Resolution
DLP has been tested with Windows Defender Exploit Guard and no errors or compatibility issues have been seen.
***Note: Application Guard does not allow the upload of files from local disk to Edge and is not considered a data leak vector. However, users can paste data into application guard Edge and DLP does NOT monitor it.
The recommendation is to disable paste using Microsoft LGPO
https://docs.microsoft.com/en-us/windows/threat-protection/windows-defender-application-guard/test-scenarios-wd-app-guard
Alternately, also monitor web traffic at the network layer for DLP to scan the pasted content.
***Note: Application Guard does not allow the upload of files from local disk to Edge and is not considered a data leak vector. However, users can paste data into application guard Edge and DLP does NOT monitor it.
The recommendation is to disable paste using Microsoft LGPO
https://docs.microsoft.com/en-us/windows/threat-protection/windows-defender-application-guard/test-scenarios-wd-app-guard
Alternately, also monitor web traffic at the network layer for DLP to scan the pasted content.
Feedback
Yes
No
Powered by
