Policy

Define device control policy rules

Microsoft Windows

Back to Device ControlBack to main
Define device control policy rules
Jump to overview

Policy overview

Key metadata and intent for this policy.

Computer
Category
Windows Components > Microsoft Defender Antivirus > Device Control
Supported on
At least Windows Server 2016, Windows 10 Version 1607

Supported OS tags: Windows10, Windows10RT, Windows11, WindowsServer2016

Please follow the device control policy rules xml schema to fill out the policy rules data. Alternatively you could use a file path containing the XML rules data.

Internal name
DeviceControl_PolicyRules
Policy ID
aacb44879500
Elements
1

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

ScopeElementTypeRegistry mappingConstraints & behaviorCopy
Computer
Define the policy rules here
ID DeviceControl_PolicyRules
text
Path
Software\Policies\Microsoft\Windows Defender\Device Control\Policy Rules
Value name
PolicyRules
Type
REG_SZ
None
Define the policy rules here
Computer · Type text
Registry mapping
Path
Software\Policies\Microsoft\Windows Defender\Device Control\Policy Rules
Value name
PolicyRules
Type
REG_SZ
DetailsNone