Configure an AppLocker Policy for Enforce Rules

 

Applies To: Windows 8.1, Windows Server 2012 R2, Windows Server 2012, Windows 8

This topic describes the steps to enable the AppLocker policy enforcement setting in Windows Server 2012 and Windows 8.

Note

When AppLocker policy enforcement is set to Enforce rules, rules are enforced for the rule collection and all events are audited.

For information about how AppLocker policies are applied within a GPO structure, see Understanding AppLocker Rules and Enforcement Setting Inheritance in Group Policy.

You can perform this task by using the Group Policy Management Console for an AppLocker policy in a Group Policy Object (GPO) or by using the Local Security Policy snap-in for an AppLocker policy on a local computer or in a security template. For information how to use these MMC snap-ins to administer AppLocker, see Using the MMC snap-ins to administer AppLocker.

To enable the Enforce rules enforcement setting

  1. In the console tree of the snap-in under Computer Configuration\Windows Settings\Security Settings\Application Control Policies, right-click AppLocker, and then click Properties.

  2. On the Enforcement tab of the AppLocker Properties dialog box, select the Configured check box for the rule collection that you are editing, and then verify that Enforce rules is selected.

  3. Click OK.

For information about viewing the events generated from rules enforcement, see View the AppLocker Log in Event Viewer.