Script Rules in AppLocker
Applies To: Windows 7, Windows 8, Windows Server 2008 R2, Windows Server 2012
This topic describes the file formats and available default rules for the script rule collection.
AppLocker defines script rules to include only the following file formats:
.ps1
.bat
.cmd
.vbs
.js
The following table lists the default rules that are available for the script rule collection.
| Purpose | Name | User | Rule condition type |
|---|---|---|---|
Allows members of the local Administrators group to run all scripts |
(Default Rule) All scripts |
BUILTIN\Administrators |
Path: * |
Allow all users to run scripts in the Windows folder |
(Default Rule) All scripts located in the Windows folder |
Everyone |
Path: %windir%\* |
Allow all users to run scripts in the Program Files folder |
(Default Rule) All scripts located in the Program Files folder |
Everyone |
Path: %programfiles%\* |