Skip to main content
AppLocker Policies Design Guide

Published: August 19, 2009

Updated: June 21, 2012

Applies To: Windows 7, Windows 8, Windows 8.1, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2



This topic for the IT professional introduces the design and planning steps required to deploy application control policies by using AppLocker which was introduced in Windows Server® 2008 R2 and Windows® 7.

Purpose of this guide

This guide provides important designing and planning information for deploying application control policies by using AppLocker. It is intended for security architects, security administrators, and system administrators. Through a sequential and iterative process, you can create an AppLocker policy deployment plan for your organization that will address your specific application control requirements by department, organizational unit, or business group.

This guide does not cover the deployment of application control policies by using Software Restriction Policies (SRP). However, SRP is discussed as a deployment option in conjunction with AppLocker policies. For information about these options, see Determine Your Application Control Objectives.

To understand if AppLocker is the correct application control solution for your organization, see Understand AppLocker Policy Design Decisions.

TipTip
To digitally save or print pages from this collection, click Export (in the upper-right corner of the page) and then follow the instructions.

After careful design and detailed planning, the next step is to deploy AppLocker policies. AppLocker Policies Deployment Guide covers the creation and testing of policies, deploying the enforcement setting, and managing and maintaining the policies.