Share via

Disabling "App locker application control" setting

IMK 581 Reputation points
2023-02-17T14:50:40.18+00:00

Hi

We have enabled following setting in Endpoint Manager:

Endpoint Manager -> Endpoint Security -> Attack Surface reduction -> Application control (policy) -> "App locker application control" = Enforce Components, Store Apps, and Smartlocker

If we change this to "Not configured", should it change the setting in devices? Because we are not seeing any change in the device.

How can we get this setting change to actually change the setting in the devices?

Microsoft Security | Intune | Security
Microsoft Security | Intune | Configuration
Microsoft Security | Intune | Application management
0 comments
Accepted answer
  1. Simon Ren-MSFT 40,341 Reputation points Microsoft External Staff
    2023-02-21T08:15:17.67+00:00

    Hi,

    Thank you for posting in Microsoft Q&A forum.

    AppLocker CSP behavior will prompt end user to reboot their machine when an AppLocker policy is deployed.

    We can check below policy result to have a try:

    Computer Configuration\Policies\Windows Settings\Security Settings\Application Control Policies\AppLocker

    Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Rahul Jindal [MVP] 10,911 Reputation points MVP
    2023-02-17T22:28:11.63+00:00

    Yes, it should and will result in a reboot.

    0 comments
  2. IMK 581 Reputation points
    2023-02-18T15:34:39.3233333+00:00

    How can I check that it is disabled?

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.