Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
ES-PO-WIN-ADM-C-Restrictions GISP Staff
Data collected on: 2-9-2025 11:47:45
General
Details
Domainemea.tpg.ads
OwnerEMEA\estevez.10-adm
Created28-12-2023 17:51:20
Modified20-5-2025 16:11:50
User Revisions1 (AD), 1 (SYSVOL)
Computer Revisions36 (AD), 36 (SYSVOL)
Unique ID{ff50a3f7-f2ef-4dcc-9a5e-19809d94acd0}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
ClientsNoEnabledemea.tpg.ads/ES/Systems/Clients

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
EMEA\ES-L-SEC-Computer Restriction GISP Staff
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\ES-L-SEC-Computer Restriction GISP StaffRead (from Security Filtering)No
EMEA\ES-L-SEC-Delegation Full AccessEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
Computer Configuration (Enabled)
Policies
Windows Settings
Security Settings
Local Policies/Security Options
Interactive Logon
PolicySetting
Interactive logon: Don't display last signed-inEnabled
Interactive logon: Prompt user to change password before expiration5 days
Network Security
PolicySetting
Network security: Do not store LAN Manager hash value on next password changeEnabled
Shutdown
PolicySetting
Shutdown: Clear virtual memory pagefileEnabled
System Services
Geolocation Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Downloaded Maps Manager (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Net.Tcp Port Sharing Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Phone Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Radio Management Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Internet Connection Sharing (ICS) (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Shell Hardware Detection (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Telephony (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Remote Desktop Services (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Time (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Insider Service (Startup Mode: Disabled)
Permissions
No permissions specified
Auditing
No auditing specified
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
System/Removable Storage Access
PolicySettingComment
All Removable Storage classes: Deny all accessEnabled
All Removable Storage: Allow direct access in remote sessionsEnabled
CD and DVD: Deny execute accessEnabled
CD and DVD: Deny read accessEnabled
CD and DVD: Deny write accessEnabled
Floppy Drives: Deny execute accessEnabled
Floppy Drives: Deny read accessEnabled
Floppy Drives: Deny write accessEnabled
Removable Disks: Deny execute accessEnabled
Removable Disks: Deny read accessEnabled
Removable Disks: Deny write accessEnabled
Tape Drives: Deny execute accessEnabled
Tape Drives: Deny read accessEnabled
Tape Drives: Deny write accessEnabled
WPD Devices: Deny read accessEnabled
WPD Devices: Deny write accessEnabled
Windows Components/Windows Installer
PolicySettingComment
Always install with elevated privilegesEnabled
This policy setting must be set for the machine and the user to be enforced.
User Configuration (Enabled)
No settings defined.