App Control for Business operational guide
Note
Some capabilities of App Control for Business are only available on specific Windows versions. Learn more about App Control feature availability.
You now understand how to design and deploy your App Control for Business policies. This guide explains how to understand the effects your policies have and how to troubleshoot when they aren't behaving as expected. It contains information on where to find events and what they mean, and also querying these events with Microsoft Defender for Endpoint Advanced Hunting feature.
In this section
| Article | Description |
|---|---|
| Debugging and troubleshooting | This article explains how to debug app and script failures with App Control. |
| Understanding App Control event IDs | This article explains the meaning of different App Control event IDs. |
| Understanding App Control event tags | This article explains the meaning of different App Control event tags. |
| Query App Control events with Advanced hunting | This article covers how to view App Control events centrally from all systems that are connected to Microsoft Defender for Endpoint. |
| Admin Tips & Known Issues | This article describes some App Control Admin Tips & Known Issues. |
| Managed installer and ISG technical reference and troubleshooting guide | This article provides technical details and debugging steps for managed installer and ISG. |
| CITool.exe technical reference | This article explains how to use CITool.exe. |
| Inbox App Control policies | This article describes the App Control policies that ship with Windows and when they're active. |