Administering AppLocker

AppLocker helps administrators control how users can access and use files, such as executable files, packaged apps, scripts, Windows Installer files, and DLLs. Using AppLocker, you can:

• Define rules based on file attributes derived from the digital signature, including the publisher, product name, file name, and file version. For example, you can create rules based on the publisher attribute that is persistent through updates, or you can create rules for a specific version of a file.
  
  
• Assign a rule to a security group or an individual user.
  
  
• Create exceptions to rules. For example, you can create a rule that allows all Windows processes to run except Registry Editor (Regedit.exe).
  
  
• Use audit-only mode to deploy the policy and understand its impact before enforcing it.
  
  
• Import and export rules. The import and export affects the entire policy. For example, if you export a policy, all of the rules from all of the rule collections are exported, including the enforcement settings for the rule collections. If you import a policy, the existing policy is overwritten.
  
  
• Simplify creating and managing AppLocker rules by using AppLocker PowerShell cmdlets.
  
  

备注
For more information about enhanced capabilities of AppLocker to control Windows apps, see AppLocker 中的打包应用和打包应用安装程序规则.

The following topics are included to administer AppLocker:

• Maintain AppLocker Policies
  
  
• Edit an AppLocker Policy
  
  
• Test and Update an AppLocker Policy
  
  
• Deploy AppLocker Policies by Using the Enforce Rules Setting
  
  
• Use the AppLocker Windows PowerShell Cmdlets
  
  
• Optimize AppLocker Performance
  
  
• Monitor Application Usage with AppLocker
  
  
• Use AppLocker and Software Restriction Policies in the Same Domain
  
  
• Manage Packaged Apps with AppLocker
  
  
• How to work with policies
  
  
  • Configure an AppLocker Policy for Audit Only
    
    
  • Configure an AppLocker Policy for Enforce Rules
    
    
  • Display a Custom URL Message When Users Try to Run a Blocked Application
    
    
  • Export an AppLocker Policy from a GPO
    
    
  • Export an AppLocker Policy to an XML File
    
    
  • Import an AppLocker Policy from Another Computer
    
    
  • Import an AppLocker Policy into a GPO
    
    
  • Merge AppLocker Policies by Using Set-ApplockerPolicy
    
    
  • Merge AppLocker Policies Manually
    
    
  • Refresh an AppLocker Policy
    
    
  • Test an AppLocker Policy by Using Test-AppLockerPolicy
    
    
• How to work with rules
  
  
  • Create a Rule That Uses a File Hash Condition
    
    
  • Create a Rule That Uses a Path Condition
    
    
  • Create a Rule That Uses a Publisher Condition
    
    
  • Create AppLocker Default Rules
    
    
  • Configure Exceptions for an AppLocker Rule
    
    
  • Create a Rule for Packaged Apps
    
    
  • Delete an AppLocker Rule
    
    
  • Edit AppLocker Rules
    
    
  • Enable the DLL Rule Collection
    
    
  • Enforce AppLocker Rules
    
    
  • Run the Automatically Generate Rules Wizard