Application Context filters apply security policies to applications in a user context.
Interactive Users Filters
This filter is 99.9% of the time used as Application Context filters are mostly applied to interactive users as a conditional filter for an application control policy to limit the policy to only apply to interactive users. It's recommended to .
We recommend you use this filter when you use a broad scoping application control policy (, such as any file with a system file owner for a Whitelist) , so that way you don't catch applications launched by system services /or accounts, etc.
LocalSystem and Service Application Filters
This filter The Application Context filter is rarely used in environments. You would use this it to target or limit application control policies to applications only launched by only the Local System or Services.
Service Application Filters
Same This is the same as for the LocalSystem and Service Application filters, except it targets only Services that get executed.