Script Rules in AppLocker
Applies To: Windows 7, Windows 8.1, Windows Server 2008 R2, Windows Server 2012 R2, Windows Server 2012, Windows 8
This topic describes the file formats and available default rules for the script rule collection.
AppLocker defines script rules to include only the following file formats:
.ps1
.bat
.cmd
.vbs
.js
The following table lists the default rules that are available for the script rule collection.
Purpose |
Name |
User |
Rule condition type |
|---|---|---|---|
Allows members of the local Administrators group to run all scripts |
(Default Rule) All scripts |
BUILTIN\Administrators |
Path: * |
Allow all users to run scripts in the Windows folder |
(Default Rule) All scripts located in the Windows folder |
Everyone |
Path: %windir%\* |
Allow all users to run scripts in the Program Files folder |
(Default Rule) All scripts located in the Program Files folder |
Everyone |
Path: %programfiles%\* |