I am running a 2008r2 terminal server with applocker enabled with zen 11 policies.
It seems it sometimes just ignores this policy when a user logs in... So it works first... the next day it runs forbidden exes on the next login...
In the administrator account I can see the policies are there (with gpedit.msc).
Under the user a gpupdate /force command makes the policy active again.
So I now put a gpupdate /target:computer in the login script... see if that helps...
Seems like a bug.
Novell: please test AppLocker functionality and how the zen agent handles this...