During the following twelve steps, I’ll use the Local Group Policy Editor snap-in for configuring the Candy Crush Soda Saga app. That makes it easier with configuring and selecting the required apps. It doesn’t matter which snap-in is used, as long as it’s being used on a Windows 10 device. Any of these snap-ins will work in a similar way for creating the required AppLocker XML. The required AppLocker XML can be created by using the Local Security Policy snap-in, the Local Group Policy Editor snap-in or the Group Policy Management snap-in.
During this post I’ll use the build-in Windows 10 app Candy Crush Soda Saga as an example. I’ll end this post with the end-user experience. The main difference is that Windows 10 includes many different separate policy settings for Windows Defender, but provides a separate configuration service provider (CSP) for AppLocker.ĭuring this post I’ll show how to create the required AppLocker XML, what the AppLocker XML looks like, what the AppLocker CSP looks like and how to combine the AppLocker XML and the AppLocker CSP. However, I have to admit that it was a bit more challenging for AppLocker. In this post I’ll do something similar for AppLocker.
During that specific post I showed how to use OMA-DM, via Microsoft Intune standalone and hybrid, to configure Windows Defender.
A while ago I did a blog post about managing Windows Defender of Windows 10 via OMA-DM.