Enabling the DLL rule collectionĪs with most of the other actions pertaining to configuration of AppLocker, you can enable the DDL rule collection in one of two ways: using Group Policy to apply to multiple computers in a GPO or using the Local Security Policy MMC to enable it for an individual computer. (.OCX files are libraries that contain ActiveX controls).
#Windows server 2012 applocker gpo drivers#
drv extensions, but the last one is for legacy system drivers and DLL rules can only be created for. Note that there is no audit-only mode for DLL rules, either.ĭLLs can be implemented with the. Enabling DLL rules isn’t difficult, but it does require an extra step. You can see, then, why Microsoft felt it prudent to make it a little more difficult to create rules that might block the use of DLLs, since you really need to know what you’re doing or you might end up rendering needed applications unable to run. Using DLL rules can also result in numerous events being recorded in the event log. This can have a negative impact on performance. Why is the DLL rule collection different? DLLs (Dynamic Link Libraries) are not directly executable, but are shared libraries of code used by multiple programs that have a dependency on those files, and changes to or blocking of DLLs can create unintended consequences.Īnother caveat is that using DLL rules can slow things down for users, because AppLocker will check every DLL that is loaded by an application to determine whether it is allowed. The DLL rule collection, on the other hand, has to be explicitly enabled. The other rule collections are already enabled when you set up AppLocker, and waiting for you to put rules into them.
#Windows server 2012 applocker gpo how to#
In this final installment of the series, we will wrap up the discussion by covering how to enable the DLL rule collection, how to create exceptions to rules, how to edit and delete rules, and how to import and export AppLocker policies between computers. In Part 3, we looked more deeply into how to create your AppLocker rules and policies. In part one of this series, we began with an overview of AppLocker, how it differs from SRP, system requirements, and how to get started configuring it and in Part 2, we took you through the process of planning your AppLocker policies.
0 kommentar(er)
