The Windows prevention policies have options for restricting write access to executable files. This prevents unauthorized software installation on the protected system
The option to block modifications to executable files, under specific sandbox option groups, determines if restrictions apply for writing executables for this sandbox. It is usually not recommended to disable these options, because that would allow arbitrary programs to write to executables on the disk.
Alternatively, you can use the writable resource list to allow write access. When you use the writable resource list, you should be as specific as possible about the program using the resource and the resource name.
When this option is enabled, you may not be able to copy or save executable files on the target computer, depending on the service or interactive program used and the user account used to log in to the computer.
Imported Document ID: HOWTO95362
Subscribing will provide email updates when this Article is updated. Login is required.