From 66763a225b8f77be225063637e3cf89df559d357 Mon Sep 17 00:00:00 2001 From: Kaushik Ainapure Date: Tue, 11 Jul 2017 17:58:51 +0530 Subject: [PATCH] Document how to clear Applocker rules on an individual system and remote systems MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit In order to clear AppLocker policies from a machine you must use the Set-AppLockerPolicy cmdlet with the -XMLPolicy parameter using a .XML file which contains the following contents:         To use the Set-AppLockerPolicy cmdlet, we must first import the Applocker modules.  To do this: PS C:\Users\Administrator> import-module AppLocker We will create a file for example called clear.xml and place it in the same directory that we are executing our cmdlet.  And fill it with the XML Contents above.  Then you must execute using the following command: C:\Users\Administrator> Set-AppLockerPolicy -XMLPolicy .\clear.xml This will remove all AppLocker Policies on a machine and could be potentially scripted to use on multiple machines using remote execution tools with accounts with proper access. --- .../applocker/delete-an-applocker-rule.md | 20 +++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/windows/device-security/applocker/delete-an-applocker-rule.md b/windows/device-security/applocker/delete-an-applocker-rule.md index 3d4888fb73..fa2e49bffb 100644 --- a/windows/device-security/applocker/delete-an-applocker-rule.md +++ b/windows/device-security/applocker/delete-an-applocker-rule.md @@ -32,3 +32,23 @@ AppLocker, see [Administer AppLocker](administer-applocker.md#bkmk-using-snapins >**Note:**  When using Group Policy, for the rule deletion to take effect on computers within the domain, the GPO must be distributed or refreshed. When this procedure is performed on the local device, the AppLocker policy takes effect immediately. + +**To clear AppLocker policies on a single system or remote systems** +Use the Set-AppLockerPolicy cmdlet with the -XMLPolicy parameter using a .XML file which contains the following contents: + + + + +To use the Set-AppLockerPolicy cmdlet, we must first import the Applocker modules.  To do this: + +PS C:\Users\Administrator> import-module AppLocker + +We will create a file for example called clear.xml and place it in the same directory that we are executing our cmdlet.  And fill it with the XML Contents above.  Then you must execute using the following command: + +C:\Users\Administrator> Set-AppLockerPolicy -XMLPolicy .\clear.xml + +This will remove all AppLocker Policies on a machine and could be potentially scripted to use on multiple machines using remote execution tools with accounts with proper access.