Tech News
← Back to articles

Microsoft removing Defender Application Guard from Office

2025-11-04 | original
read original related products more articles

Microsoft plans to remove Defender Application Guard from Office by December 2027, starting with the February 2026 release of Office version 2602.

The Microsoft Defender Application Guard for Office (MDAG) is designed for Windows 10 and Windows 11 Enterprise editions, protecting users' devices by isolating untrusted Word, PowerPoint, and Excel files in a separate, Hyper-V-enabled container. This helps keep the host operating system secure, ensuring that enterprise data remains safe from attackers if a file or website is malicious.

Microsoft announced that it would be deprecating MDAG two years ago, in November 2023, when it also recommended Defender for Endpoint attack surface reduction rules, Protected View, and Windows Defender Application Control as alternatives.

Redmond retired MDAG five months later, in April 2024, and says that Office files will now open in Protected View, a read-only mode where most document editing functions are disabled.

"Files will open in Protected View instead. Admins should enable Microsoft Defender for Endpoint ASR rules and Windows Defender Application Control to maintain security. No admin action is required for removal," Microsoft said in a Microsoft 365 message center update on Tuesday.

"This change aligns with the end of support for Windows 11 version 23H2 and helps streamline the security experience for users. Documents that previously opened in Application Guard will now open in Protected View, maintaining strong protection against threats."

Application Guard for Office alert (Microsoft)

​According to a shared timeline, the removal will start with Office version 2602, for the Current Channel in early February 2026, for the Monthly Enterprise Channel in April 2026, and for the Semi-Annual Enterprise Channel in July 2026.

Microsoft estimates that MDAG will be entirely removed from Office with the release of version 2612, which will roll out to Current Channel users in early December 2026, to the Monthly Enterprise Channel in February 2027, and the Semi-Annual Enterprise Channel in July 2027.

To maintain protection against malicious Office documents, Microsoft recommends that IT admins:

... continue reading

Related:
Google's New Hurricane Model Was Breathtakingly Good This Season
Google Removed 749 Million Anna's Archive URLs From Its Search Results
Apple Brings Its App Store To the Web
Data Breach At Major Swedish Software Supplier Impacts 1.5 Million
Windows 10 Update Incorrectly Tells Some Users They've Reached End-of-Life, Despite Having Extended Support

© 2025 GoKawiil