ie0
asked on
How do I Prohibit execution of files (EXE, VBS etc.) from folders such as AppData, User’s Temp.
How do I Prohibit execution of files (EXE, VBS etc.) from folders such as AppData, User’s Temp in Windows.
Do you have Active Directory? If so what level?
ASKER
Yes for my inhouse users. Windows 2008 R2. but not for my remote sales users.
If this is on AD members, you can use AppLocker.
Will this be on the AD members or remote sales users?
Will this be on the AD members or remote sales users?
Yes, Application whitelisting is the way to go.
Applocker will work on any server edition but not on any client edition. Client editions where it works are
win7 ultimate
win7/8/8.1/10 enterprise
If you don't run these, but the pro edition instead, you will have to use the predecessor called "software restriction policies" - almost as good as applocker.
It let's you blacklist or whitelist paths. You will need to read the documentation and test it thoroughly. This is not something you will easily implement since %temp% is used heavily.
Applocker will work on any server edition but not on any client edition. Client editions where it works are
win7 ultimate
win7/8/8.1/10 enterprise
If you don't run these, but the pro edition instead, you will have to use the predecessor called "software restriction policies" - almost as good as applocker.
It let's you blacklist or whitelist paths. You will need to read the documentation and test it thoroughly. This is not something you will easily implement since %temp% is used heavily.
ASKER
Shaun, I need this on both AD users and Remote users
McKnife - if I use Applocker on my server with my workstations that are Pro versions (connect to my server) do I need to also use the Software Restriction Policies?
For my remote PCs that are not connected to the servers, do I need to only use Software Restriction Polices?
thanks
McKnife - if I use Applocker on my server with my workstations that are Pro versions (connect to my server) do I need to also use the Software Restriction Policies?
For my remote PCs that are not connected to the servers, do I need to only use Software Restriction Polices?
thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.