Forum Discussion
Block standard C:\Users\%User%\AppData\Local\Microsoft\WindowsApps Path environment variable
Hello togehter,
for security reasons I like to block (GPO?) / delete the standard Windows-path-enviroment variable:
C:\Users\%User%\AppData\Local\Microsoft\WindowsApps
First of all: Does it make sense to do this? I want to exclude a case that some user / unwanted software are copied here by attackers.
Thanks a lot
Kevin
KBraun94
Why not use Defender for Endpoint for this. You can use the Attack Surface Reduction function and turn on Enable Controlled folder (https://learn.microsoft.com/en-us/defender-endpoint/enable-controlled-folders)
Of course, GPO change is free but with Defender for Endpoint, you'll reduce the manual changes and the manual tracking of these types of risk.
