| RU-PO-WIN-UC-VPN Create IKEv2 Connection Second | |
| Data collected on: 2-9-2025 09:43:33 | |
| Domain | emea.tpg.ads |
| Owner | EMEA\chumakov.5-adm |
| Created | 26-3-2020 11:39:52 |
| Modified | 9-2-2023 14:51:46 |
| User Revisions | 22 (AD), 22 (SYSVOL) |
| Computer Revisions | 151 (AD), 151 (SYSVOL) |
| Unique ID | {81ff1913-2c9f-48b9-ab96-1a3a7f55cefd} |
| GPO Status | Enabled |
| Location | Enforced | Link Status | Path |
|---|---|---|---|
| Admin-Accounts | No | Enabled | emea.tpg.ads/RU/Administration/Admin-Accounts |
| Agents | No | Enabled | emea.tpg.ads/RU/Agents |
| Staff | No | Enabled | emea.tpg.ads/RU/Staff |
| Clients | No | Enabled | emea.tpg.ads/RU/Systems/Clients |
| AHA | No | Enabled | emea.tpg.ads/RU/Systems/Clients/AHA |
| Name |
|---|
| EMEA\RU-L-SEC-GPO VPN Create IKEv2 Connection Second |
| Name | Allowed Permissions | Inherited |
|---|---|---|
| EMEA\chumakov.5-adm | Edit settings, delete, modify security | No |
| EMEA\Domain Admins | Edit settings, delete, modify security | No |
| EMEA\RU-L-SEC-Delegation Group Policy Objects Modify Access | Edit settings, delete, modify security | No |
| EMEA\RU-L-SEC-GPO VPN Create IKEv2 Connection Second | Read (from Security Filtering) | No |
| NT AUTHORITY\Authenticated Users | Read | No |
| NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS | Read | No |
| NT AUTHORITY\SYSTEM | Edit settings, delete, modify security | No |
| ROOT\Enterprise Admins | Edit settings, delete, modify security | No |
| Namespace | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Any | ||||||||||||||||||||||||||||||
|
| Action | Replace |
| Source file(s) | \\rumosfs01\REMINST\Software\__connect_to_VPN_1.cmd |
| Destination file | C:\Windows\System32\__connect_to_VPN.cmd |
| Suppress errors on individual file actions | Disabled |
| Read-only | Disabled |
| Hidden | Disabled |
| Archive | Enabled |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Replace |
| Source file(s) | \\rumosfs01\REMINST\Software\__connect_to_VPN.ps1 |
| Destination file | C:\Windows\System32\__connect_to_VPN.ps1 |
| Suppress errors on individual file actions | Disabled |
| Read-only | Disabled |
| Hidden | Disabled |
| Archive | Enabled |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Replace |
| Source file(s) | \\emea.tpg.ads\ru\Moscow\Settings\Configs\MCP\MCPPolicy_WAHA.opg |
| Destination file | C:\ProgramData\McAfee\MCP\Policy\Temp\MCPPolicy.opg |
| Suppress errors on individual file actions | Disabled |
| Read-only | Disabled |
| Hidden | Disabled |
| Archive | Enabled |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Replace |
| Source file(s) | \\rumosfs01\REMINST\Software\__Connect_to_VPN_USER.cmd |
| Destination file | C:\Windows\System32\__Connect_to_VPN_USER.cmd |
| Suppress errors on individual file actions | Disabled |
| Read-only | Disabled |
| Hidden | Disabled |
| Archive | Enabled |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Replace |
| Source file(s) | \\rumosfs01\REMINST\Software\__DNS_Registration.cmd |
| Destination file | C:\Windows\System32\__DNS_Registration.cmd |
| Suppress errors on individual file actions | Disabled |
| Read-only | Disabled |
| Hidden | Disabled |
| Archive | Enabled |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Update |
| Name | Connect to VPN | |||
| Author | EMEA\chumakov.5-adm | |||
| Description | Connect to VPN vpn1.services-secure.net for COMPUTER | |||
| Run only when user is logged on | InteractiveToken | |||
| UserId | NT AUTHORITY\System | |||
| Run with highest privileges | HighestAvailable | |||
| Hidden | No | |||
| Configure for | 1.3 | |||
| Enabled | Yes |
| 1. At startup | ||||
| Delay task for | 1 minute | |||
| Activate | 3-4-2020 16:45:54 | Synchronize across time zones | No | |
| Enabled | Yes | |||
| 1. Start a program | ||||
| Program/script | C:\Windows\System32\__connect_to_VPN.cmd | |||
| Start in | c:\Windows\System32\ |
| Stop if the computer ceases to be idle | Yes | |||
| Restart if the idle state resumes | No | |||
| Start the task only if the computer is on AC power | No | |||
| Stop if the computer switches to battery power | No | |||
| Start only if the following network connection is available | Any connection | |||
| Allow task to be run on demand | Yes | |||
| Stop task if it runs longer than | 1 day | |||
| If the running task does not end when requested, force it to stop | Yes | |||
| If the task is already running, then the following rule applies | IgnoreNew |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Update |
| Name | Restart McpService.exe | |||
| Author | EMEA\chumakov.5-adm | |||
| Description | ||||
| Run only when user is logged on | InteractiveToken | |||
| UserId | NT AUTHORITY\System | |||
| Run with highest privileges | HighestAvailable | |||
| Hidden | No | |||
| Configure for | 1.2 | |||
| Enabled | Yes |
| 1. Run at user logon | ||||
| Delay task for | 30 seconds | |||
| Activate | 30-3-2020 21:08:12 | Synchronize across time zones | No | |
| Enabled | Yes | |||
| 1. Start a program | ||||
| Program/script | taskkill.exe | |||
| Arguments | /IM McpService.exe /F |
| Stop if the computer ceases to be idle | No | |||
| Restart if the idle state resumes | No | |||
| Start the task only if the computer is on AC power | No | |||
| Stop if the computer switches to battery power | No | |||
| Allow task to be run on demand | No | |||
| Stop task if it runs longer than | Immediately | |||
| If the running task does not end when requested, force it to stop | No | |||
| If the task is already running, then the following rule applies | IgnoreNew |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Update |
| Name | DNS registration | |||
| Author | EMEA\chumakov.5-adm | |||
| Description | ||||
| Run only when user is logged on | InteractiveToken | |||
| UserId | NT AUTHORITY\System | |||
| Run with highest privileges | HighestAvailable | |||
| Hidden | No | |||
| Configure for | 1.2 | |||
| Enabled | Yes |
| 1. On an event | ||||
| Delay task for | 30 seconds | |||
| Enabled | Yes | |||
| Subscription | <QueryList><Query Id="0" Path="Microsoft-Windows-NetworkProfile/Operational"><Select Path="Microsoft-Windows-NetworkProfile/Operational">*[System[Provider[@Name='Microsoft-Windows-NetworkProfile'] and EventID=10000]]</Select></Query></QueryList> |
| 1. Start a program | ||||
| Program/script | C:\Windows\System32\__DNS_Registration.cmd |
| Stop if the computer ceases to be idle | Yes | |||
| Restart if the idle state resumes | No | |||
| Start the task only if the computer is on AC power | No | |||
| Stop if the computer switches to battery power | Yes | |||
| Start only if the following network connection is available | Any connection | |||
| Allow task to be run on demand | Yes | |||
| Stop task if it runs longer than | 1 day | |||
| If the running task does not end when requested, force it to stop | Yes | |||
| If the task is already running, then the following rule applies | IgnoreNew |
| Stop processing items on this extension if an error occurs on this item | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Update |
| Source file(s) | \\rumosfs01\REMINST\Software\__Connect_to_VPN_USER.cmd |
| Destination file | C:\Windows\System32\__Connect_to_VPN_USER.cmd |
| Suppress errors on individual file actions | Disabled |
| Read-only | Disabled |
| Hidden | Disabled |
| Archive | Enabled |
| Stop processing items on this extension if an error occurs on this item | No |
| Run in logged-on user's security context (user policy option) | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |
| Action | Update |
| Name | Connect to VPN for USER | |||
| Author | EMEA\chumakov.5-adm | |||
| Description | ||||
| Run only when user is logged on | InteractiveToken | |||
| UserId | %LogonDomain%\%LogonUser% | |||
| Run with highest privileges | LeastPrivilege | |||
| Hidden | No | |||
| Configure for | 1.2 | |||
| Enabled | Yes |
| 1. Run at user logon | ||||
| Activate | 3-4-2020 16:46:17 | Synchronize across time zones | No | |
| Enabled | No | |||
| 1. Start a program | ||||
| Program/script | C:\Windows\System32\__Connect_to_VPN_USER.cmd |
| Stop if the computer ceases to be idle | Yes | |||
| Restart if the idle state resumes | No | |||
| Start the task only if the computer is on AC power | No | |||
| Stop if the computer switches to battery power | Yes | |||
| Allow task to be run on demand | Yes | |||
| Stop task if it runs longer than | Immediately | |||
| If the running task does not end when requested, force it to stop | Yes | |||
| If the task is already running, then the following rule applies | IgnoreNew |
| Stop processing items on this extension if an error occurs on this item | No |
| Run in logged-on user's security context (user policy option) | No |
| Remove this item when it is no longer applied | No |
| Apply once and do not reapply | No |