In one of my last blogs, I showed you how to block the administrative tools: It can easily be done within the Intune for Education portal.

Blocking Administrative Apps like the Command Prompt In Intune.

Of course, that’s is really nice. But I just noticed some admx updates

https://blogs.windows.com/windowsexperience/2020/08/05/announcing-windows-10-insider-preview-build-20185/

I hope this amdx update within the Insider preview build 20185 will help us to prevent access to the command prompt/ powershell and registry without using applocker?