Improve company productivity with a Business Account.Sign Up

x
?
Solved

Applocker and security (again)

Posted on 2015-02-20
2
Medium Priority
?
127 Views
Last Modified: 2015-03-17
I have searched through some threads on here regarding applocker without finding what I need. Apologies if this has been covered elsewhere.

I need to provide better security at a water plant. The plant has a Win 2012 DC server, Win7 and 8.1 workstations. They use std software (Office, ACAD) and SCADA software to control the pumps and monitor wells, tanks etc.

The preferred method to secure the computers is to use whitelisting  software, which appears to mean applocker is the way to go. I don't know how to do this. Most of the workstations have domain\users added to the local administrators group. I believe this may have to be un -done for applocker to work.  

Sooo. How do I set up applocker? I searched for applocker on the DC and came up with nothing.
0
Comment
Question by:hgj1357
2 Comments
 
LVL 85

Accepted Solution

by:
David Johnson, CD, MVP earned 1000 total points
ID: 40622595
The clients version must be enterprise or higher to use applocker.
https://technet.microsoft.com/library/hh831440.aspx

NEVER NEVER have users run as admin's .. if they need admin privileges then have then use the runas options to run as an admin.
0
 
LVL 59

Assisted Solution

by:McKnife
McKnife earned 1000 total points
ID: 40623208
" Most of the workstations have domain\users added to the local administrators group. I believe this may have to be un -done for applocker to work" - no, we can setup applocker so that it will rule admins, too. But local admins are a big risk anyway, so get rid of them if you can.
0

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
In computing, Vulnerability assessment and penetration testing are used to assess systems in light of the organization's security posture, but they have different purposes.
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

605 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question