Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
UA-PO-WIN-C-VPN Create IKEv2 Connection
Data collected on: 2-9-2025 09:42:41
General
Details
Domainemea.tpg.ads
OwnerEMEA\chumakov.5-adm
Created24-3-2020 14:56:22
Modified2-12-2024 17:16:44
User Revisions0 (AD), 0 (SYSVOL)
Computer Revisions120 (AD), 120 (SYSVOL)
Unique ID{f3a535ce-895b-4656-bc0e-d2ffc7b78f05}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
ClientsNoEnabledemea.tpg.ads/UA/Systems/Clients

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
None
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\UA-L-SEC-GPO VPN Create IKEv2 Connection without DNSCustomNo
Computer Configuration (Enabled)
Policies
Windows Settings
Scripts
Startup
For this GPO, Script order: Not configured
NameParameters
ua_profile01.ps1
Security Settings
Public Key Policies/Certificate Services Client - Auto-Enrollment Settings
PolicySetting
Automatic certificate managementEnabled
OptionSetting
Enroll new certificates, renew expired certificates, process pending certificate requests and remove revoked certificatesEnabled
Update and manage certificates that use certificate templates from Active DirectoryEnabled
Name Resolution Policy
Rule Settings
Namespace
Any
PolicyValue
NamespaceAny
Certification AuthorityEmpty
ConfigurationGeneric DNS Servers
DNSSEC (Validation)Not Configured
DNSSEC (IPsec)Not Configured
DNSSEC (IPsec Encryption)Not Configured
DirectAccess (IPsec)Not Configured
DirectAccess (IPsec Encryption)Not Configured
DirectAccess (Proxy Settings)Not Configured
DirectAccess (Web Proxy)Not Configured
DirectAccess (DNS servers)Not Configured
Generic DNS Servers10.209.2.240;10.204.2.21
EncodingNot Configured
VersionUnknown
Preferences
Windows Settings
Files
File (Target Path: C:\Windows\System32\__connect_to_VPN.cmd)
__connect_to_VPN.cmd (Order: 1)
General
ActionReplace
Properties
Source file(s)\\uachefs01\REMINST\Software\__connect_to_VPN.cmd
Destination fileC:\Windows\System32\__connect_to_VPN.cmd
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
File (Target Path: c:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk)
LLS rasphone.pbk (Order: 6)
General
ActionReplace
Properties
Source file(s)\\uachefs01.emea.tpg.ads\REMINST\Software\rasphone_vpn13.services-secure.net.pbk
Destination filec:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Item-level targeting: Security Group
AttributeValue
boolAND
not0
nameEMEA\UA-L-SEC-GPO WAHA LLS
sidS-1-5-21-513466819-3096973226-347852806-1083499
userContext0
primaryGroup0
localGroup0
LT rasphone.pbk (Order: 5)
General
ActionReplace
Properties
Source file(s)\\uachefs01.emea.tpg.ads\REMINST\Software\rasphone_vpn11.services-secure.net.pbk
Destination filec:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Item-level targeting: Security Group
AttributeValue
boolAND
not0
nameEMEA\UA-L-SEC-GPO WAHA LT
sidS-1-5-21-513466819-3096973226-347852806-1082076
userContext0
primaryGroup0
localGroup0
UA rasphone.pbk (Order: 4)
General
ActionReplace
Properties
Source file(s)\\uachefs01\REMINST\Software\rasphone_vpn9.services-secure.net.pbk
Destination filec:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Item-level targeting: Security Group
AttributeValue
boolAND
not0
nameEMEA\UA-L-SEC-GPO WAHA UA
sidS-1-5-21-513466819-3096973226-347852806-751472
userContext0
primaryGroup0
localGroup0
RU rasphone.pbk (Order: 3)
General
ActionReplace
Properties
Source file(s)\\uachefs01\REMINST\Software\rasphone_vpn.services-secure.net.pbk
Destination filec:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Item-level targeting: Security Group
AttributeValue
boolAND
not0
nameEMEA\UA-L-SEC-GPO WAHA RU
sidS-1-5-21-513466819-3096973226-347852806-751466
userContext0
primaryGroup0
localGroup0
PMI rasphone.pbk (Order: 2)
General
ActionReplace
Properties
Source file(s)\\uachefs01\REMINST\Software\rasphone_vpn8.services-secure.net.pbk
Destination filec:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Item-level targeting: Security Group
AttributeValue
boolAND
not0
nameEMEA\UA-L-SEC-GPO WAHA PMI
sidS-1-5-21-513466819-3096973226-347852806-751220
userContext0
primaryGroup0
localGroup0
File (Target Path: C:\Windows\System32\__connect_to_VPN.ps1)
__connect_to_VPN.ps1 (Order: 7)
General
ActionReplace
Properties
Source file(s)\\uachefs01\reminst\Software\__connect_to_VPN.ps1
Destination fileC:\Windows\System32\__connect_to_VPN.ps1
Suppress errors on individual file actionsDisabled
Attributes
Read-onlyDisabled
HiddenDisabled
ArchiveEnabled
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Control Panel Settings
Scheduled Tasks
Scheduled Task (At least Windows 7) (Name: Connect to VPN)
Connect to VPN (Order: 2)
General
ActionUpdate
Task
Name Connect to VPN
Author EMEA\chumakov.5-adm
Description
Run only when user is logged on
GroupId BUILTIN\СИСТЕМА
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.2
Enabled Yes
Triggers
1. On an event
Delay task for 1 minute
Activate 30-6-2023 13:09:03Synchronize across time zones No
Enabled Yes
Subscription <QueryList><Query Id="0" Path="Microsoft-Windows-NetworkProfile/Operational"><Select Path="Microsoft-Windows-NetworkProfile/Operational">*[System[Provider[@Name='Microsoft-Windows-NetworkProfile'] and EventID=10000]]</Select></Query></QueryList>
2. At startup
Delay task for 1 minute
Activate 30-6-2023 13:11:34Synchronize across time zones No
Enabled Yes
Actions
1. Start a program
Program/script C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Arguments -ExecutionPolicy Bypass -file C:\Windows\System32\__connect_to_VPN.ps1
Settings
Stop if the computer ceases to be idle Yes
Restart if the idle state resumes No
Start the task only if the computer is on AC power Yes
Stop if the computer switches to battery power Yes
Allow task to be run on demand Yes
Stop task if it runs longer than 1 hour
If the running task does not end when requested, force it to stop Yes
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
Item-level targeting: Security Group
AttributeValue
boolAND
not0
nameEMEA\UA-L-SEC-GPO WAHA Test
sidS-1-5-21-513466819-3096973226-347852806-1459116
userContext0
primaryGroup0
localGroup0
Connect to VPN (Order: 1)
General
ActionUpdate
Task
Name Connect to VPN
Author EMEA\chumakov.5-adm
Description
Run only when user is logged on InteractiveToken
UserId NT AUTHORITY\System
Run with highest privileges HighestAvailable
Hidden No
Configure for 1.3
Enabled Yes
Triggers
1. On an event
Enabled Yes
Subscription <QueryList><Query Id="0" Path="Microsoft-Windows-NetworkProfile/Operational"><Select Path="Microsoft-Windows-NetworkProfile/Operational">*[System[Provider[@Name='Microsoft-Windows-NetworkProfile'] and EventID=10000]]</Select></Query></QueryList>
2. On an event
Enabled Yes
Subscription <QueryList><Query Id="0" Path="Microsoft-Windows-NetworkProfile/Operational"><Select Path="Microsoft-Windows-NetworkProfile/Operational">*[System[Provider[@Name='Microsoft-Windows-NetworkProfile'] and EventID=4004]]</Select></Query></QueryList>
Actions
1. Start a program
Program/script C:\Windows\System32\__connect_to_VPN.cmd
Start in c:\Windows\System32\
Settings
Stop if the computer ceases to be idle Yes
Restart if the idle state resumes No
Start the task only if the computer is on AC power No
Stop if the computer switches to battery power No
Start only if the following network connection is available Any connection
Allow task to be run on demand Yes
Stop task if it runs longer than 1 day
If the running task does not end when requested, force it to stop Yes
If the task is already running, then the following rule applies IgnoreNew
Common
Options
Stop processing items on this extension if an error occurs on this itemNo
Remove this item when it is no longer appliedNo
Apply once and do not reapplyNo
User Configuration (Enabled)
No settings defined.