Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
This article for IT professionals describes the steps to edit a publisher rule, path rule, and file hash rule in AppLocker.
For more info about these rule types, see Understanding AppLocker rule condition types.
To manage an AppLocker policy in a Group Policy Object (GPO), you can perform this task by using the Group Policy Management Console. To manage an AppLocker policy for the local computer or for use in a security template, use the Local Security Policy snap-in. For info how to use these MMC snap-ins to administer AppLocker, see Administer AppLocker.
To edit a publisher rule
Open the AppLocker console, and then select the appropriate rule collection.
In the Action pane, right-click the publisher rule, and then select Properties.
Select the appropriate tab to edit the rule properties.
- Select the General tab to change the rule name, add a rule description, configure whether the rule is used to allow or deny applications, and set the security group for which this rule should apply.
- Select the Publisher tab to configure the certificate's common name, the product name, the file name, or file version of the publisher.
- Select the Exceptions tab to create or edit exceptions.
- When you finish updating the rule, select OK.
To edit a file hash rule
Open the AppLocker console, and then select the appropriate rule collection.
Choose the appropriate rule collection.
In the Action pane, right-click the file hash rule, and then select Properties.
Select the appropriate tab to edit the rule properties.
- Select the General tab to change the rule name, add a rule description, configure whether the rule is used to allow or deny applications, and set the security group in which this rule should apply.
- Select the File Hash tab to configure the files that should be used to enforce the rule. You can select Browse Files to add a specific file or select Browse Folders to add all files in a specified folder. To remove hashes individually, select Remove.
- When you finish updating the rule, select OK.
To edit a path rule
Open the AppLocker console, and then select the appropriate rule collection.
Choose the appropriate rule collection.
In the Action pane, right-click the path rule, and then select Properties.
Select the appropriate tab to edit the rule properties.
- Select the General tab to change the rule name, add a rule description, configure whether the rule is used to allow or deny applications, and set the security group in which this rule should apply.
- Select the Path tab to configure the path on the computer in which the rule should be enforced.
- Select the Exceptions tab to create exceptions for specific files in a folder.
- When you finish updating the rule, select OK.