AppLocker Policies Design Guide
게시: 2009년 8월
업데이트 날짜: 2009년 11월
적용 대상: Windows 7, Windows Server 2008 R2
This topic for the IT professional introduces the design and planning steps required to deploy application control policies by using AppLocker(TM) for Windows Server® 2008 R2 and Windows® 7.
Purpose of this guide
This guide provides important designing and planning information for deploying application control policies by using AppLocker. It is intended for security architects, security administrators, and system administrators. Through a sequential and iterative process, you can create an AppLocker policy deployment plan for your organization that will address your specific application control requirements by department, organizational unit, or business group.
This guide does not cover the deployment of application control policies by using Software Restriction Policies (SRP). However, SRP is discussed as a deployment option in conjunction with AppLocker policies. For information about these options, see Determining Your Application Control Objectives.
To understand if AppLocker is the correct application control solution for your organization, see Understanding AppLocker Policy Design Decisions.
For a downloadable version of this document, see AppLocker Policies Design Guide in the Microsoft Download Center.
Contents of this guide
This guide contains the following topics:
AppLocker 정책 배포 프로세스 이해
Understanding AppLocker Policy Design Decisions
Determining Your Application Control Objectives
Creating the List of Applications Deployed to Each Business Group
Selecting the Types of Rules to Create
Determining Group Policy Structure and Rule Enforcement
Planning for AppLocker Policy Management
Creating Your AppLocker Planning Document
After careful design and detailed planning, the next step is to deploy AppLocker policies. AppLocker Policies Deployment Guide (http://go.microsoft.com/fwlink/?LinkId=160260) covers the creation and testing of policies, deploying the enforcement setting, and managing and maintaining the policies.