AppLocker is a new feature used for Software Restriction Policies. AppLocker contains new capabilities and extensions that allow users to create rules to allow or deny applications' permission to run based on the unique identities of files, and to specify which users or groups can run those applications. Of course, you can create and manage AppLocker rules by using Windows PowerShell cmdlets.
Microsoft supplies an AppLocker module, which contains five cmdlets that are used to help create, test, maintain, and troubleshoot an AppLocker policy. To edit or update a GPO by using the AppLocker cmdlet, you must have the Edit Setting permission. By default, members of the Domain Admins group, the Enterprise Admins group, and the Group Policy Creator Owners group have this permission. To perform tasks by using the Local Security policy snap-in, you must be a member of the Local Administrators group on the computer.