windows-itpro-docs icon indicating copy to clipboard operation
windows-itpro-docs copied to clipboard

Published 20 hours ago verified publisher icon MicrosoftDocs

WDAC - mimimumfileversion not described.

Open Rvvhub opened this issue 2 years ago • 2 comments

Table 2. Windows Defender Application Control policy - file rule levels This table does not describe how MinimumFileVersion is actually used:

  • for allow rules, it works as expected: files with at least the specified version are allowed to run.
  • for deny rules, it works the other way around: files upto the specified version are blocked.

Document Details

Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

Rvvhub avatar Nov 30 '21 07:11 Rvvhub

Hello @Rvvhub - Thank you for posting your query. Can you please share the reference document where MinimumFileVersion related settings are elaborated? I cannot find anything related to the minimum file version in the current document table 2. https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create#table-2-windows-defender-application-control-policy---file-rule-levels

Can you please refer anything so that I can better help you or update the document, if required.

joinimran avatar Jan 25 '22 07:01 joinimran

Hi there, that is the thing: there is no public doc on MinimumFileVersion as far as I can tell.

In an internal thread, this is what I received from Tom Caldwell on it:
"While it says 'minimumfileversion' the logic for that field is inverted for deny rules and it should only be blocking version the version specified and below."

Rvvhub avatar Jan 28 '22 08:01 Rvvhub

@Rvvhub Thanks for submitting the feedback. I've fixed this, but the fix will go live in a few weeks along with some other changes. I'm closing this issue now.

vinaypamnani-msft avatar Aug 15 '22 19:08 vinaypamnani-msft