Create New Rules in Windows 7 Applocker

Applocker is a new tool in Windows 7 and the new Windows Server that replaces the software restriction policies feature. This new tool will allow you to create new rules, and limit how and what users can access such as scripts, executable, windows installer files and dlls. The applocker Microsoft management console (MMC) snap-in is organized into four areas called rule collections. The four collections are executable files, scripts, windows installer files, and dll files.

1. You will need to change the application identity service to be set as Started and Automatic.
2. Open the Local Security Policy editor.
3. Double click on Application Control Policies to expand it, then select a rule collection that you want to create a new rule in.
4. If you have not already created default rules for the selected rules collection, then you will need to right click on the selected rule collection and click on Create Default Rules.
5. Right click on the selected rule collection, and click on Create New Rule.
6. Click on the next button.
7. Select Allow or Deny as the action you want to use for the selected User or Group.
8. If you do not want to have this rule applied to Everyone (default), then click on the Select button to select the User or Group you want to allow or deny instead.
9. To enter a user name:Type the user account name and click on the Check Names button. To select a user or group:Click on the Advanced button. Click on the Find Now button, select the User or Group that you want to apply this rule to, and click on OK.
10. Click on OK.
11. Click on Next.

IF YOU WANT A PUBLISHER RULE CONDITION

INFO: This condition identifies an application based on its digital signature and extended attributes.The extended attributes, which are obtained from the binary resource, contain the name of the product that the application is part of and the version number of the application.Publisher conditions can be created to allow applications to continue to function even if the location of the application changes or if the application is updated.

1. Select (dot) Publisher, and click on Next.
2. Click on the Browse button.
3. Navigate to the file you want to allow or deny access to, select it, and click on Open.
4. Use the slider to select which properties you want included to define the rule. As you move the slider down, the more properties are added and makes the rule more specific for the selected file above. Click on Create.

IF YOU WANT A PATH RULE CONDITION

INFO: This condition is used to select a specific file or folder path location on your computer or on the network.

1. Select (dot) Path, and click on Next.
2. Select Browse Files or Browse Folders path to apply this rule to. If you specify a folder path, then all files in that folder will be included and affected by this rule.
3. Navigate to the file or folder that you want allow or deny access to, select it, and click on Open or OK.
4. Click on the Create button.

IF YOU WANT A FILE HASH RULE CONDITION

INFO: When the file hash condition is chosen, the system computes a cryptographic hash of the identified file. Select this option if you want to create a rule for an application that is not signed.

1. Select (dot) File hash, and click on Next.
2. Select Browse Files or Browse Folders path to apply this rule to. If you specify a folder path, then all files in that folder will be included and affected by this rule.
3. Navigate to the file or folder that you want allow or deny access to, select it, and click on Open or OK.
4. When done, click on the Create button.

Related posts:

1. Enable DLL Rule Collection in Windows 7 Applocker
2. How to open local users and groups in Windows 7
3. Connect to a Network Printer in Windows XP