This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi,
I am running Windows 10 Enterprise version 20H2. We are using applocker in our environment. When I run the Group Policy result on this laptop, it confirms that my Applocker Policy is being applied successfully. However, when I open Application Control Policies under secpol, it is empty. Other computers on a different build are working. This is my first 20H2 build, so I have nothing else to compare.
The machine is in the correct OU, and GPO is being applied, but I don't see my policies. Is there a known issue with Applocker and Windows 10 Enterprise, 20H2? Any other suggestions on what to do? Thank you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 57.99999999999999%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECF%3C/text%3E%3C/svg%3E)
Hi,
Please refer the information below:
AppLocker is not effect in Windows 10 Pro 20H2
https://learn.microsoft.com/en-us/answers/questions/239693/applocker-is-not-effect-in-windows-10-pro-20h2.html
Hope this helps and please help to accept as Answer if the response is useful.
Best Regards,
Carl
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 5%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
I had the exact same issue, turns out it was the service Application Identity that refused to switch to Automatic rather than Manual.
The only way I managed to fix it was force the service to Automatic startup using GPO.
Thanks for the input. That is not the case for me. Application Identity is running, and we also have it set in GPO to Automatic to avoid that possibility.