Code Integrity Policies
Code Integrity (CI) policies allow you to restrict which applications and scripts can run on a computer. There are a variety of methods that you can use to enforce code in Windows environments including AppLocker policies on pre-Windows 10 and pre-Windows Server 2016 systems or Windows Defender Application Guard and Windows Defender Device Guard on Windows 10 and Windows Server 2016 systems configured with appropriate hardware. By restricting which code and scripts can run, you can restrict the toolset attackers can make use of to perform lateral movement.
Join the discussion
What steps do you take to ensure that your organization is up to date with software updates and patches? Use the discussion section below and let us know your thoughts. Once you’re happy with your contribution, click the Mark as complete button to check the step off, then you can move to the next step.
Microsoft Future Ready: Fundamentals of Enterprise Security
Microsoft Future Ready: Fundamentals of Enterprise Security
Reach your personal and professional goals
Unlock access to hundreds of expert online courses and degrees from top universities and educators to gain accredited qualifications and professional CV-building certificates.
Join over 18 million learners to launch, switch or build upon your career, all at your own pace, across a wide range of topic areas.
