6/19/2023 0 Comments Windows applocker![]() We still received the Applocker block error On the device which really needed the KPN tool it didn’t work at first. Of course, we tested it on our test environment before we called the customer. We were asked to allow a click to run KPN app, so we allowed this KPN tool by adding a publisher rule to the app locker policy. We also encountered a very weird problem which can also be solved by following the steps to resolve the first issue. Better one Applocker policy than having 2 ![]() Or just trigger a device sync from your Company PortalĪfter a few minutes, you will notice the new working Applocker policy will be created inside the MDM folder. The quickest way to get Applocker back working is to just simply run the scheduled tasks. But your Applocker device config is gone… for now. policy files inside the Applocker folder which have the same timestamp.Īfter a reboot, check the Applocker event log, you will notice the same warning you will have when you want to run/enforce Applocker without Intune on a Windows 10 pro device.īut for now, it’s great, you can log in again without Applocker. Trash the contents of the MDM folder itself.The first step to get your device working again: As I showed in one of my last blogs about Applocker, the information is also stored inside the c:\windows\system32\applocker\MDM folder. HKLM:\Software\Policies\Microsoft\Windows\SrpV2īut with Intune… there is no such key. The Applocker policy will be stored on the workstations inside the SrvpV2 registry key: When you still fancy your old fashioned domain controller. In our example, we are using N-able remote background to do the job. Of course, there is… you will need to have access to the drive. Or could there be some other solution to fix this problem? So you have got your device, which only shows you a nice black screen and there is nothing you can do about it. It didn’t matter what we tried, the new working Applocker policy just did not apply. Inside this policy, the DLL rule was set to not configured like I was showing in the blog above. Better 1 Applocker policy than having 2Īt the same company, there was still 1 device left that had still the old Applocker policy.In this blog, I will show you 2 issues and how to solve them So I will show you both problems/issues in this blog Added a weird issue which can also be solved by following the steps above. But what if the new Applocker policy just won’t sync to the device and the old policies still apply. Some time ago I blogged about how a not configured DLL rule can break your devices.Īt that time, just changing the Applocker device config inside Intune did the job. This short blog will be about what to do when you have locked yourself out of your device when implementing Intune Applocker device configuration policies.
0 Comments
Leave a Reply. |