Windows 7 AppLocker Webcast
Paul Cooke took time out to provide a tour and demo of AppLocker.
AppLocker is a new feature in Windows7 that allows you to manage what applications are allowed to run on a managed machine with multiple techniques, including white listing and black listing applications. It goes way beyond what is available today using Software Restriction Policies.
One of the slick features is the ability to use a machine as a reference - configure a machine with just the apps you want users to run, and AppLocker will automatically build a policy from that machine you can deploy across your org. Very Cool.
Check out this interesting Webcast at http://edge.technet.com/Media/Using-AppLocker-in-Win7/
HTH,
Tom
Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)
Ross Says:
March 6th, 2009 at 2:12 pm
It’s a great idea, but doensn’t look half as good as Winternals Protection Manager which Microsoft bought (and buried) a good few years ago now.
And it seems to me that they’ve forgotten about smaller organisations with this. I don’t want to be configuring special clients in order to set up the rules, nor do I want to be configuring those rules from the clients. I want something that will audit the clients and tell me what software is being used, and that will then use those logs to let me create the rules directly on the server.
Browsing for executable files to authorise is a clunky way of doing things, and when you have a small IT team and a huge array of software to manage (much of which is very complicated to install or requires security dongles), this approach just doesn’t sound practical.