Tag Archives: applocker
Jump lists, very handy. You’ve pinned a piece of software to the taskbar, and then you can right-click the icon and get a list of pinned and/or recently used files or connections. I recently enabled AppLocker executable policy and applied … Continue reading
If you’re planning to rollout AppLocker you might want to run it in Audit mode first, to see where things are being run from. You might want to store those logs centrally, see my previous post for how to get … Continue reading
I’m currently in the process of planning for an AppLocker rollout to all my PCs (about 7,500 of them) due to an increasing amount of malware. You should probably be doing this too. Anyway, a sensible first step is to … Continue reading
When you configure the default AppLocker Script rules in a Group Policy Object (GPO) one of the ones it adds is for: %OSDRIVE%\*\temp\*\getpaths.cmd Except when a user logs on, if you’ve enabled the AppLocker MSI and Script event log, you … Continue reading
I found it relatively easy to get these two to work together on my 2008 R2 terminal servers. Basically, create an AppLocker Executable Allow rule to path Q:\* (assuming Q is the drive used by App-V on your system).