deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-11 20:17:23 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
windows-itpro-docs/windows/security/threat-protection/windows-defender-application-control/applocker/configure-an-applocker-policy-for-enforce-rules.md
Alekhya Jupudi 200f30988f Defender App Guard Link text correction-03 
Change to Learn more about the Windows Defender Application Control feature availability
2021-09-30 11:35:44 +05:30

2.3 KiB
Raw Blame History

title, description, ms.assetid, ms.reviewer, ms.author, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, ms.localizationpriority, author, manager, audience, ms.collection, ms.topic, ms.date, ms.technology
title description ms.assetid ms.reviewer ms.author ms.prod ms.mktglfcycl ms.sitesec ms.pagetype ms.localizationpriority author manager audience ms.collection ms.topic ms.date ms.technology
Configure an AppLocker policy for enforce rules (Windows) This topic for IT professionals describes the steps to enable the AppLocker policy enforcement setting. 5dbbb290-a5ae-4f88-82b3-21e95972e66c dansimp m365-security deploy library security medium dansimp dansimp ITPro M365-security-compliance conceptual 09/21/2017 mde

Configure an AppLocker policy for enforce rules

Applies to

  • Windows 10
  • Windows 11
  • Windows Server 2016 and above

Note

Some capabilities of Windows Defender Application Control are only available on specific Windows versions. Learn more about the Windows Defender Application Control feature availability.

This topic for IT professionals describes the steps to enable the AppLocker policy enforcement setting.

Note:  When AppLocker policy enforcement is set to Enforce rules, rules are enforced for the rule collection and all events are audited.

For info about how AppLocker policies are applied within a GPO structure, see Understand AppLocker rules and enforcement setting inheritance in Group Policy.

You can perform this task by using the Group Policy Management Console for an AppLocker policy in a Group Policy Object (GPO) or by using the Local Security Policy snap-in for an AppLocker policy on a local computer or in a security template. For info how to use these MMC snap-ins to administer AppLocker, see Administer AppLocker.

To enable the Enforce rules enforcement setting

  1. From the AppLocker console, right-click AppLocker, and then click Properties.
  2. On the Enforcement tab of the AppLocker Properties dialog box, select the Configured check box for the rule collection that you are editing, and then verify that Enforce rules is selected.
  3. Click OK.

For info about viewing the events generated from rules enforcement, see Monitor app usage with AppLocker.