Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
GR-PO-WIN-C-Global Harden Client
Data collected on: 2-9-2025 08:55:31
General
Details
Domainemea.tpg.ads
OwnerEMEA\tentolouris.5
Created5-10-2015 16:16:42
Modified21-5-2025 09:15:46
User Revisions8 (AD), 8 (SYSVOL)
Computer Revisions577 (AD), 577 (SYSVOL)
Unique ID{828e0b5a-4992-48bc-bc04-6131da58220d}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
ClientsNoEnabledemea.tpg.ads/GR/Systems/Clients

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
NT AUTHORITY\Authenticated Users
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\Domain ComputersReadNo
EMEA\GR-G-ORG-OU AdminsEdit settings, delete, modify securityNo
EMEA\tentolouris.5Edit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersRead (from Security Filtering)No
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
S-1-5-21-513466819-3096973226-347852806-203252ReadNo
Computer Configuration (Enabled)
Policies
Windows Settings
Security Settings
Local Policies/Security Options
Accounts
PolicySetting
Accounts: Limit local account use of blank passwords to console logon onlyEnabled
Accounts: Rename administrator account"tpadminlc"
Accounts: Rename guest account"habos"
Audit
PolicySetting
Audit: Audit the access of global system objectsDisabled
Audit: Audit the use of Backup and Restore privilegeDisabled
Devices
PolicySetting
Devices: Allowed to format and eject removable mediaAdministrators
Devices: Prevent users from installing printer driversEnabled
Devices: Restrict CD-ROM access to locally logged-on user onlyEnabled
Devices: Restrict floppy access to locally logged-on user onlyEnabled
Domain Member
PolicySetting
Domain member: Digitally encrypt secure channel data (when possible)Enabled
Interactive Logon
PolicySetting
Interactive logon: Do not require CTRL+ALT+DELDisabled
Interactive logon: Don't display last signed-inEnabled
Interactive logon: Prompt user to change password before expiration14 days
Network Security
PolicySetting
Network security: Do not store LAN Manager hash value on next password changeEnabled
Recovery Console
PolicySetting
Recovery console: Allow automatic administrative logonDisabled
Recovery console: Allow floppy copy and access to all drives and all foldersDisabled
Shutdown
PolicySetting
Shutdown: Allow system to be shut down without having to log onDisabled
Shutdown: Clear virtual memory pagefileEnabled
System Services
BITS (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Cryptographic Services (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Installer (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
Windows Update (Startup Mode: Automatic)
Permissions
No permissions specified
Auditing
No auditing specified
File System
%AllUsersProfile%\TPBackground
Configure this file or folder then: Replace existing permissions on all subfolders and files with inheritable permissions
Owner
Permissions
TypeNamePermissionApply To
AllowBUILTIN\AdministratorsFull ControlThis folder, subfolders and files
AllowCREATOR OWNERFull ControlSubfolders and files only
AllowNT AUTHORITY\SYSTEMFull ControlThis folder, subfolders and files
AllowBUILTIN\UsersRead and ExecuteThis folder, subfolders and files
AllowAPPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGESRead and ExecuteThis folder, subfolders and files
Allow inheritable permissions from the parent to propagate to this object and all child objectsDisabled
Auditing
No auditing specified
%SystemDrive%\TPSTUFF
Configure this file or folder then: Replace existing permissions on all subfolders and files with inheritable permissions
Owner
Permissions
TypeNamePermissionApply To
AllowAPPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGESRead and ExecuteThis folder, subfolders and files
AllowCREATOR OWNERFull ControlSubfolders and files only
AllowNT AUTHORITY\SYSTEMFull ControlThis folder, subfolders and files
AllowBUILTIN\AdministratorsFull ControlThis folder, subfolders and files
Allow inheritable permissions from the parent to propagate to this object and all child objectsDisabled
Auditing
No auditing specified
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Control Panel/Personalization
PolicySettingComment
Force a specific default lock screen and logon imageEnabled
Path to lock screen image:C:\ProgramData\TPBackground\StatementofDirection.jpg
Example: Using a local path: C:\windows\web\screen\lockscreen.jpg
Example: Using a UNC path: \\Server\Share\Corp.jpg
Turn off fun facts, tips, tricks, and more on lock screenEnabled
PolicySettingComment
Prevent changing lock screen and logon imageEnabled
Google/Google Chrome
PolicySettingComment
Allow QUIC protocolDisabled
Microsoft Edge
PolicySettingComment
Allow QUIC protocolDisabled
Network/Offline Files
PolicySettingComment
Allow or Disallow use of the Offline Files featureEnabled
System/Logon
PolicySettingComment
Always wait for the network at computer startup and logonEnabled
Do not display the Getting Started welcome screen at logonEnabled
System/OS Policies
PolicySettingComment
Allow Clipboard HistoryDisabled
Allow Clipboard synchronization across devicesDisabled
Allow publishing of User ActivitiesDisabled
Allow upload of User ActivitiesDisabled
Enables Activity FeedDisabled
System/Power Management/Button Settings
PolicySettingComment
Select the lid switch action (on battery)Enabled
Lid Switch ActionTake no action
PolicySettingComment
Select the lid switch action (plugged in)Enabled
Lid Switch ActionTake no action
PolicySettingComment
Select the Power button action (on battery)Enabled
Power Button ActionShut down
PolicySettingComment
Select the Power button action (plugged in)Enabled
Power Button ActionShut down
PolicySettingComment
Select the Sleep button action (on battery)Enabled
Sleep Button ActionShut down
PolicySettingComment
Select the Sleep button action (plugged in)Enabled
Sleep Button ActionShut down
PolicySettingComment
Select the Start menu Power button action (on battery)Enabled
User Interface Sleep Button ActionShut down
PolicySettingComment
Select the Start menu Power button action (plugged in)Enabled
User Interface Sleep Button ActionShut down
System/Power Management/Hard Disk Settings
PolicySettingComment
Turn Off the hard disk (on battery)Enabled
Turn Off the Hard Disk (seconds):4294967295
PolicySettingComment
Turn Off the hard disk (plugged in)Enabled
Turn Off the Hard Disk (seconds):4294967295
System/Power Management/Sleep Settings
PolicySettingComment
Allow applications to prevent automatic sleep (on battery)Enabled
Allow applications to prevent automatic sleep (plugged in)Enabled
Allow automatic sleep with Open Network Files (on battery)Disabled
Allow automatic sleep with Open Network Files (plugged in)Disabled
Allow network connectivity during connected-standby (on battery)Enabled
Allow network connectivity during connected-standby (plugged in)Enabled
Allow standby states (S1-S3) when sleeping (on battery)Disabled
Allow standby states (S1-S3) when sleeping (plugged in)Disabled
Require a password when a computer wakes (on battery)Enabled
Require a password when a computer wakes (plugged in)Enabled
Specify the system hibernate timeout (on battery)Enabled
System Hibernate Timeout (seconds):4294967295
PolicySettingComment
Specify the system hibernate timeout (plugged in)Enabled
System Hibernate Timeout (seconds):4294967295
PolicySettingComment
Specify the system sleep timeout (on battery)Enabled
System Sleep Timeout (seconds):4294967295
PolicySettingComment
Specify the system sleep timeout (plugged in)Enabled
System Sleep Timeout (seconds):4294967295
PolicySettingComment
Specify the unattended sleep timeout (on battery)Enabled
Unattended Sleep Timeout (seconds):4294967295
PolicySettingComment
Specify the unattended sleep timeout (plugged in)Enabled
Unattended Sleep Timeout (seconds):4294967295
PolicySettingComment
Turn off hybrid sleep (on battery)Enabled
Turn off hybrid sleep (plugged in)Enabled
Turn on the ability for applications to prevent sleep transitions (on battery)Enabled
Turn on the ability for applications to prevent sleep transitions (plugged in)Enabled
System/Remote Assistance
PolicySettingComment
Configure Offer Remote AssistanceDisabled
System/System Restore
PolicySettingComment
Turn off ConfigurationEnabled
Turn off System RestoreEnabled
Windows Components/Delivery Optimization
PolicySettingComment
Download ModeEnabled
Download Mode:HTTP only (0)
Windows Components/Desktop Gadgets
PolicySettingComment
Turn off desktop gadgetsEnabled
Turn Off user-installed desktop gadgetsEnabled
Windows Components/File Explorer
PolicySettingComment
Show hibernate in the power options menuDisabled
Show sleep in the power options menuDisabled
Windows Components/Internet Explorer
PolicySettingComment
Prevent "Fix settings" functionalityEnabled
Prevent access to Internet Explorer HelpEnabled
Prevent changing proxy settingsEnabled
Prevent participation in the Customer Experience Improvement ProgramEnabled
Prevent running First Run wizardEnabled
Select your choiceGo directly to home page
Windows Components/Internet Explorer/Internet Control Panel/Security Page
PolicySettingComment
Intranet Sites: Include all local (intranet) sites not listed in other zonesEnabled
Intranet Sites: Include all network paths (UNCs)Enabled
Windows Components/Microsoft Defender Antivirus
PolicySettingComment
Turn off Microsoft Defender AntivirusEnabled
Windows Components/Microsoft Defender Antivirus/Client Interface
PolicySettingComment
Enable headless UI modeEnabled
Windows Components/Microsoft Edge
PolicySettingComment
Prevent access to the about:flags page in Microsoft EdgeEnabled
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Connections
PolicySettingComment
Allow users to connect remotely by using Remote Desktop ServicesDisabled
Windows Components/RSS Feeds
PolicySettingComment
Prevent access to feed listEnabled
Prevent automatic discovery of feeds and Web SlicesEnabled
Prevent downloading of enclosuresEnabled
Prevent subscribing to or deleting a feed or a Web SliceEnabled
Turn off background synchronization for feeds and Web SlicesEnabled
Windows Components/Search
PolicySettingComment
Do not allow web searchEnabled
Don't search the web or display web results in SearchEnabled
Don't search the web or display web results in Search over metered connectionsEnabled
Windows Components/Windows Mail
PolicySettingComment
Turn off Windows Mail applicationEnabled
Windows Components/Windows Media Center
PolicySettingComment
Do not allow Windows Media Center to runEnabled
Windows Components/Windows Media Digital Rights Management
PolicySettingComment
Prevent Windows Media DRM Internet AccessEnabled
Windows Components/Windows Messenger
PolicySettingComment
Do not allow Windows Messenger to be runEnabled
Do not automatically start Windows Messenger initiallyEnabled
Windows Components/Windows Security/Account protection
PolicySettingComment
Hide the Account protection areaEnabled
Windows Components/Windows Security/App and browser protection
PolicySettingComment
Prevent users from modifying settingsEnabled
Windows Components/Windows Security/Device performance and health
PolicySettingComment
Hide the Device performance and health areaEnabled
Windows Components/Windows Security/Device security
PolicySettingComment
Disable the Clear TPM buttonEnabled
Hide the Device security areaEnabled
Hide the Secure boot areaEnabled
Hide the TPM Firmware Update recommendation.Enabled
Windows Components/Windows Security/Family options
PolicySettingComment
Hide the Family options areaEnabled
Windows Components/Windows Security/Firewall and network protection
PolicySettingComment
Hide the Firewall and network protection areaEnabled
Windows Components/Windows Security/Virus and threat protection
PolicySettingComment
Hide the Ransomware data recovery areaEnabled
Hide the Virus and threat protection areaEnabled
Windows Components/Windows SideShow
PolicySettingComment
Turn off Windows SideShowEnabled
Extra Registry Settings
Display names for some settings cannot be found. You might be able to resolve this issue by updating the .ADM files used by Group Policy Management.

SettingState
Software\policies\Microsoft\Windows\DeliveryOptimization\DOMaxUploadBandwidth1
Software\policies\Microsoft\Windows\Skydrive\DisableFileSync1
Software\policies\Microsoft\Windows\Skydrive\DisableLibrariesDefaultSaveToSkyDrive1
Preferences
Windows Settings
Files
File (Target Path: C:\Windows\Temp\fixlogs.bat)
fixlogs.bat (Order: 1)
General
ActionCreate
Properties
Source file(s)\\grkalfs01\netconfigfiles\GlobalSettings\fixlogs.bat
Destination fileC:\Windows\Temp\fixlogs.bat
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveDisabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
File (Target Path: C:\TPSTUFF\MSteams-detect-createLT.ps1)
MSteams-detect-createLT.ps1 (Order: 2)
General
ActionReplace
Properties
Source file(s)\\grkalfs01\netconfigfiles\GlobalSettings\teams\MSteams-detect-createLT.ps1
Destination fileC:\TPSTUFF\MSteams-detect-createLT.ps1
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveDisabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Folders
Folder (Path: C:\ProgramData\TPBackground\)
(Order: 1)
General
ActionCreate
Attributes
PathC:\ProgramData\TPBackground\
Read-onlyDisabled
HiddenDisabled
ArchiveDisabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Folder (Path: C:\Program Files\TPTools-Apps)
TPTools-Apps (Order: 2)
General
ActionCreate
Attributes
PathC:\Program Files\TPTools-Apps
Read-onlyDisabled
HiddenDisabled
ArchiveDisabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry
DisableAntiSpyware (Order: 1)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Policies\Microsoft\Windows Defender
Value nameDisableAntiSpyware
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
LaunchProtected (Order: 2)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\SecurityHealthService
Value nameLaunchProtected
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Start (Order: 3)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\SecurityHealthService
Value nameStart
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ServiceSidType (Order: 4)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Services\SecurityHealthService
Value nameServiceSidType
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
iexplore.exe (Order: 5)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
iexplore.exe (Order: 6)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
iexplore.exe (Order: 7)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
iexplore.exe (Order: 8)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX
Value nameiexplore.exe
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
SchUseStrongCrypto (Order: 9)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\.NETFramework\v2.0.50727
Value nameSchUseStrongCrypto
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
SchUseStrongCrypto (Order: 10)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727
Value nameSchUseStrongCrypto
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
EnableFirstLogonAnimation (Order: 11)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System
Value nameEnableFirstLogonAnimation
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ms-msdt (Order: 12)
General
ActionDelete
Properties
HiveHKEY_CLASSES_ROOT
Key pathms-msdt
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: Domains
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/*.emea.tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: *.emea.tpg.ads
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\*.emea.tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: (Default)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\*.emea.tpg.ads
Value name(Default)
Value typeREG_SZ
Value data
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/*.tpg.zone
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: *.tpg.zone
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\*.tpg.zone
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: (Default)
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\*.tpg.zone
Value name(Default)
Value typeREG_SZ
Value data
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: tpg.ads
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads/grkalfs01.emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: grkalfs01.emea
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\grkalfs01.emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\grkalfs01.emea
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/Session Manager/Memory Management
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: FeatureSettingsOverride
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\Session Manager\Memory Management
Value nameFeatureSettingsOverride
Value typeREG_DWORD
Value data0x48 (72)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: FeatureSettingsOverrideMask
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSYSTEM\CurrentControlSet\Control\Session Manager\Memory Management
Value nameFeatureSettingsOverrideMask
Value typeREG_DWORD
Value data0x3 (3)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/grkalfs01
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: grkalfs01
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grkalfs01
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grkalfs01
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: tpg.ads
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads/emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: emea
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\emea
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Collection: Registry Wizard Values/HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Internet Settings/ZoneMap/Domains/tpg.ads/grkalfs01.emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Registry item: grkalfs01.emea
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\grkalfs01.emea
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Registry item: *
General
ActionUpdate
Properties
HiveHKEY_LOCAL_MACHINE
Key pathSOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\tpg.ads\grkalfs01.emea
Value name*
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Local Users and Groups
User (Name: tpadmin1)
tpadmin1 (Order: 1)
Local User
ActionDelete
Properties
User nametpadmin1
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: tpadmin2)
tpadmin2 (Order: 2)
Local User
ActionDelete
Properties
User nametpadmin2
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: tpadmin3)
tpadmin3 (Order: 3)
Local User
ActionDelete
Properties
User nametpadmin3
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: tpadmin4)
tpadmin4 (Order: 4)
Local User
ActionDelete
Properties
User nametpadmin4
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: sysprep2)
sysprep2 (Order: 5)
Local User
ActionDelete
Properties
User namesysprep2
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: sysprep1)
sysprep1 (Order: 6)
Local User
ActionDelete
Properties
User namesysprep1
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: sys1)
sys1 (Order: 7)
Local User
ActionDelete
Properties
User namesys1
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: syprep)
syprep (Order: 8)
Local User
ActionDelete
Properties
User namesyprep
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: SYSPREP)
SYSPREP (Order: 9)
Local User
ActionDelete
Properties
User nameSYSPREP
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: SYSPREP3)
SYSPREP3 (Order: 10)
Local User
ActionDelete
Properties
User nameSYSPREP3
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: SYSPREP4)
SYSPREP4 (Order: 11)
Local User
ActionDelete
Properties
User nameSYSPREP4
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: sysprep8)
sysprep8 (Order: 19)
Local User
ActionDelete
Properties
User namesysprep8
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
sysprep8 (Order: 12)
Local User
ActionDelete
Properties
User namesysprep8
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: tpadmin2)
tpadmin2 (Order: 13)
Local User
ActionDelete
Properties
User name tpadmin2
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: tpadmin12)
tpadmin12 (Order: 14)
Local User
ActionDelete
Properties
User nametpadmin12
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: tpadamin1)
tpadamin1 (Order: 15)
Local User
ActionDelete
Properties
User nametpadamin1
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: SYSYPREP6)
SYSYPREP6 (Order: 16)
Local User
ActionDelete
Properties
User nameSYSYPREP6
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: SYSYPREP)
SYSYPREP (Order: 17)
Local User
ActionDelete
Properties
User nameSYSYPREP
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
User (Name: sys)
sys (Order: 18)
Local User
ActionDelete
Properties
User namesys
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Group (Name: Administrators (built-in))
Administrators (built-in) (Order: 20)
Local Group
ActionUpdate
Properties
Group nameAdministrators (built-in)
Delete all member usersDisabled
Delete all member groupsDisabled
Add members
EMEA\GR-G-ORG-Remote Admin UsersS-1-5-21-513466819-3096973226-347852806-613115
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Group (Name: Users (built-in))
Users (built-in) (Order: 21)
Local Group
ActionUpdate
Properties
Group nameUsers (built-in)
Delete all member usersDisabled
Delete all member groupsDisabled
Add members
EMEA\GR-G-ORG-Remote Admin UsersS-1-5-21-513466819-3096973226-347852806-613115
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Tasks
Scheduled Task (At least Windows 7) (Name: Disable Hibernate EMEA)
Disable Hibernate EMEA (Order: 1)
General
ActionCreate
Task
Name Disable Hibernate EMEA
Author EMEA\tentolouris.5
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden Yes
Configure for 1.3
Enabled Yes
Triggers
1. At task creation/modification
Enabled Yes
Actions
1. Start a program
Program/script C:\Windows\System32\powercfg.exe
Arguments /hibernate off
Settings
Stop if the computer ceases to be idle No
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power No
Wake the computer to run this task Yes
Allow task to be run on demand No
Run task as soon as possible after a scheduled start is missed Yes
Stop task if it runs longer than Immediately
If the running task does not end when requested, force it to stop No
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: DesktopBackgroundCopy)
DesktopBackgroundCopy (Order: 2)
General
ActionUpdate
Task
Name DesktopBackgroundCopy
Author EMEA\tentolouris.5
Description
Run only when user is logged on InteractiveToken
UserId NT AUTHORITY\System
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.3
Enabled Yes
Triggers
1. On local connection to user session
Delay task for 1 minute
Enabled Yes
2. Run at user logon
Delay task for 1 minute
Enabled Yes
3. On remote connection to user session
Delay task for 1 minute
Enabled Yes
Actions
1. Start a program
Program/script \\grkalfs01.emea.tpg.ads\netconfigfiles\GlobalSettings\DesktopBackground\CopyDesktop.bat
2. Start a program
Program/script \\grkalfs01\netconfigfiles\GlobalSettings\DesktopBackground\CopyDesktop.bat
3. Start a program
Program/script \\kalfs1.tphellas.legacy\netconfigfiles\GlobalSettings\DesktopBackground\CopyDesktop.bat
Settings
Stop if the computer ceases to be idle Yes
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power No
Start only if the following network connection is available Any connection
Allow task to be run on demand Yes
Run task as soon as possible after a scheduled start is missed Yes
Stop task if it runs longer than 1 day
If the running task does not end when requested, force it to stop Yes
If the task is already running, then the following rule applies StopExisting
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: NoCacheLogon)
NoCacheLogon (Order: 3)
General
ActionDelete
Task
Name NoCacheLogon
Author EMEA\tentolouris.5
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden Yes
Configure for 1.3
Enabled Yes
Actions
1. Start a program
Program/script \\grkalfs01\netconfigfiles\GlobalSettings\WAHA-NoCachedLogon\PassCacheRunandGun.vbs
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: ClearTemplogs)
ClearTemplogs (Order: 4)
General
ActionUpdate
Task
Name ClearTemplogs
Author EMEA\tentolouris.5
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden Yes
Configure for 1.3
Enabled Yes
Triggers
1. Daily
Delay task for up to (random delay) 8 hours
Stop task if it runs longer than 2 hours
Activate 13-4-2020 09:24:03Synchronize across time zones No
Enabled Yes
Recur every 1 days
Actions
1. Start a program
Program/script C:\Windows\Temp\fixlogs.bat
Settings
Stop if the computer ceases to be idle Yes
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power Yes
Allow task to be run on demand Yes
Run task as soon as possible after a scheduled start is missed Yes
Stop task if it runs longer than 8 hours
If the running task does not end when requested, force it to stop Yes
If the task is already running, then the following rule applies StopExisting
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: CiscoCert)
CiscoCert (Order: 5)
General
ActionDelete
Task
Name CiscoCert
Author EMEA\tentolouris.5
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden Yes
Configure for 1.3
Enabled Yes
Actions
1. Start a program
Program/script \\grkalfs01\netconfigfiles\GlobalSettings\Setups\Cisco-pbvpn\Cert\proper-import-certificate.bat
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Apply once and do not reapplyNo
Scheduled Task (At least Windows 7) (Name: Teams-detectand-create)
Teams-detectand-create (Order: 6)
General
ActionUpdate
Task
Name Teams-detectand-create
Author EMEA\tentolouris.5-adm
Description
Run only when user is logged on
GroupId NT AUTHORITY\SYSTEM
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.2
Enabled Yes
Triggers
1. At startup
Enabled Yes
Actions
1. Start a program
Program/script Powershell.exe
Arguments -ExecutionPolicy Bypass C:\TPSTUFF\MSteams-detect-createLT.ps1
Settings
Stop if the computer ceases to be idle No
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power No
Allow task to be run on demand Yes
Stop task if it runs longer than Immediately
If the running task does not end when requested, force it to stop No
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
User Configuration (Enabled)
No settings defined.