AppLocker - Publisher's Certificate and Folder Location restriction
I ran into a problem where I only want "Everyone Group" to Run program with certain Publisher's Certificate in Windows, Program files & x86 folders. It doesn't seem like I can use "And" condition. Such as Cert + Folder Location.
So I got a little creative and created
Deny Everyone, All folder location with exception of Windows, Program files & x86 and Program Data folders
Allow Everyone with Publisher Certificate to run
This seem to solve my problem; however I want Administrator to be able to run outside of Windows, Program files & x86 and Program Data folders, but the Deny policy is blocking it.
Any advice on how to restrict cert + location