# Windows Sandbox configuration

[Source](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-sandbox/windows-sandbox-configure-using-wsb-file)

## Keywords, values, and limits

### Audio input
Enables or disables audio input to the sandbox.

`<AudioInput>value</AudioInput>`

Supported values:

- Enable: Enables audio input in the sandbox. If this value is set, the sandbox will be able to receive audio input from the user. Applications that use a microphone may require this capability.
- Disable: Disables audio input in the sandbox. If this value is set, the sandbox can't receive audio input from the user. Applications that use a microphone may not function properly with this setting.
- Default: This is the default value for audio input support. Currently this means audio input is enabled.

### Clipboard redirection
Enables or disables sharing of the host clipboard with the sandbox.

`<ClipboardRedirection>value</ClipboardRedirection>`aaaa

Supported values:

- Disable: Disables clipboard redirection in the sandbox. If this value is set, copy/paste in and out of the sandbox will be restricted.
- Default: This is the default value for clipboard redirection. Currently copy/paste between the host and sandbox are permitted under Default.

### Logon command
Specifies a single command that will be invoked automatically after the sandbox logs on. Apps in the sandbox are run under the container user account.

```xml
        <LogonCommand>
          <Command>command to be invoked</Command>
        </LogonCommand>
```
- Command: A path to an executable or script inside the container that will be executed after login.

### Mapped folders
An array of folders, each representing a location on the host machine that will be shared into the sandbox at the specified path. At this time, relative paths are not supported. If no path is specified, the folder will be mapped to the container user's desktop.

```xml
        <MappedFolders>
          <MappedFolder> 
            <HostFolder>absolute path to the host folder</HostFolder> 
            <SandboxFolder>absolute path to the sandbox folder</SandboxFolder> 
            <ReadOnly>value</ReadOnly> 
          </MappedFolder>
          <MappedFolder>  
            ...
          </MappedFolder>
        </MappedFolders>
```
- HostFolder: Specifies the folder on the host machine to share into the sandbox. Note that the folder must already exist on the host, or the container will fail to start.
- SandboxFolder: Specifies the destination in the sandbox to map the folder to. If the folder doesn't exist, it will be created. If no sandbox folder is specified, the folder will be mapped to the container desktop.
- ReadOnly: If true, enforces read-only access to the shared folder from within the container. Supported values: true/false. Defaults to false.

### Memory in MB

Specifies the amount of memory that the sandbox can use in megabytes (MB).

`<MemoryInMB>value</MemoryInMB>`

If the memory value specified is insufficient to boot a sandbox, it will be automatically increased to the required minimum amount.



### Networking
Enables or disables networking in the sandbox. You can disable network access to decrease the attack surface exposed by the sandbox.

`<Networking>value</Networking>`

Supported values:

- Disable: Disables networking in the sandbox.
- Default: This is the default value for networking support. This value enables networking by creating a virtual switch on the host and connects the sandbox to it via a virtual NIC.

### Printer redirection
Enables or disables printer sharing from the host into the sandbox.

`<PrinterRedirection>value</PrinterRedirection>`

Supported values:

- Enable: Enables sharing of host printers into the sandbox.
- Disable: Disables printer redirection in the sandbox. If this value is set, the sandbox can't view printers from the host.
- Default: This is the default value for printer redirection support. Currently this means printer redirection is disabled.

### Protected client
Applies additional security settings to the sandbox Remote Desktop client, decreasing its attack surface.

`<ProtectedClient>value</ProtectedClient>`

Supported values:

- Enable: Runs Windows sandbox in Protected Client mode. If this value is set, the sandbox runs with extra security mitigations enabled.
- Disable: Runs the sandbox in standard mode without extra security mitigations.
- Default: This is the default value for Protected Client mode. Currently, this means the sandbox doesn't run in Protected Client mode.

### vGPU
Enables or disables GPU sharing.

`<vGPU>value</vGPU>`

Supported values:

- Enable: Enables vGPU support in the sandbox.
- Disable: Disables vGPU support in the sandbox. If this value is set, the sandbox will use software rendering, which may be slower than virtualized GPU.
- Default This is the default value for vGPU support. Currently this means vGPU is disabled.

### Video input
Enables or disables video input to the sandbox.

`<VideoInput>value</VideoInput>`

Supported values:

- Enable: Enables video input in the sandbox.
- Disable: Disables video input in the sandbox. Applications that use video input may not function properly in the sandbox.
- Default: This is the default value for video input support. Currently this means video input is disabled. Applications that use video input may not function properly in the sandbox.


## Example 1

```xml
<Configuration>
  <VGpu>Disable</VGpu>
  <Networking>Disable</Networking>
  <MappedFolders>
    <MappedFolder>
      <HostFolder>C:\Users\Public\Pictures</HostFolder>
      <SandboxFolder>C:\Users\WDAGUtilityAccount\Pictures</SandboxFolder>
      <ReadOnly>true</ReadOnly>
    </MappedFolder>
  </MappedFolders>
  <LogonCommand>
    <Command>explorer.exe C:\users\WDAGUtilityAccount\Pictures</Command>
  </LogonCommand>
</Configuration>
```

## Example 2 
```
REM Download Visual Studio Code
curl -L "https://update.code.visualstudio.com/latest/win32-x64-user/stable" --output C:\users\WDAGUtilityAccount\Desktop\vscode.exe

REM Install and run Visual Studio Code
C:\users\WDAGUtilityAccount\Desktop\vscode.exe /verysilent /suppressmsgboxes
```

```xml
<Configuration>
  <MappedFolders>
    <MappedFolder>
      <HostFolder>C:\SandboxScripts</HostFolder>
      <ReadOnly>true</ReadOnly>
    </MappedFolder>
    <MappedFolder>
      <HostFolder>C:\CodingProjects</HostFolder>
      <ReadOnly>false</ReadOnly>
    </MappedFolder>
  </MappedFolders>
  <LogonCommand>
    <Command>C:\Users\WDAGUtilityAccount\Desktop\SandboxScripts\VSCodeInstall.cmd</Command>
  </LogonCommand>
</Configuration>
```
[Windows Security Sandbox Overview](https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview)

[Customize Default image](https://www.systanddeploy.com/2021/08/how-to-customize-default-windows.html)