Hi All, In this document we will be showing Software Restriction Using Active Directory Group policy. Here we are taking an example of Google Chrome.
Step 1: Open the Group Policy Management Console (GPMC).
Step 2: Right-click your domain and choose the Create a GPO in this domain, and link it here option.
Step 3: Name the Group Policy Object (GPO) Block Google Chrome and click OK.
Step 4: Right-click the policy you just created and click Edit.
Step 1: Navigate to the User Configuration\Policies\Windows Settings\Security Settings\Software Restriction Policies folder.
Step 5: Right-click Software Restriction Policies and select New Software Restriction Policies.
Step 6: Right click Additional Rules and choose New Path Rule.
Step 7: In the Path field, type chromesetup.exe.
Step 8: In the Security level drop-down box, choose Disallowed and click OK.
Step 9: Repeat steps 7 through 9 for the chrome.exe and gears-chrome-opt.msi files.
Step 10: Repeat steps 7 through 9 for the path C:\Users\%username%\AppData\Local\Google\Chrome\Application\chrome.exe for Vista machines or C:\Documents and Settings\%username%\Local Settings\Application Data\Google\Chrome\Application\chrome.exe for XP machines. You should include this rule in case some of your users have already installed the browser. After you implement the GPO and the Group Policy settings refresh on those users’ local machines, they’ll no longer be able to successfully run Google Chrome.
Step 11: Open a command-prompt window and run the command to apply the new rules.
Step 12: Run the command
Step 13: Verify that the newly created GPO has successfully been applied. As a final test, attempt to run the installer from the Google Chrome website.
© 2018, Techrunnr. All rights reserved.