![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 50%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Microsoft System Center
A suite of Microsoft systems management products that offer solutions for managing datacenter resources, private clouds, and client devices.
1,077 questions
Hi,
Thank you for posting in Microsoft Q&A forum.
1,If you are also using Microsoft Defender for Endpoint, we can enable the option "Block Potentially Unwanted Applications at download and prior to installation" in Real-time Protection Settings to detect and block potentially unwanted applications there. For more detailed information, please refer to:
How to create and deploy antimalware policies for Endpoint Protection in Configuration Manager
Detect and block potentially unwanted applications
2,Per my experience, for SCCM itself, there is no built-in method to block or blacklist software installation function. How to achieve them depends on your real requirement, what the purpose of these lists are.
a,If we want the softwares in the blacklist to be removed autocratically, just deploy them with "Uninstall" for Action and "Required" for Purpose.
b,If we just want to get the non-compliant computers which have installed software in the blacklist, we could use the built-in reports to get them. Or we could use compliance baseline to detect, computers which have install unwanted software would be shown as non-compliant and we could get them by checking deployment status or reports or custom query.
Hope my answer could help you and look forward to your feedback. Thanks for your time. Have a nice day!
Best regards,
Simon
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
