After the installation of the Data Loss Prevention Agent on workstations, some applications stopped working.
09/25/2019 15:36:03 | 6476 | FINEST | CodeInjection.HookManager | Sesion 0: OpenProcess failed for process: Pid->9444 ProcessName->C:\Program Files\Software\App.exe Returned Error Code = 87 | DllHooker.cpp(357)
09/25/2019 15:36:03 | 6476 | FINEST | CodeInjection.HookManager | Session 0: Hooking failed for process: Pid->9444 ProcessName->C:\Program Files\Software\App.exe | HookingTask.cpp(63)
09/25/2019 15:36:04 | 5588 | FINER | CoreServices.ProcessActivity | Received rtam message for process C:\Windows\System32\PrintIsolationHost.exe(6760) create status(0) session Id(0) sandboxed appliction(0) store appliction(0) subsystem application (0)
Since Windows Defender and it's Exploit Protection feature are natively enabled since Windows 10 build 1709, they can prevent Data Loss Prevention Agent to work properly.
There are two configurations on Windows Defender Exploit Protection feature that need to be change in order to prevent the issue.
Execute the following steps to customize these configurations for the both Data Loss Prevention main processes (EDPA and WDP):
The default paths are:
%PROGRAMFILES%\Manufacturer\Endpoint Agent\edpa.exe and
Now you can start your application.