Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
EMEA-PO-WIN-C-Settings for all Domain Controllers
Data collected on: 2-9-2025 08:43:54
General
Details
Domainemea.tpg.ads
OwnerEMEA\Domain Admins
Created8-8-2011 14:50:40
Modified30-8-2023 12:41:52
User Revisions300 (AD), 300 (SYSVOL)
Computer Revisions887 (AD), 887 (SYSVOL)
Unique ID{ad7cc850-8177-4bae-9bc8-04090d1449ac}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
Domain ControllersNoEnabledemea.tpg.ads/Domain Controllers

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
NT AUTHORITY\Authenticated Users
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersRead (from Security Filtering)No
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
S-1-5-21-513466819-3096973226-347852806-203252ReadNo
Computer Configuration (Enabled)
Policies
Windows Settings
Security Settings
Local Policies/Audit Policy
PolicySetting
Audit account logon eventsSuccess, Failure
Audit account managementSuccess, Failure
Audit directory service accessSuccess, Failure
Audit object accessSuccess, Failure
Audit policy changeSuccess, Failure
Audit system eventsSuccess, Failure
Local Policies/User Rights Assignment
PolicySetting
Debug programsBUILTIN\Administrators
Load and unload device driversBUILTIN\Administrators
Log on as a serviceEMEA\nordicpanuidagent.1
Local Policies/Security Options
Accounts
PolicySetting
Accounts: Guest account statusDisabled
Accounts: Limit local account use of blank passwords to console logon onlyEnabled
Accounts: Rename guest account"GuestGuardian"
Audit
PolicySetting
Audit: Audit the access of global system objectsDisabled
Audit: Audit the use of Backup and Restore privilegeDisabled
Audit: Shut down system immediately if unable to log security auditsDisabled
Devices
PolicySetting
Devices: Allow undock without having to log onDisabled
Devices: Allowed to format and eject removable mediaAdministrators
Devices: Prevent users from installing printer driversEnabled
Devices: Restrict CD-ROM access to locally logged-on user onlyEnabled
Devices: Restrict floppy access to locally logged-on user onlyEnabled
Domain Controller
PolicySetting
Domain controller: Allow server operators to schedule tasksDisabled
Domain controller: Refuse machine account password changesDisabled
Domain Member
PolicySetting
Domain member: Digitally encrypt or sign secure channel data (always)Enabled
Domain member: Digitally encrypt secure channel data (when possible)Enabled
Domain member: Digitally sign secure channel data (when possible)Enabled
Domain member: Disable machine account password changesDisabled
Domain member: Require strong (Windows 2000 or later) session keyEnabled
Interactive Logon
PolicySetting
Interactive logon: Do not require CTRL+ALT+DELDisabled
Interactive logon: Don't display last signed-inEnabled
Interactive logon: Message text for users attempting to log onThis computer system (including all hardware, software, and peripheral equipment) is the property of Teleperformance. Use of this computer system is restricted to official Teleperformance business. Teleperformance reserves the right to monitor use of the computer system at any time. Use of this system constitutes consent to such monitoring. Any unauthorized access, use, or modification of the computer system can result in civil liability and/or criminal penalties.
Interactive logon: Message title for users attempting to log on"User Information"
Interactive logon: Number of previous logons to cache (in case domain controller is not available)0 logons
Interactive logon: Prompt user to change password before expiration14 days
Interactive logon: Require Domain Controller authentication to unlock workstationDisabled
Interactive logon: Require Windows Hello for Business or smart cardDisabled
Interactive logon: Smart card removal behaviorForce Logoff
Microsoft Network Client
PolicySetting
Microsoft network client: Digitally sign communications (always)Enabled
Microsoft network client: Digitally sign communications (if server agrees)Enabled
Microsoft network client: Send unencrypted password to third-party SMB serversDisabled
Microsoft Network Server
PolicySetting
Microsoft network server: Amount of idle time required before suspending session15 minutes
Microsoft network server: Digitally sign communications (always)Enabled
Microsoft network server: Digitally sign communications (if client agrees)Enabled
Microsoft network server: Disconnect clients when logon hours expireEnabled
Network Access
PolicySetting
Network access: Allow anonymous SID/Name translationDisabled
Network access: Do not allow anonymous enumeration of SAM accountsEnabled
Network access: Do not allow anonymous enumeration of SAM accounts and sharesEnabled
Network access: Do not allow storage of passwords and credentials for network authenticationDisabled
Network access: Let Everyone permissions apply to anonymous usersDisabled
Network access: Named Pipes that can be accessed anonymouslynetlogon, samr, lsarpc
Network access: Restrict anonymous access to Named Pipes and SharesEnabled
Network access: Sharing and security model for local accountsClassic - local users authenticate as themselves
Network Security
PolicySetting
Network security: Do not store LAN Manager hash value on next password changeEnabled
Network security: Force logoff when logon hours expireEnabled
Network security: LAN Manager authentication levelSend LM & NTLM - use NTLMv2 session security if negotiated
Network security: LDAP client signing requirementsNegotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clientsEnabled
Require NTLMv2 session securityEnabled
Require 128-bit encryptionEnabled
Network security: Minimum session security for NTLM SSP based (including secure RPC) serversEnabled
Require NTLMv2 session securityEnabled
Require 128-bit encryptionEnabled
Recovery Console
PolicySetting
Recovery console: Allow automatic administrative logonDisabled
Recovery console: Allow floppy copy and access to all drives and all foldersDisabled
Shutdown
PolicySetting
Shutdown: Allow system to be shut down without having to log onDisabled
Shutdown: Clear virtual memory pagefileDisabled
System Cryptography
PolicySetting
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signingDisabled
System Objects
PolicySetting
System objects: Require case insensitivity for non-Windows subsystemsEnabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)Enabled
System Settings
PolicySetting
System settings: Optional subsystems
Other
PolicySetting
Interactive logon: Display user information when the session is lockedUser display name only
Registry Values
PolicySetting
MACHINE\Software\Microsoft\Driver Signing\Policy2
Event Log
PolicySetting
Maximum security log size204800 kilobytes
System Services
AeLookupSvc (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Alerter (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Application Layer Gateway Service (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Application Management (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
ASP.NET State Service (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Audio (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
BITS (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Browser (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
CiSvc (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
ClipSrv (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
clr_optimization_v2.0.50727_32 (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
COM+ System Application (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Cryptographic Services (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
DCOM Server Process Launcher (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Dfs (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
DHCP Client (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
dmadmin (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
dmserver (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
ERSvc (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Event Log (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
COM+ Event System (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
FontCache3.0.0.0 (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
helpsvc (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Human Interface Device Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
HTTPFilter (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
idsvc (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
ImapiService (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
IsmServ (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
kdc (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Server (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Workstation (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
LicenseService (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
TCP/IP NetBIOS Helper (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Messenger (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
mnmsrvc (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Distributed Transaction Coordinator (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Installer (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
NetDDE (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
NetDDEdsdm (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Netlogon (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Network Connections (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Net.Tcp Port Sharing Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Nla (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
NtLmSsp (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
NtmsSvc (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Plug and Play (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
IPsec Policy Agent (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
ProtectedStorage (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Access Auto Connection Manager (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Access Connection Manager (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
RDSessMgr (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Routing and Remote Access (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Registry (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Procedure Call (RPC) Locator (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Procedure Call (RPC) (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Resultant Set of Policy Provider (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Special Administration Console Helper (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Security Accounts Manager (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Smart Card (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Task Scheduler (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Secondary Logon (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
System Event Notification Service (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Internet Connection Sharing (ICS) (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Shell Hardware Detection (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
SNMP Service (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
SNMP Trap (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Print Spooler (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Image Acquisition (WIA) (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Microsoft Software Shadow Copy Provider (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
SysmonLog (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Telephony (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Desktop Services (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Themes (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
TlntSvr (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
TrkSvr (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Distributed Link Tracking Client (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Desktop Connection Broker (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
UMWdf (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
UPS (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Virtual Disk (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Volume Shadow Copy (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Time (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
W3SVC (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
WebClient (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
WinHTTP Web Proxy Auto-Discovery Service (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Management Instrumentation (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
WmdmPmSN (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Wmi (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
WMI Performance Adapter (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Update (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
WZCSVC (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
xmlprov (Startup Mode: Manual)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Firewall with Advanced Security
Global Settings
PolicySetting
Policy version2.22
Disable stateful FTPNot Configured
Disable stateful PPTPNot Configured
IPsec exemptNot Configured
IPsec through NATNot Configured
Preshared key encodingNot Configured
SA idle timeNot Configured
Strong CRL checkNot Configured
Domain Profile Settings
PolicySetting
Firewall stateOn
Inbound connectionsAllow
Outbound connectionsAllow
Apply local firewall rulesNot Configured
Apply local connection security rulesNot Configured
Display notificationsNo
Allow unicast responsesNot Configured
Log dropped packetsNot Configured
Log successful connectionsNo
Log file pathNot Configured
Log file maximum size (KB)4096
Private Profile Settings
PolicySetting
Firewall stateOn
Inbound connectionsAllow
Outbound connectionsAllow
Apply local firewall rulesNot Configured
Apply local connection security rulesNot Configured
Display notificationsNo
Allow unicast responsesNot Configured
Log dropped packetsNot Configured
Log successful connectionsNo
Log file pathNot Configured
Log file maximum size (KB)4096
Public Profile Settings
PolicySetting
Firewall stateOn
Inbound connectionsAllow
Outbound connectionsAllow
Apply local firewall rulesNot Configured
Apply local connection security rulesNot Configured
Display notificationsNo
Allow unicast responsesNot Configured
Log dropped packetsNot Configured
Log successful connectionsNo
Log file pathNot Configured
Log file maximum size (KB)4096
Connection Security Settings
Advanced Audit Configuration
Account Logon
PolicySetting
Audit Credential ValidationSuccess, Failure
Audit Kerberos Authentication ServiceSuccess, Failure
Audit Kerberos Service Ticket OperationsSuccess, Failure
Audit Other Account Logon EventsSuccess, Failure
Account Management
PolicySetting
Audit Application Group ManagementSuccess, Failure
Audit Computer Account ManagementSuccess, Failure
Audit Distribution Group ManagementSuccess, Failure
Audit Other Account Management EventsSuccess, Failure
Audit Security Group ManagementSuccess, Failure
Audit User Account ManagementSuccess, Failure
Detailed Tracking
PolicySetting
Audit PNP ActivitySuccess
Audit Process CreationSuccess
DS Access
PolicySetting
Audit Detailed Directory Service ReplicationSuccess, Failure
Audit Directory Service AccessSuccess, Failure
Audit Directory Service ChangesSuccess, Failure
Audit Directory Service ReplicationSuccess, Failure
Logon/Logoff
PolicySetting
Audit Account LockoutSuccess, Failure
Audit Group MembershipSuccess, Failure
Audit LogoffFailure
Audit LogonSuccess, Failure
Audit Network Policy ServerSuccess, Failure
Audit Other Logon/Logoff EventsSuccess, Failure
Audit Special LogonSuccess, Failure
Object Access
PolicySetting
Audit Application GeneratedSuccess, Failure
Audit Certification ServicesSuccess, Failure
Audit Detailed File ShareFailure
Audit File ShareSuccess, Failure
Audit File SystemSuccess, Failure
Audit Filtering Platform ConnectionFailure
Audit Filtering Platform Packet DropFailure
Audit Handle ManipulationFailure
Audit Kernel ObjectSuccess, Failure
Audit Other Object Access EventsSuccess, Failure
Audit RegistrySuccess, Failure
Audit Removable StorageSuccess, Failure
Audit SAMSuccess, Failure
Policy Change
PolicySetting
Audit Audit Policy ChangeSuccess, Failure
Audit Authentication Policy ChangeSuccess, Failure
Audit Authorization Policy ChangeSuccess, Failure
Audit Filtering Platform Policy ChangeSuccess, Failure
Audit MPSSVC Rule-Level Policy ChangeSuccess, Failure
Audit Other Policy Change EventsSuccess, Failure
Privilege Use
PolicySetting
Audit Non Sensitive Privilege UseFailure
Audit Other Privilege Use EventsFailure
Audit Sensitive Privilege UseSuccess, Failure
System
PolicySetting
Audit IPsec DriverSuccess, Failure
Audit Other System EventsSuccess, Failure
Audit Security State ChangeSuccess, Failure
Audit Security System ExtensionSuccess, Failure
Audit System IntegritySuccess, Failure
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Control Panel/Regional and Language Options/Handwriting personalization
PolicySettingComment
Turn off automatic learningEnabled
Network/Network Connections/Windows Defender Firewall/Domain Profile
PolicySettingComment
Windows Defender Firewall: Allow loggingEnabled
Log dropped packets 
Log successful connectionsDisabled
Log file path and name: 
Size limit (KB):4096
PolicySettingComment
Windows Defender Firewall: Prohibit notificationsEnabled
Windows Defender Firewall: Protect all network connectionsEnabled
Printers
PolicySettingComment
Activate Internet printingDisabled
System/Internet Communication Management/Internet Communication settings
PolicySettingComment
Turn off handwriting personalization data sharingEnabled
Turn off handwriting recognition error reportingEnabled
Turn off Internet Connection Wizard if URL connection is referring to Microsoft.comEnabled
Turn off Internet download for Web publishing and online ordering wizardsEnabled
Turn off the "Order Prints" picture taskEnabled
Turn off the Windows Messenger Customer Experience Improvement ProgramEnabled
System/Logon
PolicySettingComment
Turn off Windows Startup soundEnabled
System/Power Management
PolicySettingComment
Select an active power planEnabled
Active Power Plan:High Performance
System/Power Management/Hard Disk Settings
PolicySettingComment
Turn Off the hard disk (on battery)Disabled
Turn Off the hard disk (plugged in)Disabled
System/Remote Assistance
PolicySettingComment
Configure Offer Remote AssistanceDisabled
System/Removable Storage Access
PolicySettingComment
All Removable Storage: Allow direct access in remote sessionsDisabled
CD and DVD: Deny write accessEnabled
Floppy Drives: Deny execute accessEnabled
Floppy Drives: Deny write accessEnabled
WPD Devices: Deny read accessEnabled
WPD Devices: Deny write accessEnabled
System/Server Manager
PolicySettingComment
Do not display Server Manager automatically at logonEnabled
Windows Components/AutoPlay Policies
PolicySettingComment
Turn off AutoplayEnabled
Turn off Autoplay on:All drives
Windows Components/Desktop Window Manager
PolicySettingComment
Do not allow window animationsEnabled
Windows Components/Event Log Service/Application
PolicySettingComment
Control Event Log behavior when the log file reaches its maximum sizeDisabled
Specify the maximum log file size (KB)Enabled
Maximum Log Size (KB)204800
Windows Components/Event Log Service/Security
PolicySettingComment
Configure log accessEnabled
Log AccessO:BAG:SYD:(A;;0xf0005;;;SY)(A;;0x5;;;BA)(A;;0x1;;;S-1-5-32-573)(A;;0x1;;;NS)
PolicySettingComment
Control Event Log behavior when the log file reaches its maximum sizeDisabled
Specify the maximum log file size (KB)Enabled
Maximum Log Size (KB)1024000
Windows Components/Event Log Service/Setup
PolicySettingComment
Control Event Log behavior when the log file reaches its maximum sizeDisabled
Specify the maximum log file size (KB)Enabled
Maximum Log Size (KB)20480
Windows Components/Event Log Service/System
PolicySettingComment
Control Event Log behavior when the log file reaches its maximum sizeDisabled
Specify the maximum log file size (KB)Enabled
Maximum Log Size (KB)204800
Windows Components/File Explorer
PolicySettingComment
Show hibernate in the power options menuDisabled
Show sleep in the power options menuDisabled
Windows Components/Game Explorer
PolicySettingComment
Turn off downloading of game informationEnabled
Turn off game updatesEnabled
Turn off tracking of last play time of games in the Games folderEnabled
Windows Components/HomeGroup
PolicySettingComment
Prevent the computer from joining a homegroupEnabled
Windows Components/Internet Explorer
PolicySettingComment
Allow Microsoft services to provide enhanced suggestions as the user types in the Address barDisabled
Disable Periodic Check for Internet Explorer software updatesDisabled
Install new versions of Internet Explorer automaticallyEnabled
Prevent participation in the Customer Experience Improvement ProgramEnabled
Prevent running First Run wizardEnabled
Select your choiceGo directly to home page
PolicySettingComment
Turn off ability to pin sites in Internet Explorer on the desktopEnabled
Turn off the auto-complete feature for web addressesEnabled
Turn on Suggested SitesDisabled
Windows Components/Internet Explorer/Delete Browsing History
PolicySettingComment
Allow deleting browsing history on exitEnabled
Prevent access to Delete Browsing HistoryDisabled
Prevent deleting ActiveX Filtering, Tracking Protection, and Do Not Track dataDisabled
Prevent deleting cookiesDisabled
Prevent deleting download historyDisabled
Prevent deleting favorites site dataDisabled
Prevent deleting form dataDisabled
Prevent deleting InPrivate Filtering dataDisabled
Prevent deleting passwordsDisabled
Prevent deleting temporary Internet filesDisabled
Prevent deleting websites that the user has visitedDisabled
Prevent the deletion of temporary Internet files and cookiesDisabled
Windows Components/Internet Explorer/Internet Control Panel/Advanced Page
PolicySettingComment
Automatically check for Internet Explorer updatesEnabled
Empty Temporary Internet Files folder when browser is closedEnabled
Turn off encryption supportEnabled
Secure Protocol combinationsOnly use TLS 1.2
Windows Components/Internet Explorer/Internet Control Panel/Security Page
PolicySettingComment
Site to Zone Assignment ListEnabled
Enter the zone assignments here. 
*.microsoft.com2
Windows Components/Location and Sensors
PolicySettingComment
Turn off sensorsEnabled
Windows Components/NetMeeting
PolicySettingComment
Disable remote Desktop SharingEnabled
Windows Components/Network Projector
PolicySettingComment
Turn off Connect to a Network ProjectorEnabled
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Device and Resource Redirection
PolicySettingComment
Allow audio recording redirectionEnabled
Do not allow COM port redirectionDisabled
Do not allow LPT port redirectionDisabled
Do not allow smart card device redirectionDisabled
Do not allow supported Plug and Play device redirectionDisabled
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Printer Redirection
PolicySettingComment
Do not allow client printer redirectionDisabled
Do not set default client printer to be default printer in a sessionDisabled
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Security
PolicySettingComment
Require use of specific security layer for remote (RDP) connectionsEnabled
Security LayerSSL
Choose the security layer from the drop-down list.
PolicySettingComment
Require user authentication for remote connections by using Network Level AuthenticationEnabled
Server authentication certificate templateEnabled
Certificate Template NameTPEMEA-RDPAE2years
PolicySettingComment
Set client connection encryption levelEnabled
Encryption LevelHigh Level
Choose the encryption level from the drop-down list.
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Session Time Limits
PolicySettingComment
Set time limit for active but idle Remote Desktop Services sessionsEnabled
Idle session limit:15 minutes
PolicySettingComment
Set time limit for disconnected sessionsEnabled
End a disconnected session5 minutes
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Temporary folders
PolicySettingComment
Do not delete temp folders upon exitDisabled
Windows Components/RSS Feeds
PolicySettingComment
Prevent access to feed listEnabled
Windows Components/Tablet PC/Handwriting personalization
PolicySettingComment
Turn off automatic learningEnabled
Windows Components/Windows Messenger
PolicySettingComment
Do not allow Windows Messenger to be runEnabled
Do not automatically start Windows Messenger initiallyEnabled
Windows Components/Windows SideShow
PolicySettingComment
Turn off Windows SideShowEnabled
Windows Components/Windows Update/Manage end user experience
PolicySettingComment
Configure Automatic UpdatesDisabled
Preferences
Windows Settings
Registry
CWDIllegalInDllSearch (Order: 1)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\Session Manager
Value nameCWDIllegalInDllSearch
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
restrictanonymous (Order: 2)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\Lsa
Value namerestrictanonymous
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ScreenSaveIsSecure (Order: 3)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER (HKU\.DEFAULT)
Key pathControl Panel\Desktop
Value nameScreenSaveIsSecure
Value typeREG_SZ
Value data1
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ScreenSaveTimeOut (Order: 4)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER (HKU\.DEFAULT)
Key pathControl Panel\Desktop
Value nameScreenSaveTimeOut
Value typeREG_SZ
Value data180
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
SCRNSAVE.EXE (Order: 5)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER (HKU\.DEFAULT)
Key pathControl Panel\Desktop
Value nameSCRNSAVE.EXE
Value typeREG_SZ
Value dataC:\Windows\system32\scrnsave.scr
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ScreenSaveActive (Order: 6)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER (HKU\.DEFAULT)
Key pathControl Panel\Desktop
Value nameScreenSaveActive
Value typeREG_SZ
Value data1
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
EnableVersionQuery (Order: 7)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\DNS\Parameters
Value nameEnableVersionQuery
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
NoCDBurning (Order: 8)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER (HKU\.DEFAULT)
Key pathSoftware\Microsoft\Windows\CurrentVersion\Policies\Explorer
Value nameNoCDBurning
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ForceEncryptedData (Order: 9)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\RasMan\PPP
Value nameForceEncryptedData
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
SecureVPN (Order: 10)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\RasMan\PPP
Value nameSecureVPN
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 11)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\AES 128/128
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 12)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\AES 256/256
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 13)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\DES 56/56
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 14)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\NULL
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 15)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC2 128/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 16)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC2 40/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 17)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC2 56/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 18)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 128/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 19)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 40/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 20)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 56/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 21)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 64/128
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 22)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\Triple DES 168
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 23)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Hashes\MD5
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 24)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Hashes\SHA
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 25)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Hashes\SHA256
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 26)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Hashes\SHA384
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 27)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Hashes\SHA512
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 28)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms\Diffie-Hellman
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 29)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms\ECDH
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 30)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms\PKCS
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 31)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\Multi-Protocol Unified Hello\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 32)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\Multi-Protocol Unified Hello\Server
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 33)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\PCT 1.0\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 34)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\PCT 1.0\Server
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 35)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Client
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 36)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 37)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 38)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 39)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 40)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 41)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 42)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 43)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 44)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 45)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server
Value nameEnabled
Value typeREG_DWORD
Value data0xFFFFFFFF (4294967295)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 46)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Enabled (Order: 47)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client
Value nameEnabled
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
NtfsDisable8dot3NameCreation (Order: 48)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\FileSystem
Value nameNtfsDisable8dot3NameCreation
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
DisabledByDefault (Order: 49)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
DisabledByDefault (Order: 50)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client
Value nameDisabledByDefault
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
iexplore.exe (Order: 51)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
iexplore.exe (Order: 52)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
RoundRobin (Order: 53)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\DNS\Parameters
Value nameRoundRobin
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
LdapSrvWeight (Order: 54)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\Netlogon\Parameters
Value nameLdapSrvWeight
Value typeREG_DWORD
Value data0x5A (90)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Item-level targeting: Site
AttributeValue
boolAND
not0
nameDE-FFM
AutoSiteCoverage (Order: 55)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Policies\Microsoft\Netlogon\Parameters
Value nameAutoSiteCoverage
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Item-level targeting: Site
AttributeValue
boolAND
not1
nameDE-FFM
Item-level targeting: Site
AttributeValue
boolAND
not1
nameFR-PAR
DnsAvoidRegisterRecords (Order: 56)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Policies\Microsoft\Netlogon\Parameters
Value nameDnsAvoidRegisterRecords
Value typeREG_SZ
Value dataLdapIpAddress Ldap Gc GcIPAddress Kdc dc Rfc1510Kdc Rfc1510Kpwd Rfc1510UdpKdc Rfc1510UdpKpwd GenericGc
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Item-level targeting: Site
AttributeValue
boolAND
not1
nameDE-FFM
Item-level targeting: Site
AttributeValue
boolAND
not1
nameFR-PAR
TryNextClosestSite (Order: 57)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Policies\Microsoft\Netlogon\Parameters
Value nameTryNextClosestSite
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Item-level targeting: Site
AttributeValue
boolAND
not1
nameDE-FFM
Item-level targeting: Site
AttributeValue
boolAND
not1
nameFR-PAR
iexplore.exe (Order: 58)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
iexplore.exe (Order: 59)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
LdapEnforceChannelBinding (Order: 60)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\NTDS\Parameters
Value nameLdapEnforceChannelBinding
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
FeatureSettingsOverride (Order: 61)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\Session Manager\Memory Management
Value nameFeatureSettingsOverride
Value typeREG_DWORD
Value data0x48 (72)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
FeatureSettingsOverrideMask (Order: 62)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\Session Manager\Memory Management
Value nameFeatureSettingsOverrideMask
Value typeREG_DWORD
Value data0x3 (3)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
FullSecureChannelProtection (Order: 63)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\Netlogon\Parameters
Value nameFullSecureChannelProtection
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
vulnerablechannelallowlist (Order: 64)
General
ActionDelete
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\Netlogon\Parameters
Value namevulnerablechannelallowlist
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Description
Remove this reg key after 08.08.2021; its not needed anymore.
SMB1 (Order: 65)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\services\LanmanServer\Parameters
Value nameSMB1
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
EnableCertPaddingCheck (Order: 66)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Cryptography\Wintrust\Config
Value nameEnableCertPaddingCheck
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
EnableCertPaddingCheck (Order: 67)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Wow6432Node\Microsoft\Cryptography\Wintrust\Config
Value nameEnableCertPaddingCheck
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
15 Field Engineering (Order: 68)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\NTDS\Diagnostics
Value name15 Field Engineering
Value typeREG_DWORD
Value data0x5 (5)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Inefficient Search Results Threshold (Order: 69)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\NTDS\Parameters
Value nameInefficient Search Results Threshold
Value typeREG_DWORD
Value data0x3E8 (1000)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Expensive Search Results Threshold (Order: 70)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\NTDS\Parameters
Value nameExpensive Search Results Threshold
Value typeREG_DWORD
Value data0x3E8 (1000)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Search Time Threshold (msecs) (Order: 71)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\NTDS\Parameters
Value nameSearch Time Threshold (msecs)
Value typeREG_DWORD
Value data0x3E8 (1000)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
EMEA-EMEADC (Order: 72)
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Wow6432Node\Tanium\Tanium Client\Sensor Data\Tags
Value nameEMEA-EMEADC
Value typeREG_SZ
Value dataAdded automatically via GPO
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Collection: Collection
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: RequireSeal
General
ActionReplace
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\Netlogon\Parameters
Value nameRequireSeal
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedYes
Control Panel Settings
Services
Service (Name: Audiosrv)
Audiosrv (Order: 1)
General
Service nameAudiosrv
ActionNo change
Startup type:Disabled
Wait timeout if service is locked:30 seconds
Service Account
Log on service as:No change
Recovery
First failure:No change
Second failure:No change
Subsequent failures:No change
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User Configuration (Enabled)
Policies
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Windows Components/Internet Explorer/Delete Browsing History
PolicySettingComment
Allow deleting browsing history on exitEnabled
Prevent access to Delete Browsing HistoryDisabled
Prevent deleting ActiveX Filtering, Tracking Protection, and Do Not Track dataDisabled
Prevent deleting cookiesDisabled
Prevent deleting download historyDisabled
Prevent deleting favorites site dataDisabled
Prevent deleting form dataDisabled
Prevent deleting InPrivate Filtering dataDisabled
Prevent deleting passwordsDisabled
Prevent deleting temporary Internet filesDisabled
Prevent deleting websites that the user has visitedDisabled
Prevent the deletion of temporary Internet files and cookiesDisabled
Windows Components/Internet Explorer/Internet Control Panel/Advanced Page
PolicySettingComment
Automatically check for Internet Explorer updatesEnabled
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Internet Zone
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Intranet Zone
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Restricted Sites Zone
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Trusted Sites Zone
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
Windows Components/Internet Explorer/Internet Settings/Advanced settings/Internet Connection Wizard Settings
PolicySettingComment
Start the Internet Connection Wizard automaticallyDisabled