Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
TNBEA-P-WIN-U-Security-CCW-ENC
Data collected on: 2-9-2025 08:57:32
General
Details
Domainemea.tpg.ads
OwnerS-1-5-21-513466819-3096973226-347852806-27238
Created26-2-2016 16:58:50
Modified19-10-2023 15:17:36
User Revisions51 (AD), 51 (SYSVOL)
Computer Revisions1 (AD), 1 (SYSVOL)
Unique ID{f0702c44-257c-473a-9796-b71a99c1ec83}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
AgentsNoEnabledemea.tpg.ads/TN/Agents
StaffNoEnabledemea.tpg.ads/TN/Staff

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
EMEA\TNBEA-G-ORG-WFM_Users
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\EMEA-FSM-L-SEC-Dlg Read Group PolicyReadNo
EMEA\TNBEA-G-ORG-WFM_UsersRead (from Security Filtering)No
EMEA\TN-G-ORG-OU AdminsEdit settings, delete, modify securityNo
EMEA\TN-L-SEC-Delegation Modify Group Policy Settings AccessEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
S-1-5-21-513466819-3096973226-347852806-203252ReadNo
S-1-5-21-513466819-3096973226-347852806-27238Edit settings, delete, modify securityNo
Computer Configuration (Enabled)
No settings defined.
User Configuration (Enabled)
Policies
Windows Settings
Security Settings
Public Key Policies/Certificate Services Client - Auto-Enrollment Settings
PolicySetting
Automatic certificate managementEnabled
OptionSetting
Enroll new certificates, renew expired certificates, process pending certificate requests and remove revoked certificatesDisabled
Update and manage certificates that use certificate templates from Active DirectoryDisabled
Display user notifications for expiring certificates in user and computer MY storeDisabled
Software Restriction Policies
Enforcement
PolicySetting
Apply Software Restriction Policies to the followingAll software files except libraries (such as DLLs)
Apply Software Restriction Policies to the following usersAll users
When applying Software Restriction PoliciesIgnore certificate rules
Designated File Types
File ExtensionFile Type
ADEADE File
ADPADP File
BASBAS File
BATWindows Batch File
CHMCompiled HTML Help file
CMDWindows Command Script
COMMS-DOS Application
CPLControl panel item
CRTSecurity Certificate
EXEApplication
HLPHelp file
HTAHTML Application
INFSetup Information
INSINS File
ISPISP File
LNKShortcut
MDBMDB File
MDEMDE File
MSCMicrosoft Common Console Document
MSIWindows Installer Package
MSPWindows Installer Patch
MSTMST File
OCXActiveX control
PCDPCD File
PIFShortcut to MS-DOS Program
REGRegistration Entries
SCRScreen saver
SHSSHS File
URLInternet Shortcut
VBVisual Basic Source File
WSCWindows Script Component
Trusted Publishers
Trusted publisher managementAllow all administrators and users to manage user's own Trusted Publishers
Certificate verificationNone
Software Restriction Policies/Security Levels
PolicySetting
Default Security LevelUnrestricted
Software Restriction Policies/Additional Rules
Hash Rules
freegate (6.7.7.0)
Security LevelDisallowed
Description
Date last modified17-6-2010 13:09:36
freegate (6.7.8.0)
Security LevelDisallowed
Description
Date last modified17-6-2010 13:16:15
freegate (6.7.8.0)
Security LevelDisallowed
Description
Date last modified17-6-2010 13:14:59
Path Rules
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%
Security LevelUnrestricted
Description
Date last modified17-6-2010 13:02:47
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%*.exe
Security LevelUnrestricted
Description
Date last modified17-6-2010 13:02:47
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%System32\*.exe
Security LevelUnrestricted
Description
Date last modified17-6-2010 13:02:47
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir%
Security LevelUnrestricted
Description
Date last modified17-6-2010 13:02:47
Folder Redirection
Desktop
Setting: Basic (Redirect everyone's folder to the same location)
Path: \\tnbeafs01\Gestion\04 - ENC\A - WFM\a - menu
Options
Grant user exclusive rights to DesktopDisabled
Move the contents of Desktop to the new locationDisabled
Also apply redirection policy to Windows 2000, Windows 2000 server, Windows XP, and Windows Server 2003 operating systemsEnabled
Policy Removal BehaviorLeave contents
Configuration ControlGroup Policy
Primary Computer EvaluationNot evaluated because primary computer policy is not enabled
Start Menu
Setting: Basic (Redirect everyone's folder to the same location)
Path: \\tnbeafs01\Gestion\04 - ENC\A - WFM\a - menu
Options
Grant user exclusive rights to Start MenuDisabled
Move the contents of Start Menu to the new locationDisabled
Also apply redirection policy to Windows 2000, Windows 2000 server, Windows XP, and Windows Server 2003 operating systemsEnabled
Policy Removal BehaviorLeave contents
Configuration ControlGroup Policy
Primary Computer EvaluationNot evaluated because primary computer policy is not enabled
Internet Explorer Maintenance
Connection/Automatic Browser Configuration
PolicySetting
Automatically detect configuration settingsEnabled
Automatic Browser ConfigurationNot configured
Connection/Proxy Settings
Enable proxy settings
ProtocolServerPort
HTTP10.217.66.58080
Secure10.217.66.58080
FTP10.217.66.58080
Gopher10.217.66.58080
Socks10.217.66.58080
Exceptions:Do not use proxy server for addresses beginning with*.on.bell.ca, *.qc.bell.ca, *.bce.ca, *.int.bell.ca, *.intranet.bell.ca, *.intra.sympatico.ca, *.teleperformanceca.com, audittel, huhcd0, 142.*, 172.25.*, *.on.bell.ca, altair, 64.186.176.53, mssgbprep1, tpinside, 172.16.139.4, tntukweb02, 10.217.3.1, 142.182.9.129, deffmwebmail02.emea.tpg.ads, sebra.ccms.teleperformance.com, frparvocweb02.emea.tpg.ads, 10.33.3.76, portal.emea.tpg.ads, 216.152.212.171, deffmwebmail02.emea.tpg.ads, *.tpg.zone, oaw.emea.teleperformance.com, autodiscover.teleperformance.com, autodiscover.emea.teleperformance.com, autodiscover.tn.teleperformance.com,
Do not use proxy server for local (intranet) addressesEnabled
URLs/Important URLs
NameURL
Home page URLabout:blank
Search bar URLNot configured
Online support page URLNot configured
URLs/Favorites and Links
PolicySetting
Place favorites and links at the top of the list in the order specified belowEnabled
Delete existing Favorites and Links, if presentNot configured
Delete existing channels, if presentEnabled
Security/Security Zones and Content Ratings
Security Zones and Privacy
These settings will not apply to users that log on to computers that have the Internet Explorer Enhanced Security Configuration (ESC) enabled. To create settings for users on computers that have ESC enabled, create a new GPO and edit that GPO on a computer where ESC is enabled.
Internet (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsHigh safety
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHEnable
Display mixed contentEnable
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesPrompt
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsDisable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptPrompt
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Local intranet (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsEnable
Download unsigned ActiveX controlsPrompt
Initialize and script ActiveX controls not marked as safePrompt
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsLow safety
Miscellaneous
Access data sources across domainsEnable
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsEnable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsEnable
Launching applications and unsafe filesEnable
Launching programs and files in an IFRAMEEnable
Navigate sub-frames across different domainsEnable
Software channel permissionsLow safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptEnable
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon with current username and password
Sites
Require server verification (https:) for all sites in this zoneDisabled
Include all local (intranet) sites not listed in other zonesEnabled
Include all sites that bypass the proxy serverEnabled
Include all network paths (UNCs)Enabled
Sites in this zone
http://localhost/
Trusted sites (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsHigh safety
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesPrompt
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsDisable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptPrompt
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Sites
Require server verification (https:) for all sites in this zoneEnabled
Sites in this zone
*.emea.tpg.ads
*.tpg.ads
172.30.0.8
https://frparchevocti01.emea.tpg.ads/
https://frparchevoweb01.emea.tpg.ads/
https://frparchevoweb02.emea.tpg.ads/
https://helpdesk.teleperformance.com/
https://helpdesk-fr.teleperformance.com/
Restricted sites (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeDisable
Run components signed with AuthenticodeDisable
ActiveX controls and plug-ins
Download signed ActiveX controlsDisable
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insDisable
Script ActiveX controls marked safe for scriptingDisable
Downloads
File downloadDisable
Font downloadPrompt
Microsoft VM
Java permissionsDisable Java
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHDisable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesPrompt
Installation of desktop itemsDisable
Launching applications and unsafe filesDisable
Launching programs and files in an IFRAMEDisable
Navigate sub-frames across different domainsDisable
Software channel permissionsHigh safety
Submit nonencrypted form dataPrompt
Userdata persistenceDisable
Scripting
Active scriptingDisable
Allow paste operations via scriptDisable
Scripting of Java appletsDisable
User Authentication
LogonPrompt for user name and password
Sites
Sites in this zone
None
Privacy
Privacy LevelMedium
Web Sites
Always allowNone
Always blockNone
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Control Panel
PolicySettingComment
Prohibit access to Control Panel and PC settingsEnabled
Show only specified Control Panel itemsEnabled
List of allowed Control Panel items
MLCFG32.CPL
Control Panel/Add or Remove Programs
PolicySettingComment
Hide Add New Programs pageEnabled
Hide Add/Remove Windows Components pageEnabled
Hide Change or Remove Programs pageEnabled
Hide the "Add a program from CD-ROM or floppy disk" optionEnabled
Hide the "Add programs from Microsoft" optionEnabled
Hide the "Add programs from your network" optionEnabled
Hide the Set Program Access and Defaults pageEnabled
Remove Add or Remove ProgramsEnabled
Remove Support InformationEnabled
Control Panel/Display
PolicySettingComment
Disable the Display Control PanelEnabled
Hide Settings tabEnabled
Control Panel/Personalization
PolicySettingComment
Enable screen saverEnabled
Force specific screen saverDisabled
Password protect the screen saverEnabled
Prevent changing color and appearanceEnabled
Prevent changing desktop backgroundEnabled
Prevent changing screen saverEnabled
Prevent changing themeEnabled
Prevent changing visual style for windows and buttonsEnabled
Prohibit selection of visual style font sizeEnabled
Screen saver timeoutEnabled
Number of seconds to wait to enable the screen saver
Seconds:300
Desktop
PolicySettingComment
Do not add shares of recently opened documents to Network LocationsEnabled
Don't save settings at exitEnabled
Hide and disable all items on the desktopEnabled
Hide Internet Explorer icon on desktopDisabled
Hide Network Locations icon on desktopEnabled
Prevent adding, dragging, dropping and closing the Taskbar's toolbarsEnabled
Prohibit adjusting desktop toolbarsEnabled
Prohibit User from manually redirecting Profile FoldersEnabled
Remove Computer icon on the desktopDisabled
Remove My Documents icon on the desktopEnabled
Remove Properties from the Computer icon context menuEnabled
Remove Properties from the Recycle Bin context menuEnabled
Remove Recycle Bin icon from desktopDisabled
Remove the Desktop Cleanup WizardEnabled
Desktop/Desktop
PolicySettingComment
Enable Active DesktopEnabled
Allows HTML and JPEG Wallpaper
PolicySettingComment
Prohibit adding itemsEnabled
Prohibit deleting itemsEnabled
Prohibit editing itemsEnabled
Network/Offline Files
PolicySettingComment
Prevent use of Offline Files folderEnabled
Remove "Make Available Offline" commandEnabled
Synchronize all offline files before logging offDisabled
Synchronize all offline files when logging onDisabled
Start Menu and Taskbar
PolicySettingComment
Add "Run in Separate Memory Space" check box to Run dialog boxDisabled
Add Logoff to the Start MenuEnabled
Clear history of recently opened documents on exitEnabled
Do not display any custom toolbars in the taskbarEnabled
Do not keep history of recently opened documentsEnabled
Do not use the search-based method when resolving shell shortcutsEnabled
Do not use the tracking-based method when resolving shell shortcutsEnabled
Force classic Start MenuEnabled
Hide the notification areaDisabled
Prevent changes to Taskbar and Start Menu SettingsEnabled
Prevent users from customizing their Start ScreenEnabled
Remove access to the context menus for the taskbarEnabled
Remove and prevent access to the Shut Down, Restart, Sleep, and Hibernate commandsDisabled
Remove Clock from the system notification areaDisabled
Remove common program groups from Start MenuEnabled
Remove Documents icon from Start MenuEnabled
Remove Favorites menu from Start MenuEnabled
Remove frequent programs list from the Start MenuEnabled
Remove Help menu from Start MenuEnabled
Remove links and access to Windows UpdateEnabled
Remove Logoff on the Start MenuDisabled
Remove Music icon from Start MenuEnabled
Remove Network Connections from Start MenuEnabled
Remove Network icon from Start MenuEnabled
Remove Pictures icon from Start MenuEnabled
Remove pinned programs list from the Start MenuEnabled
Remove programs on Settings menuEnabled
Remove Recent Items menu from Start MenuEnabled
Remove Run menu from Start MenuEnabled
Remove Search link from Start MenuDisabled
Remove the "Undock PC" button from the Start MenuEnabled
Remove user name from Start MenuDisabled
Turn off personalized menusEnabled
Turn off user trackingEnabled
System
PolicySettingComment
Century interpretation for Year 2000Disabled
Do not display the Getting Started welcome screen at logonEnabled
Don't run specified Windows applicationsEnabled
List of disallowed applications
*.bat
*.com
*.exe
*.msc
*.msi
PolicySettingComment
Download missing COM componentsDisabled
Prevent access to registry editing toolsEnabled
Disable regedit from running silently?Yes
PolicySettingComment
Prevent access to the command promptEnabled
Disable the command prompt script processing also?No
PolicySettingComment
Restrict these programs from being launched from HelpEnabled
Enter executables separated by commas:*.exe;*.comm;*.dll;*.msc;*.mmc
Example: calc.exe,paint.exe
PolicySettingComment
Windows Automatic UpdatesDisabled
System/Ctrl+Alt+Del Options
PolicySettingComment
Remove Task ManagerEnabled
System/Driver Installation
PolicySettingComment
Code signing for driver packagesEnabled
When Windows detects a driver file without a digital signature:Block
PolicySettingComment
Configure driver search locationsEnabled
Do not search floppy disk drivesEnabled
Do not search CD-ROM drivesEnabled
Do not search Windows UpdateEnabled
PolicySettingComment
Turn off Windows Update device driver search promptEnabled
System/Folder Redirection
PolicySettingComment
Do not automatically make all redirected folders available offlineEnabled
System/Group Policy
PolicySettingComment
Determine if interactive users can generate Resultant Set of Policy dataEnabled
System/Internet Communication Management/Internet Communication settings
PolicySettingComment
Turn off downloading of print drivers over HTTPEnabled
Turn off Internet download for Web publishing and online ordering wizardsEnabled
Turn off Internet File Association serviceEnabled
Turn off printing over HTTPEnabled
Turn off the "Order Prints" picture taskEnabled
Turn off the "Publish to Web" task for files and foldersEnabled
Turn off the Windows Messenger Customer Experience Improvement ProgramEnabled
Windows Components/AutoPlay Policies
PolicySettingComment
Turn off AutoplayEnabled
Turn off Autoplay on:All drives
Windows Components/File Explorer
PolicySettingComment
Display confirmation dialog when deleting filesEnabled
Do not allow Folder Options to be opened from the Options button on the View tab of the ribbonEnabled
Do not move deleted files to the Recycle BinDisabled
Hides the Manage item on the File Explorer context menuEnabled
Maximum allowed Recycle Bin sizeEnabled
Value represents percentage of hard disk that can be used (0 - 100).
Maximum Recycle Bin size: 10
PolicySettingComment
Maximum number of recent documentsEnabled
Maximum number of recent documents15
PolicySettingComment
No Computers Near Me in Network LocationsEnabled
No Entire Network in Network LocationsEnabled
Remove "Map Network Drive" and "Disconnect Network Drive"Enabled
Remove CD Burning featuresEnabled
Remove DFS tabEnabled
Remove Hardware tabEnabled
Remove Security tabEnabled
Remove Shared Documents from My ComputerEnabled
Remove UI to change keyboard navigation indicator settingEnabled
Remove UI to change menu animation settingEnabled
Request credentials for network installationsEnabled
Turn off caching of thumbnail picturesEnabled
Turn off Windows Key hotkeysDisabled
Turn on Classic ShellDisabled
Windows Components/Internet Explorer
PolicySettingComment
Disable caching of Auto-Proxy scriptsEnabled
Disable changing accessibility settingsEnabled
Disable changing Advanced page settingsEnabled
Disable changing Automatic Configuration settingsEnabled
Disable changing Calendar and Contact settingsEnabled
Disable changing certificate settingsEnabled
Disable changing color settingsEnabled
Disable changing connection settingsEnabled
Disable changing default browser checkEnabled
Disable changing font settingsEnabled
Disable changing home page settingsEnabled
Home Page 
PolicySettingComment
Disable changing language settingsEnabled
Disable changing link color settingsEnabled
Disable changing Messaging settingsEnabled
Disable changing Profile Assistant settingsEnabled
Disable changing ratings settingsEnabled
Disable changing Temporary Internet files settingsEnabled
Disable external branding of Internet ExplorerEnabled
Disable Internet Connection wizardEnabled
Disable the Reset Web Settings featureEnabled
Display error message on proxy script download failureEnabled
Do not allow users to enable or disable add-onsEnabled
Identity Manager: Prevent users from using IdentitiesEnabled
Pop-up allow listEnabled
Enter the list of sites here.
*.crossknowledge.com
PolicySettingComment
Prevent changing proxy settingsEnabled
Search: Disable Find Files via F3 within the browserEnabled
Turn off Crash DetectionEnabled
Turn off pop-up managementEnabled
Use Automatic Detection for dial-up connectionsDisabled
Windows Components/Internet Explorer/Browser menus
PolicySettingComment
Help menu: Remove 'For Netscape Users' menu optionEnabled
Help menu: Remove 'Send Feedback' menu optionEnabled
Help menu: Remove 'Tour' menu optionEnabled
Hide Favorites menuEnabled
View menu: Disable Full Screen menu optionEnabled
Windows Components/Internet Explorer/Internet Control Panel
PolicySettingComment
Disable the Advanced pageEnabled
Disable the Connections pageEnabled
Disable the Content pageEnabled
Disable the General pageEnabled
Disable the Privacy pageEnabled
Disable the Programs pageEnabled
Disable the Security pageEnabled
Windows Components/Internet Explorer/Internet Control Panel/Security Page
PolicySettingComment
Intranet Zone TemplateEnabled
IntranetLow
PolicySettingComment
Locked-Down Intranet Zone TemplateEnabled
Locked-Down IntranetLow
PolicySettingComment
Locked-Down Trusted Sites Zone TemplateEnabled
Locked-Down Trusted SitesLow
PolicySettingComment
Site to Zone Assignment ListEnabled
Enter the zone assignments here. 
http://config.crossknowledge.com2
http://cours.crossknowledge.com2
http://sigal.crossknowledge.com2
v4-webadmin2
vega2
PolicySettingComment
Trusted Sites Zone TemplateEnabled
Trusted SitesLow
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Intranet Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerPrompt
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsEnable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsEnable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsEnable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsEnable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentEnable
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsPrompt
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingEnable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safePrompt
PolicySettingComment
Java permissionsEnabled
Java permissionsLow safety
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeEnable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeEnable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsEnable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zonePrompt
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Locked-Down Intranet Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingDisable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsAdministrator approved
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsDisable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsDisable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsDisable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentPrompt
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Disable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsDisable
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingDisable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safeDisable
PolicySettingComment
Java permissionsEnabled
Java permissionsDisable Java
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeDisable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeDisable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsDisable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Locked-Down Trusted Sites Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingDisable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsAdministrator approved
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsDisable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsDisable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsDisable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentPrompt
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Disable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsDisable
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingDisable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safeDisable
PolicySettingComment
Java permissionsEnabled
Java permissionsDisable Java
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeDisable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeDisable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsDisable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Trusted Sites Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerPrompt
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsEnable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsEnable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsEnable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsEnable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentPrompt
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsPrompt
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingEnable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safePrompt
PolicySettingComment
Java permissionsEnabled
Java permissionsLow safety
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeEnable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeEnable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsEnable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zonePrompt
Windows Components/NetMeeting
PolicySettingComment
Disable ChatEnabled
Disable Directory servicesEnabled
Disable NetMeeting 2.x WhiteboardEnabled
Disable WhiteboardEnabled
Prevent adding Directory serversEnabled
Prevent automatic acceptance of CallsEnabled
Prevent changing Call placement methodEnabled
Prevent receiving filesEnabled
Prevent sending filesEnabled
Prevent viewing Web directoryEnabled
Windows Components/NetMeeting/Application Sharing
PolicySettingComment
Disable application SharingEnabled
Prevent Application Sharing in true colorEnabled
Prevent ControlEnabled
Prevent Desktop SharingEnabled
Prevent SharingEnabled
Prevent Sharing Command PromptsEnabled
Prevent Sharing Explorer windowsEnabled
Windows Components/NetMeeting/Audio & Video
PolicySettingComment
Disable AudioDisabled
Disable full duplex AudioEnabled
Prevent changing DirectSound Audio settingEnabled
Prevent receiving VideoEnabled
Prevent sending VideoEnabled
Windows Components/NetMeeting/Options Page
PolicySettingComment
Disable the Advanced Calling buttonEnabled
Hide the Audio pageEnabled
Hide the General pageEnabled
Hide the Security pageEnabled
Hide the Video pageEnabled
Windows Components/Remote Desktop Services/Remote Desktop Connection Client
PolicySettingComment
Do not allow passwords to be savedEnabled
Windows Components/Remote Desktop Services/Remote Desktop Session Host/Session Time Limits
PolicySettingComment
End session when time limits are reachedEnabled
Set time limit for disconnected sessionsEnabled
End a disconnected session5 minutes
Windows Components/Windows Installer
PolicySettingComment
Always install with elevated privilegesDisabled
Prevent removable media source for any installationEnabled
Prohibit rollbackEnabled
This policy setting may be set for the machine or for the user.
PolicySettingComment
Specify the order in which Windows Installer searches for installation filesDisabled
Windows Components/Windows Media Player
PolicySettingComment
Prevent CD and DVD Media Information RetrievalEnabled
Prevent Music File Media Information RetrievalEnabled
Prevent Radio Station Preset RetrievalEnabled
Windows Components/Windows Media Player/Playback
PolicySettingComment
Allow Screen SaverDisabled
Prevent Codec DownloadEnabled
Windows Components/Windows Messenger
PolicySettingComment
Do not allow Windows Messenger to be runEnabled
Do not automatically start Windows Messenger initiallyEnabled
Windows Components/Windows Update/Legacy Policies
PolicySettingComment
Do not adjust default option to 'Install Updates and Shut Down' in Shut Down Windows dialog boxEnabled
Do not display 'Install Updates and Shut Down' option in Shut Down Windows dialog boxEnabled
Windows Components/Windows Update/Manage updates offered from Windows Server Update Service
PolicySettingComment
Remove access to use all Windows Update featuresEnabled
Configure notifications: 
Extra Registry Settings
Display names for some settings cannot be found. You might be able to resolve this issue by updating the .ADM files used by Group Policy Management.

SettingState
Software\Microsoft\Outlook Express\BlockExeAttachments1
Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives66650103
Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoViewOnDrive66650103
Software\Policies\Microsoft\Windows\AppCompat\VDMDisallowed1
Software\Policies\Microsoft\WindowsMovieMaker\MovieMaker1
Preferences
Windows Settings
Registry
ProxyServer (Order: 1)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Internet Settings
Value nameProxyServer
Value typeREG_SZ
Value data10.217.66.5:8080
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
MigrateProxy (Order: 2)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Internet Settings
Value nameMigrateProxy
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ProxyEnable (Order: 3)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Internet Settings
Value nameProxyEnable
Value typeREG_DWORD
Value data0x1 (1)
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
ProxyOverride (Order: 4)
General
ActionUpdate
Properties
HiveHKEY_CURRENT_USER
Key pathSoftware\Microsoft\Windows\CurrentVersion\Internet Settings
Value nameProxyOverride
Value typeREG_SZ
Value data*.on.bell.ca;*.qc.bell.ca;*.bce.ca;*.int.bell.ca;*.intranet.bell.ca;*.intra.sympatico.ca;*.teleperformanceca.com;audittel;huhcd0;142.*;172.25.*;*.on.bell.ca;altair;64.186.176.53;mssgbprep1;tpinside;172.16.139.4;tntukweb02;10.217.3.1;142.182.9.129;sebra.ccms.teleperformance.com;frparvocweb02.emea.tpg.ads;10.33.3.76;216.152.212.171;10.217.2.37;163.244.230.56;nsdellctrx.euro.dell.com;*.emea.tpg.ads;*.tpg.zone;oaw.emea.teleperformance.com;autodiscover.teleperformance.com;autodiscover.emea.teleperformance.com;autodiscover.tn.teleperformance.com;paxs2.bouyguestelecom.fr;paxs4.bouyguestelecom.fr;<local>
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Printers
Shared Printer (Name: \\tnbeafs01\RICOH MP C3003)
RICOH MP C3003 (Order: 1)
General
ActionUpdate
Properties
Share Path\\tnbeafs01\RICOH MP C3003
Set this printer as default printerTrue
Only if a local printer is not presentFalse
Local Port
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Run in logged-on user's security context (user policy option)No
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo