Add blocked programs to Controlled Folder Access' whitelist - gHacks Tech News

Add blocked programs to Controlled Folder Access' whitelist

Add Application to Controlled Folder is a handy PowerShell script which you may use to whitelist blocked programs by Windows 10's Controlled Folder Access feature.

Controlled Folder Access is a new security feature of Windows Defender that Microsoft introduced in the Windows 10 Fall Creators Update.

The feature is not turned on by default; we have published detailed instructions on enabling the feature in the linked guide above.

Controlled Folder Access monitors access to folders that it protects, and blocks access to these folders if it identifies a program as outright malicious or suspicious.

While that means that most programs that you run on Windows will be allowed access automatically, some legitimate programs may be flagged by the security feature. Any blocked application is prevented from accessing the folders, and that won't change unless you whitelist these programs explicitly.

While you can whitelist one program at a time, you may also improve the process with the help of the PowerShell script Add Application to Controlled Folder.

The script retrieves the list of blocked applications and gives you options to whitelist none, some or all of those programs.

add application to controlled folder

Note: You need to allow the running of unsigned scripts if this is the first third-party PowerShell script that is run on the Windows PC. On an elevated PowerShell prompt, type set-executionpolicy remotesigned and select Y for yes when the prompt is displayed.

Here is how it works in detail:

  1. Download the program from the author's GitHub project page.
  2. Extract the script to the local system.
  3. Tap on the Windows-key, type PowerShell, hold down the Ctrl-key and Shift-key, and load the PowerShell application (with elevated rights).
  4. Run the command AddApplicationToControlledFolder.ps1.
  5. The script launches a window in which it lists all programs that have been blocked in the past.
  6. Select the ones that you want to allow, and hit the ok button to complete the process.

You can verify that the programs have been added to the whitelist by going to Virus & threat protection > Virus & threat protection settings > Allow an app through controlled folder access.

Summary
Add blocked programs to Controlled Folder Access' whitelist
Article Name
Add blocked programs to Controlled Folder Access' whitelist
Description
Add Application to Controlled Folder is a handy PowerShell script which you may use to whitelist blocked programs by Windows 10's Controlled Folder Access feature.
Author
Publisher
Ghacks Technology News
Logo

We need your help

Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.

We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.

If you like our content, and would like to help, please consider making a contribution:

Comments

  1. docious said on November 10, 2017 at 8:02 pm
    Reply

    Can this be used with the Controlled Folder Access audit mode to list all the programs that *would have* been blocked? That way I could avoid the pain of discovering broken/blocked apps before creating the whitelist with this script.

    1. John said on November 28, 2017 at 6:09 pm
      Reply

      change the second line of the script from
      Where-Object {$_.Id -eq “1123”}
      to
      Where-Object {$_.Id -eq “1124”}

      1. docious said on November 28, 2017 at 7:13 pm
        Reply

        thanks!

      2. docious said on November 28, 2017 at 7:21 pm
        Reply

        Thanks!

  2. juli said on November 20, 2017 at 7:54 pm
    Reply

    i cannot see the apps listed in the settings although the ones i tried to block show up in the list the powershell generates. it acts like it is listing them but then nothing…no list. on some machines i can see the list of blocked apps and can remove them. any thoughts on why i would not be able to see the apps i allow on the settings page where they should be listed. thanks
    juli

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

Please note that your comment may not appear immediately after you post it.