Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
PL-PO-ADM-U-Default Restrictions Agent&Supervisor W11
Data collected on: 2-9-2025 12:21:57
General
Details
Domainemea.tpg.ads
OwnerEMEA\dykas.6-adm
Created8-10-2024 14:20:38
Modified19-11-2024 13:48:20
User Revisions14 (AD), 14 (SYSVOL)
Computer Revisions1 (AD), 1 (SYSVOL)
Unique ID{fcd25eff-bf64-4c47-ad20-b2a1da343288}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
None

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
None
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\dykas.6-admEdit settings, delete, modify securityNo
EMEA\PL-L-SEC-Delegation Modify Group Policy Settings AccessEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
Computer Configuration (Enabled)
No settings defined.
User Configuration (Enabled)
Policies
Windows Settings
Security Settings
Software Restriction Policies
Enforcement
PolicySetting
Apply Software Restriction Policies to the followingAll software files except libraries (such as DLLs)
Apply Software Restriction Policies to the following usersAll users
When applying Software Restriction PoliciesIgnore certificate rules
Designated File Types
File ExtensionFile Type
ADEADE File
ADPADP File
BASBAS File
BATWindows Batch File
CHMCompiled HTML Help file
CMDWindows Command Script
COMMS-DOS Application
CPLControl panel item
CRTSecurity Certificate
EXEApplication
HLPHelp file
HTAHTML Application
INFSetup Information
INSINS File
ISPISP File
LNKShortcut
MDBMDB File
MDEMDE File
MSCMicrosoft Common Console Document
MSIWindows Installer Package
MSPWindows Installer Patch
MSTMST File
OCXActiveX control
PCDPCD File
PIFShortcut to MS-DOS Program
REGRegistration Entries
SCRScreen saver
SHSSHS File
URLInternet Shortcut
VBVisual Basic Source File
WSCWindows Script Component
Trusted Publishers
Trusted publisher managementAllow all administrators and users to manage user's own Trusted Publishers
Certificate verificationNone
Software Restriction Policies/Security Levels
PolicySetting
Default Security LevelUnrestricted
Software Restriction Policies/Additional Rules
Path Rules
%UserProfile%\*.bat
Security LevelDisallowed
DescriptionBat files
Date last modified5-8-2024 15:31:45
%UserProfile%\Downloads\*
Security LevelDisallowed
DescriptionDownloads
Date last modified5-8-2024 15:30:48
C:\Program Files\WindowsApps\Microsoft.WindowsStore*
Security LevelDisallowed
DescriptionMicrosoft Store
Date last modified24-6-2024 13:05:42
C:\Windows\SystemApps\Microsoft.Windows.Cortana*
Security LevelDisallowed
DescriptionWindows Cortana
Date last modified9-8-2024 14:47:11
C:\Windows\SystemApps\Microsoft.Windows.Search*
Security LevelDisallowed
DescriptionWindows Search
Date last modified9-8-2024 14:47:16
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Control Panel
PolicySettingComment
Settings Page VisibilityEnabled
Settings Page Visibility:showonly:display;regionlanguage;defaultapps;dateandtime;typing;taskbar;sound;personalization-start:mousetouchpad;
PolicySettingComment
Show only specified Control Panel itemsEnabled
List of allowed Control Panel items
Microsoft.Mouse
Microsoft.Display
Microsoft.Keyboard
Microsoft.RegionAndLanguage
Microsoft.Sound
Microsoft.System
Control Panel/Personalization
PolicySettingComment
Prevent changing desktop backgroundEnabled
Control Panel/Printers
PolicySettingComment
Prevent addition of printersEnabled
Desktop
PolicySettingComment
Remove Recycle Bin icon from desktopEnabled
Google/Google Chrome
PolicySettingComment
Block access to a list of URLsEnabled
Block access to a list of URLs
file://C:
file:///
file://
c:
chrome://accessibility
chrome://appcache-internals
chrome://apps
chrome://blob-internals
chrome://bluetooth-internals
chrome://bookmarks
chrome://chrome-urls
chrome://components
chrome://crashes
chrome://credits
chrome://device-log
chrome://discards
chrome://download-internals
chrome://downloads
chrome://flags
chrome://gcm-internals
chrome://gpu
chrome://help
chrome://histograms
chrome://history
chrome://inspect
chrome://interstitials
chrome://internals
chrome://invalidations
chrome://local-state
chrome://media-engagement
chrome://media-internals
chrome://nacl
chrome://net-export
chrome://net-internals
chrome://network-errors
chrome://ntp-tiles-internals
chrome://omnibox
chrome://password-manager
chrome://policy
chrome://predictors
chrome://prefs-internals
chrome://print
chrome://process-internals
chrome://quota-internals
chrome://safe-browsing
chrome://sandbox
chrome://serviceworker-internals
chrome://settings
chrome://signin-internals
chrome://site-engagement
chrome://sync-internals
chrome://system
chrome://terms
chrome://tracing
chrome://translate-internals
chrome://ukm
chrome://usb-internals
chrome://version
chrome://webrtc-internals
PolicySettingComment
Control where Developer Tools can be usedEnabled
Control where Developer Tools can be usedDisallow usage of the Developer Tools
PolicySettingComment
Disable saving browser historyEnabled
Google/Google Chrome - Default Settings (users can override)/Startup, Home page and New Tab page
PolicySettingComment
Configure the home page URLEnabled
Home page URLhttps://plnews.emea.tpg.ads
PolicySettingComment
Use New Tab Page as homepageEnabled
Google/Google Chrome/Extensions
PolicySettingComment
Configure extension installation allow listEnabled
Extension IDs to exempt from the blocklist
gpaiobkfhnonedkhhfjpmhdalgeoebfa
apdkclopegaflhehflfdieginkoiejjj
PolicySettingComment
Configure extension installation blocklistEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
PolicySettingComment
Configure the list of force-installed apps and extensionsEnabled
Extension/App IDs and update URLs to be silently installed
gpaiobkfhnonedkhhfjpmhdalgeoebfa
Google/Google Chrome/Password manager
PolicySettingComment
Enable saving passwords to the password managerDisabled
Google/Google Chrome/Printing
PolicySettingComment
Enable printingDisabled
Microsoft Edge
PolicySettingComment
Allow importing of favoritesDisabled
Allow user feedbackDisabled
Block access to a list of URLsEnabled
Block access to a list of URLs
edge://accessibility
edge://apps
edge://autofill-internals
edge://components
edge://conflicts
edge://crashes
edge://credits
edge://device-log
edge://discards
edge://downloads
edge://favorites
edge://flags
edge://gpu
edge://help
edge://histograms
edge://history
edge://inspect
edge://interstitials
edge://local-state
edge://management
edge://media-engagement
edge://media-internals
edge://net-export
edge://net-internals
edge://network-errors
edge://omnibox
edge://password-manager
edge://policy
edge://predictors
edge://prefs-internals
edge://print
edge://process-internals
edge://quota-internals
edge://sandbox
edge://serviceworker-internals
edge://settings
edge://signin-internals
edge://site-engagement
edge://supervised-user-internals
edge://sync-internals
edge://system
edge://tasks
edge://tracing
edge://translate-internals
edge://ukm
edge://usb-internals
edge://version
edge://webrtc-internals
edge://webusb-internals
file://C:
file:///
file://
c:
PolicySettingComment
Control where developer tools can be usedEnabled
Control where developer tools can be usedDon't allow using the developer tools
PolicySettingComment
Disable saving browser historyEnabled
Enable the Collections featureDisabled
Restrict which accounts can be used to sign in to Microsoft EdgeEnabled
Restrict which accounts can be used to sign in to Microsoft Edge.*@emea.teleperformance.com
Microsoft Edge - Default Settings (users can override)/Startup, home page and new tab page
PolicySettingComment
Configure the home page URLEnabled
Home page URLhttps://plnews.emea.tpg.ads
PolicySettingComment
Set the new tab page as the home pageEnabled
Microsoft Edge/Extensions
PolicySettingComment
Allow specific extensions to be installedEnabled
Extension IDs to exempt from the block list
hokifickgkhplphjiodbggjmoafhignh
PolicySettingComment
Control which extensions are installed silentlyEnabled
Extension/App IDs and update URLs to be silently installed
hokifickgkhplphjiodbggjmoafhignh
PolicySettingComment
Control which extensions cannot be installedEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
Microsoft Edge/Password manager and protection
PolicySettingComment
Enable saving passwords to the password managerDisabled
Microsoft Edge/Printing
PolicySettingComment
Enable printingDisabled
Microsoft Edge/SmartScreen settings
PolicySettingComment
Configure Microsoft Defender SmartScreenDisabled
Mozilla/Firefox
PolicySettingComment
Block about:configEnabled
Block about:profilesEnabled
Block Add-ons ManagerEnabled
Blocked websitesEnabled
view-source:file:///C:/*
file:///*
PolicySettingComment
Customize Firefox HomeEnabled
SearchEnabled
Top SitesDisabled
Sponsored Top SitesDisabled
Download HistoryDisabled
Recommended by PocketDisabled
Sponsored Pocket StoriesDisabled
SnippetsDisabled
Don't allow settings to be changedEnabled
PolicySettingComment
Disable Developer ToolsEnabled
Disable PocketEnabled
Do not allow passwords to be revealed in saved loginsEnabled
Don't Check Default BrowserEnabled
Download DirectoryEnabled
C:\Users\%userprofile%\Downloads
PolicySettingComment
Override the first run pageEnabled
URL:https://plnews.emea.tpg.ads
PolicySettingComment
Password ManagerDisabled
Password Manager ExceptionsEnabled
*
PolicySettingComment
PrintingDisabled
Prompt for download locationDisabled
Windows SSOEnabled
Mozilla/Firefox/Addons
PolicySettingComment
Allow add-on installs from websitesDisabled
Mozilla/Firefox/Firefox Suggest (US only)
PolicySettingComment
Do not allow preferences to be changedEnabled
Improve the Firefox Suggest experienceDisabled
Suggestions from sponsorsDisabled
Suggestions from the webDisabled
Mozilla/Firefox/Home page
PolicySettingComment
Show Home button on toolbarEnabled
Start PageEnabled
Homepage
PolicySettingComment
URL for Home pageEnabled
URL:
https://plnews.emea.tpg.ads
Don't allow the homepage to be changed.Enabled
Start Menu and Taskbar
PolicySettingComment
Clear history of recently opened documents on exitEnabled
Clear the recent programs list for new usersEnabled
Do not allow pinning Store app to the TaskbarEnabled
Do not keep history of recently opened documentsEnabled
Remove "Recently added" list from Start MenuEnabled
Remove access to the context menus for the taskbarEnabled
Remove All Programs list from the Start menuEnabled
Choose one of the following actionsRemove and disable setting
PolicySettingComment
Remove frequent programs list from the Start MenuEnabled
Remove Notifications and Action CenterEnabled
Remove Personalized Website Recommendations from the Recommended section in the Start MenuEnabled
Remove Recommended section from Start MenuEnabled
Remove Run menu from Start MenuEnabled
Show or hide "Most used" list from Start menuEnabled
Choose one of the following actionsHide
PolicySettingComment
Show Windows Store apps on the taskbarDisabled
Start LayoutEnabled
Start Layout File\\emea.tpg.ads\SysVol\emea.tpg.ads\Policies\{FBDC7002-11FF-4FA7-BDD6-2E049F3B1C21}\User\Start Layout\Layout.xml
Reapply layout at every logonDisabled
PolicySettingComment
Turn off user trackingEnabled
System
PolicySettingComment
Don't run specified Windows applicationsEnabled
List of disallowed applications
powershell.exe
powershell_ise.exe
notepad.exe
wordpad.exe
stikynot.exe
stickies.exe
mspaint.exe
snippingtool.exe
taskmgr.exe
appwiz.cpl
mstsc.exe
msdt.exe
ping.exe
PolicySettingComment
Prevent access to registry editing toolsEnabled
Disable regedit from running silently?Yes
PolicySettingComment
Prevent access to the command promptEnabled
Disable the command prompt script processing also?No
System/Ctrl+Alt+Del Options
PolicySettingComment
Remove Task ManagerEnabled
System/Removable Storage Access
PolicySettingComment
All Removable Storage classes: Deny all accessEnabled
CD and DVD: Deny read accessEnabled
CD and DVD: Deny write accessEnabled
Windows Components/Attachment Manager
PolicySettingComment
Default risk level for file attachmentsEnabled
Set the default risk levelLow Risk
PolicySettingComment
Do not preserve zone information in file attachmentsEnabled
Inclusion list for low file typesEnabled
Specify low risk extensions (include a leading period, e.g. .bmp;.gif;)..lnk
Windows Components/File Explorer
PolicySettingComment
Do not allow Folder Options to be opened from the Options button on the View tab of the ribbonEnabled
Hide these specified drives in My ComputerEnabled
Pick one of the following combinationsRestrict A, B, C and D drives only
PolicySettingComment
Hides the Manage item on the File Explorer context menuEnabled
Prevent access to drives from My ComputerEnabled
Pick one of the following combinationsRestrict A, B, C and D drives only
PolicySettingComment
Remove "Map Network Drive" and "Disconnect Network Drive"Enabled
Remove CD Burning featuresEnabled
Remove File Explorer's default context menuEnabled
Turn off Windows Key hotkeysEnabled
Windows Components/Microsoft Management Console
PolicySettingComment
Restrict the user from entering author modeEnabled
Restrict users to the explicitly permitted list of snap-insEnabled
Preferences
Windows Settings
Registry
Search (Order: 1)
General
ActionReplace
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Search
Value name(Default)
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
SearchboxTaskbarMode (Order: 2)
General
ActionReplace
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Search
Value nameSearchboxTaskbarMode
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
TaskbarDa (Order: 3)
General
ActionReplace
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Explorer\Advanced
Value nameTaskbarDa
Value typeREG_DWORD
Value data0x0 (0)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Folder Options
Folder Options (At least Windows Vista)
Default (Order: 1)
General
Properties
Always show icons, never thumbnailsDisabled
Always show menusDisabled
Display file icon on thumbnailsEnabled
Display file size information in folder tipsEnabled
Display simple folder view in Navigation paneEnabled
Display the full path in the titlebar (classic folders only)Disabled
Hidden files and foldersDo not show hidden files and folders
Hide extensions for known file typesEnabled
Hide protected operating system files (Recommended)Enabled
Launch folder windows in separate processDisabled
Remember each folder's view settingsEnabled
Restore previous folder windows at logonDisabled
Show drive lettersEnabled
Show encrypted or compressed NTFS files in colorEnabled
Show pop-up description for folder and desktop itemsEnabled
Show preview handlers in preview paneEnabled
Use check boxes to select itemsDisabled
Use sharing wizard (Recommended)Enabled
When typing into list viewSelect the typed item in the view
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)Yes
Apply once and do not reapplyNo