Simplified Applocker whitelisting
I´d like to see a more convenient way of managing Applocker whitelisting. We´re currently deploying a restrictive applocker solution in an enterprise environment. Currently users has to send in request to helpdesk to whitelist their blocked applications. IT operations then has to edit the Applocker XML´s manually (+ maintain version control), test/validate and report back to the end users. It get´s even more time consuming when dealing with unsigned EXE´s and MSI´s. We´ve noticed that even larger software vendors are a bit sloppy with the signing part.
It would be really convenient if all blocked applications and scripts would show up in the intune console, combined with a simple one click approach to whitelist and update the policy. Optionally it would be great to have a function reporting this action back to the user.
1 100% agree with this. Its too important to be this painful.
Imran Awan commented
Hi Clase, i am looking to do a similar approach as you have done I am not sure where to start. I like to Applock all the applications via intune as you have done so, this has to happen as per the user account. Or shall I use windows information protection How would you go ahead and do that??? Any ideas
Hope you understand.
Matthew H commented
This seems like a critical security mechanism to take Intune to the next level.