码迷,mamicode.com
首页 > 移动开发 > 详细

GPO - AppLocker

时间:2020-01-31 23:02:55      阅读:113      评论:0      收藏:0      [点我收藏+]

标签:for   over   run   power   exec   lis   attr   control   set   

AppLocker can help you:

  • Define rules based on file attributes that persist across app updates, such as the publisher name (derived from the digital signature), product name, file name, and file version. You can also create rules based on the file path and hash.
  • Assign a rule to a security group or an individual user.
  • Create exceptions to rules. For example, you can create a rule that allows all users to run all Windows binaries, except the Registry Editor (regedit.exe).
  • Use audit-only mode to deploy the policy and understand its impact before enforcing it.
  • Create rules on a staging server, test them, then export them to your production environment and import them into a Group Policy Object.
  • Simplify creating and managing AppLocker rules by using Windows PowerShell.

Refer to:https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-overview

Set the AppLocker Properties to Enforce rules:

技术图片

 

 

Create default rules for each item:

技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 Create Executable Rules for Specific application.

技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 技术图片

 

 Set the Application Identity Properties to Automatic Module.

技术图片

 

 Enable enforced module.

技术图片

 

GPO - AppLocker

标签:for   over   run   power   exec   lis   attr   control   set   

原文地址:https://www.cnblogs.com/keepmoving1113/p/12246826.html

(0)
(0)
   
举报
评论 一句话评论(0
登录后才能评论!
© 2014 mamicode.com 版权所有  联系我们:gaon5@hotmail.com
迷上了代码!