I need a solution
Is there anyway to configure CSP to not interfere with standard Windows operation while also enabling us to choose what we want to run i.e., a whitelist?
I get what CSP does, but it shouldn't come at the cost of proper OS operation.
I've just setup the CSP agent on a 2012 machine and with the limited execution policy its blocks a lot of legitimate stuff, stuff we're going to have to add to enable Windows to actually work properly.
Is there anyway to make it act more like AppLocker in this sense where it will just blocks applications from running rather than blocking legitimate Windows processes from needing to do what they need to do?