Microsoft Defender
      Back to home
      1. Sittadel Knowledge Base
      2. Management Guides
      3. Microsoft Defender

      Defender for Endpoint App Execution Restriction Action

      This guide will show an administrator how to initiate a device App Execution Restriction process on a MDE enrolled Device.

      Role Requirements

      Procedure Scope: Administrators

      Required Group Membership: Admin.Security

      Handbook Reference

      Package: TBD

      Domain: TBD

      Modifies: TBD

      Defender for Endpoint Device App Execution Restriction

      1. Navigate to the Device Inventory – Microsoft Defender portal, locate and select the device you wish to initiate the app execution restriction on.
      2. A pop-out will generate displaying device information for the entry, locate and select the three dots, followed by selecting the Restrict App Execution action.
      3. A prompt will be generated asking for finalization on the app restriction action, select Confirm to complete the device app execution restriction.

      Need Assistance?

      Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.