Windows Defender Application Guard (WDAG) provides unprecedented protection against targeted threats using Microsoft's industry leading Hyper-V virtualization technology. We have expanded this new defense-in-depth protection to Windows 10 Professional and Enterprise in our RS4 update. Now both Enterprise and Pro users can navigate the Internet in Application Guard knowing their systems are safe from common web based attacks.
Prerequisites:
Installation Steps:
2. Open Edge, and in the Edge menu (three dots in the upper right), select New Application Guard window to open a WDAG window. WDAG windows have an orange outline and Edge taskbar icon with a shield.
Note: if you manually enabled WDAG in the Optional Features menu, you are in Standalone mode and can try out the additional features below. However, if WDAG was enabled by your IT department, you are in Enterprise mode and WDAG features are managed by their policies. In this case, changing the registry keys below won’t have any effect.
Try out WDAG:
Note: if you manually enabled WDAG in the Optional Features menu, you are in Standalone mode and can try out the additional features below. However, if WDAG was enabled by your IT department, you are in Enterprise mode and WDAG features are managed by their policies. In this case, changing the registry keys below won’t have any effect.
Additional WDAG Features (available to Enterprise and Pro users in WDAG Standalone mode):
WDAG blocks some capabilities to provide the most secure default configuration. It does not allow copying and pasting between your host machine and WDAG, printing from the WDAG container, or any persistent storage of favorites, browsing history, or downloads between login sessions. If you would like to relax these policies, you can configure them via the registry.
1. Open the Registry Editor (windows key, search for “regedit”).
2. Under “HKLM\software\microsoft\HVSI”, change the values of any of following the registry keys from 0 to 1.
3. Restart your device to enable the feature(s).