J
JohnK84
Hi,
We are implementing multiple remote desktop server environments for our customers based on Windows Server 2016. We make use of AppLocker to restrict the applications wich can be run by regular users. This has been working like a charm for us.
However, after applying the 2018-11 Cumulative Update (KB4467691) our users are receiving some rather annoying notifications saying "This app has been blocked by your system administrator" wich is correct because we implemented AppLocker rules. However, ever since the KB4467691 has been applied these notifications are more interuptive then before, and is now being shown in the new windows UI style.
The big difference is that the old notifcation only shows when a user is actively clicking on a blocked application, the ones running from login scripts or are part of system services, like the java updater or vmware tools tray application were being blocked sillently. After applying this update, all blocked applications are being notified in a rather intrusive way, even during the initial login scripts. Anyone here who knows a fix for this behavior or a way to block this notification alltogether?
For now we have opted to block all cumulative updates after 2018-11 (since this problem exists in atleast all the CU from 2018-11 till 2019-01) using our nAble patch management software. Still rather annoying that MS seems be dictating how we should use the UI (which is being changed once a month so it seems).
Thanks in advance.
Regards,
John
Continue reading...
We are implementing multiple remote desktop server environments for our customers based on Windows Server 2016. We make use of AppLocker to restrict the applications wich can be run by regular users. This has been working like a charm for us.
However, after applying the 2018-11 Cumulative Update (KB4467691) our users are receiving some rather annoying notifications saying "This app has been blocked by your system administrator" wich is correct because we implemented AppLocker rules. However, ever since the KB4467691 has been applied these notifications are more interuptive then before, and is now being shown in the new windows UI style.
The big difference is that the old notifcation only shows when a user is actively clicking on a blocked application, the ones running from login scripts or are part of system services, like the java updater or vmware tools tray application were being blocked sillently. After applying this update, all blocked applications are being notified in a rather intrusive way, even during the initial login scripts. Anyone here who knows a fix for this behavior or a way to block this notification alltogether?
For now we have opted to block all cumulative updates after 2018-11 (since this problem exists in atleast all the CU from 2018-11 till 2019-01) using our nAble patch management software. Still rather annoying that MS seems be dictating how we should use the UI (which is being changed once a month so it seems).
Thanks in advance.
Regards,
John
Continue reading...