Under the Options section, click the Show button.Double-click the Configure protected folders policy on the right pane to edit its properties.Inside the Local Group Policy Editor, use the left pane to navigate to the path below: Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Controlled Folder Access.In the Run dialog box type gpedit.msc and hit Enter to open Group Policy Editor.Press Windows key + R to invoke the Run dialog.If you must protect data located in a different location, then you can use the Configure protected folders policy to add the new folder. If Controlled folder access is enabled, the basic folders are added by default. Once done, you can proceed to configure the following: Add a new location for protection via Local Group Policy Editor To configure Controlled Folder Access using Group Policy, you first need to enable this feature. Configure Controlled Folder Access using Group Policy If the app or file is malicious or not recognized, the feature will block the attempt in real-time, and you’ll receive a notification of the suspicious activity. This feature is optional on Windows 10 but when enabled, the feature is able to track executable files, scripts, and DLLs, that attempt to make changes to files in the protected folders.
In this post, we will show you how to configure Controlled Folder Access using Group Policy & PowerShell in Windows 11/10. It’s been designed primarily to prevent ransomware from encrypting your data/files, but it also protects files from unwanted changes from other malicious applications. Controlled folder access is an intrusion-prevention feature available with Microsoft Defender Exploit Guard, which is part of the Microsoft Defender Antivirus.
0 kommentar(er)
