Block or Prevent user for installing any software without administration permission

Copper Contributor



I want to block user permission for installing any software without administrator permission. How do I implement this policy via Intune?


Users have M365 E3 license and joined Azure AD


I need an appropriate solution.

3 Replies



I assume you want to restrict installing software on windows endpoints?


If yes. For a good start, use applocker. the zip contains a simple powershell script and a json file (with the applocker exe config in it)


And a blog about the whole adminless process if you are interestedted


Dude, Where’s my Admin? - Call4Cloud

And how to do it manually


Configuration Manager as a Managed Installer with Windows 10 | redkaffe

@Rasel_Ahmed Hi Rasel, Would you be so kind as to tell me how you solved this, I have the same problem.

Hi Rasel, if you found some solution, it would be very helpful to share here.@Rasel_Ahmed