AppLocker Technical Reference

Applies To: Windows 8, Windows Server 2008 R2, Windows Server 2012

This overview topic explains the AppLocker application control feature and provides links to the topics in the technical reference.

AppLocker is a new feature introduced in Windows Server 2008 R2 and Windows 7 that advances the features and functionality of Software Restriction Policies. AppLocker contains new capabilities and extensions that allow you to create rules to allow or deny applications from running based on unique identities of files and to specify which users or groups can run those applications. These capabilities have been enhanced in Windows Server 2012 and Windows 8.

The AppLocker Technical Reference contains the following subjects:

• AppLocker Technical Overview

  This topic links to resources for AppLocker in Windows Server 2008 R2 and Windows 7. For Windows Server 2012 and Windows 8, see the AppLocker Technical Overview in the Windows Server 2012 TechNet Library.

  • What Is AppLocker?

    This topic describes what AppLocker is and how its features differ from Software Restriction Policies.

  • Requirements to Use AppLocker

    This topic lists software requirements that allow you to use AppLocker..

  • When to Use AppLocker

    This topic describes the scenarios and applications in which AppLocker is useful.

  • AppLocker Policy Use Scenarios

    This topic lists the various application control scenarios in which AppLocker policies can be effectively implemented.

• AppLocker Technical Architecture

  This collection of topics applies to Windows Server 2012, Windows Server 2008 R2, Windows 8 and Windows 7.

  • How AppLocker Works

    This topic explains how the application identity service and the AppLocker engine work to set and enforce policies.

  • AppLocker Architecture and Components

    This topic describes the components that AppLocker uses for creating and applying application control policies.

  • AppLocker Processes and Interactions

    This topic explains how AppLocker processes policies for both auditing and enforcing each rule collection type.

  • AppLocker Functions

    This topic lists the functions and security levels for the Software Restriction Policies and AppLocker policies beginning with Windows Server 2003.

• Security Considerations for AppLocker

  This topic describes the threats and vulnerabilities to AppLocker and how you can mitigate them.

• Tools to Use with AppLocker

  This topic lists and describes the tools available to evaluate, review, create, modify, and test AppLocker policies.

• AppLocker Settings

  This topic lists the relevant Windows operating system settings for AppLocker.

• AppLocker PowerShell Command Reference

  This topic introduces and provides links to the Windows PowerShell cmdlets that can be used to help manage AppLocker policies in Windows Server 2012, Windows Server 2008 R2, Windows 8 and Windows 7.