The Windows PowerShell cmdlets for AppLocker are designed to streamline the administration of application control policies. The cmdlets can be used to help author, test, maintain, and troubleshoot application control policies and can be used in conjunction with the AppLocker user interface that is accessed through the Microsoft Management Console (MMC) snap-in extension to the Local Security Policy snap-in and Group Policy Management Console.

Note that AppLocker cmdlets only interact with group policy and do not have any knowledge of the AppLocker CSP.



Gets the file information necessary to create AppLocker rules from a list of files or an event log.


Gets the local, the effective, or a domain AppLocker policy.


Creates a new AppLocker policy from a list of file information and other rule creation options.


Sets the AppLocker policy for the specified GPO.


Specifies the AppLocker policy to determine whether the input files will be allowed to run for a given user.