locked
Monitoring AppLocker with WDATP? RRS feed

  • Question

  • Hello,

    I'm looking at implementing Windows 10 AppLocker and want to be able to monitor enforcement from a central location and looking into leveraging our Windows Enterprise E5 subscription and Azure. The WDATP documentation states: Windows Defender ATP works with existing Windows security technologies on machines, such as Windows Defender Antivirus, AppLocker, and Windows Defender Device Guard.

    This line doesn't say anything on it's own, but the rest of the documentation around WDATP and AppLocker doesn't explain what WDATP uses AppLocker for.

    My question is: can I use WDATP for monitoring AppLocker policy enforcement or alerting? If not, any idea what I can use, aside from Event Viewer/forwarding?

    Thanks in advance.

    Mark


    Wednesday, May 30, 2018 7:13 AM