...
The Information Security Officer will periodically review reports on such overrides and as appropriate, add them to the centrally managed policy. This information is gathered automatically; you do not need to report them to the helpdesk or anyone else.
...
Want to protect your computers from ransomware and other malicious code?
Many of our peer institutions including Simon Fraser, St. Olaf College, CSB/SJU, and the University of Minnesota apply an AppLocker policy to all deployed staff PCs. Carleton does this only on request. If you would like your PC or all PCs in your department to use this recommended security feature that has been built in to Windows 7 since 2009, contact the Information Security Officer (Rich Graves).
Current policy application: mostly report-only
A "reporting-only" AppLocker policy is has been in place for most campus computers since 2014. The policy is maintained by the Information Security Officer (Rich Graves).Certain . More than 99.99% of program execution this year was previously whitelisted. Most of the exceptions were malware.
A small number of computers have been placed in organizational units (OUs) that actually block unapproved programs. This applies to the entire Campus_Clients\BUSO OU and the AppLocker-Enforced directories within Facilties and ITS.
...