Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
LT-PO-WIN-C-Windows Firewall Shared (UA-LT)
Data collected on: 2-9-2025 10:21:08
General
Details
Domainemea.tpg.ads
OwnerEMEA\efimov.6-adm
Created8-4-2022 09:39:58
Modified3-10-2024 10:05:24
User Revisions1 (AD), 1 (SYSVOL)
Computer Revisions85 (AD), 85 (SYSVOL)
Unique ID{2e190a9d-1956-4677-a330-b1fe057a47fd}
GPO StatusUser settings disabled
Links
LocationEnforcedLink StatusPath
ClientsYesEnabledemea.tpg.ads/LT/Systems/Clients
ClientsNoEnabledemea.tpg.ads/UA/Systems/Clients

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
EMEA\LT-L-SEC-GPO Windows Firewall Shared
EMEA\UA-L-SEC-GPO Windows Firewall Shared
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\efimov.6-admEdit settings, delete, modify securityNo
EMEA\LT-L-SEC-Delegation Group Policy Objects Modify AccessEdit settings, delete, modify securityNo
EMEA\LT-L-SEC-GPO Windows Firewall SharedRead (from Security Filtering)No
EMEA\RU-L-SEC-Delegation Group Policy Objects Modify AccessEdit settings, delete, modify securityNo
EMEA\UA-L-SEC-GPO Windows Firewall SharedRead (from Security Filtering)No
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
Computer Configuration (Enabled)
Policies
Windows Settings
Security Settings
Windows Firewall with Advanced Security
Global Settings
PolicySetting
Policy version2.31
Disable stateful FTPNot Configured
Disable stateful PPTPNot Configured
IPsec exemptNot Configured
IPsec through NATNot Configured
Preshared key encodingNot Configured
SA idle timeNot Configured
Strong CRL checkNot Configured
Domain Profile Settings
PolicySetting
Firewall stateOn
Inbound connectionsBlock
Outbound connectionsAllow
Apply local firewall rulesYes
Apply local connection security rulesYes
Display notificationsNot Configured
Allow unicast responsesNot Configured
Log dropped packetsYes
Log successful connectionsNo
Log file path%systemroot%\system32\logfiles\firewall\pfirewall.log
Log file maximum size (KB)4096
Private Profile Settings
PolicySetting
Firewall stateOn
Inbound connectionsBlock
Outbound connectionsNot Configured
Apply local firewall rulesNot Configured
Apply local connection security rulesNot Configured
Display notificationsNot Configured
Allow unicast responsesNot Configured
Log dropped packetsNot Configured
Log successful connectionsNot Configured
Log file pathNot Configured
Log file maximum size (KB)Not Configured
Public Profile Settings
PolicySetting
Firewall stateOn
Inbound connectionsBlock
Outbound connectionsNot Configured
Apply local firewall rulesNot Configured
Apply local connection security rulesNot Configured
Display notificationsNot Configured
Allow unicast responsesNot Configured
Log dropped packetsNot Configured
Log successful connectionsNot Configured
Log file pathNot Configured
Log file maximum size (KB)Not Configured
Inbound Rules
NameDescription
TPRU Internal in
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scope10.207.0.0/255.255.0.0, 10.208.0.0/255.255.0.0, 10.209.0.0/255.255.0.0, 10.247.0.0/255.255.0.0, 10.10.0.0/255.255.0.0, 10.246.0.0/255.255.0.0
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
TP EMEA
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scope10.204.0.0/255.255.0.0
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
Allow EMEA services
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scope195.210.6.0/255.255.255.0
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
Allow Avaya OneX UI
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\program files (x86)\avaya\avaya one-x communicator\onexcui.exe
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
Allow Avaya OneX Sparkemulator
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\program files (x86)\avaya\avaya one-x agent\sparkemulator.exe
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
Allow Teams
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
Program%LOCALAPPDATA%\Microsoft\Teams\current\teams.exe
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalTrue
Group
Allow Avaya CMS Supervisor acs_tned
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
Programc:\Program Files (x86)\Avaya\cms supervisor r19\acs_tned.exe
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
Allow Avaya CMS Supervisor asguihost
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Avaya\Avaya Aura CC Elite Multichannel\Desktop\CC Elite Multichannel Desktop\asguihost.exe
ActionAllow
SecurityRequire authentication
Authorized computers
Authorized users
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Allow edge traversalFalse
Group
Outbound Rules
NameDescription
DNS ClientName solving for vpn servers
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol17
Local portAny
Remote port53
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler Updater
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSAUpdater\ZSAUpdater.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler Tunnel
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSATunnel\ZSATunnel.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler TrayManager
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSATrayManager\ZSATrayManager.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler Tray
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSATray\ZSATray.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler MTAuthApp
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSATray\ZSAMTAuthApp.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler Service
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSAService\ZSAService.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler Helper
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSAHelper\ZSAHelper.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler App Updater
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\Updater\zscalerappupdater.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscaler MTAuthApp
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files (x86)\Zscaler\ZSATray\ZSAMTAuthApp.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Trafic UDP
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol17
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Internal Proxies
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol6
Local portAny
Remote port8080, 9090
ICMP settingsAny
Local scopeAny
Remote scope10.207.14.12, 10.207.110.10, 10.207.110.11, 10.207.110.12, 10.207.14.13, 10.247.66.11, 10.209.110.4, 10.209.14.4, 10.207.14.10
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Traffic through VPN Any Programm
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol6
Local portAny
Remote port443
ICMP settingsAny
Local scope10.207.0.0/255.255.0.0, 10.208.0.0/255.255.0.0, 10.209.0.0/255.255.0.0, 10.247.0.0/255.255.0.0, 10.246.0.0/255.255.0.0
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow ICMPv4
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol1
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow IGMP
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol2
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
TP RU to TP RU and TP DE
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scope10.207.0.0/255.255.0.0, 10.208.0.0/255.255.0.0, 10.209.0.0/255.255.0.0, 10.247.0.0/255.255.0.0, 10.246.0.0/255.255.0.0
Remote scope10.204.0.0/255.255.0.0, 10.207.0.0/255.255.0.0, 10.208.0.0/255.255.0.0, 10.247.0.0/255.255.0.0, 10.209.0.0/255.255.0.0, 10.10.0.0/255.255.0.0, 10.246.0.0/255.255.0.0
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Zscloud proxy
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
Protocol6
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scope185.46.212.0/255.255.254.0, 165.225.240.0/255.255.254.0, 147.161.172.0/255.255.254.0, 165.225.12.0/255.255.254.0, 196.23.154.96/255.255.255.224, 165.225.194.0/255.255.254.0, 147.161.160.0/255.255.254.0, 165.225.72.0/255.255.252.0, 147.161.164.0/255.255.254.0, 165.225.26.0/255.255.254.0, 197.98.201.0/255.255.255.0, 147.161.162.0/255.255.254.0, 154.113.23.0/255.255.255.0, 165.225.80.0/255.255.252.0, 147.161.166.0/255.255.254.0, 165.225.16.0/255.255.254.0, 165.225.92.0/255.255.254.0, 147.161.190.0/255.255.254.0, 165.225.196.0/255.255.254.0, 147.161.236.0/255.255.254.0, 165.225.198.0/255.255.254.0, 147.161.178.0/255.255.254.0, 147.161.180.0/255.255.254.0, 147.161.182.0/255.255.254.0, 165.225.202.0/255.255.254.0, 147.161.176.0/255.255.254.0, 147.161.168.0/255.255.254.0, 147.161.170.0/255.255.254.0, 213.52.102.0/255.255.255.0, 147.161.184.0/255.255.254.0, 165.225.20.0/255.255.254.0, 165.225.76.0/255.255.254.0, 165.225.204.0/255.255.254.0, 147.161.188.0/255.255.254.0, 165.225.192.0/255.255.254.0, 94.188.131.0/255.255.255.128, 165.225.200.0/255.255.254.0, 165.225.206.0/255.255.254.0, 165.225.94.0/255.255.254.0
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Avaya OneX Comcast
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
Program%programfiles(x86)%\Avaya\Avaya one-X Agent\OneXAgentUI.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Teams
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
Program%LOCALAPPDATA%\Microsoft\Teams\current\teams.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Outlook
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files\Microsoft Office\root\Office16\Outlook.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow VPN connectivity
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramAny
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scope91.234.188.0/255.255.255.0
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Macroscop Client
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files\Macroscop\macroscopclient.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Macroscop Configurator
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
ProgramC:\Program Files\Macroscop\macroscopconfigurator.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Allow Avaya CMS Supervisor acs_tned
This rule might contain some elements that cannot be interpreted by the current version of GPMC reporting module
EnabledTrue
Programc:\Program Files (x86)\Avaya\cms supervisor r19\acs_tned.exe
ActionAllow
SecurityRequire authentication
Authorized computers
ProtocolAny
Local portAny
Remote portAny
ICMP settingsAny
Local scopeAny
Remote scopeAny
ProfileAll
Network interface typeAll
ServiceAll programs and services
Group
Connection Security Settings
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Network/Network Connections/Windows Defender Firewall/Domain Profile
PolicySettingComment
Windows Defender Firewall: Allow loggingEnabled
Log dropped packetsEnabled
Log successful connectionsDisabled
Log file path and name:%systemroot%\system32\logfiles\firewall\pfirewall.log
Size limit (KB):4096
PolicySettingComment
Windows Defender Firewall: Protect all network connectionsEnabled
User Configuration (Disabled)
No settings defined.