Quite often, domain users complain about slow computer startup and login time caused by long processing of Group Policies (GPO). From the user’s point of view, the computer boots for a long time and it seems it hangs up for several minutes on the stage of “Applying computer/user settings“. In.. read more
Knowledge base for system administrators
You are here: Windows OS Hub -» Group Policies
Archive for the 'Group Policies' Category
Using WMI Filter to Apply Group Policy to IP Subnet
This time it was necessary to apply GPO to computers in the specific IP subnet. In the simplest case, when the subnet is a part of a separate Active Directory site (and this is the only subnet in the site) you can assign your GPO to the AD site. It.. read more
Managing Default File Associations in Windows 10
In Windows 8 and Windows 10 a new mechanism to manage default file associations appeared. In this article I’ll show how to set a default browser to open HTML files, import these settings to the XML file and distribute this file containing file associations to other computers manually or using.. read more
Managing Start Layout and Taskbar Pinned Apps Using GPO
In Windows 10 RTM and Windows 8.1 were available only two modes to configure Start menu and Start Layout settings on a domain computers: you could either completely block any changes of Start Layout elements, or a user could change any layout settings. In Windows 10 build 1511, a feature.. read more
How to Block Viruses and Ransomware Using Software Restriction Policies
We go on with the series of articles on counterstrategies to the viruses and encryption malware (Ransomware, CryptoLocker , etc.) in the corporate environment. Earlier we considered how to configure Windows file server protection using FSRM and restoring encrypted files from VSS snapshots after infection. Today we’ll talk about how.. read more
Recovering Encrypted Files from VSS Snapshot after Ransomware Infection
We go on with the series of articles concerning the countermeasures against ransomware. Last time we considered a simple way of protection against encryption ransomware.on Windows file servers using FSRM. Today we’ll talk about how to easily recover your files if the ransomware has already penetrated on the computer and.. read more
How to Change Default Permissions for New GPOs
Getting back to the problems related to the break of GPO processing after the installation of the updates from MS16-072 (KB3163622) security bulletin, I’d like to tell about another important thing. As you remember, in order to make GPO Security Filtering work correctly after you install this update on clients,.. read more
MS16-072 Update Break Some Group Policies
In June 2016, Microsoft released security updates that changed the standard mechanism of applying Windows group policies. The updates in question released in MS16-072 security bulletin of June 14, 2016, are to eliminate vulnerabilities in the GPO mechanism. Let’s consider why this update has been released and what a system.. read more
User Account Control Slider and Group Policy Settings
In Windows Vista, Microsoft introduced a new mechanism, providing an additional level of protection against unauthorized modifications called UAC (User Account Control). In Windows 7 (or higher), UAC has got a setting slider (called from the Control Panel or UserAccountControlSettings.exe), which allows to select one of four UAC protection levels.
Configuring Mozilla Firefox using Group Policies
In this article I’ll try to describe the configuration management of modern Mozilla Firefox versions via Group Policies in a corporate environment (Microsoft Active Directory-based domain environment).
