Policy

Prevent users from modifying settings

Microsoft Windows

Back to App and browser protectionBack to main
Prevent users from modifying settings
Jump to overview

Policy overview

Key metadata and intent for this policy.

Computer
Category
Windows Components > Windows Security > App and browser protection
Supported on
At least Windows Server 2016, Windows 10 Version 1709

Supported OS tags: Windows10, Windows10RT, Windows11, WindowsServer2016

Prevent users from making changes to the Exploit protection settings area in Windows Security. Enabled: Local users can not make changes in the Exploit protection settings area. Disabled: Local users are allowed to make changes in the Exploit protection settings area. Not configured: Same as Disabled.

Internal name
AppBrowserProtection_DisallowExploitProtectionOverride
Policy ID
a9293b0b4ff7
Elements
0

Registry values

How enabled and disabled states update the registry.

ScopeRegistry locationTypeEnabled valueDisabled valueCopy
Computer
Path
SOFTWARE\Policies\Microsoft\Windows Defender Security Center\App and Browser protection
Value name
DisallowExploitProtectionOverride
REG_DWORD
HKLM
1
HKLM
0
Registry location
Type REG_DWORD · Computer
Path
SOFTWARE\Policies\Microsoft\Windows Defender Security Center\App and Browser protection
Value name
DisallowExploitProtectionOverride
Hive
HKLM
Enabled value
1
Disabled value
0

Policy elements

Inputs and configuration options exposed by this policy.

This policy has no additional user input fields.