WDAC policies apply to the managed computer as a whole and affects all users of the device.
It was designed as a security feature under the servicing criteria, defined by the Microsoft Security Response Center (MSRC). WDAC was introduced with Windows 10 and allows organizations to control which drivers and applications are allowed to run on their Windows clients. Windows 10 and Windows 11 include two technologies that can be used for application control, depending on your organization's specific scenarios and requirements: Windows Defender Application Control (WDAC) and AppLocker. Learn more about the Windows Defender Application Control feature availability. Some capabilities of Windows Defender Application Control are only available on specific Windows versions.