Policy
Define device control policy rules
Windows 11 25H2
Policy overview
Key metadata and intent for this policy.
Supported OS tags: Windows10, Windows10RT, Windows11, WindowsServer2016
Please follow the device control policy rules xml schema to fill out the policy rules data. Alternatively you could use a file path containing the XML rules data.
Internal name
DeviceControl_PolicyRules
Policy ID
aacb44879500
Elements
1
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Element | Type | Registry mapping | Constraints & behavior |
|---|---|---|---|
Define the policy rules here ID DeviceControl_PolicyRules | text | HKLM\Software\Policies\Microsoft\Windows Defender\Device Control\Policy Rules\PolicyRules Type REG_SZ | None |
Other policies in this category
Explore related policies at the same level.
- ComputerDefine Device Control evidence data remote locationAt least Windows Server 2016, Windows 10 Version 1607
- ComputerDefine device control policy groupsAt least Windows Server 2016, Windows 10 Version 1607
- ComputerSelect Device Control Default Enforcement PolicyAt least Windows Server 2016, Windows 10 Version 1607
- ComputerSet the Azure AD refresh rateAt least Windows Server 2016, Windows 10 Version 1607
- ComputerSet the data duplication limit (MB)At least Windows Server 2016, Windows 10 Version 1607
- ComputerSet the policy refresh rateAt least Windows Server 2016, Windows 10 Version 1607
- ComputerSet the retention period for files in the local device control cacheAt least Windows Server 2016, Windows 10 Version 1607
- ComputerSet up a support link for device control notificationsAt least Windows Server 2016, Windows 10 Version 1607
- ComputerTurn on device control for specific device typesAt least Windows Server 2016, Windows 10 Version 1607