Normally I don't use Exceptions in any of my rules, but I just wanted to experiment with them, and while doing so discovered what might be a bug or an oversight on my part. Hopefully aomeone using Publisher rules in AppLocker can try thie following: See if you have a publisher rule for the Microsoft windows Operating System as seen in the first screenshot. I have it applied for "Users" and I run as a Standard users. Add a "Publisher" Exception to it and choose solitaire.exe found under C:\Program Files\Microsoft Games\Solitaire As seen in the second shot, you should have the same "File version", "Product name" and "Publisher" but the 'file name" should be solitaire.exe. Please also note the slider is at the bottom. Apply the rule and Okay, then try launching solitaire from the Start menu shortcut. I believe it should not run but it does for me Now highlight the Exception rule and select "Edit". Do you see the same thing I do as seen in the 3rd screen shot? Note the slider at the very top which indicates it applies to "All signed files from any publisher". It seems as though it's setting the slider to the top whereas it should remain at the botton and this is preventing the exception from working. At least that's how I perceive it. Is anyone seeing the same anomaly and any thoughts on what's going on here? A bug maybe? Thanks! EDIT I don't know why my screenshots get scrambled in the wrong order all the time. It's infuriating The 3rd shot ended up first, so please take note.