Microsoft Defender Application Guard


very_452001

Member
Local time
9:33 AM
Posts
92
OS
Windows 11
Hi,

How do I just enable this without enabling/installing other features or does Microsoft Defender Application Guard depends/requires other features to be turned on and what are these other features?

Is it just for MS Edge browser or can it be used on any browser and if so how to us it on other browsers?

Is it just for MS apps?

Can it be used for MS Office installed on the machine? Like how does it work with MS office, for example you open up word and how does it protect the user using MS word?
 
Windows Build/Version
Windows 11 Pro

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na
I suppose you can use it with Edge and Office for the time being. You'll need the Edge extension until ManifestV3 is rolled out and then you need to wait for the MV3 extension versions to be rolled out in MS Store. I'd suggest using MS Defender Attack Surface Reduction rules for Office applications. You may enable them via group policy or via powershell.
This deprecation does not impact the existing installations of Microsoft Defender Application Guard (MDAG). Organizations can continue to use Application Guard on current versions of Windows, but we recommend that security admins evaluate their security requirements going forward. This feature might be removed in a future Windows release, but it will continue to be maintained for existing installations on Windows.
Deprecation considerations

Deprecation includes the following elements of Application Guard.

Microsoft Defender Application Guard for Office, including the Windows.Security.Isolation APIs, is being deprecated and no longer being updated.012 It is a security feature that works with Word, Excel, and PowerPoint for Microsoft 365 Apps, specifically catering to Windows 10 and Windows 11 Enterprise editions. The deprecation does not impact existing installations of Microsoft Defender Application Guard (MDAG). Microsoft recommends transitioning to Microsoft Defender for Endpoint attack surface reduction rules, Protected View, and Windows Defender Application Control as an alternative.3 The announcement came two years after Microsoft rolled out Application Guard for Office to all Microsoft 365 customers with eligible licenses and four years after its introduction as part of a limited preview in November 2019.

 
Last edited:

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
I suppose you can use it with Edge and Office for the time being. You'll need the Edge extension until ManifestV3 is rolled out and then you need to wait for the MV3 extension versions to be rolled out in MS Store. I'd suggest using MS Defender Attack Surface Reduction rules for Office applications. You may enable them via group policy or via powershell.




What do you mean for the time being, its going to be phased out/obsolete soon you mean? I don't use the Edge Browser. It only works for Office 365 online not the Office Retail CD/DVD local installation?

Just to clarify this only works in the Pro version of Windows?

Okay how do I enable MS Defender Attack Surface Reduction in Powershell?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo ideapad flex 14API 2 in 1
    CPU
    Ryzen 5 3500u
    Motherboard
    LENOVO LNVNB161216 (FP5)
    Memory
    12GB DDR4
    Graphics Card(s)
    AMD Radeon Vega 8 Graphics
    Hard Drives
    256 GB Samsung ssd nvme
    Internet Speed
    800mbps down, 20 up
    Other Info
    Your awesome for reading this.

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
Just to clarify this only works in the Pro version of Windows?
Application Guard is only available in Windows Pro.
Okay how do I enable MS Defender Attack Surface Reduction in Powershell?
See references in the first link, as well as the other links below:
What does Windows Defender lack, what can’t it do?
 
Last edited:

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
Application Guard is only available in Windows Pro.

See references in the first link, as well as the other links below:
What does Windows Defender lack, what can’t it do?

Is MS Defender Attack Surface Reduction the same as MS Defender Application Guard?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na
Is MS Defender Attack Surface Reduction the same as MS Defender Application Guard?
No, it's an MS Defender advanced feature which includes rules pertaining to Office that provide extra security.
 

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
No, it's an MS Defender advanced feature which includes rules pertaining to Office that provide extra security.

Okay is it for Online Office 365 or Offline Office installs and can you kindly show me how do I enable this advanced feature please?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na
can you kindly show me how do I enable this advanced feature please?
Please read the referenced links above. They provide the instructions.
 

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
Please read the referenced links above. They provide the instructions.

Hi sorry to bother you again, I clicked on links and cannot find the Instructions to enable this feature or kindly remind me which link contains the instructions please.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na

Install from Control Panel​

  1. Open the Control Panel, select Programs, and then select Turn Windows features on or off.
    Windows Features, turning on Microsoft Defender Application Guard.
  2. Select the check box next to Microsoft Defender Application Guard and then select OK to install Application Guard and its underlying dependencies.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo ideapad flex 14API 2 in 1
    CPU
    Ryzen 5 3500u
    Motherboard
    LENOVO LNVNB161216 (FP5)
    Memory
    12GB DDR4
    Graphics Card(s)
    AMD Radeon Vega 8 Graphics
    Hard Drives
    256 GB Samsung ssd nvme
    Internet Speed
    800mbps down, 20 up
    Other Info
    Your awesome for reading this.

Install from Control Panel​

  1. Open the Control Panel, select Programs, and then select Turn Windows features on or off.
    Windows Features, turning on Microsoft Defender Application Guard.
  2. Select the check box next to Microsoft Defender Application Guard and then select OK to install Application Guard and its underlying dependencies.

Cheers, however I was told that feature will be obsolete discontinued soon, do you know how I can enable the MS Defender Attack Surface Reduction feature instead? I'm in MS Defender and cannot see that option even though I'm using Windows Pro.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na
do you know how I can enable the MS Defender Attack Surface Reduction feature instead? I'm in MS Defender and cannot see that option even though I'm using Windows Pro.
You may use the Group Policy editor in Windows Pro. If you are unfamiliar with GP and have no wish to learn how to use it to enable Defender's advanced features, then do the following:
  • Download ConfigureDefender
  • Unzip the folder
  • Read the readme. file.*
  • Run ConfigureDefender.exe
  • Become familiar with the GUI*
  • Select your chosen Defender predefined settings, i.e. default, high or max.
  • Depending on your choice of predefined setting, you may also enable or disable individual Exploit Guard settings you prefer
NB: If you select Max setting, make sure to unhide Windows Security Center!

*Make sure to follow these instructions.
 

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
You may use the Group Policy editor in Windows Pro. If you are unfamiliar with GP and have no wish to learn how to use it to enable Defender's advanced features, then do the following:
  • Download ConfigureDefender
  • Unzip the folder
  • Read the readme. file.*
  • Run ConfigureDefender.exe
  • Become familiar with the GUI*
  • Select your chosen Defender predefined settings, i.e. default, high or max.
  • Depending on your choice of predefined setting, you may also enable or disable individual Exploit Guard settings you prefer
NB: If you select Max setting, make sure to unhide Windows Security Center!

*Make sure to follow these instructions.

Do you have a link to provide a good starting point to learn Group Policy?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    HP Victus 15-fa1006na
Do you have a link to provide a good starting point to learn Group Policy?
Your best bet for now is to use ConfigureDefender for now. Download the configuredefender.exe file and run it. Read the ConfigureDefender Help page n the GitHub site, get familiar with the GUI and set it to your liking. Very easy.

You can read this link Configure Microsoft Defender Antivirus with Group Policy and explore the Group Policy Editor module at your leisure..
 

My Computer

System One

  • OS
    Windows 11 Pro 23H2
    Computer type
    Laptop
    Manufacturer/Model
    Lenovo IdeaPad L340
    CPU
    Intel Core i3-8145U
    Memory
    8GB
    Internet Speed
    45MB
    Browser
    Firefox | Chrome
    Antivirus
    Microsoft Defender | Block unknown executables | Various ASR rules enabled
Hi,

How do I just enable this without enabling/installing other features or does Microsoft Defender Application Guard depends/requires other features to be turned on and what are these other features?

Is it just for MS Edge browser or can it be used on any browser and if so how to us it on other browsers?

Is it just for MS apps?

Can it be used for MS Office installed on the machine? Like how does it work with MS office, for example you open up word and how does it protect the user using MS word?

Its been deprecated and removed from 24H2. You should install SRP and SmartScreen Block with Hybrid Hardening Light Configurator.
 

My Computers

System One System Two

  • OS
    Windows 11 Pro 22H2
    Computer type
    Laptop
    Manufacturer/Model
    Microsoft Surface Pro 3
    CPU
    Intel® Core™ i5-4300U
    Motherboard
    Microsoft
    Memory
    First: 4 GB DDR Second: 8 GB DDR
    Graphics Card(s)
    Intel HD Family Graphics
    Sound Card
    Realtek High Audio
    Hard Drives
    First: Samsung 128 GB SSD Second: Samsung 256 GB SSD
    Keyboard
    First: Artec Bluetooth 3.0 Second: Type Cover
    Mouse
    Microsoft Surface Mobile
    Antivirus
    Kaspersky Free/WiseVector StopX
  • Operating System
    Windows 11 Pro 24H2
    Computer type
    Laptop
    Manufacturer/Model
    HP Zbook 14 G2
    CPU
    i7-5500U
    Memory
    8 RAM DDR3L
    Graphics card(s)
    Intel HD Graphics 5500 Discrete Graphics AMD FirePro M4150
    Sound Card
    Realtek High Definition Audio
    Hard Drives
    Toshiba 1TB

My Computers

System One System Two

  • OS
    Windows 11 Pro 22H2
    Computer type
    Laptop
    Manufacturer/Model
    Microsoft Surface Pro 3
    CPU
    Intel® Core™ i5-4300U
    Motherboard
    Microsoft
    Memory
    First: 4 GB DDR Second: 8 GB DDR
    Graphics Card(s)
    Intel HD Family Graphics
    Sound Card
    Realtek High Audio
    Hard Drives
    First: Samsung 128 GB SSD Second: Samsung 256 GB SSD
    Keyboard
    First: Artec Bluetooth 3.0 Second: Type Cover
    Mouse
    Microsoft Surface Mobile
    Antivirus
    Kaspersky Free/WiseVector StopX
  • Operating System
    Windows 11 Pro 24H2
    Computer type
    Laptop
    Manufacturer/Model
    HP Zbook 14 G2
    CPU
    i7-5500U
    Memory
    8 RAM DDR3L
    Graphics card(s)
    Intel HD Graphics 5500 Discrete Graphics AMD FirePro M4150
    Sound Card
    Realtek High Definition Audio
    Hard Drives
    Toshiba 1TB
Back
Top Bottom