365块.exe下载
[英]365 Block .exe Download
问题描述
Is it possible to prevent the download and execution of files with a .exe extension using 365?
是否可以使用 365 阻止下载和执行扩展名为 .exe 的文件? I've searched across Endpoint Manager, Defender for Endpoint and Defender for Cloud Apps but can't see an obvious way of doing this.我搜索过 Endpoint Manager、Defender for Endpoint 和 Defender for Cloud Apps,但看不到明显的方法。
Most of my searches suggest using AppLocker but this would only solve half the problem (blocking execution of the file).我的大多数搜索都建议使用 AppLocker,但这只能解决一半的问题(阻止文件的执行)。
Is there any way using Microsoft 365 technology to block the download and execution of files based on their extension?有没有办法使用 Microsoft 365 技术来阻止基于文件扩展名的文件的下载和执行?
1 个解决方案
解决方案1
0 2022-06-22 09:14:52
You can try using Edge's relevant group policy or registry to achieve your needs.您可以尝试使用 Edge 的相关组策略或注册表来满足您的需求。 I think this should help you.我认为这应该对你有所帮助。 Please refer to this policy document: Allow download restrictions .请参阅本政策文件: 允许下载限制。
It can be known in the documentation that the danger level of exe type files is ALLOW_ON_USER_GESTURE , so you can change the group policy or registry information I mentioned above to 2 , which will block potentially dangerous or unwanted downloads and dangerous file types.在文档中可以知道exe类型文件的危险等级是ALLOW_ON_USER_GESTURE ,所以可以把我上面提到的组策略或者注册表信息改成2 ,这样就可以屏蔽潜在危险或者不需要的下载和危险文件类型。
And the path of this registry is at: SOFTWARE\Policies\Microsoft\Edge\Recommended , if it doesn't exist, you can create it as REG_DWORD type, set its value will be ok.而这个注册表的路径是: SOFTWARE\Policies\Microsoft\Edge\Recommended ,如果不存在,可以创建为REG_DWORD类型,设置它的值就可以了。 In the same way, you can do it via group policy.同样,您可以通过组策略进行操作。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.