Request credentials for network installations
Prompts users for alternate logon credentials during network-based installations.
This setting displays the 'Install Program As Other User' dialog box even when a program is being installed from files on a network computer across a local area network connection.
If you disable this setting or do not configure it, this dialog box appears only whe ...
Enforce drive encryption type on operating system drives
This policy setting allows you to configure the encryption type used by BitLocker Drive Encryption. This policy setting is applied when you turn on BitLocker. Changing the encryption type has no effect if the drive is already encrypted or if encryption is in progress. Choose full encryption to require that the entire drive be encrypted when ...
Configure disk quota policy processing
This policy setting determines when disk quota policies are updated.
This policy setting affects all policies that use the disk quota component of Group Policy, such as those in Computer Configuration\Administrative Templates\System\Disk Quotas.
This policy setting overrides customized settings that the program implementing the disk quota policy set wh ...
Audit Policy: Policy Change: Filtering Platform Policy Change
This subcategory reports the addition and removal of objects from WFP, including startup filters. These events can be very high in volume. Events for this subcategory include:
? 4709: IPsec Services was started.
? 4710: IPsec Services was disabled.
? 4711: May contain any one of the following:
- PAStore Engine applied locally c ...
MSS: (Hidden) Hide Computer From the Browse List (not recommended except for highly secure environments)
The registry value entry Hidden was added to the template file in the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Lanmanserver\Parameters\ registry key. The entry appears as MSS: (Hidden) Hide Computer From the Browse List (not recommended except for highly secure environments) in the ...
Deny log on through Remote Desktop Services
This policy setting determines whether users can log on as Terminal Services clients. After the baseline member server is joined to a domain environment, there is no need to use local accounts to access the server from the network. Domain accounts can access the server for administration and end-user processing.
When configuring a user right in the SCM ...