I think the subject says it all, but here again:
How to prevent standard users from running executables (e.g. portable apps)?
I know in Win 7, we can do that with applocker/group policy, but is it possible with ITSM, possible by “block” in auto-containment?
Thanks in advance.