Export (0) Print
Expand All

Configure an AppLocker Policy for Enforce Rules

Published: April 19, 2012

Updated: May 2, 2012

Applies To: Windows 8, Windows 8.1, Windows Server 2012, Windows Server 2012 R2



This topic describes the steps to enable the AppLocker policy enforcement setting in Windows Server 2012 and Windows 8.

noteNote
When AppLocker policy enforcement is set to Enforce rules, rules are enforced for the rule collection and all events are audited.

For information about how AppLocker policies are applied within a GPO structure, see Understanding AppLocker Rules and Enforcement Setting Inheritance in Group Policy.

You can perform this task by using the Group Policy Management Console for an AppLocker policy in a Group Policy Object (GPO) or by using the Local Security Policy snap-in for an AppLocker policy on a local computer or in a security template. For information how to use these MMC snap-ins to administer AppLocker, see Using the MMC snap-ins to administer AppLocker.

  1. In the console tree of the snap-in under Computer Configuration\Windows Settings\Security Settings\Application Control Policies, right-click AppLocker, and then click Properties.

  2. On the Enforcement tab of the AppLocker Properties dialog box, select the Configured check box for the rule collection that you are editing, and then verify that Enforce rules is selected.

  3. Click OK.

For information about viewing the events generated from rules enforcement, see View the AppLocker Log in Event Viewer.

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft