AppLocker is a new Windows 7 feature that will allow you to control the usage of your computer’s applications. Just a quick list of things you can do with this new function:- Restrict apps to inexperience users: How many times have you lost an entire day because your children have clicked on the wrong button?
- Limit your own usage of an application: Sometimes you need to stay focus and do your work, so why not block out the unnecessary noises?
- In a corporate environment this can be your best friend to control the usage of programs.
Note: Applocker will only work in Windows 7 Ultimate and Enterprise.
First you need to find this feature. Open the Start menu and type gpedit.msc in the search field.
Go to Computer Configuration -> Windows Settings -> Security Settings -> Application Control Policies an select Executable Rules:
On the right pane, right click and select Create Default Rules:
You will see three fields all with the “Allowed” permission. This will allow every user to run every program.
Right click your mouse and select Create New Rule:
A wizard will appear. Select Skip this page by default. Press Next.
In this case we want to deny the access to an application for an user, so select “Deny”.
Type the user you want to restrict, you can also select everyone. In this case I restrict a user named “user“.
After that press Next:
Now we are only going to block an executable. As you can see there are several possibilities. Select “File hash” in this case.
Now you browse for Microsoft Excel:
Go to c:\program files\microsoft office\office14:
Press Next:
Select Create:
It might take some time for Applocker to work. The best way is to reboot your system.
Now, everytime you try to launch Excel, you will see the following image:
What other ways do you use to block your apps from external access?
