Controlling code execution

This protection type allows or prohibits the loading of executable code from executable files or DLL libraries.

The files or libraries in question are identified in rules by a path, alternate data stream, owner and/or volume type.

These rules make it possible for example to allow the execution of only binary files installed by the operating system or by administrators of the agent pool, or to prevent dangerous applications from executing certain DLL files.