Intune AppLocker Rules with AD Group or AD User are not applied

Fung, Sammy 0 Reputation points
2023-07-31T18:33:40.3133333+00:00

I have a applocker rule in the Group Policy management console and deploy it with an AD Group to a target joined domain PC. Then I use the same setting in the Intune applocker rule for Everyone or local user. It's working. However when I set it to AD User or AD Group. The result is the applocker is not applied.

I get a user SID ID of 'xxxx' on a intune device.

Powershell : whoami /user

S-1-12-1-1608917206-1246305243-2666138537-1847633010 (Intune Applocker applied)

This is a total different SID ID for the same user 'xxxx' when I am using another powershell command.

Powershell : get-aduser -Identity 'xxxx' |Select-Object name, sid

S-1-5-21-1812707417-3499575402-3470153221-421854 (Intune Applocker NOT applied)

Microsoft Intune Application management
Microsoft Intune Application management
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Application management: The process of creating, configuring, managing, and monitoring applications.
977 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Lu Dai-MSFT 28,446 Reputation points
    2023-08-01T02:54:47.29+00:00

    @Fung, Sammy Thanks for posting in our Q&A.

    Honestly, I'm not familiar with AppLocker issue and there is no helpful information I can share with you. Please keep this post and wait someone else share more information.

    Or it is suggested to create an online support ticket to get more accurate help. Here is the support link:

    https://learn.microsoft.com/en-us/mem/get-support

    Thanks for your understanding.


    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.