Apr 13 2022 12:09 AM
Dear all,
I have created a AppLocker profile, but not successfully. Have no idea why.
Will be grateful for any help you can provide.
Thanks.
Apr 13 2022 02:35 AM - edited Apr 13 2022 02:43 AM
I would recommend starting using the "string (XML file)" As I have seen it happen a lot when using string
When selecting the XML you will get an error when it is not properly formatted, besides this...
I would change the last part.. (or you forgot to copy some stuff :) )
</Conditions>
</FilePublisherCondition>
</RuleCollection>
As shown below.. you could check it out yourself by editing the XML
Apr 13 2022 03:58 AM
Hi@Rudy_Ooms_MVP Thank you. I just deleted the old configuration profile and create a new one but still failed.
Waiting for the outcome.
Apr 13 2022 10:15 AM
Apr 13 2022 07:30 PM
Hi, @Rudy_Ooms_MVP I have deleted the applocker profile yesterday, then I create the Proactive remediations. But still not successful.
I do not see any error msg in Intune manager, at the same time, the Google Chrome is still there on my laptop... The group I assigned have two accounts, me and my colleague, is a user group...
Apr 13 2022 07:39 PM
I just found something. The Remediation status show Not run.
Below is the Remediation script I uploaded:
# Start-Process Installers and Arguments
$Installer = "$env:ProgramFiles\Google\Chrome\Application\$ChromeVersion\Installer\chrmstp.exe"
$InstallerX86 = "${env:ProgramFiles(x86)}\Google\Chrome\Application\$ChromeVersion\Installer\chrmstp.exe"
$Arguements = "--uninstall --chrome --system-level --multi-install --force-uninstall"
$chromeInstalled = (Get-Item (Get-ItemProperty 'HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\chrome.exe' -ErrorAction SilentlyContinue).'(Default)').VersionInfo
$ChromeVersion = $chromeInstalled.ProductVersion
# Check for x64 Chrome
$Chromex64 = "C:\Program Files\Google\Chrome\Application\$ChromeVersion\Installer\chrmstp.exe"
$FileExistsx64 = Test-Path $Chromex64
# Check for x86 Chrome
$Chromex86 = "C:\Program Files (x86)\Google\Chrome\Application\$ChromeVersion\Installer\chrmstp.exe"
$FileExistsx86 = Test-Path $Chromex86
# Remove x64 Chrome
If ($FileExistsx64 -eq $True) {
Start-Process $Installer $Arguements -Wait
}
# Remove x86 Chrome
If ($FileExistsx86 -eq $True) {
Start-Process $InstallerX86 $Arguements -Wait
}
Below is the setting.
Do you have any clue of why the remediation not run?
Apr 13 2022 10:18 PM
Apr 14 2022 11:58 PM
Hi, @Rudy_Ooms_MVP Below attached is the current status, it seems like the detection script working, but the remediation script is still not running.