Hi everyone, today we have another article from Intune Support Engineer Mohammed Abudayyeh where he shows us how we can leverage AppLocker to create custom Intune Device Configuration policies to con...
Updated Mar 12, 2019
Version 1.0
Blog Post
7 MIN READ
Support Tip: Using AppLocker to create custom Intune policies for Windows 10 apps
JC thank you. But the explanation was not clear: the lines, highlighted in green, are only the programs that were authorized.
Where are the APPX lines that block the Mail app?
Answer: I tested it with the Rudy_Ooms_MVP tips and it worked.
Rudy_Ooms_MVP your work is excellent, thank you so much for sharing.
Question: the exceptions will be added within the same rule, for example: in the EXE policy, in Intune, I add from one FilePublisherRule to another, correct?
ERRATA:
"The Applocker policy itself is hardened with the Lolbas Project in mind. Looking a little bit closer to the policy itself, you will notice that I added exclusions to the default allow paths. Let me explain why… When configuring your applocker XML, you need to make sure all locations that are “writable” from the user context are excluded from the allowed paths!"
Source: https://call4cloud.nl/2020/06/applocker-a-la-minute/#:~:text=The%20Applocker%20policy,the%20allowed%20paths!
Thanks for your time.