AppLocker Policies Deployment Guide

Applies To: Windows 7, Windows 8, Windows Server 2008 R2, Windows Server 2012

This topic for the IT professional introduces the concepts and describes the steps required to deploy AppLocker™ policies introduced in Windows Server® 2008 R2 and Windows® 7.

Purpose of this guide

This guide provides steps based on your design and planning investigation for deploying application control policies by using AppLocker. It is intended for security architects, security administrators, and system administrators. Through a sequential and iterative deployment process, you can create application control policies, test and adjust the policies, and implement a method for maintaining those policies as the needs in your organization change.

This guide covers the use of Software Restriction Policies (SRP) in conjunction with AppLocker policies to control application usage. For a comparison of SRP and AppLocker, see Using Software Restriction Policies and AppLocker Policies in this guide. To understand if AppLocker is the correct application control solution for you, see Understanding AppLocker Policy Design Decisions.

For an HTML or PDF downloadable version of this topic, from this TechNet Library page, select the Lightweight view, click the drop-down caret on the printer icon, then click Print Multiple Copies. Follow the instructions to download one or a collection of topics.

Prerequisites to deploying AppLocker policies

The following are prerequisites or recommendations to deploying policies:

Contents of this guide

This guide provides steps based on your design and planning investigation for deploying application control policies created and maintained by AppLocker for computers running Windows Server 2012, Windows Server 2008 R2, Windows 8 and Windows 7. It contains the following topics:

Additional resources