Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
ALTIR-PR-WIN-U-Disney Settings
Data collected on: 2-9-2025 09:38:01
General
Details
Domainemea.tpg.ads
OwnerEMEA\likaj.7-adm
Created12-2-2020 09:59:52
Modified31-7-2025 16:31:48
User Revisions290 (AD), 290 (SYSVOL)
Computer Revisions78 (AD), 78 (SYSVOL)
Unique ID{93f16d7b-1541-4d4f-be3f-e1b95a890ed4}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
TIRNoEnabledemea.tpg.ads/AL/Systems/Clients/TIR

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
EMEA\ALTIR-L-SEC-User Configuration Disney
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\AL-G-ORG-OU AdminsEdit settings, delete, modify securityNo
EMEA\ALTIR-L-SEC-User Configuration DisneyRead (from Security Filtering)No
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\Domain ComputersReadNo
EMEA\likaj.7-admEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
Computer Configuration (Enabled)
Policies
Windows Settings
Policy-based QoS
QoS Policies
Policy NameDSCP ValueThrottle Rate (KBps) Policy Conditions
Callbar QoS46Not SpecifiedProtocol: TCP and UDP
Application: Callbar.exe
Source IP: Any
Destination IP: Any
Source Port: Any
Destination Port: Any

Chrome QoS46Not SpecifiedProtocol: UDP
Application: Chrome.exe
Source IP: Any
Destination IP: Any
Source Port: Any
Destination Port: Any

Preferences
Windows Settings
Registry
WinHttpSettings (Order: 1)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
Value nameWinHttpSettings
Value typeREG_BINARY
Value data2800000000000000030000001e000000616c74697270726f787972722e656d65612e7470672e6164733a3331323800000000
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Services
Service (Name: QWAVE)
QWAVE (Order: 1)
General
Service nameQWAVE
ActionStart service
Startup type:Automatic
Wait timeout if service is locked:30 seconds
Service Account
Log on service as:NT AUTHORITY\Local Service
Recovery
First failure:Restart the service
Second failure:Restart the service
Subsequent failures:No change
Reset fail count after:0 days
Restart service after:1 minute
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Service (Name: dmwappushservice)
dmwappushservice (Order: 2)
General
Service namedmwappushservice
ActionStart service
Startup type:Automatic (Delayed Start)
Wait timeout if service is locked:30 seconds
Service Account
Log on service as:No change
Recovery
First failure:Restart the service
Second failure:Restart the service
Subsequent failures:No change
Reset fail count after:0 days
Restart service after:1 minute
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User Configuration (Enabled)
Policies
Windows Settings
Folder Redirection
Desktop
Setting: Advanced (Specify locations for various user groups)
GroupPath
EMEA\ALTIR-G-ORG-Disney Agent\\emea.tpg.ads\AL\Tirana\Clients\Disney\Settings\Redirected\Desktop
EMEA\ALTIR-G-ORG-Disney Trainer\\emea.tpg.ads\AL\Tirana\Clients\Disney\Settings\Redirected\Desktop
EMEA\ALTIR-G-ORG-Disney WAHA\\emea.tpg.ads\AL\Tirana\Clients\Disney\Settings\Redirected\Desktop
Options
Grant user exclusive rights to DesktopDisabled
Move the contents of Desktop to the new locationDisabled
Also apply redirection policy to Windows 2000, Windows 2000 server, Windows XP, and Windows Server 2003 operating systemsDisabled
Policy Removal BehaviorRestore contents
Configuration ControlGroup Policy
Primary Computer EvaluationNot evaluated because primary computer policy is not enabled
Downloads
Setting: Advanced (Specify locations for various user groups)
GroupPath
EMEA\ALTIR-G-ORG-Disney Agent\\emea.tpg.ads\AL\Tirana\Clients\Disney\Settings\Redirected\Downloads\%USERNAME%\Downloads
EMEA\ALTIR-G-ORG-Disney Trainer\\emea.tpg.ads\AL\Tirana\Clients\Disney\Settings\Redirected\Downloads\%USERNAME%\Downloads
Options
Grant user exclusive rights to DownloadsDisabled
Move the contents of Downloads to the new locationDisabled
Also apply redirection policy to Windows 2000, Windows 2000 server, Windows XP, and Windows Server 2003 operating systemsDisabled
Policy Removal BehaviorLeave contents
Configuration ControlGroup Policy
Primary Computer EvaluationNot evaluated because primary computer policy is not enabled
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Google/Google Chrome
PolicySettingComment
Application localeEnabled
Application localeit-IT
PolicySettingComment
Browser sign in settingsEnabled
Browser sign in settingsDisable browser sign-in
PolicySettingComment
Clear Browsing Data on ExitEnabled
Clear Browsing Data on Exit
browsing_history
download_history
cookies_and_other_site_data
cached_images_and_files
PolicySettingComment
Define domains allowed to access Google WorkspaceEnabled
Define domains allowed to access Google Workspaceal.teleperformance.com,teleperformance.com
PolicySettingComment
Enable or disable spell checking web serviceEnabled
Enable spellcheckEnabled
Force enable spellcheck languagesEnabled
Force enable spellcheck languages
it
en
PolicySettingComment
Set download directoryEnabled
Set download directory\\emea.tpg.ads\AL\Tirana\Clients\Disney\Settings\Redirected\Downloads\${user_name}\Downloads
PolicySettingComment
Set Google Chrome as Default BrowserEnabled
Google/Google Chrome/Content settings
PolicySettingComment
Block notifications on these sitesEnabled
Block notifications on these sites
facebook.com
instagram.com
twitter.com
PolicySettingComment
Block pop-ups on these sitesEnabled
Block pop-ups on these sites
[*.]twitter.com
PolicySettingComment
Control use of the WebUSB APIEnabled
Control use of the WebUSB APIDo not allow any site to request access to USB devices via the WebUSB API
Google/Google Chrome/Extensions
PolicySettingComment
Configure extension installation allow listEnabled
Extension IDs to exempt from the blocklist
hfglcknhngdnhbkccblidlkljgflofgh;https://clients2.google.com/service/update2/crx
gcfjbjldfomnopnpdjajjfpldkkdmmoi;https://clients2.google.com/service/update2/crx
PolicySettingComment
Configure extension installation blocklistEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
PolicySettingComment
Configure the list of force-installed apps and extensionsEnabled
Extension/App IDs and update URLs to be silently installed
idbejgmlldkhoiogoknpihhhbimbikdo;https://clients2.google.com/service/update2/crx
hfglcknhngdnhbkccblidlkljgflofgh;https://clients2.google.com/service/update2/crx
gcfjbjldfomnopnpdjajjfpldkkdmmoi;https://clients2.google.com/service/update2/crx
PolicySettingComment
Extension management settingsEnabled
Extension management settings{ "*": { "installation_mode": "blocked"
Google/Google Chrome/Removed policies
PolicySettingComment
Allow access to a list of URLsEnabled
Allow access to a list of URLs
instagram.com/disneyplus/
facebook.com/DisneyPlus/
twitter.com/disneyplus
file:///C:/TP/
digitaltrends.com/movies/disney-plus-streaming-service-news/
facebook.com/pg/DisneyPlus/posts/?*
facebook.com/pg/DisneyPlus/photos/?*
facebook.com/pg/DisneyPlus/reviews/?*
facebook.com/pg/DisneyPlus/about/?*
facebook.com/pg/DisneyPlus/videos/?*
youtube.com/channel/UCIrgJInjLS2BhlHOMDW7v0g
PolicySettingComment
Block access to a list of URLsEnabled
Block access to a list of URLs
facebook.com
twitter.com
instagram.com
file:///C:
chrome://settings/help
google.com/gmail
accounts.google.com/signup
accounts.google.com/signin
youtube.com
PolicySettingComment
Configure extension installation allowlistEnabled
Extension IDs to exempt from the blocklist
idbejgmlldkhoiogoknpihhhbimbikdo
hfglcknhngdnhbkccblidlkljgflofgh
PolicySettingComment
Configure extension installation blocklistEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
Windows Components/Internet Explorer/Internet Control Panel/Security Page
PolicySettingComment
Site to Zone Assignment ListEnabled
Enter the zone assignments here. 
https://www.instagram.com/4
https://www.facebook.com/4
https://twitter.com/4
https://login.zscloud.net2
https://login.microsoftonline.com2
Preferences
Windows Settings
Registry
Collection: Proxy/HKEY_CURRENT_USER/Software/Microsoft/Windows/CurrentVersion/Internet Settings
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Apply once and do not reapplyNo
Registry item: AutoConfigURL
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Internet Settings
Value nameAutoConfigURL
Value typeREG_SZ
Value datahttps://pac.zscloud.net/GfG1hhhwd7hm/AL-Disney-FwProfile
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Internet Settings
Internet Explorer 10: Internet Explorer 10 (Order: 1)
General
Startup
Startup optionsStart with tabs from the last session
Browsing history
Delete browsing history on exitNo
Security
Security levels
InternetHigh
Local IntranetMedium-low
TrustedLow
RestrictedHigh
Internet
Enable Protected ModeEnabled
Local Intranet
Enable Protected ModeDisabled
Trusted
Enable Protected ModeDisabled
Restricted
Enable Protected ModeEnabled
Privacy
Turn on Pop-up BlockerEnabled
Pop-up Blocker Settings: Exceptions
Allowed site[empty]
Pop-up Blocker Settings: Notifications and filter level
Play a sound when a pop-up is blockedEnabled
Show Information Bar when a pop-up is blockedEnabled
Filter levelHigh: Block all pop-ups (Ctrl+Alt to override)
Never allow websites to request your physical locationDisabled
Disable toolbars and extensions when InPrivate Browsing startsEnabled
Connections
Dial-up settings
Connection behaviorNever dial a connection
Local Area Network (LAN) settings
Automatically detect settingsNo
Use automatic configuration scripthttps://pac.zscloud.net/qCGdwkP92BTw/Authentication-Zscaler
Proxy server
Use a proxy server for your LAN (These settings will not apply to a dial-up or VPN connections)No
Bypass proxy server for local addressesYes
Proxy server address for your LAN
Do not use proxy servers for addresses beginning with*10.8.204.62*;*minerva.disneystreaming.com*;*10.8.204.46*;*rodeo-cat-us.disneystreaming.com*;*10.8.204.44*;*rodeo-services-us.disneystreaming.com*; *35.156.191.*;*3.122.181.*;*54.171.127.*;*52.215.127.*;*emea.tpg.ads*;*teleperformance.it*;*54.172.60.*;*54.172.61.*;*34.203.250.*;*34.203.251.*;*54.244.51.*;*18.228.249.*;
Programs
Choose how you open links
Choose how you open linksLet Internet Explorer decide
Open Internet Explorer tiles on the desktopDisabled
Advanced
Accelerated graphics
User software rendering instead of GPU renderingEnabled
Accessibility
Always expand ALT text for imagesDisabled
Enable Caret Browser for new windows and tabsDisabled
Move system caret with focus/selection changesDisabled
Play system soundsDisabled
Reset text size to medium for new windows and tabsDisabled
Reset Zoom level for new windows and tabsDisabled
Browsing
Automatically recover from page layout errors with Compatibility ViewEnabled
Close unused folders in History and Favorites (requires restart)Disabled
Disable Script debugging (Internet Explorer)Enabled
Disable Script debugging (Other)Enabled
Display a notification about every script errorDisabled
Display Accelerator button on selectionDisabled
Enable automatic crash recoveryEnabled
Enable flip aheadDisabled
Enable FTP folder view (outside of Internet Explorer)Enabled
Enable Suggested SitesDisabled
Enable third-party browser extensions (requires restart)Disabled
Enable visual styles on buttons and controls in webpagesEnabled
Enable websites to use the search paneDisabled
Go to an intranet site for a single word entry in the Address barDisabled
Notify when downloads completeEnabled
Reuse windows for launching shortcutsEnabled
Show Friendly HTTP Error messagesEnabled
Tell me if Internet Explorer is not the default web browserDisabled
Underline linksAlways
Use inline AutoCompleteEnabled
Use inline Autocomplete in File Explorer and Run DialogDisabled
Use most recent order when switching tabs with Ctrl+TabDisabled
Use Passive FTP (for firewall and DSL model compatibility)Enabled
Use smooth scrollingEnabled
HTTP 1.1 settings
Use HTTP 1.1Enabled
Use HTTP 1.1 through proxy connectionsEnabled
International
Always show encoded addressesDisabled
Send IDN server namesEnabled
Send IDN server names for Intranet addressesDisabled
Send UTF-8 URLsEnabled
Show Information Bar for encoded addressesEnabled
Multimedia
Enable alternative codecs in HTML5 media elementsEnabled
Enable Automatic Image ResizingEnabled
Play animations in webpagesDisabled
Play sounds in webpagesDisabled
Show image download placeholdersDisabled
Show picturesEnabled
Security
Allow active content from CDs to run on My ComputerDisabled
Allow active content to run in files on My ComputerDisabled
Always send Do Not Track headerDisabled
Allow software to run or install even if the signature is invalidDisabled
Block unsecured images with other mixed contentDisabled
Check for publisher's certificate revocationEnabled
Check for server certificate revocation (requires restart)Enabled
Check for signatures on downloaded programsEnabled
Do not save encrypted pages to diskEnabled
Empty Temporary Internet Files folder when browser is closedEnabled
Enable memory protection to help mitigate online attacksDisabled
Enable DOM StorageEnabled
Enable Enhanced Protected ModeEnabled
Enable Integrated Windows Authentication (requires restart)Enabled
Enable native XMLHTTP supportEnabled
Enable SmartScreen FilterDisabled
Use SSL 2.0Disabled
Use SSL 3.0Disabled
Use TLS 1.0Disabled
Use TLS 1.1Disabled
Use TLS 1.2Enabled
Warn about certificate address mismatchEnabled
Warn if changing between secure and not secure modeEnabled
Warn if POST submittal is redirected to a zone that does not permit postsEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Apply once and do not reapplyNo