Umhlahlandlela ophelele wokusetha i-AppLocker Windows 11

Ikhava » Windows » Windows 11 » Lungiselela i-AppLocker igxathu negxathu ku-Windows 11

I-AppLocker ikuvumela ukuthi ulungise kahle ukusebenza kwezinhlelo zokusebenza Windows 11.
Imodi yokuhlola nokuhlola kusengaphambili kuyisihluthulelo sokugwema ukuphahlazeka kwengozi nokugcina ukukhiqiza.
Ukuhlanganiswa nezinqubomgomo zeqembu kanye namathuluzi ezinkampani zangaphandle kusiza ukuphatha okumaphakathi nokukalekayo.

i-applocker

Wake wazibuza ukuthi kanjani vikela ikhompuyutha yakho noma ikhompyutha yenkampani yakho ngokumelene nokufakwa kanye nokwenziwa kwezinhlelo zokusebenza ezingafuneki ku Windows 11? I-AppLocker ingelinye lalawo mathuluzi anamandla abaningi abezwile ngawo, kodwa akuwona wonke umuntu owaziyo ukuthi asetshenziswa kanjani ngokugcwele. Uma ufuna ukulawula ngokugcwele lokho okugijima ohlelweni lwakho, lapha uzothola ukuthi ungakwenza kanjani isinyathelo ngesinyathelo, ngokucacile, tricks nezincomo ukuze ungaphuthelwa lutho.

Kulo mhlahlandlela osebenzayo sizohlukanisa konke okudingekayo ukuze Lungiselela i-AppLocker kusukela ekuqaleni kuya ekusebenziseni okuqinile kuzo zombili izimo zasekhaya nezamabhizinisi. Futhi, uzofunda ukudala kahle, ukuhlola, nokusebenzisa izinqubomgomo ukuze ungabambeki phakathi noma ube nezinkinga zokuphahlazeka kwezinhlelo zokusebenza ezibalulekile.

Iyini i-AppLocker futhi isetshenziselwa ini Windows 11?

I-AppLocker isici esithuthukisiwe se isilawuli sohlelo lokusebenza Itholakala ezinhlelweni zochwepheshe nezamabhizinisi zeWindows. Inhloso yayo icace kakhulu: ukukuvumela ukuthi wenze izinqumo ngayo yonke imininingwane okuyizinto ezisebenzisekayo, imibhalo, izifaki nezinye izingxenye zesofthiwe ezigunyazwe ukuthi zisebenze kumakhompyutha akho. Leli khono liwusizo ikakhulukazi ezinhlanganweni lapho ukuvikeleka kwesofthiwe nokumiswa kubaluleke kakhulu, kodwa futhi nakubasebenzisi ngabanye abafuna ukuvikela indawo yabo.

Nge-AppLocker kungenzeka ukuthi udale imithetho ethile yamaqembu ahlukene wabasebenzisi noma amakhompyutha, ngokusekelwe kuzibaluli ezifana nomshicileli wohlelo lokusebenza, igama, indlela, noma i-hashi kwefayela. Lokhu kukuvumela ukuthi usungule izinqubomgomo zokuvumela noma ukunqabela ukusetshenziswa kwezinhlelo zokusebenza ezithile, izinhlobo zamafayela, noma izinguqulo, konke ngendlela emaphakathi nezenzekelayo.

Kungani usebenzisa i-AppLocker Windows 11?

Isizathu esikhulu sokusebenzisa i-AppLocker ngu phakamisa izinga lokuvikeleka kunoma iyiphi indawo ye-Windows. Ngokukhawulela ukuthi yiziphi izinhlelo zokusebenza ezingasebenza, unciphisa kakhulu ubungozi be I-malware, isofthiwe engagunyaziwe, noma abasebenzisi abafaka izinhlelo ezingase zibeke engozini ukuzinza noma ukuthobela imithetho.

I-AppLocker inikeza izinzuzo ezifana nalezi:

Ukuguquguquka okuphelele: Ungakwazi ukuchaza imithetho enembe kakhulu.
Ukuhlanganiswa okulula ngenqubomgomo yeqembu ezindaweni zebhizinisi.
Imodi yokuhlola ukuhlola ngaphandle kokuthinta abasebenzisi.
Okuzenzakalelayo nokuphatha kusuka ku-console noma ngokusebenzisa I-PowerShell.

Izimfuneko kanye nokucatshangelwa ngaphambi kokuqala

Ngaphambi kokuthi ungene ekusetheni i-AppLocker, kunezinto ezimbalwa okufanele uzikhumbule ukuze ugweme izinkinga futhi usebenze kahle:

I-Windows Edition EhambisanayoI-AppLocker iyatholakala ku-Windows 11 Pro, Enterprise, kanye ne-Education. Uma une-edishini Yasekhaya, ngeshwa ngeke ukwazi ukuyisebenzisa ngokomdabu.
Imvume yomlawuli: Udinga amalungelo okuphatha ukuze udale futhi usebenzise izinqubomgomo.
Ukuqonda izinhlobo zamafayela nemithetho: I-AppLocker ikuvumela ukuthi ulawule okusebenzisekayo (EXE), izifaki (MSI), imibhalo (BAT, PS1, njll.), imitapo yolwazi (DLL), nezinhlelo zokusebenza zeSitolo (APPX).
Sungula uhlelo lokusebenza: efaneleka kakhulu ezinkampanini; kuhle ukubhala lokho ofuna ukukuzuza nokuthi kuzoqalwa kanjani.
Ukusebenzisa imodi yokuhlola: kubalulekile ukuqinisekisa ukuthi imithetho ayivimbeli lokho okungafanele ingakuvimbi ngaphambi kokuthuthela ekukhiqizeni.
Isevisi Yesicelo Sobunikazi (appidsvc): Iyadingeka ukuze inikwe amandla futhi isethwe ukuze iqale ngokuzenzakalelayo.

Ungasithatha kanjani isifinyezo ku-VirtualBox: Gcwalisa umhlahlandlela namathiphu esinyathelo ngesinyathelo

Ukuqalisa: Ukuhlela nokuklama Izinqubomgomo ze-AppLocker

i-applocker

Ukuqinisekisa ukuthi ukusetha i-AppLocker ku-Windows 11 kuyimpumelelo hhayi ikhanda, kutuswa ukulandela ukulandelana okunengqondo:

Chaza izinhloso zakho: Ingabe ufuna ukukhawulela kuphela isofthiwe engenalayisense? Vikela izinhlelo zokusebenza ezibalulekile? Vimbela abasebenzisi ukuthi bangafaki Izinhlelo zokusebenza okungezona ezinkampani?
Thatha uhlu lwezicelo: Ikhomba isofthiwe esetshenziswa eqenjini ngalinye lomsebenzisi noma umnyango.
Nquma ukuthi yiziphi izinhlobo zemithetho ozidingayo: ngomshicileli, indlela, i-hashi, igama lomkhiqizo, njll. Inketho ngayinye inezinzuzo zayo kuye ngecala lokusebenzisa.
Hlela izinqubomgomo zakho ngamaqembu: Sebenzisa uhlaka lwakho lwe-Active Directory noma amaqembu okuvikela e-Windows ukuze usebenzise izinqubomgomo kancane kancane.

TrickEmabhizinisini, bhala kahle izinqubomgomo futhi uzigcine zisesikhathini samanje ukuze ugweme ukuvinjwa okungalindelekile lapho kwenziwa izibuyekezo noma izinguquko kwisoftware egunyaziwe.

Ukudala Izinqubomgomo: Amaqoqo Nezinhlobo Zomthetho

I-AppLocker ilawula imithetho yayo ngokuyihlanganisa ibe yiqembu amaqoqo kuye ngohlobo lwefayela. Iqoqo ngalinye lingaba nemodi yalo yokuthobela (ukucwaninga noma ukuphoqelela). Amaqoqo atholakalayo yilawa:

Okusebenzisekayo (EXE)
Izifaki (i-MSI ne-MSP)
Imibhalo (isb., BAT, I-CMD, JS, PS1)
Imitapo yolwazi ye-DLL
I-Microsoft Store Apps (APPX)

Imithetho engaphakathi kweqoqo ngalinye ingachazwa ngokuthi:

Umhleli (isiginesha yedijithali): kuwusizo kakhulu ukuvumela noma ukuvimba yonke isofthiwe esayinwe inkampani ethile.
Indlela yefayela: ukuvumela noma ukunqabela izinhlelo zokusebenza ngokusekelwe endaweni yakho.
I-hash yefayela: Ihlonza uhlelo ngezigxivizo zeminwe ezihlukile.

Izinyathelo ezinemininingwane zokudala nokulungiselela izinqubomgomo ze-AppLocker

1. Finyelela ithuluzi lokuphatha

Kumadivayisi angawodwana, ungasebenzisa secpol.msc (Inqubomgomo Yezokuphepha Yasendaweni). Ezindaweni zezinkampani, kuhle ukusebenza ku- I-Group Policy Management Console (GPMC)Kusuka lapha ungakha, uhlele, futhi ungenise izinqubomgomo ze-AppLocker zakho kokubili ikhompuyutha eyodwa kanye nesizinda sonke.

2. Ukudala izinqubomgomo kanye nokukhiqiza imithetho

Inqubo evamile yile:

Vula ithuluzi elihambisanayo (secpol.msc noma GPMC).
Zulazulela ku Izilungiselelo Zokuphepha -> Ukulawulwa Kwesicelo -> I-AppLocker.
Khetha iqoqo lesimiso ofuna ukulilungiselela.
Ungakha imithetho ngesandla noma usebenzise i Rule Generation Wizard, okuzokusiza ukuthi wenze ngokuzenzakalelayo ukudalwa kwemithetho ngokusekelwe kumafayela asevele ekhona ohlelweni.

Lapho udala umthetho, ukhetha ukuthi ingabe usebenza kubo bonke abasebenzisi, iqembu elithile, noma umsebenzisi ngamunye. Imithetho iphinde ivumele okuhlukile, inikeze ukuguquguquka okwengeziwe.

3. Imodi yokuthobela umthetho: ukuphoqelela noma ukucwaningwa kwamabhuku

Eqoqweni ngalinye ungakhetha phakathi kwalezi zindlela:

Faka imithetho: Inqubomgomo iyasebenza futhi iyavimba/ivumela njengoba kuchaziwe.
Audit kuphela: Imithetho ayivimbi lutho, kodwa imicimbi ifakiwe ukuze ihlaziywe kamuva.
Ayilungiselelwe: Iqoqo aliphethwe i-AppLocker.

UMkhandlu: Ihlala iqala kumodi yokuhlola. Ngale ndlela, ungakwazi ukuhlonza ukuvinjwa okungaba khona okungafuneki ngaphandle kokuphazamisa ukukhiqiza.

4. Ukungenisa nokuthekelisa izinqubomgomo

I-AppLocker ikuvumela ukuthi ukhiphe izinqubomgomo kumafayela e-XML ukuze wenze isipele, udlulise, noma uthunyelwe kwamanye amakhompyutha. Ngale ndlela, ungathuthukisa futhi uhlole inqubomgomo endaweni engayodwa bese uyidlulisela ngaphandle komthungo endaweni ebukhoma.

I-Windows Defender Application Control (WDAC)

I-athikili ehlobene:

Indlela Yokudala Nokuphatha Izinqubomgomo Zokulawula Isicelo Se-Windows Defender (WDAC): Umhlahlandlela Wokugcina

Ukuhlola nokuqinisekisa imithetho ye-AppLocker

1. Vula imodi yokuhlola

Ngaphambi kokusebenzisa ukuvinjwa kohlelo lokusebenza, qinisekisa ukuthi inqubomgomo isebenza njengoba bekulindelekile. Imodi yokuhlola ikuvumela ukuthi rekhoda zonke izenzakalo lokho kungabangela ukuphahlazeka ngaphandle kokuvimba lutho.

Ibhajethi Esuselwe Kuziro engu-101 + Izifanekiso Ezingcono Kakhulu Ezisekelwe Kuziro

2. Vumela futhi ulungiselele isevisi ye-Identity yohlelo lokusebenza

Ngaphandle kwenkonzo appidsvc I-AppLocker ayisebenzi. Iya kokuthi Izinsiza Ze-Windows futhi uqiniseke ukuthi isethwe ukuze izenzekele futhi isebenza kuwo wonke amakhompyutha okuqondiwe.

3. Sebenzisa amathuluzi okuhlaziya

Ungakwazi ukubuyekeza mathupha Isibukeli Somcimbi sifuna izingodo ze-AppLocker, noma usebenzise i PowerShell cmdlets like:

Thola-AppLockerFileInformation: Ukuze uthole imininingwane yamafayela ahlobene nemicimbi ye-AppLocker.
I-Test-AppLockerPolicy: ukuhlola uma ngabe inqubomgomo izothinta ifayela elithile.

Uma uthola ukuthi isicelo esisemthethweni sizovinjwa, unethuba lokulungisa umthetho ngaphambi kokuthi inqubomgomo iqale ukusebenza.

4. Ukuguqulwa okuphindaphindiwe nokuhlolwa kabusha

Kuvamile ukuthi izinhlelo zokusebenza ezidingekayo zibonakale zivinjiwe phakathi nokuhlolwa kokuqala. Lungisa imithetho, phinda izivivinyo, futhi ungashintsheli kumodi yohlelo lokusebenza kuze kube yilapho yonke into isebenza njengoba bekulindelekile.

Ukusatshalaliswa nokuqaliswa kweziqondiso

Uma ukucushwa sekulungile futhi sekuqinisekisiwe, yisikhathi sokukusebenzisa endaweni ebukhoma. Ungakwenza lokhu ngezindlela ezimbili:

Endaweni: Ukusebenzisa Inqubomgomo Yezokuphepha Yasendaweni kukhompuyutha ngayinye.
Nge-GPO- Ilungele izindawo zebhizinisi lapho udinga ukuphatha inqwaba noma amakhulu amakhompyutha. Vele uxhumanise i-GPO neyunithi yenhlangano edingekayo, futhi inqubomgomo izosetshenziswa ngokuzenzakalelayo.

Khumbula ukuthi noma yiziphi izinguquko zenqubomgomo ezilandelayo zingathunyelwa/zingeniswe ukuze kugcinwe ukuvumelana kuwo wonke amakhompyutha. Uma ufuna ukugcina ulawulo lwenguqulo, ungasebenzisa amathuluzi afana Nokuphathwa Kwenqubomgomo Yeqembu Okuthuthukisiwe.

I-AppLocker Monitoring, Auditing, and Maintenance

Uma izinqubomgomo zakho sezimi ngomumo, awukwazi ukukhohlwa ngazo. Ukuqapha okuvamile kubalulekile ukuze:

Gada izingodo I-AppLocker yemizamo evinjiwe yokwenza.
Buyekeza izicelo zosekelo lobuchwepheshe, uma umsebenzisi osemthethweni engakwazi ukusebenzisa uhlelo lokusebenza oludingekayo.
Buyekeza izinqubomgomo ngokuphendula izinguquko kukhathalogi yesofthiwe noma izidingo zenkampani.

I-Windows Event Viewer kanye ne- izingodo Ababhali bangabambisene bakho lapha. Ungahlunga ngemicimbi ye-AppLocker futhi uhlaziye amaphethini okuvimbela. Ukwengeza, usebenzisa okubhaliselwe komcimbi noma imibhalo ye-PowerShell, ungakwazi ukubeka phakathi ukuthwebula nokuhlaziya kuwo wonke amakhompyutha amaningi.

Ungavinjwa Kanjani Futhi Uvumele Izinhlelo Zokusebenza Ezithize: Isibonelo Esithuthukisiwe Esisebenzisa I-XML ne-Google Workspace

Kungenzeka futhi ukuphatha i-AppLocker ezindaweni lapho iWindows iphethwe khona ngezixazululo zezinkampani zangaphandle, njenge -Google Indawo yokusebenza. Kulezi zimo, umkhawulo wohlelo lokusebenza uyenziwa ukulayisha amafayela e-XML ngokwezifiso kukhiqizwa ku-PowerShell noma kumhleli wenqubomgomo yeqembu.

Inqubo, ngokwemibandela ebanzi, izoba:

Dala ifayela le-XML lenqubomgomo elinemithetho efanele yezinhlobo zamafayela (EXE, MSI, Iskripthi, DLL, APPX).
Chaza kuzibaluli ze-XML ezifana nohlobo, igama lenqubomgomo, i-SID yomsebenzisi noma iqembu elisebenza kulo, isenzo (vumela/vimba), umshicileli, igama lefayela, inguqulo, njll.
Layisha ukulungiselelwa kusukela kukhonsoli yokuphatha (isb., i-Google), ukhetha i-OMA-URI efanelekile kuye ngohlobo lwefayela ofuna ukulivimba noma ukulivumela.
Yabela isilungiselelo ngokwezifiso kuyunithi yenhlangano oyifunayo noma iqembu ledivayisi.

Izindawo Zamahhala Zokuklama Tattoo ku-inthanethi

Isici esibalulekile ukuphatha kahle ama-SID kubasebenzisi namaqembu, uqinisekise ukuthi inqubomgomo ithinta kuphela lokho okufanele ikwenze. Khumbula ukuthi ungasebenzisa amakhadi asendle emikhakheni ethile ukumboza izinhlelo zokusebenza eziningi ngaphandle kokubhala umthetho ngamunye.

Uma ubheke ukuvumela izinhlelo zokusebenza ezisayiniwe kuphela noma uvimbele izinhlelo zokusebenza ezithile, uhlaka lwe-XML luvumela lokhu ngokuhlanganisa imithetho egunyaza kokubili okusebenzisekayo okuthenjwayo futhi ivimbele ngokukhethekile okusebenzisekayo owaziyo ukuthi akufanele kusetshenziswe (isb., izinguqulo ezindala zohlelo lokusebenza, noma izinhlelo ezingasenawo amalayisensi).

Ukucatshangelwa kokuphepha kanye nemikhuba emihle

Ukusebenzisa i-AppLocker kukhulisa kakhulu ukuvikeleka, kodwa akubona ubuwula. Kuhlale kuhle ukuthi uyihlanganise nezinye izinyathelo, ezifana ne-antivirus, ukuqapha amalogi, nezibuyekezo ezivamile.
Ukucushwa okungalungile kungavimba izinhlelo zokusebenza ezibalulekile, ngakho-ke kubalulekile ukuthi imodi yokuhlola futhi wenze ukuhlola okubanzi ngaphambi kokukusebenzisa ekukhiqizeni.
Ukuze ugweme izinkinga ngezibuyekezo, sebenzisa inguqulo nezinketho zesiginesha yedijithali emithethweni esekelwe kumshicileli. Ngale ndlela, awudingi ukubuyekeza inqubomgomo njalo lapho kukhishwa isichibi noma ukukhishwa okusha kwesofthiwe evunyelwe.
Bhala phansi yonke inqubo, izinguquko, nokuhlukile kokulungiswa kwesikhathi esizayo noma ukuhlolwa kwangaphakathi.

Imibuzo Evame Ukubuzwa mayelana ne-AppLocker ku Windows 11

Ingabe i-AppLocker imahhala? Yebo, ifakiwe ezinhlelweni Zobuchwepheshe Nebhizinisi zeWindows ngaphandle kwezindleko ezengeziwe.
Ingabe ingasetshenziswa Windows 11 Ikhaya? Cha, alikho enguqulweni Yasekhaya.
Kwenzekani uma ngephutha ngivimba uhlelo olubalulekile? Sebenzisa imodi yokuhlola ngesikhathi sokuhlola futhi ugade imicimbi evimbayo. Uma lokhu kwenzeka ekukhiqizweni, kufanele uguqule umthetho ngokushesha ngangokunokwenzeka ukuze uvulele uhlelo lokusebenza oluthintekile.
Zingaki izinhlobo zemithetho engingazihlanganisa? Eziningi ozidingayo, ukuxuba izimo ngomhleli, indlela kanye ne-hashi.
Ungakwazi yini ukugwema uhlelo olungayilungele ikhompuyutha oluyinkimbinkimbi? Yehlisa kakhulu ubungozi, kodwa ayishintshi ezinye izendlalelo ezifana ne-anti-malware noma imfundo yomsebenzisi.

Ukuphatha i-AppLocker ngaphakathi Windows 11 kungase kubonakale kunzima ekuqaleni, kodwa uma kulungiselelwe kahle, kuyisihlangu sangempela ngokumelene nezinsongo nokuphazamiseka kokufakwa kwesofthiwe. Ngokulandela lezi zinyathelo namathiphu, uzokwazi Lungiselela i-AppLocker igxathu negxathu ku-Windows 11 Ngokuphumelelayo. Ungakhohlwa ukubuyekeza imithetho ngezikhathi ezithile futhi uyibuyekeze njengoba ikhathalogi yohlelo lokusebenza oyisebenzisayo ishintsha, futhi uhlale uthembele kumodi yokucwaninga nokuhlola kusengaphambili ukuze ugweme izinto ezingalindelekile ezingajabulisi.

Isaka

Umbhali oshisekayo ngomhlaba wamabhayithi nobuchwepheshe ngokujwayelekile. Ngiyathanda ukwabelana ngolwazi lwami ngokubhala, futhi yilokho engizokwenza kule bhulogi, ngikubonise zonke izinto ezithakazelisayo kakhulu ngamagajethi, isofthiwe, ihadiwe, izitayela zobuchwepheshe, nokuningi. Inhloso yami ukukusiza ukuthi uzulazule emhlabeni wedijithali ngendlela elula nejabulisayo.