I need a solution
Hello,
We have SEP System Lockdown enabled in whitelisting mode but are having some trouble with the contents of the C:\Windows\assembly folder in Windows 10.
From what we can tell the contents of this folder is dynamic so a hash fingerprint of the contents on one device is not gurenteed to match that of another, despite all devices in our fleet being built from the same image.
To workaround this we have tried setting a definition rule for C:\Windows\assembly\* in the System Lockdown policy however we still see various dll files in the directroy being blocked.
Has anyone else come across this or something similar?
I am also interested to know how others have implemented whitelisting with SEP Lockdown on Windows 10.
0