Conflicting Policy ID when creating multiple Supplemental Policies from MDE AH Events

MicrosoftDocs / WDAC-Toolkit

Documentation and tools to access Windows Defender Application Control (WDAC) technology.

Creative Commons Attribution 4.0 International

201 stars 43 forks source link

Conflicting Policy ID when creating multiple Supplemental Policies from MDE AH Events #392

Closed a-shina closed 1 month ago

a-shina commented 4 months ago

Hello,

I am running into a major issue when creating multiple Supplemental Policies using the MDE AH events to policy conversion. After the first and second supplemental policies are created, I noticed the Policy ID generated for both of the supplemental policies is exactly the same which results in a conflict when the policies are pushed to Intune App Control for Business.

See screenshots below:

Any help is appreciated!

Thanks, Adrian

jgeurten commented 4 months ago

You cannot upload these polices as-is. Supplemental policies are generated with the same BasePolicyID and PolicyID. You'll have to update the BasePolicyID so it points to your base policies anyway, so I think it's conceivable to change IDs all the time.

jgeurten commented 4 months ago

I will update the PolicyID every flow

a-shina commented 4 months ago

Correct, both of these supplemental policies are pointed to one main base policy. Essentially, I want to have multiple supplemental policies with unique PolicyIDs to my base policy.

Thank you, Adrian