Your network contains an Active Directory domain named contoso.com.
You need to prevent users from installing a Windows Store app named App1.
What should you create?
A.
An application control policy executable rule
B.
An application control policy packaged app rule
C.
A software restriction policy certificate rule
D.
An application control policy Windows Installer rule
Explanation:
Windows 8 is coming REALLY SOON and of course one of the big new things to computer with that is the new
Packaged Apps that run in the start screen. However, these apps are very different and do not install like
traditional apps to a path or have a true “executable” file to launch the program. Of course enterprises need a
way to control these packaged apps and therefore Microsoft has added a new feature Packaged Apps option to
the App1ocker feature.
Packaged apps (also known as Windows 8 apps) are new to Windows Server 2012 R2 and Windows 8. They
are based on the new app model that ensures that all the files within an app package share the same identity.Therefore, it is possible to control the entire Application using a single App1ocker rule as opposed to the nonpackaged apps where each file within the app could have a unique identity. Windows does not support
unsigned packaged apps which implies all packaged apps must be signed. App1ocker supports only publisher
rules for Packaged apps. A publisher rule for a packaged app is based on the following information:
Publisher of the package
Package name
Package version
Therefore, an App1ocker rule for a Packaged app controls both the installation as well as the running of the
app. Otherwise, the publisher rules for Packaged apps are no different than the rest of the rule collections; they
support exceptions, can be increased or decreased in scope, and can be assigned to users and groups.