AppLocker is not effect in Windows 10 Pro 20H2

YUKI ABE 1 Reputation point

Thank you for looking this question. I would use Applocker in Win10 Pro 20H2.

Using Applocker, it prohibit to run downloaded files by User (as MSI Installer, *.exe).

1) I created a GPO by GPMC on Windows Server 2019.
GPO is include that Everyone cannot run any application in "C:\program files*"

2) GPO is linked to OU that it belong to the target windows 10 client pc.

3) it run "gpupdate /force" and restart windows 10 pc

4) I test that applocker prohibited application is run. but there is a no effect. any application is lunched

My question is that
Is Not Windows 10 Pro 20H2 support AppLocker?

How version of windows 10 is support AppLocker?

With regards

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
10,805 questions
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
4,842 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,780 questions
{count} votes

4 answers

Sort by: Most helpful
  1. YUKI ABE 1 Reputation point

    Thank you for your response.

    I've run command and paste results
    Please advice



    0 comments No comments

  2. YUKI ABE 1 Reputation point

    After then, I tried to disable fast startup as referred below linked documents.

    And, it effected any GPO to target PC.

    I'll try applocker a bit more.

    With regards

  3. YUKI ABE 1 Reputation point

    Thank you for your response.

    Applocker is Effected in Win 10 Pro 20H2.

    The only reason was that the GPO was not working in fast mode.

    It solved.

    With regards.

    0 comments No comments

  4. Mark Heitbrink 96 Reputation points

    Hi YUKIABE-9181,

    The Group Policy solution shouldn´t work on the professional SKU. Group Policy requires Enterprise..

    Applocker on Professional needs the CSP which is not that easy to apply.
    See the notes:
    [...] You can only manage AppLocker with Group Policy on devices running Windows 10 Enterprise,

    You can use Software Restriction Policies on Professional.


    0 comments No comments