1.8 KiB
title, description, ms.assetid, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, author, ms.date
| title | description | ms.assetid | ms.prod | ms.mktglfcycl | ms.sitesec | ms.pagetype | author | ms.date |
|---|---|---|---|---|---|---|---|---|
| Configure an AppLocker policy for enforce rules (Windows 10) | This topic for IT professionals describes the steps to enable the AppLocker policy enforcement setting. | 5dbbb290-a5ae-4f88-82b3-21e95972e66c | w10 | deploy | library | security | brianlic-msft | 09/21/2017 |
Configure an AppLocker policy for enforce rules
Applies to
- Windows 10
- Windows Server
This topic for IT professionals describes the steps to enable the AppLocker policy enforcement setting.
Note: When AppLocker policy enforcement is set to Enforce rules, rules are enforced for the rule collection and all events are audited. For info about how AppLocker policies are applied within a GPO structure, see Understand AppLocker rules and enforcement setting inheritance in Group Policy.
You can perform this task by using the Group Policy Management Console for an AppLocker policy in a Group Policy Object (GPO) or by using the Local Security Policy snap-in for an AppLocker policy on a local computer or in a security template. For info how to use these MMC snap-ins to administer AppLocker, see Administer AppLocker.
To enable the Enforce rules enforcement setting
- From the AppLocker console, right-click AppLocker, and then click Properties.
- On the Enforcement tab of the AppLocker Properties dialog box, select the Configured check box for the rule collection that you are editing, and then verify that Enforce rules is selected.
- Click OK.
For info about viewing the events generated from rules enforcement, see Monitor app usage with AppLocker.