Oct 30

AppLocker doesn’t work: settings are not loaded or even applied

Consider the following scenario:

  1. You ensure your Windows version supports AppLocker
  2. You ensure Application Identity service is running on the target computer
  3. You configure a GPO to block some applications with AppLocker
  4. You deploy the GPO and use gpupdate /force on the target computer to refresh its policy
  5. You expect AppLocker to work, but it doesn’t
  6. AppLocker’s eventlogs are enabled BUT are empty:
    1. Applications And Services Logs\Microsoft\Windows\AppId
    2. Applications And Services Logs\Microsoft\Windows\AppLocker

Continue reading