Create a Windows Application Restriction Policy

Admins can configure this policy to restrict user access to designated applications. These restrictions can be configured for both individual devices and devices groups as needed. The device must be enrolled in JumpCloud MDM.

To create an Application Restriction policy:

1. Log in to the JumpCloud Admin Portal.
2. Go to DEVICE MANAGEMENT > Policy Management.
3. In the All tab, click (+).
4. On the New Policy panel, select the Windows tab.
5. Select Application Restriction policy from the list, then click configure.
6. (Optional) In the Policy Name field, enter a new name for the policy or keep the default. Policy names must be unique.
7. (Optional) In the Policy Notes field, enter details like when you created the policy, where you tested it, and where you deployed it.
8. In the Search Inbox Apps & Components section, search and select the system apps that you want to be blocked.
9. Add the File Extensions that you want to be blocked.
   • Enter the Publisher Name and Product Name.
   • Enter the Binary Name.
   • Select the File Extension from the dropdown. Add more file extensions using the Add button.

10. Add the exact File Path that you want to be blocked. Use the + icon to add more file paths.
11. Search and select the Microsoft Store apps that you want to be blocked.
12. (Optional) Select the Device Groups tab. Select one or more device groups where you want to apply this policy. For device groups with multiple OS member types, the policy is applied only to the supported OS.
13. (Optional) Select the Devices tab. Select one or more devices where you want to apply this policy.
14. Click Save. If prompted, click Save again. No further action is needed for this policy to take effect. 

Once the policy is applied, when a user attempts to launch an application that is included in the policy list, the user will be blocked from accessing that application