Having successfully upgraded to Win 10 1709 (I'm not calling it Fall Creators Update because it is spring here!!) I get a Group Policy Event ID 1085 warning stating "Windows failed to apply the MitigationOptions settings.." whenever I restart my computer. There are 2 mitigation options listed in Group Policy under "Administrative Templates\System\Mitigation Options\Process Mitigation Options", but neither one of them are enabled. Could this warning be referring to any other exploit mitigations I have set (eg. Attack Surface Reduction rules) or is this just a bug? Is anyone else seeing the same warning?
Yes. I got the event 1085 by enabling Block Untrusted Fonts via group policy, Windows 10 Pro Fall CU. Microsoft did not list this as a deprecated feature in the FCU but it is. I had to reset the gpe in order to get rid of the warning.
Sounds like Windows tried to apply a group policy template but was unable to. Maybe because it applied to mitigation settings that is disabled?
I clearly said it was necessary to reset the group policy--to defaults--not fiddling around with individual mitigation settings. Good luck.
OK, so I did a "hard reset" of Group Policy Objects and what do you know - the error is gone. I will add back the 3 changes one by one and see if the error re-appears. Thanks @plat1098 - I've learnt something today
