I pushed a new configuration today in which I set all rules to restricted and re-enabled APPLICATION ACCESS CONTROL.
Just when I thought I had it, one application decided to crash. This is an application that starts from a server but uses Internet Explorer.
I have a process rule in place in which iexplore.exe is in the root node and I have a bunch of DLL's in allowed (see screen shots). I have included a sample from the RA as well (see screen shots)