Hello
Thank you for posting in Q&A forum.
This is a known issue where AppLocker policies might not recognize certain applications correctly due to changes in digital signatures or application paths. Here are some steps you can try:
- Review AppLocker Logs:
Open Event Viewer and navigate to Application and Service Logs > Microsoft > Windows > AppLocker > Packaged app-Execution. Look for any events that indicate applications were blocked due to digital signature issues or other reasons.
- Reset AppLocker Cache:
You can do this by deleting everything in the C:\Windows\System32\AppLocker folder and then syncing the device.
- Ensure that you have created default rules for packaged apps in your AppLocker policy. This can help in allowing the necessary applications to run.
- Make sure the Application Identity service is running on the affected machines. This service is essential for AppLocker to function correctly.
- Compare the AppLocker policies on machines with a clean install and those with an in-place upgrade to identify any discrepancies.
I hope the information above is helpful.
If you have any questions or concerns, please feel free to let us know.
Best Regards,
Daisy Zhou
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.