deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-24 06:43:38 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
Files
df9f431a18d0e7fcaf0936e44c2afb6d9b83a084
windows-itpro-docs/windows/keep-secure/dll-rules-in-applocker.md
Brian Lich 6d38dc68b7 refreshing conversion test build
2016-03-21 11:28:01 -07:00

2.1 KiB
Raw Blame History

title, description, ms.assetid, ms.prod, ms.mktglfcycl, ms.sitesec, author
title description ms.assetid ms.prod ms.mktglfcycl ms.sitesec author
DLL rules in AppLocker (Windows 10) This topic describes the file formats and available default rules for the DLL rule collection. a083fd08-c07e-4534-b0e7-1e15d932ce8f W10 deploy library brianlic-msft

DLL rules in AppLocker

Applies to

  • Windows 10

This topic describes the file formats and available default rules for the DLL rule collection.

AppLocker defines DLL rules to include only the following file formats:

  • .dll

  • .ocx

The following table lists the default rules that are available for the DLL rule collection.

Purpose Name User Rule condition type

Allows members of the local Administrators group to run all DLLs

(Default Rule) All DLLs

BUILTIN\Administrators

Path: *

Allow all users to run DLLs in the Windows folder

(Default Rule) Microsoft Windows DLLs

Everyone

Path: %windir%\*

Allow all users to run DLLs in the Program Files folder

(Default Rule) All DLLs located in the Program Files folder

Everyone

Path: %programfiles%\*

 

Important   If you use DLL rules, a DLL allow rule has to be created for each DLL that is used by all of the allowed apps

 

Caution   When DLL rules are used, AppLocker must check each DLL that an app loads. Therefore, users may experience a reduction in performance if DLL rules are used.

 

Related topics

Understanding AppLocker default rules