Read time 4 minutes

Summary: AppLocker, introduced in Windows 7, enables users to control access to applications. This article guides through the process, emphasizing its improvement over earlier policies. It advises on data recovery options in case of password loss for enhanced data security.

AppLocker, a novel addition to Windows 7, offers an ideal solution for individuals who share their computer with others and wish to prevent unauthorized access to applications on their system. This feature empowers users to limit access via Network Group Policies. While a similar capability existed in previous Windows versions as “Software Restriction Policies,” AppLocker represents a significant improvement over its predecessor.

In this article, we will elucidate the procedure for limiting access to specific applications through the utilization of AppLocker. Let’s now delve into the practical application of AppLocker in restricting access to applications on a shared system:

Restricting access to programs using AppLocker:

Getting started with AppLocker

Perform the below mentioned steps to restrict access to application using AppLocker:

  • Login as Administrator. Click on Start and type gpedit.msc in Search box and hit Enter.
  • Under Local Computer Policy go to Computer Configuration \ Windows Settings \ Security Settings \ Application Control Policies \ AppLocker.
  • Now you will see the overall controls for the applications. Under Configure Rule Enforcement click on the Configure rule enforcement link.

Now under AppLocker Properties check the boxes next to Configured under Executable rules then click OK.

Blocking Applications from running

To block application from running, follow these steps:

  • After executing above mentioned steps, under the Overview section click on Executable Rules.
  • Since this is your first time accessing AppLocker, there will be no rules listed. Right-click and select Create New Rule.
  • This opens up the Create Executable Rules wizard and you can select not to show the introduction screen at start up for the next time you access it.
  • Select Permissions under Action and select Deny.
  • Add the user you want to block.
  • After you’ve selected the deny action and selected the user continue to the next step.
  • Select Path from the available options.
  • Click on Browse Folders and select the application you want to block from running.
  • In the next screen you could add Exceptions like allowing certain files. If you want to block the entire directory for some application, skip to the next screen.
  • In this screen, you can add a description to the rule so you can keep track if there are several rules configured. Click Create.
  • A message pops up saying default rules haven’t been created yet. It is important to make sure they are created so click Yes to this message.
  • Now you will see the default rules and the new one you created showing the selected is denied access to the selected directory.
  • After creating the rule go into services and make sure that Application Identification is started and is set to automatically start. By default this service is not started so you will need to enable it.
  • Now, when the restricted user logs into his account and tries to access the restricted applications,  he gets the following message:

Group Policy has restricted access to this program. To obtain further details, please get in touch with your System Administrator.

By employing this method, a user can limit access to specific applications for other users. So, you can now relax and rest assured, knowing that only authorized users will have the ability to access applications on your user account.

Kernel for Windows Data Recovery is essential for users who require the retrieval of data from corrupt, damaged, formatted, or inaccessible partitions. Such inaccessibility often occurs due to issues like bad sectors, MBR corruptions, drive failures, virus intrusions, registry corruptions, lost or deleted partitions, and Boot sector corruptions, rendering files and folders inaccessible. Kernel for Windows is a solution that aids in recovering files and folders from Windows partitions affected by these issues. It offers support for various Windows versions, including Windows 7, Vista, XP, 2003, 2002, and 98, facilitating data restoration.

Read Also : BitLocker To Go Encrypts Portable Flash Drives in Windows 7


Windows 7 lacks the capability to securely retain all data within AppLocker, and in the event a user forgets their password, the data becomes irretrievable. To safeguard your data from potential disasters, it is advisable to employ specialized software designed to recover all items from an entire drive. This software allows you to choose either logical or physical drives for corruption scanning. Subsequently, users can securely store the retrieved data in its original format at a secure location.