Applocker does not work

Hi,

I have tried many things but i have simply not been able to get Applocker deny rule to work on my local Windows 7 Professional machine.

Policy type - Path rule

Action - Deny

Tried - %SYSTEM32%\notepad.exe , notepad++'s installation path, office, etc. Tried folder and file path rule. Simply not working.

1) Application identity service auto start and running? - CHECK

2) Appid.sys running? - CHECK

3) Enforcement mode ON? - CHECK

4) GPUPDATE /FORCE, restart and wait for ~10 minutes? - CHECK

5) OS supported? - CHECK

6) Remove built in administrator rule removal? - CHECK

7) Remove all default Allow rules? - CHECK

8) Policy shows up in the registry? - CHECK (HKLM\software\...SRPV2\exe\)

Please help me get this work as it is very important to test if we can do a larger deployment.

Sincerely,

-Shiva
June 3rd, 2015 5:49am

Hi Shiva,

Considering you are using Windows 7 Pro, AppLocker rules cannot be enforced on computers running Windows 7 Professional though we can configure it. We may need to test with other application path except the application located in %SYSTEM32%, or we may need to test on a Windows 7 Ultimate or Windows 7 Enterprise machine to ensure it can work well.
Here is a link for reference:
Requirements to Use AppLocker
https://technet.microsoft.com/en-us/library/ee424382(v=ws.10).aspx

Best regards

Free Windows Admin Tool Kit Click here and download it now
June 4th, 2015 4:10am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics