< Back
Get-AppLockerPolicy
Post
NAME Get-AppLockerPolicy
SYNOPSIS
Gets the local, the effective, or a domain AppLocker policy.
SYNTAX
Get-AppLockerPolicy [-InformationAction {SilentlyContinue | Stop | Continue | Inquire | Ignore | Suspend}] [-InformationVariable <System.String>]
[-Xml] -Local [<CommonParameters>]
Get-AppLockerPolicy [-InformationAction {SilentlyContinue | Stop | Continue | Inquire | Ignore | Suspend}] [-InformationVariable <System.String>]
[-Xml] -Domain -Ldap <String> [<CommonParameters>]
Get-AppLockerPolicy [-InformationAction {SilentlyContinue | Stop | Continue | Inquire | Ignore | Suspend}] [-InformationVariable <System.String>]
[-Xml] -Effective [<CommonParameters>]
DESCRIPTION
The Get-AppLockerPolicy cmdlet retrieves the AppLocker policy from the local Group Policy Object (GPO), a specified Group Policy Object (GPO), or
the effective policy on the computer.
By default, the output is an AppLockerPolicy object. If the Xml parameter is used, then the output will be the AppLocker policy as an
XML-formatted string.
PARAMETERS
-Domain <SwitchParameter>
Gets the AppLocker policy from the GPO specified by the path given in the Ldap parameter.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Effective <SwitchParameter>
Gets the effective AppLocker policy on the local computer. The effective policy is the merge of the local AppLocker policy and any applied
AppLocker domain policies on the local computer.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-InformationAction [<System.Management.Automation.ActionPreference>]
Specifies how this cmdlet responds to an information event. The acceptable values for this parameter are:
-- SilentlyContinue
-- Stop
-- Continue
-- Inquire
-- Ignore
-- Suspend
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-InformationVariable [<System.String>]
Specifies a variable in which to store an information event message.
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Ldap <String>
Specifies the LDAP path of the GPO and must specify a unique GPO.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Local <SwitchParameter>
Gets the AppLocker policy from the local GPO.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Xml [<SwitchParameter>]
Specifies that the AppLocker policy be output as an XML-formatted string.
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (http://go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
None
OUTPUTS
Microsoft.Security.ApplicationId.PolicyManagement.PolicyModel.AppLockerPolicy
AppLockerPolicy
System.String
EXAMPLE 1
PS C:\\>Get-AppLockerPolicy -Local
Version RuleCollections RuleCollectionTypes
------- --------------- -------------------
1 {} {}
This example gets the local AppLocker policy as an AppLockerPolicy object.
EXAMPLE 2
PS C:\\>Get-AppLockerPolicy -Domain -LDAP "LDAP://
DC13.Contoso.com/CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=Contoso,DC=com"
This example gets the AppLocker policy of the unique GPO specified by the LDAP path as an AppLockerPolicy object.
EXAMPLE 3
PS C:\\>Get-AppLockerPolicy -Effective -Xml | Set-Content ('c:\\temp\\curr.xml')
This example gets the effective policy on the computer, and then sends it in XML-format to the specified file on an existing path.
EXAMPLE 4
PS C:\\>Get-AppLockerPolicy -Local | Test-AppLockerPolicy -Path C:\\Windows\\System32\\*.exe -User Everyone
This example gets the local AppLocker policy on the computer, and then tests the policy using the Test-AppLockerPolicy cmdlet to test whether the
.exe files in C:\\Windows\\System32 will be allowed to run by the Everyone group.
RELATED LINKS
Online Version: http://go.microsoft.com/fwlink/?linkid=287249
Get-AppLockerFileInformation
New-AppLockerPolicy
Set-AppLockerPolicy
Test-AppLockerPolicy
SYNOPSIS
Gets the local, the effective, or a domain AppLocker policy.
SYNTAX
Get-AppLockerPolicy [-InformationAction {SilentlyContinue | Stop | Continue | Inquire | Ignore | Suspend}] [-InformationVariable <System.String>]
[-Xml] -Local [<CommonParameters>]
Get-AppLockerPolicy [-InformationAction {SilentlyContinue | Stop | Continue | Inquire | Ignore | Suspend}] [-InformationVariable <System.String>]
[-Xml] -Domain -Ldap <String> [<CommonParameters>]
Get-AppLockerPolicy [-InformationAction {SilentlyContinue | Stop | Continue | Inquire | Ignore | Suspend}] [-InformationVariable <System.String>]
[-Xml] -Effective [<CommonParameters>]
DESCRIPTION
The Get-AppLockerPolicy cmdlet retrieves the AppLocker policy from the local Group Policy Object (GPO), a specified Group Policy Object (GPO), or
the effective policy on the computer.
By default, the output is an AppLockerPolicy object. If the Xml parameter is used, then the output will be the AppLocker policy as an
XML-formatted string.
PARAMETERS
-Domain <SwitchParameter>
Gets the AppLocker policy from the GPO specified by the path given in the Ldap parameter.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Effective <SwitchParameter>
Gets the effective AppLocker policy on the local computer. The effective policy is the merge of the local AppLocker policy and any applied
AppLocker domain policies on the local computer.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-InformationAction [<System.Management.Automation.ActionPreference>]
Specifies how this cmdlet responds to an information event. The acceptable values for this parameter are:
-- SilentlyContinue
-- Stop
-- Continue
-- Inquire
-- Ignore
-- Suspend
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-InformationVariable [<System.String>]
Specifies a variable in which to store an information event message.
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Ldap <String>
Specifies the LDAP path of the GPO and must specify a unique GPO.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Local <SwitchParameter>
Gets the AppLocker policy from the local GPO.
Required? true
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Xml [<SwitchParameter>]
Specifies that the AppLocker policy be output as an XML-formatted string.
Required? false
Position? named
Default value none
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (http://go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
None
OUTPUTS
Microsoft.Security.ApplicationId.PolicyManagement.PolicyModel.AppLockerPolicy
AppLockerPolicy
System.String
EXAMPLE 1
PS C:\\>Get-AppLockerPolicy -Local
Version RuleCollections RuleCollectionTypes
------- --------------- -------------------
1 {} {}
This example gets the local AppLocker policy as an AppLockerPolicy object.
EXAMPLE 2
PS C:\\>Get-AppLockerPolicy -Domain -LDAP "LDAP://
DC13.Contoso.com/CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=Contoso,DC=com"
This example gets the AppLocker policy of the unique GPO specified by the LDAP path as an AppLockerPolicy object.
EXAMPLE 3
PS C:\\>Get-AppLockerPolicy -Effective -Xml | Set-Content ('c:\\temp\\curr.xml')
This example gets the effective policy on the computer, and then sends it in XML-format to the specified file on an existing path.
EXAMPLE 4
PS C:\\>Get-AppLockerPolicy -Local | Test-AppLockerPolicy -Path C:\\Windows\\System32\\*.exe -User Everyone
This example gets the local AppLocker policy on the computer, and then tests the policy using the Test-AppLockerPolicy cmdlet to test whether the
.exe files in C:\\Windows\\System32 will be allowed to run by the Everyone group.
RELATED LINKS
Online Version: http://go.microsoft.com/fwlink/?linkid=287249
Get-AppLockerFileInformation
New-AppLockerPolicy
Set-AppLockerPolicy
Test-AppLockerPolicy