Manuals / Microsoft / Computer Equipment / Computer Accessories

Microsoft GFC-02050, GLC00182, GLC01878, GLC00184 Protect Workers and Infrastructure, AppLocker

Models: FQC04649 QLF00195 FQC-04765 FQC04617 FQC01156 FQC00130 FQC-04770 FQC00129 QGF00154 QGF-00154 FQC-04649 QLF-00195 GFC00020 GFC00019 GLC-01909 GFC02050 GLC01844 GFC-02050 GLC-01809 GFC02021 GFC00941 GLC00184 GLC01878 GLC00182

1 140

Download 140 pages 20.38 Kb

Page 102

Protect Workers and Infrastructure

Protect Workers and Infrastructure

People who run unauthorized software often experience a higher incidence of malware infections and generate more help desk calls. We understand how diffi cult it can be for IT departments to make sure that user PCs are running only approved, licensed software. With Windows 7, you’ll get even greater control over which applications can run on PCs.

AppLocker

In Windows 7, we’ve enhanced application control policies with AppLocker, a fl exible and easily adminis- tered mechanism with which you can specify exactly what is allowed to run on user PCs. As a result, you’ll be able to standardize applications for better

security and operations.

AppLocker provides simple, powerful, rule-based structures for specifying which appli- cations can run, so you get the flexibility you need in determining which users can run which applications, installation programs, and scripts. AppLocker also introduces publisher rules that are based on an application’s digital signature, which makes it possible to build rules that survive application updates. For example, you could create a rule to “allow all versions greater than 9.0 of the program Acrobat Reader to run if it’s signed by the software publisher Adobe.” In this way, when Adobe updates Acrobat, you can safely deploy the application update with- out having to build another rule for the new version of Acrobat.

With the Audit Only Enforcement Mode setting, you can determine which applica- tions are used in an organization and test rules before deploying them. When the AppLocker policy for a rule collection is set to Audit Only, rules for that rule collection are not enforced. However, before applica- tions are deployed, you can import rules into AppLocker and test them using the Audit Only enforcement mode.

AppLocker showing

executable rules.

AppLocker summary

Image 102

Microsoft GFC-02050, GLC00182, GLC01878, GLC00184, GFC00941, GFC02021, GLC-01809 Protect Workers and Infrastructure, AppLocker

Contents

Welcome to Windows Page Your PC, simplifi ed INTRODUCTION TO WINDOWS ContentsWINDOWS 7 FOR YOU DESIGNING WINDOWSWINDOWS 7 FOR IT PROFESSIONALS Compatible with Windows 7 LogoPage Welcome to Windows Designing Windows Market Trends that Inspired Windows Designing WindowsWindows 7 Home Premium Windows 7 Home Basic Windows 7 EditionsWindows 7 Enterprise/Windows 7 Ultimate Windows 7 Professional Windows 7 StarterWindows 7 Starter Windows 7 Home BasicWindows 7 Home Premium Windows 7 ProfessionalWindows 7 Enterprise / Windows 7 Ultimate Windows Anytime Upgrade Microsoft Desktop Optimization PackKey Features Windows 7 Editions ComparisonGetting Started with Windows Upgrading a PC to WindowsWindows 7 Upgrade Advisor Windows Upgrade Advisor reportMigrating from Windows XP Windows Compatibility Center Windows Compatibility CenterWindows Easy Transfer Key Feature Top Features for YouWhat’s New in Windows What You Can DoKey Feature What You Can DoInternet and Digital TV Top Features for IT Professionals Key FeatureWhat You Can Do Application and Device Compatibility Page Windows 7 for You Windows 7 for You Simplifies Everyday Tasks Works the Way You WantMakes New Things Possible Simplifi es Everyday Tasks Windows 7 for YouSimple to Navigate Windows Taskbar Windows 7 for You Simplifies Everyday TasksWindows Taskbar Shortcuts ALT+WinKey+# will open the correspondingprogram’s Jump List Jump Lists Jump Lists provide quick access to common tasksDesktop Enhancements Pause on a thumbnail using Windows Flip to bring a window into focusNew Peek Shortcut New Snap ShortcutsWindows Explorer New Explorer ShortcutEasier to Find Things LibrariesSearching from the Start Menu Search from the Start menuImproved Search Relevance Federated SearchHighlighted words help demonstrate the relevance of search results Easy to Browse the Web Instant and Visual SearchWeb Slices AcceleratorsWeb Slice showing traffic Smart Address Bar The Find on this Page ToolbarJoining a homegroup is easy Easy to Connect PCs and Manage DevicesHomeGroup Windows 7 for You Simplifies Everyday TasksDevices in a homegroup can share files and printers Windows Connect Now Windows Connect NowDevices and Printers provides a consolidated view of all your devices The Devices and Printers Folderadd networked and wireless devices The Add a Device wizard helps you easilyDevice Stage Monitor SupportDisplay Color Calibration Improved Support for External DisplaysNew Projection Shortcut High DPI SupportEasy to Communicate and Share Windows Live MailWindows Live Messenger Windows Live MessengerWindows Live Movie Maker Windows Live Movie MakerWindows Live Writer Windows Live Family SafetyWindows Live Photo Gallery Windows Live ToolbarWorks the Way You Want Speed, Reliability, and ResponsivenessWindows 7 for You ReadyBoost Start, Shutdown, and ResumeSearch and Indexing Improved Memory UtilizationIdle Processing Battery Life and NotificationsWindows Experience Index Adaptive Display BrightnessSmart Network Power Power-Saving DVD PlaybackWake on Wireless LAN Power Efficiency Diagnostics64-Bit Computing Support DirectX 11 DirectComputeMore Secure User Account ControlParental Controls Internet Explorer Security SmartScreen FilterInPrivate Browsing Cross-Site Scripting FilterDomain Name Highlighting Domain Name Highlighting helps you see what site you are onData Execution Prevention Tab Isolation and Crash RecoveryInPrivate Filtering InPrivate Filtering is designed to protect your privacyBitLocker To Go Windows Filtering PlatformBitLocker BitLocker helps you protect the data on your PCBackup and Restore System RestoreCompatible With You Aero Themes and Aero BackgroundGadgets Place gadgets where you want themDesktop samples Windows XP Mode Global and Cultural RelevanceWindows XP Mode runs older programs designed for Windows XP Loading an application from a USB device in Windows XP Mode Access Your Windows 7-based PC’s Network ConnectionsAccess USB Devices Share Files and FoldersBetter Troubleshooting and Problem Solving Action CenterWindows Troubleshooting Better Troubleshooting and Problem SolvingBuilt-in Troubleshooters in Windows TroubleshooterDescription Startup Repair Makes New Things Possible Media the Way You Want ItWindows 7 for You Windows Media Center Internet TVDigital TV Sharing TV around the Home Enhanced UIWindows Media Player Now Playing ModeListen to and View More Media Windows Media Jump Lists change based on what you play Improved Content FilteringBetter Access to your Media Windows Media player taskbar thumbnail includes playback controlsMedia Streaming Play ToWindows 7 supports the Digital Living Network Alliance DLNA v.1.5 standard, so you’ll have access to many different devices and functionality. You can use your PC running Windows 7 to stream media to network media devices that feature the Compatible with Windows 7 logo, which incorporates the DNLA v1.5 specifi cation Access home-based digital media Libraries over the Remote Media StreamingInternet from another PC running Windows Outstanding Sound GamingInternet Spades, Internet Checkers, Internet Backgammon, Chess Titans Games Explorer Games Explorer Control what games your children canplay through Parental Controls A notification appears any time an update is available 64-bit GamingDirectX Direct3D View Available Networks Work AnywhereLocation Aware Printing Mobile BroadbandVPN Reconnect DirectAccessOffline Access to Network Sources when you reconnect to your corporate networkXPS Documents New Ways to Engage Windows TouchNew Ways to Engage Handwritten Math Expressions Tablet PC EnhancementsImproved Handwriting Recognition Text Prediction for Touch KeyboardSpeech AccessibilityNew Accessibility Shortcuts MagnifierPage Windows 7 for IT Pros Windows 7 for IT Pros Reduce Costs by Streamlining PC Management Make People Productive AnywhereManage Risks Through Enhanced Security and Control Optimize the Desktop with Microsoft Desktop Optimization PackMake People Productive Anywhere Windows 7 for IT ProsRemove Barriers to Information Search and Federated Search Windows 7 for IT Pros Make People Productive AnywhereEnterprise Search Scopes Federated search uses OpenSearchDefine up to five pre-defined search scopes Access Information from Anywhere More Secure Access and PC Management with DirectAccessVPN Reconnect RemoteApp and Desktop ConnectionsDirectAccess clients access the intranet using IPv6 and IPsec Folder Redirection and Offline Files Improved Roaming User ProfilesBranchCache Transparent Caching Manage Risk Through Enhanced Security and Control Protect Data on PCs and DevicesWindows 7 for IT Pros Easier Deployment and Management of BitLocker Managing BitLocker To GoProtect Workers and Infrastructure AppLockerBuilds on Windows Vista Security Foundation Multiple Active Firewall ProfilesWindows Firewall Streamlined User Account Control Improved Smart Card SupportEnhanced Audit Domain Name System Security ExtensionsWindows 7 for IT Pros Manage Risk Through Enhanced Security and ControlBuilds on Windows Vista Security Foundation Reduce Costs by Streamlining PC Management Windows 7 for IT ProsDynamic Driver Provisioning Easier DeploymentDeployment Image Servicing and Management Multicast Multiple Stream TransferUser State Migration Tool VHD Image Management and DeploymentFlexible Deployment of Internet Explorer Keep PCs Running Smoothly Automation ImprovementsGroup Policy Improvements Internet Explorer 8 Group Policy URL-based Quality of ServiceGroup Policy Preferences Starter Group Policy ObjectsTroubleshooting and Support Problem Steps RecorderWindows Recovery Environment Windows RE Windows Troubleshooting Platform Remote Access to Reliability DataUnified Tracing Richer Remoting Experience VHD BootBetter Support for Client Virtualization GraphicsMicrosoft Desktop Optimization Pack Windows 7 for IT ProsMicrosoft Application Virtualization Side-by-side isolation enables eachMicrosoft Asset Inventory Service Asset Inventory Service management consoleMicrosoft Advanced Group Policy Management AGPM historyDesktop Error Monitoring reports application crashes and hangs Microsoft Diagnostics and Recovery ToolsetMicrosoft System Center Desktop Error Monitoring Desktop Error Monitoring top applicationsMicrosoft Enterprise Desktop Virtualization Reliability Goals Windows 7 Hardware and Software Logo ProgramCompatibility Goals Compatible with Windows 7 logoWindows 7 Logo for PCs Windows Starter LogoCompatible with Windows 7 Logo Additional Requirements to Use Certain Features Windows 7 System RequirementsRecommended System Requirements Music and sound require audio output Accessibility features How to Find More InformationResources for Everyone Security checklistResources for IT Pros Resources for Device ManufacturersResources for Software Developers Expanded Editions Feature Comparison Appendix ASwitch between users without Join a Domain and Group Policy Feature Feature Comparison ChartAppendix B BenefitWindows 7 for You Makes New Things Possible FeatureBenefit Windows 7 for IT Professionals Make Users Productive AnywhereWindows XP FeatureBenefit Windows VistaAccessibility New Keyboard ShortcutsAppendix C Windows TaskbarAppendix D Installation Options for Upgrading Your PC to WindowsIndex Index Manage Devices 41 MDOP 91, 100, 106Windows 7 Logo Program DISCLAIMER 2009 Microsoft Corp. All rights reserved