Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
GR-PO-WIN-C-EFKA PC Settings
Data collected on: 2-9-2025 09:59:01
General
Details
Domainemea.tpg.ads
OwnerS-1-5-21-513466819-3096973226-347852806-624555
Created29-6-2021 16:32:02
Modified25-4-2024 09:15:30
User Revisions0 (AD), 0 (SYSVOL)
Computer Revisions61 (AD), 61 (SYSVOL)
Unique ID{9ce0735a-6ce9-4c3f-aaa4-68b3176da7d9}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
ClientsYesEnabledemea.tpg.ads/GR/Systems/Clients

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
EMEA\GR-L-SEC-Systems Clients EFKA Computers
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\Domain ComputersReadNo
EMEA\GR-G-ORG-OU AdminsEdit settings, delete, modify securityNo
EMEA\GR-L-SEC-Systems Clients EFKA ComputersRead (from Security Filtering)No
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
S-1-5-21-513466819-3096973226-347852806-624555Edit settings, delete, modify securityNo
Computer Configuration (Enabled)
Policies
Windows Settings
Scripts
Startup
For this GPO, Script order: Not configured
NameParameters
\\emea.tpg.ads\GR\Kalithea\Personal\Profiles\EFKA\EFKACopyFiles.vbs
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Windows Components/File Explorer
PolicySettingComment
Set a default associations configuration fileEnabled
Default Associations Configuration File\\emea.tpg.ads\GR\Kalithea\Personal\Profiles\EFKA\AppAssociations.xml
Windows Components/Internet Explorer/Internet Control Panel/Security Page
PolicySettingComment
Intranet Zone TemplateEnabled
IntranetHigh
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Intranet Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerPrompt
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsEnable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow loading of XAML Browser ApplicationsEnabled
XAML browser applicationsEnable
PolicySettingComment
Allow loading of XAML filesEnabled
XAML FilesEnable
PolicySettingComment
Allow loading of XPS filesEnabled
XPS documentsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow only approved domains to use ActiveX controls without promptEnabled
Only allow approved domains to use ActiveX controls without promptDisable
PolicySettingComment
Allow only approved domains to use the TDC ActiveX controlEnabled
Only allow approved domains to use the TDC ActiveX controlDisable
PolicySettingComment
Allow scripting of Internet Explorer WebBrowser controlsEnabled
Internet Explorer web browser controlEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsEnable
PolicySettingComment
Allow scriptletsEnabled
ScriptletsEnable
PolicySettingComment
Allow updates to status bar via scriptEnabled
Status bar updates via scriptEnable
PolicySettingComment
Allow video and animation on a webpage that uses an older media playerEnabled
Allow video and animation on a Web page that uses a legacy media playerDisable
PolicySettingComment
Allow websites to open windows without status bar or Address barEnabled
Open windows without address or status barsEnable
PolicySettingComment
Allow websites to prompt for information by using scripted windowsEnabled
Prompt for information using scripted windowsEnable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsEnable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsEnable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentPrompt
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsPrompt
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingEnable
PolicySettingComment
Include local path when user is uploading files to a serverEnabled
Include local directory path when uploading files to a serverEnable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safePrompt
PolicySettingComment
Java permissionsEnabled
Java permissionsLow safety
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeEnable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeEnable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsEnable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Turn off .NET Framework SetupEnabled
.NET Framework SetupDisable
PolicySettingComment
Turn off first-run promptEnabled
First-Run Opt-InEnable
PolicySettingComment
Turn on Cross-Site Scripting FilterEnabled
Turn on Cross-Site Scripting (XSS) FilterDisable
PolicySettingComment
Turn on Protected ModeEnabled
Protected ModeEnable
PolicySettingComment
Turn on SmartScreen Filter scanEnabled
Use SmartScreen FilterDisable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zonePrompt
Windows Components/Windows Update/Manage updates offered from Windows Server Update Service
PolicySettingComment
Enable client-side targetingEnabled
Target group name for this computerEFKA
Preferences
Windows Settings
Registry
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: tpg.ads
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads/emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: emea
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\emea
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/grkalfs01
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: grkalfs01
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grkalfs01
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grkalfs01
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Local Users and Groups
Group (Name: Administrators (built-in))
Administrators (built-in) (Order: 1)
Local Group
ActionUpdate
Properties
Group nameAdministrators (built-in)
Delete all member usersDisabled
Delete all member groupsEnabled
Add members
EMEA\GR-G-ORG-Remote Admin UsersS-1-5-21-513466819-3096973226-347852806-613115
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Group (Name: Users (built-in))
Users (built-in) (Order: 2)
Local Group
ActionUpdate
Properties
Group nameUsers (built-in)
Delete all member usersDisabled
Delete all member groupsEnabled
Add members
EMEA\GR-G-ORG-Remote Admin UsersS-1-5-21-513466819-3096973226-347852806-613115
tpadmin
EMEA\GR-G-ORG-USERS EFKA ACMS-1-5-21-513466819-3096973226-347852806-890821
EMEA\GR-G-ORG-USERS EFKA AdminS-1-5-21-513466819-3096973226-347852806-890823
EMEA\GR-G-ORG-USERS EFKA AgentsS-1-5-21-513466819-3096973226-347852806-890825
EMEA\GR-G-ORG-USERS EFKA CCMS-1-5-21-513466819-3096973226-347852806-890820
EMEA\GR-G-ORG-USERS EFKA QAS-1-5-21-513466819-3096973226-347852806-890824
EMEA\GR-G-ORG-USERS EFKA SupervisorsS-1-5-21-513466819-3096973226-347852806-890822
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Tasks
Scheduled Task (At least Windows 7) (Name: Host_File_Copy)
Host_File_Copy (Order: 1)
General
ActionUpdate
Task
Name Host_File_Copy
Author EMEA\tentolouris.5
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.3
Enabled Yes
Triggers
1. Run at user logon
Delay task for 30 seconds
Repeat task every 5 minutes for a duration of 1 hour
Stop all running tasks at end of repetition duration No
Activate 6-4-2020 14:33:02Synchronize across time zones No
Enabled Yes
Actions
1. Start a program
Program/script \\emea.tpg.ads\GR\Kalithea\Personal\Profiles\EFKA\Hosts_File\CopyHostFile_EFKA.bat
Settings
Stop if the computer ceases to be idle Yes
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power Yes
Allow task to be run on demand Yes
Stop task if it runs longer than 3 days
If the running task does not end when requested, force it to stop Yes
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: Run Admin Infinity)
Run Admin Infinity (Order: 2)
General
ActionCreate
Task
Name Run Admin Infinity
Author EMEA\tentolouris.5-adm
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.2
Enabled Yes
Triggers
1. At task creation/modification
Expire 31-8-2021 15:21:35Synchronize across time zones No
Enabled Yes
Actions
1. Start a program
Program/script \\grkalfs01\Installers and Apps\Infinity\Live45\Infinity.Launcher.exe
Settings
Stop if the computer ceases to be idle No
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power No
Allow task to be run on demand Yes
Stop task if it runs longer than Immediately
If the running task does not end when requested, force it to stop No
If the task is not scheduled to run again, delete it after 30 days
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: TPAUX_File_Copy)
TPAUX_File_Copy (Order: 3)
General
ActionUpdate
Task
Name TPAUX_File_Copy
Author EMEA\tentolouris.5
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.3
Enabled Yes
Triggers
1. At task creation/modification
Delay task for 30 seconds
Repeat task every 30 minutes for a duration of 1 hour
Stop all running tasks at end of repetition duration No
Activate 6-4-2020 14:33:02Synchronize across time zones No
Enabled Yes
Actions
1. Start a program
Program/script \\grkalfs01\netconfigfiles\GlobalSettings\WAHA\tpaux_waha.bat
Settings
Stop if the computer ceases to be idle Yes
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power Yes
Allow task to be run on demand Yes
Stop task if it runs longer than 3 days
If the running task does not end when requested, force it to stop Yes
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: Landesk Startup)
Landesk Startup (Order: 4)
General
ActionDelete
Task
Name Landesk Startup
Author EMEA\tentolouris.5-adm
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.2
Enabled Yes
Actions
1. Start a program
Program/script \\grkalfs01\netconfigfiles\GlobalSettings\Landesk\Landesk_startup.bat
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User Configuration (Enabled)
No settings defined.