How to block apps with AppLocker in Windows 11

Block apps with AppLocker in Windows 11: Computer users typically use and require only a handful of apps, depending on their type of work and usage. Thankfully, Windows 11, Windows 10, and some Server versions come with a built-in app called “AppLocker”. As the name suggests, this utility is used to lock apps that you don’t want users to use.

How to block apps with AppLocker in Windows 11

What is AppLocker?

AppLocker is a built-in utility for a number of Microsoft products, including some versions of Windows and Server. It is used to control what applications and programs can run on your system, including executable files (.exe), scripts, Windows Installer files, packaged applications (Microsoft Store apps) , etc.

How to block apps with AppLocker in Windows 11

Here are the basic steps how to block apps with AppLocker in Windows 11

  • First, we need to make sure that the Application Identity service is up and running. This service is responsible for enforcing AppLocker policies. To do so, open Command Prompt with administrative privileges and enter the following cmdlet:

sc config “AppIDSvc” start=auto & net start “AppIDSvc”

How to block apps with AppLocker in Windows 11

Note: This cmdlet will also configure the service to start automatically when Windows starts.

  • Now close the CMD prompt and open the Local Security Policy Editor by typing in secpol.msc in Run.
  • Here, expand Application Control Policies and then AppLocker from the left pane.
  • Click AppLocker from the left pane, and then click Configure Rule Enforcement on the right.

How to block apps with AppLocker in Windows 11

  • From the AppLocker properties window, check the box next to Configured in Executable rules and then click OK.
  • Now, go back to the Local Security Policy editor and click on Packaged App Rules in AppLocker on the left pane.
  • Right click on Executable Rules again and now click Create default rules from the context menu.
    The rule creation wizard will now launch. On the first page, click Next.

How to block apps with AppLocker in Windows 11

Note: This step is essential because AppLocker will block all Microsoft Store apps from running. This step will set default rules for all applications, allowing all applications to run.

  • Now click on Executable Rules in the left pane. Then, right-click it and choose Create default rules from the context menu.

Note: Failure to do this step will automatically block all running apps, except those that are explicitly allowed.

  • Right click on Executable Rules again and now click Create default rules from the context menu.
  • The rule creation wizard will now launch. On the first page, click Next.

How to block apps with AppLocker in Windows 11

  • Now select Deny, then press Select to select the user or group to apply the rule. When selected, click Next.

How to block apps with AppLocker in Windows 11

  • Select Path and click Next.
  • Now click one of the following buttons and select a file or a folder to block, respectively. Selecting a directory will block all executables from running within it. When selected, click Next.
  • On the next page, leave the default values and click Next.
  • Now enter a custom name for the rule and click Create.

Once the rule has been created, users trying to access blocked content will see the following prompt:

This app has been blocked by your system administrator. Contact your system administrator for more info.

Conclude

Above is how to block apps with AppLocker in Windows 11 you can refer to. Hopefully with the instructions that the guideonline computer tips blog shared will be useful to you, wish you success.

About firmwarecn

Check Also

How to fix "Error Opening File for Writing" error on Windows 10/11

How to fix “Error Opening File for Writing” error on Windows 10/11

Installation errors are errors that arise when a user tries to install some computer software …