From eb8ce587315e2fc9ad1cc9d2378ca605847e335b Mon Sep 17 00:00:00 2001 From: Sinisa Sokolic Date: Mon, 10 Jun 2024 15:12:27 +0200 Subject: [PATCH] fix: several smaller changes --- CHANGELOG.md | 33 - DSCResources/.dummy | 0 ...obe_Acrobat_Reader_DC_Continuous_V2R1.psd1 | 2 - ...obat_Reader_DC_Continuous_V2R1.schema.psm1 | 572 +- .../DoD_Google_Chrome_v2r8.psd1 | 2 - .../DoD_Google_Chrome_v2r8.schema.psm1 | 878 ++- .../DoD_Internet_Explorer_11_v2r5.psd1 | 2 - .../DoD_Internet_Explorer_11_v2r5.schema.psm1 | 862 ++- ...icrosoft_Defender_Antivirus_STIG_v2r4.psd1 | 2 - ...t_Defender_Antivirus_STIG_v2r4.schema.psm1 | 5 +- .../DoD_Microsoft_Edge_v1r7.psd1 | 2 - .../DoD_Microsoft_Edge_v1r7.schema.psm1 | 1092 ++- .../DoD_Mozilla_Firefox_v6r5.psd1 | 2 - .../DoD_Mozilla_Firefox_v6r5.schema.psm1 | 286 +- .../DoD_Office_2019-M365_Apps_v2r11.psd1 | 2 - ...oD_Office_2019-M365_Apps_v2r11.schema.psm1 | 2014 +++--- ...DoD_Office_System_2013_and_Components.psd1 | 2 - ...ice_System_2013_and_Components.schema.psm1 | 2431 ++++--- ...DoD_Office_System_2016_and_Components.psd1 | 2 - ...ice_System_2016_and_Components.schema.psm1 | 1943 +++--- .../DoD_WinSvr_2012_R2_MS_and_DC_v3r7.psd1 | 2 - ..._WinSvr_2012_R2_MS_and_DC_v3r7.schema.psm1 | 3494 +++++----- .../DoD_WinSvr_2016_MS_and_DC_v2r7.psd1 | 2 - ...DoD_WinSvr_2016_MS_and_DC_v2r7.schema.psm1 | 5503 ++++++++------- ...DoD_WinSvr_2019_MS_and_DC_v2r8.schema.psm1 | 5796 ++++++++-------- .../DoD_WinSvr_2022_MS_and_DC_v1r4.psd1 | 2 - ...DoD_WinSvr_2022_MS_and_DC_v1r4.schema.psm1 | 6095 ++++++++--------- .../DoD_Windows_10_v2r8.psd1 | 2 - .../DoD_Windows_10_v2r8.schema.psm1 | 14 +- .../DoD_Windows_11_v1r5.psd1 | 2 - .../DoD_Windows_11_v1r5.schema.psm1 | 3838 +++++------ .../DoD_Windows_Defender_Firewall_v2r2.psd1 | 2 - ...Windows_Defender_Firewall_v2r2.schema.psm1 | 135 +- Examples/XOAPSTIGJanuary2024DSC.ps1 | 2 +- LICENSE | 2 +- 35 files changed, 17466 insertions(+), 17559 deletions(-) delete mode 100644 CHANGELOG.md delete mode 100644 DSCResources/.dummy diff --git a/CHANGELOG.md b/CHANGELOG.md deleted file mode 100644 index e84ee68..0000000 --- a/CHANGELOG.md +++ /dev/null @@ -1,33 +0,0 @@ -# Changelog - -All notable changes to this project will be documented in this file. - -The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), -and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). - -## [unreleased] - -- tbd - -## [0.0.1] - 2022-06-26 - -### Changed - -- tdb - -### Added - -- tdb - -### Fixed - -- tbd - -### Removed - -- tbd - -### Security - -- tbd - diff --git a/DSCResources/.dummy b/DSCResources/.dummy deleted file mode 100644 index e69de29..0000000 diff --git a/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.psd1 b/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.psd1 index 6a7e464..326ae95 100644 --- a/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.psd1 +++ b/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.schema.psm1 b/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.schema.psm1 index 9768e92..8276757 100644 --- a/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.schema.psm1 +++ b/DSCResources/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1/DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1.schema.psm1 @@ -1,293 +1,291 @@ -configuration DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1 +configuration 'DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1' { - - Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Adobe\Acrobat Reader\DC\Installer\DisableMaintenance' - { - ValueName = 'DisableMaintenance' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Adobe\Acrobat Reader\DC\Installer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnhancedSecurityStandalone' - { - ValueName = 'bEnhancedSecurityStandalone' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bProtectedMode' - { - ValueName = 'bProtectedMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iProtectedView' - { - ValueName = 'iProtectedView' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iFileAttachmentPerms' - { - ValueName = 'iFileAttachmentPerms' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Adobe\Acrobat Reader\DC\Installer\DisableMaintenance' - { - ValueName = 'DisableMaintenance' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Adobe\Acrobat Reader\DC\Installer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnhancedSecurityStandalone' - { - ValueName = 'bEnhancedSecurityStandalone' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bProtectedMode' - { - ValueName = 'bProtectedMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iProtectedView' - { - ValueName = 'iProtectedView' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iFileAttachmentPerms' - { - ValueName = 'iFileAttachmentPerms' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnableFlash' - { - ValueName = 'bEnableFlash' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bDisablePDFHandlerSwitching' - { - ValueName = 'bDisablePDFHandlerSwitching' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bAcroSuppressUpsell' - { - ValueName = 'bAcroSuppressUpsell' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnhancedSecurityInBrowser' - { - ValueName = 'bEnhancedSecurityInBrowser' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bDisableTrustedFolders' - { - ValueName = 'bDisableTrustedFolders' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bDisableTrustedSites' - { - ValueName = 'bDisableTrustedSites' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cCloud\bAdobeSendPluginToggle' - { - ValueName = 'bAdobeSendPluginToggle' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cCloud' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms\iURLPerms' - { - ValueName = 'iURLPerms' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms\iUnknownURLPerms' - { - ValueName = 'iUnknownURLPerms' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bToggleAdobeDocumentServices' - { - ValueName = 'bToggleAdobeDocumentServices' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bTogglePrefsSync' - { - ValueName = 'bTogglePrefsSync' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bToggleWebConnectors' - { - ValueName = 'bToggleWebConnectors' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bToggleAdobeSign' - { - ValueName = 'bToggleAdobeSign' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bUpdater' - { - ValueName = 'bUpdater' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cSharePoint\bDisableSharePointFeatures' - { - ValueName = 'bDisableSharePointFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cSharePoint' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWebmailProfiles\bDisableWebmail' - { - ValueName = 'bDisableWebmail' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWebmailProfiles' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWelcomeScreen\bShowWelcomeScreen' - { - ValueName = 'bShowWelcomeScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWelcomeScreen' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Wow6432Node\Adobe\Acrobat Reader\DC\Installer\DisableMaintenance' - { - ValueName = 'DisableMaintenance' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Wow6432Node\Adobe\Acrobat Reader\DC\Installer' - ValueData = 1 - } - -<# RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\AVGeneral\bFIPSMode' - { - ValueName = 'bFIPSMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\AVGeneral' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cAdobeDownload\bLoadSettingsFromURL' - { - ValueName = 'bLoadSettingsFromURL' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cAdobeDownload' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cEUTLDownload\bLoadSettingsFromURL' - { - ValueName = 'bLoadSettingsFromURL' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cEUTLDownload' - ValueData = 0 - } #> - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Adobe\Acrobat Reader\DC\Installer\DisableMaintenance' + { + ValueName = 'DisableMaintenance' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Adobe\Acrobat Reader\DC\Installer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnhancedSecurityStandalone' + { + ValueName = 'bEnhancedSecurityStandalone' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bProtectedMode' + { + ValueName = 'bProtectedMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iProtectedView' + { + ValueName = 'iProtectedView' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iFileAttachmentPerms' + { + ValueName = 'iFileAttachmentPerms' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Adobe\Acrobat Reader\DC\Installer\DisableMaintenance' + { + ValueName = 'DisableMaintenance' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Adobe\Acrobat Reader\DC\Installer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnhancedSecurityStandalone' + { + ValueName = 'bEnhancedSecurityStandalone' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bProtectedMode' + { + ValueName = 'bProtectedMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iProtectedView' + { + ValueName = 'iProtectedView' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\iFileAttachmentPerms' + { + ValueName = 'iFileAttachmentPerms' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnableFlash' + { + ValueName = 'bEnableFlash' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bDisablePDFHandlerSwitching' + { + ValueName = 'bDisablePDFHandlerSwitching' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bAcroSuppressUpsell' + { + ValueName = 'bAcroSuppressUpsell' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bEnhancedSecurityInBrowser' + { + ValueName = 'bEnhancedSecurityInBrowser' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bDisableTrustedFolders' + { + ValueName = 'bDisableTrustedFolders' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\bDisableTrustedSites' + { + ValueName = 'bDisableTrustedSites' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cCloud\bAdobeSendPluginToggle' + { + ValueName = 'bAdobeSendPluginToggle' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cCloud' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms\iURLPerms' + { + ValueName = 'iURLPerms' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms\iUnknownURLPerms' + { + ValueName = 'iUnknownURLPerms' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cDefaultLaunchURLPerms' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bToggleAdobeDocumentServices' + { + ValueName = 'bToggleAdobeDocumentServices' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bTogglePrefsSync' + { + ValueName = 'bTogglePrefsSync' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bToggleWebConnectors' + { + ValueName = 'bToggleWebConnectors' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bToggleAdobeSign' + { + ValueName = 'bToggleAdobeSign' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices\bUpdater' + { + ValueName = 'bUpdater' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cServices' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cSharePoint\bDisableSharePointFeatures' + { + ValueName = 'bDisableSharePointFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cSharePoint' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWebmailProfiles\bDisableWebmail' + { + ValueName = 'bDisableWebmail' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWebmailProfiles' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWelcomeScreen\bShowWelcomeScreen' + { + ValueName = 'bShowWelcomeScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Adobe\Acrobat Reader\DC\FeatureLockdown\cWelcomeScreen' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Wow6432Node\Adobe\Acrobat Reader\DC\Installer\DisableMaintenance' + { + ValueName = 'DisableMaintenance' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Wow6432Node\Adobe\Acrobat Reader\DC\Installer' + ValueData = 1 + } + + <# RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\AVGeneral\bFIPSMode' + { + ValueName = 'bFIPSMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\AVGeneral' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cAdobeDownload\bLoadSettingsFromURL' + { + ValueName = 'bLoadSettingsFromURL' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cAdobeDownload' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cEUTLDownload\bLoadSettingsFromURL' + { + ValueName = 'bLoadSettingsFromURL' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\SOFTWARE\Adobe\Acrobat Reader\DC\Security\cDigSig\cEUTLDownload' + ValueData = 0 + } #> + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.psd1 b/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.psd1 index 9504f51..06e551e 100644 --- a/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.psd1 +++ b/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.schema.psm1 b/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.schema.psm1 index 45bba59..3e566eb 100644 --- a/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.schema.psm1 +++ b/DSCResources/DoD_Google_Chrome_v2r8/DoD_Google_Chrome_v2r8.schema.psm1 @@ -1,446 +1,444 @@ -configuration DoD_Google_Chrome_v2r8 +configuration 'DoD_Google_Chrome_v2r8' { - - Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\RemoteAccessHostFirewallTraversal' - { - ValueName = 'RemoteAccessHostFirewallTraversal' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultPopupsSetting' - { - ValueName = 'DefaultPopupsSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultGeolocationSetting' - { - ValueName = 'DefaultGeolocationSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultSearchProviderName' - { - ValueName = 'DefaultSearchProviderName' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome' - ValueData = 'Google Encrypted' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultSearchProviderEnabled' - { - ValueName = 'DefaultSearchProviderEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\PasswordManagerEnabled' - { - ValueName = 'PasswordManagerEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\BackgroundModeEnabled' - { - ValueName = 'BackgroundModeEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SyncDisabled' - { - ValueName = 'SyncDisabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\CloudPrintProxyEnabled' - { - ValueName = 'CloudPrintProxyEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\MetricsReportingEnabled' - { - ValueName = 'MetricsReportingEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SearchSuggestEnabled' - { - ValueName = 'SearchSuggestEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ImportSavedPasswords' - { - ValueName = 'ImportSavedPasswords' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\IncognitoModeAvailability' - { - ValueName = 'IncognitoModeAvailability' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SavingBrowserHistoryDisabled' - { - ValueName = 'SavingBrowserHistoryDisabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AllowDeletingBrowserHistory' - { - ValueName = 'AllowDeletingBrowserHistory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\PromptForDownloadLocation' - { - ValueName = 'PromptForDownloadLocation' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutoplayAllowed' - { - ValueName = 'AutoplayAllowed' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SafeBrowsingExtendedReportingEnabled' - { - ValueName = 'SafeBrowsingExtendedReportingEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultWebUsbGuardSetting' - { - ValueName = 'DefaultWebUsbGuardSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ChromeCleanupEnabled' - { - ValueName = 'ChromeCleanupEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ChromeCleanupReportingEnabled' - { - ValueName = 'ChromeCleanupReportingEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\EnableMediaRouter' - { - ValueName = 'EnableMediaRouter' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\UrlKeyedAnonymizedDataCollectionEnabled' - { - ValueName = 'UrlKeyedAnonymizedDataCollectionEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\WebRtcEventLogCollectionAllowed' - { - ValueName = 'WebRtcEventLogCollectionAllowed' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\NetworkPredictionOptions' - { - ValueName = 'NetworkPredictionOptions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DeveloperToolsAvailability' - { - ValueName = 'DeveloperToolsAvailability' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\BrowserGuestModeEnabled' - { - ValueName = 'BrowserGuestModeEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutofillCreditCardEnabled' - { - ValueName = 'AutofillCreditCardEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutofillAddressEnabled' - { - ValueName = 'AutofillAddressEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ImportAutofillFormData' - { - ValueName = 'ImportAutofillFormData' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SafeBrowsingProtectionLevel' - { - ValueName = 'SafeBrowsingProtectionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultSearchProviderSearchURL' - { - ValueName = 'DefaultSearchProviderSearchURL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome' - ValueData = 'https://www.google.com/search?q={searchTerms}' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DownloadRestrictions' - { - ValueName = 'DownloadRestrictions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultWebBluetoothGuardSetting' - { - ValueName = 'DefaultWebBluetoothGuardSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\QuicAllowed' - { - ValueName = 'QuicAllowed' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\EnableOnlineRevocationChecks' - { - ValueName = 'EnableOnlineRevocationChecks' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Google\Chrome' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SSLVersionMin' - { - ValueName = 'SSLVersionMin' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome' - ValueData = 'tls1.2' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\AutoplayAllowlist' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\AutoplayAllowlist' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutoplayAllowlist\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\AutoplayAllowlist' - ValueData = '[*.]mil' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutoplayAllowlist\2' - { - ValueName = '2' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\AutoplayAllowlist' - ValueData = '[*.]gov' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls' - ValueData = '' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\ExtensionInstallAllowlist' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\ExtensionInstallAllowlist' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ExtensionInstallAllowlist\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\ExtensionInstallAllowlist' - ValueData = 'oiigbmnaadbkfbmpbfijlflahbdbdgdf' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\ExtensionInstallBlocklist' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\ExtensionInstallBlocklist' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ExtensionInstallBlocklist\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\ExtensionInstallBlocklist' - ValueData = '*' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\URLBlocklist' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\URLBlocklist' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\URLBlocklist\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Google\Chrome\URLBlocklist' - ValueData = 'javascript://*' - } - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\RemoteAccessHostFirewallTraversal' + { + ValueName = 'RemoteAccessHostFirewallTraversal' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultPopupsSetting' + { + ValueName = 'DefaultPopupsSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultGeolocationSetting' + { + ValueName = 'DefaultGeolocationSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultSearchProviderName' + { + ValueName = 'DefaultSearchProviderName' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome' + ValueData = 'Google Encrypted' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultSearchProviderEnabled' + { + ValueName = 'DefaultSearchProviderEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\PasswordManagerEnabled' + { + ValueName = 'PasswordManagerEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\BackgroundModeEnabled' + { + ValueName = 'BackgroundModeEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SyncDisabled' + { + ValueName = 'SyncDisabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\CloudPrintProxyEnabled' + { + ValueName = 'CloudPrintProxyEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\MetricsReportingEnabled' + { + ValueName = 'MetricsReportingEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SearchSuggestEnabled' + { + ValueName = 'SearchSuggestEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ImportSavedPasswords' + { + ValueName = 'ImportSavedPasswords' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\IncognitoModeAvailability' + { + ValueName = 'IncognitoModeAvailability' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SavingBrowserHistoryDisabled' + { + ValueName = 'SavingBrowserHistoryDisabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AllowDeletingBrowserHistory' + { + ValueName = 'AllowDeletingBrowserHistory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\PromptForDownloadLocation' + { + ValueName = 'PromptForDownloadLocation' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutoplayAllowed' + { + ValueName = 'AutoplayAllowed' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SafeBrowsingExtendedReportingEnabled' + { + ValueName = 'SafeBrowsingExtendedReportingEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultWebUsbGuardSetting' + { + ValueName = 'DefaultWebUsbGuardSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ChromeCleanupEnabled' + { + ValueName = 'ChromeCleanupEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ChromeCleanupReportingEnabled' + { + ValueName = 'ChromeCleanupReportingEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\EnableMediaRouter' + { + ValueName = 'EnableMediaRouter' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\UrlKeyedAnonymizedDataCollectionEnabled' + { + ValueName = 'UrlKeyedAnonymizedDataCollectionEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\WebRtcEventLogCollectionAllowed' + { + ValueName = 'WebRtcEventLogCollectionAllowed' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\NetworkPredictionOptions' + { + ValueName = 'NetworkPredictionOptions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DeveloperToolsAvailability' + { + ValueName = 'DeveloperToolsAvailability' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\BrowserGuestModeEnabled' + { + ValueName = 'BrowserGuestModeEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutofillCreditCardEnabled' + { + ValueName = 'AutofillCreditCardEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutofillAddressEnabled' + { + ValueName = 'AutofillAddressEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ImportAutofillFormData' + { + ValueName = 'ImportAutofillFormData' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SafeBrowsingProtectionLevel' + { + ValueName = 'SafeBrowsingProtectionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultSearchProviderSearchURL' + { + ValueName = 'DefaultSearchProviderSearchURL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome' + ValueData = 'https://www.google.com/search?q={searchTerms}' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DownloadRestrictions' + { + ValueName = 'DownloadRestrictions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\DefaultWebBluetoothGuardSetting' + { + ValueName = 'DefaultWebBluetoothGuardSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\QuicAllowed' + { + ValueName = 'QuicAllowed' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\EnableOnlineRevocationChecks' + { + ValueName = 'EnableOnlineRevocationChecks' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Google\Chrome' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\SSLVersionMin' + { + ValueName = 'SSLVersionMin' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome' + ValueData = 'tls1.2' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\AutoplayAllowlist' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\AutoplayAllowlist' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutoplayAllowlist\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\AutoplayAllowlist' + ValueData = '[*.]mil' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\AutoplayAllowlist\2' + { + ValueName = '2' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\AutoplayAllowlist' + ValueData = '[*.]gov' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\CookiesSessionOnlyForUrls' + ValueData = '' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\ExtensionInstallAllowlist' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\ExtensionInstallAllowlist' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ExtensionInstallAllowlist\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\ExtensionInstallAllowlist' + ValueData = 'oiigbmnaadbkfbmpbfijlflahbdbdgdf' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\ExtensionInstallBlocklist' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\ExtensionInstallBlocklist' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\ExtensionInstallBlocklist\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\ExtensionInstallBlocklist' + ValueData = '*' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Google\Chrome\URLBlocklist' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\URLBlocklist' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Google\Chrome\URLBlocklist\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Google\Chrome\URLBlocklist' + ValueData = 'javascript://*' + } + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.psd1 b/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.psd1 index cfa4177..2cbabd7 100644 --- a/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.psd1 +++ b/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.schema.psm1 b/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.schema.psm1 index df7a7fc..498a792 100644 --- a/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.schema.psm1 +++ b/DSCResources/DoD_Internet_Explorer_11_v2r5/DoD_Internet_Explorer_11_v2r5.schema.psm1 @@ -1,1282 +1,1280 @@ -configuration DoD_Internet_Explorer_11_v2r5 +configuration 'DoD_Internet_Explorer_11_v2r5' { - Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' - Import-DSCResource -ModuleName 'AuditPolicyDSC' - Import-DSCResource -ModuleName 'SecurityPolicyDSC' + Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' + Import-DSCResource -ModuleName 'AuditPolicyDSC' + Import-DSCResource -ModuleName 'SecurityPolicyDSC' - <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Control Panel\FormSuggest' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Control Panel\FormSuggest' + { ValueName = 'FormSuggest' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Internet Explorer\Control Panel' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Control Panel\FormSuggest Passwords' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Control Panel\FormSuggest Passwords' + { ValueName = 'FormSuggest Passwords' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Internet Explorer\Control Panel' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Main\Use FormSuggest' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Main\Use FormSuggest' + { ValueName = 'Use FormSuggest' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 'no' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Main\FormSuggest Passwords' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Main\FormSuggest Passwords' + { ValueName = 'FormSuggest Passwords' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 'no' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Main\FormSuggest PW Ask' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Internet Explorer\Main\FormSuggest PW Ask' + { ValueName = 'FormSuggest PW Ask' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 'no' - }#> + }#> - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\RunThisTimeEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\RunThisTimeEnabled' + { ValueName = 'RunThisTimeEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Ext' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\VersionCheckEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\VersionCheckEnabled' + { ValueName = 'VersionCheckEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Ext' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Control Panel\History' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Control Panel\History' + { ValueName = 'History' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Control Panel' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Download\RunInvalidSignatures' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Download\RunInvalidSignatures' + { ValueName = 'RunInvalidSignatures' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Download' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Download\CheckExeSignatures' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Download\CheckExeSignatures' + { ValueName = 'CheckExeSignatures' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Download' ValueData = 'yes' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\IEDevTools\Disabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\IEDevTools\Disabled' + { ValueName = 'Disabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\IEDevTools' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\DisableEPMCompat' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\DisableEPMCompat' + { ValueName = 'DisableEPMCompat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\Isolation64Bit' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\Isolation64Bit' + { ValueName = 'Isolation64Bit' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\Isolation' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\Isolation' + { ValueName = 'Isolation' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 'PMEM' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\NotifyDisableIEOptions' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\NotifyDisableIEOptions' + { ValueName = 'NotifyDisableIEOptions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Main' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION\(Reserved)' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION\(Reserved)' + { ValueName = '(Reserved)' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION\explorer.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION\explorer.exe' + { ValueName = 'explorer.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION\iexplore.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION\iexplore.exe' + { ValueName = 'iexplore.exe' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\PreventOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\PreventOverride' + { ValueName = 'PreventOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\PhishingFilter' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\PreventOverrideAppRepUnknown' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\PreventOverrideAppRepUnknown' + { ValueName = 'PreventOverrideAppRepUnknown' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\PhishingFilter' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\EnabledV9' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\PhishingFilter\EnabledV9' + { ValueName = 'EnabledV9' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\PhishingFilter' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Privacy\ClearBrowsingHistoryOnExit' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Privacy\ClearBrowsingHistoryOnExit' + { ValueName = 'ClearBrowsingHistoryOnExit' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Privacy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Privacy\CleanHistory' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Privacy\CleanHistory' + { ValueName = 'CleanHistory' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Privacy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Privacy\EnableInPrivateBrowsing' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Privacy\EnableInPrivateBrowsing' + { ValueName = 'EnableInPrivateBrowsing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Privacy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoCrashDetection' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Restrictions\NoCrashDetection' + { ValueName = 'NoCrashDetection' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Security\DisableSecuritySettingsCheck' + { ValueName = 'DisableSecuritySettingsCheck' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Security\ActiveX\BlockNonAdminActiveXInstall' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Security\ActiveX\BlockNonAdminActiveXInstall' + { ValueName = 'BlockNonAdminActiveXInstall' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Internet Explorer\Security\ActiveX' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_zones_map_edit' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_zones_map_edit' + { ValueName = 'Security_zones_map_edit' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_options_edit' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_options_edit' + { ValueName = 'Security_options_edit' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Security_HKLM_only' + { ValueName = 'Security_HKLM_only' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\PreventIgnoreCertErrors' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\PreventIgnoreCertErrors' + { ValueName = 'PreventIgnoreCertErrors' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CertificateRevocation' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\CertificateRevocation' + { ValueName = 'CertificateRevocation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnBadCertRecving' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnBadCertRecving' + { ValueName = 'WarnOnBadCertRecving' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableSSL3Fallback' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableSSL3Fallback' + { ValueName = 'EnableSSL3Fallback' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\SecureProtocols' + { ValueName = 'SecureProtocols' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings' ValueData = 2048 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\0' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\1' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\2' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Url History\DaysToKeep' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Url History\DaysToKeep' + { ValueName = 'DaysToKeep' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Url History' ValueData = 40 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet' + { ValueName = 'UNCAsIntranet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\270C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\270C' + { ValueName = '270C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\270C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\270C' + { ValueName = '270C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\1201' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\1201' + { ValueName = '1201' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1' ValueData = 65536 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\270C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\270C' + { ValueName = '270C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\1201' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\1201' + { ValueName = '1201' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2' ValueData = 65536 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1406' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1406' + { ValueName = '1406' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1407' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1407' + { ValueName = '1407' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1802' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1802' + { ValueName = '1802' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2402' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2402' + { ValueName = '2402' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\120b' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\120b' + { ValueName = '120b' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\120c' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\120c' + { ValueName = '120c' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1206' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1206' + { ValueName = '1206' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2102' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2102' + { ValueName = '2102' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1209' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1209' + { ValueName = '1209' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2103' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2103' + { ValueName = '2103' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2200' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2200' + { ValueName = '2200' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\270C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\270C' + { ValueName = '270C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1001' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1001' + { ValueName = '1001' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1004' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1004' + { ValueName = '1004' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2709' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2709' + { ValueName = '2709' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2708' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2708' + { ValueName = '2708' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\160A' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\160A' + { ValueName = '160A' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1201' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1201' + { ValueName = '1201' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1804' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1804' + { ValueName = '1804' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1A00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1A00' + { ValueName = '1A00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 65536 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1607' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1607' + { ValueName = '1607' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2004' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2004' + { ValueName = '2004' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2001' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2001' + { ValueName = '2001' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1806' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1806' + { ValueName = '1806' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1409' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1409' + { ValueName = '1409' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2500' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2500' + { ValueName = '2500' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2301' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2301' + { ValueName = '2301' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1809' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1809' + { ValueName = '1809' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1606' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1606' + { ValueName = '1606' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2101' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\2101' + { ValueName = '2101' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\140C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\140C' + { ValueName = '140C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1406' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1406' + { ValueName = '1406' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1400' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1400' + { ValueName = '1400' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2000' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2000' + { ValueName = '2000' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1407' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1407' + { ValueName = '1407' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1802' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1802' + { ValueName = '1802' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1803' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1803' + { ValueName = '1803' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2402' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2402' + { ValueName = '2402' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1608' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1608' + { ValueName = '1608' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\120b' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\120b' + { ValueName = '120b' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\120c' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\120c' + { ValueName = '120c' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1206' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1206' + { ValueName = '1206' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2102' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2102' + { ValueName = '2102' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1209' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1209' + { ValueName = '1209' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2103' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2103' + { ValueName = '2103' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2200' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2200' + { ValueName = '2200' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\270C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\270C' + { ValueName = '270C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1001' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1001' + { ValueName = '1001' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1004' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1004' + { ValueName = '1004' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2709' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2709' + { ValueName = '2709' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2708' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2708' + { ValueName = '2708' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\160A' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\160A' + { ValueName = '160A' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1201' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1201' + { ValueName = '1201' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1C00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1C00' + { ValueName = '1C00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1804' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1804' + { ValueName = '1804' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1A00' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1A00' + { ValueName = '1A00' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 196608 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1607' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1607' + { ValueName = '1607' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2004' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2004' + { ValueName = '2004' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1200' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1200' + { ValueName = '1200' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1405' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1405' + { ValueName = '1405' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1402' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1402' + { ValueName = '1402' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1806' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1806' + { ValueName = '1806' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1409' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1409' + { ValueName = '1409' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2500' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2500' + { ValueName = '2500' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2301' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2301' + { ValueName = '2301' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1809' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1809' + { ValueName = '1809' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1606' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\1606' + { ValueName = '1606' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2101' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2101' + { ValueName = '2101' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2001' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\2001' + { ValueName = '2001' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\140C' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4\140C' + { ValueName = '140C' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4' ValueData = 3 - } + } - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - - + } } diff --git a/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.psd1 b/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.psd1 index 6f4c7cc..a7b2d22 100644 --- a/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.psd1 +++ b/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.schema.psm1 b/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.schema.psm1 index 16a1ac0..7f1010c 100644 --- a/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.schema.psm1 +++ b/DSCResources/DoD_Microsoft_Defender_Antivirus_STIG_v2r4/DoD_Microsoft_Defender_Antivirus_STIG_v2r4.schema.psm1 @@ -1,10 +1,10 @@ -configuration DoD_Microsoft_Defender_Antivirus_STIG_v2r4 +configuration 'DoD_Microsoft_Defender_Antivirus_STIG_v2r4' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows Defender\PUAProtection' + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows Defender\PUAProtection' { ValueName = 'PUAProtection' TargetType = 'ComputerConfiguration' @@ -233,5 +233,4 @@ configuration DoD_Microsoft_Defender_Antivirus_STIG_v2r4 { IsSingleInstance = 'Yes' } - } diff --git a/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.psd1 b/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.psd1 index f5ae824..2dcfcda 100644 --- a/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.psd1 +++ b/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.schema.psm1 b/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.schema.psm1 index 5ddc998..709dd9c 100644 --- a/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.schema.psm1 +++ b/DSCResources/DoD_Microsoft_Edge_v1r7/DoD_Microsoft_Edge_v1r7.schema.psm1 @@ -1,553 +1,551 @@ -configuration DoD_Microsoft_Edge_v1r7 +configuration 'DoD_Microsoft_Edge_v1r7' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SSLVersionMin' - { - ValueName = 'SSLVersionMin' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 'tls1.2' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SyncDisabled' - { - ValueName = 'SyncDisabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportBrowserSettings' - { - ValueName = 'ImportBrowserSettings' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DeveloperToolsAvailability' - { - ValueName = 'DeveloperToolsAvailability' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PromptForDownloadLocation' - { - ValueName = 'PromptForDownloadLocation' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PreventSmartScreenPromptOverride' - { - ValueName = 'PreventSmartScreenPromptOverride' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PreventSmartScreenPromptOverrideForFiles' - { - ValueName = 'PreventSmartScreenPromptOverrideForFiles' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\InPrivateModeAvailability' - { - ValueName = 'InPrivateModeAvailability' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AllowDeletingBrowserHistory' - { - ValueName = 'AllowDeletingBrowserHistory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\BackgroundModeEnabled' - { - ValueName = 'BackgroundModeEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultPopupsSetting' - { - ValueName = 'DefaultPopupsSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\NetworkPredictionOptions' - { - ValueName = 'NetworkPredictionOptions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SearchSuggestEnabled' - { - ValueName = 'SearchSuggestEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportAutofillFormData' - { - ValueName = 'ImportAutofillFormData' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportCookies' - { - ValueName = 'ImportCookies' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportExtensions' - { - ValueName = 'ImportExtensions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportHistory' - { - ValueName = 'ImportHistory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportHomepage' - { - ValueName = 'ImportHomepage' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportOpenTabs' - { - ValueName = 'ImportOpenTabs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportPaymentInfo' - { - ValueName = 'ImportPaymentInfo' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportSavedPasswords' - { - ValueName = 'ImportSavedPasswords' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportSearchEngine' - { - ValueName = 'ImportSearchEngine' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportShortcuts' - { - ValueName = 'ImportShortcuts' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutoplayAllowed' - { - ValueName = 'AutoplayAllowed' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\EnableMediaRouter' - { - ValueName = 'EnableMediaRouter' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutofillCreditCardEnabled' - { - ValueName = 'AutofillCreditCardEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutofillAddressEnabled' - { - ValueName = 'AutofillAddressEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PersonalizationReportingEnabled' - { - ValueName = 'PersonalizationReportingEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultGeolocationSetting' - { - ValueName = 'DefaultGeolocationSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PasswordManagerEnabled' - { - ValueName = 'PasswordManagerEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - - - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\IsolateOrigins' - { - ValueName = 'IsolateOrigins' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = $null - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SmartScreenEnabled' - { - ValueName = 'SmartScreenEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SmartScreenPuaEnabled' - { - ValueName = 'SmartScreenPuaEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PaymentMethodQueryEnabled' - { - ValueName = 'PaymentMethodQueryEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AlternateErrorPagesEnabled' - { - ValueName = 'AlternateErrorPagesEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\UserFeedbackAllowed' - { - ValueName = 'UserFeedbackAllowed' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\EdgeCollectionsEnabled' - { - ValueName = 'EdgeCollectionsEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ConfigureShare' - { - ValueName = 'ConfigureShare' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\BrowserGuestModeEnabled' - { - ValueName = 'BrowserGuestModeEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\BuiltInDnsClientEnabled' - { - ValueName = 'BuiltInDnsClientEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SitePerProcess' - { - ValueName = 'SitePerProcess' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ManagedSearchEngines' - { - ValueName = 'ManagedSearchEngines' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = '[{"allow_search_engine_discovery": false},{"is_default": true,"name": "Microsoft Bing","keyword": "bing","search_url": "https://www.bing.com/search?q={searchTerms}"},{"name": "Google","keyword": "google","search_url": "https://www.google.com/search?q={searchTerms}"}]' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AuthSchemes' - { - ValueName = 'AuthSchemes' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 'ntlm,negotiate' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultWebUsbGuardSetting' - { - ValueName = 'DefaultWebUsbGuardSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultWebBluetoothGuardSetting' - { - ValueName = 'DefaultWebBluetoothGuardSetting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\TrackingPrevention' - { - ValueName = 'TrackingPrevention' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\RelaunchNotification' - { - ValueName = 'RelaunchNotification' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ProxySettings' - { - ValueName = 'ProxySettings' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 'ADD YOUR PROXY CONFIGURATIONS HERE' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\EnableOnlineRevocationChecks' - { - ValueName = 'EnableOnlineRevocationChecks' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\QuicAllowed' - { - ValueName = 'QuicAllowed' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DownloadRestrictions' - { - ValueName = 'DownloadRestrictions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Edge' - ValueData = 1 - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Microsoft\Edge\AutoplayAllowlist' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\AutoplayAllowlist' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutoplayAllowlist\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\AutoplayAllowlist' - ValueData = '[*.]gov' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutoplayAllowlist\2' - { - ValueName = '2' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\AutoplayAllowlist' - ValueData = '[*.]mil' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist' - ValueData = '*' - } - - RegistryPolicyFile 'DELVALS_\Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' - { - ValueName = '' - TargetType = 'ComputerConfiguration' - - Ensure = 'Present' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PopupsAllowedForUrls\1' - { - ValueName = '1' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' - ValueData = '[*.]mil' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PopupsAllowedForUrls\2' - { - ValueName = '2' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' - ValueData = '[*.]gov' - } - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } - - + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SSLVersionMin' + { + ValueName = 'SSLVersionMin' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 'tls1.2' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SyncDisabled' + { + ValueName = 'SyncDisabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportBrowserSettings' + { + ValueName = 'ImportBrowserSettings' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DeveloperToolsAvailability' + { + ValueName = 'DeveloperToolsAvailability' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PromptForDownloadLocation' + { + ValueName = 'PromptForDownloadLocation' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PreventSmartScreenPromptOverride' + { + ValueName = 'PreventSmartScreenPromptOverride' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PreventSmartScreenPromptOverrideForFiles' + { + ValueName = 'PreventSmartScreenPromptOverrideForFiles' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\InPrivateModeAvailability' + { + ValueName = 'InPrivateModeAvailability' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AllowDeletingBrowserHistory' + { + ValueName = 'AllowDeletingBrowserHistory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\BackgroundModeEnabled' + { + ValueName = 'BackgroundModeEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultPopupsSetting' + { + ValueName = 'DefaultPopupsSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\NetworkPredictionOptions' + { + ValueName = 'NetworkPredictionOptions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SearchSuggestEnabled' + { + ValueName = 'SearchSuggestEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportAutofillFormData' + { + ValueName = 'ImportAutofillFormData' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportCookies' + { + ValueName = 'ImportCookies' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportExtensions' + { + ValueName = 'ImportExtensions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportHistory' + { + ValueName = 'ImportHistory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportHomepage' + { + ValueName = 'ImportHomepage' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportOpenTabs' + { + ValueName = 'ImportOpenTabs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportPaymentInfo' + { + ValueName = 'ImportPaymentInfo' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportSavedPasswords' + { + ValueName = 'ImportSavedPasswords' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportSearchEngine' + { + ValueName = 'ImportSearchEngine' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ImportShortcuts' + { + ValueName = 'ImportShortcuts' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutoplayAllowed' + { + ValueName = 'AutoplayAllowed' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\EnableMediaRouter' + { + ValueName = 'EnableMediaRouter' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutofillCreditCardEnabled' + { + ValueName = 'AutofillCreditCardEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutofillAddressEnabled' + { + ValueName = 'AutofillAddressEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PersonalizationReportingEnabled' + { + ValueName = 'PersonalizationReportingEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultGeolocationSetting' + { + ValueName = 'DefaultGeolocationSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PasswordManagerEnabled' + { + ValueName = 'PasswordManagerEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + + + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\IsolateOrigins' + { + ValueName = 'IsolateOrigins' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = $null + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SmartScreenEnabled' + { + ValueName = 'SmartScreenEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SmartScreenPuaEnabled' + { + ValueName = 'SmartScreenPuaEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PaymentMethodQueryEnabled' + { + ValueName = 'PaymentMethodQueryEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AlternateErrorPagesEnabled' + { + ValueName = 'AlternateErrorPagesEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\UserFeedbackAllowed' + { + ValueName = 'UserFeedbackAllowed' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\EdgeCollectionsEnabled' + { + ValueName = 'EdgeCollectionsEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ConfigureShare' + { + ValueName = 'ConfigureShare' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\BrowserGuestModeEnabled' + { + ValueName = 'BrowserGuestModeEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\BuiltInDnsClientEnabled' + { + ValueName = 'BuiltInDnsClientEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\SitePerProcess' + { + ValueName = 'SitePerProcess' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ManagedSearchEngines' + { + ValueName = 'ManagedSearchEngines' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = '[{"allow_search_engine_discovery": false},{"is_default": true,"name": "Microsoft Bing","keyword": "bing","search_url": "https://www.bing.com/search?q={searchTerms}"},{"name": "Google","keyword": "google","search_url": "https://www.google.com/search?q={searchTerms}"}]' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AuthSchemes' + { + ValueName = 'AuthSchemes' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 'ntlm,negotiate' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultWebUsbGuardSetting' + { + ValueName = 'DefaultWebUsbGuardSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DefaultWebBluetoothGuardSetting' + { + ValueName = 'DefaultWebBluetoothGuardSetting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\TrackingPrevention' + { + ValueName = 'TrackingPrevention' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\RelaunchNotification' + { + ValueName = 'RelaunchNotification' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ProxySettings' + { + ValueName = 'ProxySettings' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 'ADD YOUR PROXY CONFIGURATIONS HERE' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\EnableOnlineRevocationChecks' + { + ValueName = 'EnableOnlineRevocationChecks' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\QuicAllowed' + { + ValueName = 'QuicAllowed' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\DownloadRestrictions' + { + ValueName = 'DownloadRestrictions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Edge' + ValueData = 1 + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Microsoft\Edge\AutoplayAllowlist' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\AutoplayAllowlist' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutoplayAllowlist\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\AutoplayAllowlist' + ValueData = '[*.]gov' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\AutoplayAllowlist\2' + { + ValueName = '2' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\AutoplayAllowlist' + ValueData = '[*.]mil' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\ExtensionInstallBlocklist' + ValueData = '*' + } + + RegistryPolicyFile 'DELVALS_\Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' + { + ValueName = '' + TargetType = 'ComputerConfiguration' + + Ensure = 'Present' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PopupsAllowedForUrls\1' + { + ValueName = '1' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' + ValueData = '[*.]mil' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Edge\PopupsAllowedForUrls\2' + { + ValueName = '2' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Edge\PopupsAllowedForUrls' + ValueData = '[*.]gov' + } + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.psd1 b/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.psd1 index 09f0190..31bea08 100644 --- a/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.psd1 +++ b/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.schema.psm1 b/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.schema.psm1 index 48d8562..d8d311a 100644 --- a/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.schema.psm1 +++ b/DSCResources/DoD_Mozilla_Firefox_v6r5/DoD_Mozilla_Firefox_v6r5.schema.psm1 @@ -1,308 +1,308 @@ -configuration DoD_Mozilla_Firefox_v6r5 +configuration 'DoD_Mozilla_Firefox_v6r5' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SSLVersionMin' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SSLVersionMin' + { ValueName = 'SSLVersionMin' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 'tls1.2' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\ExtensionUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\ExtensionUpdate' + { ValueName = 'ExtensionUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFormHistory' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFormHistory' + { ValueName = 'DisableFormHistory' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PasswordManagerEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PasswordManagerEnabled' + { ValueName = 'PasswordManagerEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableTelemetry' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableTelemetry' + { ValueName = 'DisableTelemetry' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableDeveloperTools' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableDeveloperTools' + { ValueName = 'DisableDeveloperTools' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableForgetButton' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableForgetButton' + { ValueName = 'DisableForgetButton' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisablePrivateBrowsing' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisablePrivateBrowsing' + { ValueName = 'DisablePrivateBrowsing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SearchSuggestEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SearchSuggestEnabled' + { ValueName = 'SearchSuggestEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\NetworkPrediction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\NetworkPrediction' + { ValueName = 'NetworkPrediction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFirefoxAccounts' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFirefoxAccounts' + { ValueName = 'DisableFirefoxAccounts' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFeedbackCommands' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFeedbackCommands' + { ValueName = 'DisableFeedbackCommands' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\Preferences' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\Preferences' + { ValueName = 'Preferences' TargetType = 'ComputerConfiguration' ValueType = 'MultiString' Key = 'Software\Policies\Mozilla\Firefox' ValueData = '{ "security.default_personal_cert": { "Value": "Ask Every Time", "Status": "locked" }, "browser.search.update": { "Value": false, "Status": "locked" }, "dom.disable_window_move_resize": { "Value": true, "Status": "locked" }, "dom.disable_window_flip": { "Value": true, "Status": "locked" }, "browser.contentblocking.category": { "Value": "strict", "Status": "locked" }, "extensions.htmlaboutaddons.recommendations.enabled": { "Value": false, "Status": "locked" }}' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisablePocket' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisablePocket' + { ValueName = 'DisablePocket' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFirefoxStudies' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisableFirefoxStudies' + { ValueName = 'DisableFirefoxStudies' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\Certificates\ImportEnterpriseRoots' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\Certificates\ImportEnterpriseRoots' + { ValueName = 'ImportEnterpriseRoots' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\Certificates' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_RSA_WITH_3DES_EDE_CBC_SHA' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_RSA_WITH_3DES_EDE_CBC_SHA' + { ValueName = 'TLS_RSA_WITH_3DES_EDE_CBC_SHA' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\DisabledCiphers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Fingerprinting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Fingerprinting' + { ValueName = 'Fingerprinting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\EnableTrackingProtection' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Cryptomining' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Cryptomining' + { ValueName = 'Cryptomining' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\EnableTrackingProtection' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EncryptedMediaExtensions\Enabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EncryptedMediaExtensions\Enabled' + { ValueName = 'Enabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\EncryptedMediaExtensions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EncryptedMediaExtensions\Locked' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\EncryptedMediaExtensions\Locked' + { ValueName = 'Locked' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\EncryptedMediaExtensions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Search' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Search' + { ValueName = 'Search' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\TopSites' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\TopSites' + { ValueName = 'TopSites' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\SponsoredTopSites' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\SponsoredTopSites' + { ValueName = 'SponsoredTopSites' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Highlights' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Highlights' + { ValueName = 'Highlights' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Pocket' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Pocket' + { ValueName = 'Pocket' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\SponsoredPocket' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\SponsoredPocket' + { ValueName = 'SponsoredPocket' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Snippets' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Snippets' + { ValueName = 'Snippets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Locked' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\FirefoxHome\Locked' + { ValueName = 'Locked' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\FirefoxHome' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\InstallAddonsPermission\Default' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\InstallAddonsPermission\Default' + { ValueName = 'Default' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\InstallAddonsPermission' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\Permissions\Autoplay\Default' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\Permissions\Autoplay\Default' + { ValueName = 'Default' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Mozilla\Firefox\Permissions\Autoplay' ValueData = 'block-audio-video' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Default' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Default' + { ValueName = 'Default' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\PopupBlocking' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Locked' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Locked' + { ValueName = 'Locked' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\PopupBlocking' ValueData = 1 - } + } - RegistryPolicyFile 'DELVALS_\Software\Policies\Mozilla\Firefox\PopupBlocking\Allow' - { + RegistryPolicyFile 'DELVALS_\Software\Policies\Mozilla\Firefox\PopupBlocking\Allow' + { ValueName = '' TargetType = 'ComputerConfiguration' @@ -310,120 +310,118 @@ configuration DoD_Mozilla_Firefox_v6r5 ValueType = 'String' Key = 'Software\Policies\Mozilla\Firefox\PopupBlocking\Allow' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Allow\1' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Allow\1' + { ValueName = '1' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Mozilla\Firefox\PopupBlocking\Allow' ValueData = '.mil' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Allow\2' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\PopupBlocking\Allow\2' + { ValueName = '2' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Policies\Mozilla\Firefox\PopupBlocking\Allow' ValueData = '.gov' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Cache' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Cache' + { ValueName = 'Cache' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Cookies' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Cookies' + { ValueName = 'Cookies' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Downloads' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Downloads' + { ValueName = 'Downloads' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\FormData' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\FormData' + { ValueName = 'FormData' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\History' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\History' + { ValueName = 'History' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Sessions' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Sessions' + { ValueName = 'Sessions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\SiteSettings' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\SiteSettings' + { ValueName = 'SiteSettings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\OfflineApps' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\OfflineApps' + { ValueName = 'OfflineApps' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Locked' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\SanitizeOnShutdown\Locked' + { ValueName = 'Locked' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\SanitizeOnShutdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\UserMessaging\ExtensionRecommendations' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Mozilla\Firefox\UserMessaging\ExtensionRecommendations' + { ValueName = 'ExtensionRecommendations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Policies\Mozilla\Firefox\UserMessaging' ValueData = 0 - } + } - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - - + } } diff --git a/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.psd1 b/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.psd1 index 7a2b3cb..0137eb1 100644 --- a/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.psd1 +++ b/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.schema.psm1 b/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.schema.psm1 index 8bfb4e9..e36f145 100644 --- a/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.schema.psm1 +++ b/DSCResources/DoD_Office_2019-M365_Apps_v2r11/DoD_Office_2019-M365_Apps_v2r11.schema.psm1 @@ -1,3021 +1,3019 @@ -configuration DoD_Office_2019-M365_Apps_v2r11 +configuration 'DoD_Office_2019-M365_Apps_v2r11' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_localmachine_lockdown' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_handling' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_mime_sniffing' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_object_caching\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_object_caching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_securityband\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_securityband' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\Comment' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\Comment' + { ValueName = 'Comment' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'software\microsoft\Office\Common\COM Compatibility' ValueData = 'Block all Flash activation' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\enablesiphighsecuritymode' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\enablesiphighsecuritymode' + { ValueName = 'enablesiphighsecuritymode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\16.0\lync' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\disablehttpconnect' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\disablehttpconnect' + { ValueName = 'disablehttpconnect' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\16.0\lync' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\16.0\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB6E-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\ActivationFilterOverride' + { ValueName = 'ActivationFilterOverride' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}\Compatibility Flags' + { ValueName = 'Compatibility Flags' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\WOW6432Node\Microsoft\Office\Common\COM Compatibility\{D27CDB70-AE6D-11CF-96B8-444553540000}' ValueData = 1024 - } + } - <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\blockcontentexecutionfrominternet' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\portal\linkpublishingdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\portal\linkpublishingdisabled' + { ValueName = 'linkpublishingdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\portal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\macroruntimescanscope' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\macroruntimescanscope' + { ValueName = 'macroruntimescanscope' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\drmencryptproperty' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\drmencryptproperty' + { ValueName = 'drmencryptproperty' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\defaultencryption12' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\defaultencryption12' + { ValueName = 'defaultencryption12' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 'Microsoft Enhanced RSA and AES Cryptographic Provider,AES 256,256' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\openxmlencryption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\openxmlencryption' + { ValueName = 'openxmlencryption' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 'Microsoft Enhanced RSA and AES Cryptographic Provider,AES 256,256' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\trusted locations\allow user locations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\trusted locations\allow user locations' + { ValueName = 'allow user locations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\access\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\access\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\access' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\excel\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\excel\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\excel' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\infopath\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\infopath\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\infopath' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\outlook\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\outlook\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\outlook' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\powerpoint\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\powerpoint\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\powerpoint' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\project\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\project\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\project' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\publisher\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\publisher\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\publisher' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\visio\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\visio\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\visio' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\word\noextensibilitycustomizationfromdocument' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\toolbars\word\noextensibilitycustomizationfromdocument' + { ValueName = 'noextensibilitycustomizationfromdocument' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\toolbars\word' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\trustcenter\trustbar' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\trustcenter\trustbar' + { ValueName = 'trustbar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\trustcenter' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\internet\donotloadpictures' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\internet\donotloadpictures' + { ValueName = 'donotloadpictures' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\internet' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\extractdatadisableui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\extractdatadisableui' + { ValueName = 'extractdatadisableui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\disableautorepublish' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\disableautorepublish' + { ValueName = 'disableautorepublish' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\disableautorepublishwarning' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\disableautorepublishwarning' + { ValueName = 'disableautorepublishwarning' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\binaryoptions\fupdateext_78_1' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\binaryoptions\fupdateext_78_1' + { ValueName = 'fupdateext_78_1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options\binaryoptions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\extensionhardening' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\extensionhardening' + { ValueName = 'extensionhardening' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\excelbypassencryptedmacroscan' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\excelbypassencryptedmacroscan' + { ValueName = 'excelbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\webservicefunctionwarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\webservicefunctionwarnings' + { ValueName = 'webservicefunctionwarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\external content\disableddeserverlaunch' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\external content\disableddeserverlaunch' + { ValueName = 'disableddeserverlaunch' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\external content' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\external content\disableddeserverlookup' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\external content\disableddeserverlookup' + { ValueName = 'disableddeserverlookup' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\external content' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\external content\enableblockunsecurequeryfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\external content\enableblockunsecurequeryfiles' + { ValueName = 'enableblockunsecurequeryfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\external content' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\dbasefiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\dbasefiles' + { ValueName = 'dbasefiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\difandsylkfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\difandsylkfiles' + { ValueName = 'difandsylkfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2macros' + { ValueName = 'xl2macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2worksheets' + { ValueName = 'xl2worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3macros' + { ValueName = 'xl3macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3worksheets' + { ValueName = 'xl3worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4macros' + { ValueName = 'xl4macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4workbooks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4workbooks' + { ValueName = 'xl4workbooks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4worksheets' + { ValueName = 'xl4worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl95workbooks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl95workbooks' + { ValueName = 'xl95workbooks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl9597workbooksandtemplates' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl9597workbooksandtemplates' + { ValueName = 'xl9597workbooksandtemplates' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\htmlandxmlssfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\htmlandxmlssfiles' + { ValueName = 'htmlandxmlssfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\enabledatabasefileprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\enabledatabasefileprotectedview' + { ValueName = 'enabledatabasefileprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableinternetfilesinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableinternetfilesinpv' + { ValueName = 'disableinternetfilesinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableunsafelocationsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableunsafelocationsinpv' + { ValueName = 'disableunsafelocationsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\disallowattachmentcustomization' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\disallowattachmentcustomization' + { ValueName = 'disallowattachmentcustomization' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\general\msgformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\general\msgformat' + { ValueName = 'msgformat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\general' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\internet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\internet' + { ValueName = 'internet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\junkmailenablelinks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\junkmailenablelinks' + { ValueName = 'junkmailenablelinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\rpc\enablerpcencryption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\rpc\enablerpcencryption' + { ValueName = 'enablerpcencryption' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\rpc' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\authenticationservice' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\authenticationservice' + { ValueName = 'authenticationservice' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 16 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\publicfolderscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\publicfolderscript' + { ValueName = 'publicfolderscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\sharedfolderscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\sharedfolderscript' + { ValueName = 'sharedfolderscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\allowactivexoneoffforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\allowactivexoneoffforms' + { ValueName = 'allowactivexoneoffforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\publishtogaldisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\publishtogaldisabled' + { ValueName = 'publishtogaldisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\minenckey' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\minenckey' + { ValueName = 'minenckey' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 168 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\warnaboutinvalid' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\warnaboutinvalid' + { ValueName = 'warnaboutinvalid' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\usecrlchasing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\usecrlchasing' + { ValueName = 'usecrlchasing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\adminsecuritymode' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\adminsecuritymode' + { ValueName = 'adminsecuritymode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\allowuserstolowerattachments' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\allowuserstolowerattachments' + { ValueName = 'allowuserstolowerattachments' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\showlevel1attach' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\showlevel1attach' + { ValueName = 'showlevel1attach' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel1' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel1' + { ValueName = 'fileextensionsremovelevel1' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel2' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel2' + { ValueName = 'fileextensionsremovelevel2' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\enableoneoffformscripts' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\enableoneoffformscripts' + { ValueName = 'enableoneoffformscripts' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomcustomaction' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomcustomaction' + { ValueName = 'promptoomcustomaction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressbookaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressbookaccess' + { ValueName = 'promptoomaddressbookaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomformulaaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomformulaaccess' + { ValueName = 'promptoomformulaaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsaveas' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsaveas' + { ValueName = 'promptoomsaveas' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressinformationaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressinformationaccess' + { ValueName = 'promptoomaddressinformationaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoommeetingtaskrequestresponse' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoommeetingtaskrequestresponse' + { ValueName = 'promptoommeetingtaskrequestresponse' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsend' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsend' + { ValueName = 'promptoomsend' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\level' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\level' + { ValueName = 'level' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\runprograms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\runprograms' + { ValueName = 'runprograms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\powerpointbypassencryptedmacroscan' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\powerpointbypassencryptedmacroscan' + { ValueName = 'powerpointbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock\binaryfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock\binaryfiles' + { ValueName = 'binaryfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableinternetfilesinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableinternetfilesinpv' + { ValueName = 'disableinternetfilesinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableunsafelocationsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableunsafelocationsinpv' + { ValueName = 'disableunsafelocationsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\publisher\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\publisher\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock\visio2000files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock\visio2000files' + { ValueName = 'visio2000files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock\visio2003files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock\visio2003files' + { ValueName = 'visio2003files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock\visio50andearlierfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock\visio50andearlierfiles' + { ValueName = 'visio50andearlierfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\wordbypassencryptedmacroscan' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\wordbypassencryptedmacroscan' + { ValueName = 'wordbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2files' + { ValueName = 'word2files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2000files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2000files' + { ValueName = 'word2000files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2003files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2003files' + { ValueName = 'word2003files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2007files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2007files' + { ValueName = 'word2007files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word60files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word60files' + { ValueName = 'word60files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word95files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word95files' + { ValueName = 'word95files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word97files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word97files' + { ValueName = 'word97files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\wordxpfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\wordxpfiles' + { ValueName = 'wordxpfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableinternetfilesinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableinternetfilesinpv' + { ValueName = 'disableinternetfilesinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableunsafelocationsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableunsafelocationsinpv' + { ValueName = 'disableunsafelocationsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\uficontrols' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\uficontrols' + { ValueName = 'uficontrols' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 6 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecurity' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecurity' + { ValueName = 'automationsecurity' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecuritypublisher' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecuritypublisher' + { ValueName = 'automationsecuritypublisher' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\smart tag\neverloadmanifests' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\smart tag\neverloadmanifests' + { ValueName = 'neverloadmanifests' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\smart tag' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\vba\security\loadcontrolsinforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\vba\security\loadcontrolsinforms' + { ValueName = 'loadcontrolsinforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\vba\security' ValueData = 1 - } #> + } #> - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - - + } } diff --git a/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.psd1 b/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.psd1 index 094e5c1..5214a35 100644 --- a/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.psd1 +++ b/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.schema.psm1 b/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.schema.psm1 index 5c1c4cd..84f37d8 100644 --- a/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.schema.psm1 +++ b/DSCResources/DoD_Office_System_2013_and_Components/DoD_Office_System_2013_and_Components.schema.psm1 @@ -1,3647 +1,3644 @@ -configuration DoD_Office_System_2013_and_Components +configuration 'DoD_Office_System_2013_and_Components' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\research\translation\useonline' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\research\translation\useonline' + { ValueName = 'useonline' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\research\translation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\defaultformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\defaultformat' + { ValueName = 'defaultformat' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\options' - ValueData = ' -' - } + ValueData = '' + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\dontupdatelinks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\dontupdatelinks' + { ValueName = 'dontupdatelinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\warnrevisions' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\warnrevisions' + { ValueName = 'warnrevisions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\custommarkupwarning' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\options\custommarkupwarning' + { ValueName = 'custommarkupwarning' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\wordbypassencryptedmacroscan' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\wordbypassencryptedmacroscan' + { ValueName = 'wordbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\accessvbom' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\accessvbom' + { ValueName = 'accessvbom' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word2files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word2files' + { ValueName = 'word2files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word2000files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word2000files' + { ValueName = 'word2000files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word60files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word60files' + { ValueName = 'word60files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word95files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word95files' + { ValueName = 'word95files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word97files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\word97files' + { ValueName = 'word97files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\wordxpfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock\wordxpfiles' + { ValueName = 'wordxpfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview\disableinternetfilesinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview\disableinternetfilesinpv' + { ValueName = 'disableinternetfilesinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview\disableunsafelocationsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview\disableunsafelocationsinpv' + { ValueName = 'disableunsafelocationsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\word\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\word\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\disableinfopath2003emailforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\disableinfopath2003emailforms' + { ValueName = 'disableinfopath2003emailforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\deployment\cachemailxsn' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\deployment\cachemailxsn' + { ValueName = 'cachemailxsn' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\deployment' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\deployment\mailxsnwithxml' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\deployment\mailxsnwithxml' + { ValueName = 'mailxsnwithxml' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\deployment' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\editor\offline\cachedmodestatus' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\editor\offline\cachedmodestatus' + { ValueName = 'cachedmodestatus' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\editor\offline' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\gradualupgraderedirection' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\gradualupgraderedirection' + { ValueName = 'gradualupgraderedirection' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\emailformsruncodeandscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\emailformsruncodeandscript' + { ValueName = 'emailformsruncodeandscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\emailformsbeaconingui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\emailformsbeaconingui' + { ValueName = 'emailformsbeaconingui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enablefulltrustemailforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enablefulltrustemailforms' + { ValueName = 'enablefulltrustemailforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enableinternetemailforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enableinternetemailforms' + { ValueName = 'enableinternetemailforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enablerestrictedemailforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enablerestrictedemailforms' + { ValueName = 'enablerestrictedemailforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\runfulltrustsolutions' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\runfulltrustsolutions' + { ValueName = 'runfulltrustsolutions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\allowinternetsolutions' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\allowinternetsolutions' + { ValueName = 'allowinternetsolutions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\infopathbeaconingui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\infopathbeaconingui' + { ValueName = 'infopathbeaconingui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\editoractivexbeaconingui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\editoractivexbeaconingui' + { ValueName = 'editoractivexbeaconingui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\disallowattachmentcustomization' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\disallowattachmentcustomization' + { ValueName = 'disallowattachmentcustomization' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enableintranetemailforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\enableintranetemailforms' + { ValueName = 'enableintranetemailforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\runmanagedcodefrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\runmanagedcodefrominternet' + { ValueName = 'runmanagedcodefrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\signaturewarning' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\signaturewarning' + { ValueName = 'signaturewarning' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\infopath\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\infopath\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\disableinfopathforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\disableinfopathforms' + { ValueName = 'disableinfopathforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\visio\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\visio\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\visio\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\visio\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\visio\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\visio\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\visio\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\visio\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\visio\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\ms project\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\ms project\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\ms project\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\trustwss' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\ms project\security\trustwss' + { ValueName = 'trustwss' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\ms project\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\promptforbadfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\promptforbadfiles' + { ValueName = 'promptforbadfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\publisher' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\publisher\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\publisher\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\publisher\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\publisher\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecuritypublisher' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecuritypublisher' + { ValueName = 'automationsecuritypublisher' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\infopath\security\aptca_allowlist' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\infopath\security\aptca_allowlist' + { ValueName = 'aptca_allowlist' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\15.0\infopath\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\common\officeupdate\enableautomaticupdates' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\common\officeupdate\enableautomaticupdates' + { ValueName = 'enableautomaticupdates' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\15.0\common\officeupdate' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\common\officeupdate\hideenabledisableupdates' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\common\officeupdate\hideenabledisableupdates' + { ValueName = 'hideenabledisableupdates' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\15.0\common\officeupdate' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\wow6432node\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } -<# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\internet\donotloadpictures' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\internet\donotloadpictures' + { ValueName = 'donotloadpictures' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\internet' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\defaultformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\defaultformat' + { ValueName = 'defaultformat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options' ValueData = 51 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\autohyperlink' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\autohyperlink' + { ValueName = 'autohyperlink' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\disableautorepublish' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\disableautorepublish' + { ValueName = 'disableautorepublish' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\disableautorepublishwarning' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\disableautorepublishwarning' + { ValueName = 'disableautorepublishwarning' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\extractdatadisableui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\extractdatadisableui' + { ValueName = 'extractdatadisableui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\binaryoptions\fupdateext_78_1' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\binaryoptions\fupdateext_78_1' + { ValueName = 'fupdateext_78_1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options\binaryoptions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\binaryoptions\fglobalsheet_37_1' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\options\binaryoptions\fglobalsheet_37_1' + { ValueName = 'fglobalsheet_37_1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\options\binaryoptions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\excelbypassencryptedmacroscan' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\excelbypassencryptedmacroscan' + { ValueName = 'excelbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\accessvbom' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\accessvbom' + { ValueName = 'accessvbom' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\extensionhardening' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\extensionhardening' + { ValueName = 'extensionhardening' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\webservicefunctionwarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\webservicefunctionwarnings' + { ValueName = 'webservicefunctionwarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\excel12betafilesfromconverters' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\excel12betafilesfromconverters' + { ValueName = 'excel12betafilesfromconverters' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\dbasefiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\dbasefiles' + { ValueName = 'dbasefiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\difandsylkfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\difandsylkfiles' + { ValueName = 'difandsylkfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl2macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl2macros' + { ValueName = 'xl2macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl2worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl2worksheets' + { ValueName = 'xl2worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl3macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl3macros' + { ValueName = 'xl3macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl3worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl3worksheets' + { ValueName = 'xl3worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl4macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl4macros' + { ValueName = 'xl4macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl4workbooks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl4workbooks' + { ValueName = 'xl4workbooks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl4worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl4worksheets' + { ValueName = 'xl4worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl95workbooks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl95workbooks' + { ValueName = 'xl95workbooks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl9597workbooksandtemplates' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\xl9597workbooksandtemplates' + { ValueName = 'xl9597workbooksandtemplates' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\htmlandxmlssfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock\htmlandxmlssfiles' + { ValueName = 'htmlandxmlssfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview\disableinternetfilesinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview\disableinternetfilesinpv' + { ValueName = 'disableinternetfilesinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview\disableunsafelocationsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview\disableunsafelocationsinpv' + { ValueName = 'disableunsafelocationsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\excel\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\excel\security\trusted locations' ValueData = 0 - } #> + } #> - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\lync\savepassword' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\lync\savepassword' + { ValueName = 'savepassword' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\15.0\lync' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\lync\enablesiphighsecuritymode' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\lync\enablesiphighsecuritymode' + { ValueName = 'enablesiphighsecuritymode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\15.0\lync' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\lync\disablehttpconnect' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\15.0\lync\disablehttpconnect' + { ValueName = 'disablehttpconnect' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'software\policies\microsoft\office\15.0\lync' ValueData = 1 - } + } - <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\internet\donotunderlinehyperlinks' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\internet\donotunderlinehyperlinks' + { ValueName = 'donotunderlinehyperlinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\internet' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\modaltrustdecisiononly' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\modaltrustdecisiononly' + { ValueName = 'modaltrustdecisiononly' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\settings\default file format' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\settings\default file format' + { ValueName = 'default file format' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\settings' ValueData = 12 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\settings\noconvertdialog' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\access\settings\noconvertdialog' + { ValueName = 'noconvertdialog' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\access\settings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\mailsettings\disablesignatures' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\mailsettings\disablesignatures' + { ValueName = 'disablesignatures' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\mailsettings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\mailsettings\plainwraplen' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\mailsettings\plainwraplen' + { ValueName = 'plainwraplen' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\mailsettings' ValueData = 132 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\meetings\profile\serverui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\meetings\profile\serverui' + { ValueName = 'serverui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\meetings\profile' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\disableantispam' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\disableantispam' + { ValueName = 'disableantispam' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\disallowattachmentcustomization' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\disallowattachmentcustomization' + { ValueName = 'disallowattachmentcustomization' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\autoformat\pgrfafo_25_1' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\autoformat\pgrfafo_25_1' + { ValueName = 'pgrfafo_25_1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\autoformat' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\calendar\disableweather' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\calendar\disableweather' + { ValueName = 'disableweather' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\calendar' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\general\check default client' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\general\check default client' + { ValueName = 'check default client' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\general' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\general\msgformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\general\msgformat' + { ValueName = 'msgformat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\general' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\unblocksafezone' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\unblocksafezone' + { ValueName = 'unblocksafezone' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\junkmailtrustoutgoingrecipients' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\junkmailtrustoutgoingrecipients' + { ValueName = 'junkmailtrustoutgoingrecipients' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\trustedzone' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\trustedzone' + { ValueName = 'trustedzone' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\junkmailenablelinks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\junkmailenablelinks' + { ValueName = 'junkmailenablelinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\internet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\internet' + { ValueName = 'internet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\intranet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\intranet' + { ValueName = 'intranet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\blockextcontent' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\blockextcontent' + { ValueName = 'blockextcontent' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\unblockspecificsenders' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\unblockspecificsenders' + { ValueName = 'unblockspecificsenders' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\message plain format mime' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\message plain format mime' + { ValueName = 'message plain format mime' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\readasplain' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\readasplain' + { ValueName = 'readasplain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\readsignedasplain' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\readsignedasplain' + { ValueName = 'readsignedasplain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\junkmailtrustcontacts' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\junkmailtrustcontacts' + { ValueName = 'junkmailtrustcontacts' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\message rtf format' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\message rtf format' + { ValueName = 'message rtf format' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\editorpreference' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail\editorpreference' + { ValueName = 'editorpreference' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\mail' ValueData = 65536 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\restrictedaccessonly' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\restrictedaccessonly' + { ValueName = 'restrictedaccessonly' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\disabledav' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\disabledav' + { ValueName = 'disabledav' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\disableofficeonline' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\disableofficeonline' + { ValueName = 'disableofficeonline' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\publishcalendardetailspolicy' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\publishcalendardetailspolicy' + { ValueName = 'publishcalendardetailspolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal' ValueData = 16384 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\singleuploadonly' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal\singleuploadonly' + { ValueName = 'singleuploadonly' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\enablefulltexthtml' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\enablefulltexthtml' + { ValueName = 'enablefulltexthtml' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\synctosyscfl' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\synctosyscfl' + { ValueName = 'synctosyscfl' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\disable' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\disable' + { ValueName = 'disable' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\enableattachments' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss\enableattachments' + { ValueName = 'enableattachments' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\rss' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\webcal\disable' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\webcal\disable' + { ValueName = 'disable' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\webcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\webcal\enableattachments' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\options\webcal\enableattachments' + { ValueName = 'enableattachments' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\options\webcal' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\rpc\enablerpcencryption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\rpc\enablerpcencryption' + { ValueName = 'enablerpcencryption' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\rpc' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\allowactivexoneoffforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\allowactivexoneoffforms' + { ValueName = 'allowactivexoneoffforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\enableoneoffformscripts' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\enableoneoffformscripts' + { ValueName = 'enableoneoffformscripts' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\addintrust' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\addintrust' + { ValueName = 'addintrust' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomaddressbookaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomaddressbookaccess' + { ValueName = 'promptoomaddressbookaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\allowuserstolowerattachments' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\allowuserstolowerattachments' + { ValueName = 'allowuserstolowerattachments' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomformulaaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomformulaaccess' + { ValueName = 'promptoomformulaaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomsaveas' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomsaveas' + { ValueName = 'promptoomsaveas' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomaddressinformationaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomaddressinformationaccess' + { ValueName = 'promptoomaddressinformationaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoommeetingtaskrequestresponse' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoommeetingtaskrequestresponse' + { ValueName = 'promptoommeetingtaskrequestresponse' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomsend' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomsend' + { ValueName = 'promptoomsend' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\enablerememberpwd' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\enablerememberpwd' + { ValueName = 'enablerememberpwd' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\dontpromptlevel1attachclose' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\dontpromptlevel1attachclose' + { ValueName = 'dontpromptlevel1attachclose' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\dontpromptlevel1attachsend' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\dontpromptlevel1attachsend' + { ValueName = 'dontpromptlevel1attachsend' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\showlevel1attach' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\showlevel1attach' + { ValueName = 'showlevel1attach' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\nondefaultstorescript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\nondefaultstorescript' + { ValueName = 'nondefaultstorescript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\publicfolderscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\publicfolderscript' + { ValueName = 'publicfolderscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\sharedfolderscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\sharedfolderscript' + { ValueName = 'sharedfolderscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\15.0\outlook\security\outlooksecuretempfolder' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\15.0\outlook\security\outlooksecuretempfolder' + { ValueName = 'outlooksecuretempfolder' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\authenticationservice' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\authenticationservice' + { ValueName = 'authenticationservice' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 9 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\msgformats' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\msgformats' + { ValueName = 'msgformats' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\sigstatusnotrustdecision' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\sigstatusnotrustdecision' + { ValueName = 'sigstatusnotrustdecision' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\adminsecuritymode' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\adminsecuritymode' + { ValueName = 'adminsecuritymode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 3 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\15.0\outlook\security\fileextensionsremovelevel1' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\15.0\outlook\security\fileextensionsremovelevel1' + { ValueName = 'fileextensionsremovelevel1' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\15.0\outlook\security\fileextensionsremovelevel2' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\15.0\outlook\security\fileextensionsremovelevel2' + { ValueName = 'fileextensionsremovelevel2' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\usecrlchasing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\usecrlchasing' + { ValueName = 'usecrlchasing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\fipsmode' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\fipsmode' + { ValueName = 'fipsmode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\externalsmime' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\externalsmime' + { ValueName = 'externalsmime' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\respondtoreceiptrequests' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\respondtoreceiptrequests' + { ValueName = 'respondtoreceiptrequests' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\level' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\level' + { ValueName = 'level' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\clearsign' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\clearsign' + { ValueName = 'clearsign' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomcustomaction' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\promptoomcustomaction' + { ValueName = 'promptoomcustomaction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\warnaboutinvalid' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\warnaboutinvalid' + { ValueName = 'warnaboutinvalid' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\forcedefaultprofile' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\forcedefaultprofile' + { ValueName = 'forcedefaultprofile' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\minenckey' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\minenckey' + { ValueName = 'minenckey' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 168 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\nocheckonsessionsecurity' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\nocheckonsessionsecurity' + { ValueName = 'nocheckonsessionsecurity' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\supressnamechecks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\outlook\security\supressnamechecks' + { ValueName = 'supressnamechecks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'DELVALS_CU:\software\policies\microsoft\office\15.0\outlook\security\trustedaddins' - { + RegistryPolicyFile 'DELVALS_CU:\software\policies\microsoft\office\15.0\outlook\security\trustedaddins' + { ValueName = '' TargetType = 'ComputerConfiguration' Ensure = 'Present' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\outlook\security\trustedaddins' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\options\defaultformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\options\defaultformat' + { ValueName = 'defaultformat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\options' ValueData = 27 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\options\markupopensave' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\options\markupopensave' + { ValueName = 'markupopensave' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\powerpointbypassencryptedmacroscan' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\powerpointbypassencryptedmacroscan' + { ValueName = 'powerpointbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\accessvbom' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\accessvbom' + { ValueName = 'accessvbom' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\runprograms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\runprograms' + { ValueName = 'runprograms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\downloadimages' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\downloadimages' + { ValueName = 'downloadimages' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\fileblock\powerpoint12betafilesfromconverters' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\fileblock\powerpoint12betafilesfromconverters' + { ValueName = 'powerpoint12betafilesfromconverters' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\fileblock' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview\disableinternetfilesinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview\disableinternetfilesinpv' + { ValueName = 'disableinternetfilesinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview\disableunsafelocationsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview\disableunsafelocationsinpv' + { ValueName = 'disableunsafelocationsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\slide libraries\disableslideupdate' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\powerpoint\slide libraries\disableslideupdate' + { ValueName = 'disableslideupdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\powerpoint\slide libraries' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\keycupoliciesmsvbasecurity\loadcontrolsinforms' - { + RegistryPolicyFile 'DEL_CU:\keycupoliciesmsvbasecurity\loadcontrolsinforms' + { ValueName = 'loadcontrolsinforms' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\keycupoliciesmsvbasecurity' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\qmenable' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\qmenable' + { ValueName = 'qmenable' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\updatereliabilitydata' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\updatereliabilitydata' + { ValueName = 'updatereliabilitydata' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\broadcast\disabledefaultservice' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\broadcast\disabledefaultservice' + { ValueName = 'disabledefaultservice' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\broadcast' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\broadcast\disableprogrammaticaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\broadcast\disableprogrammaticaccess' + { ValueName = 'disableprogrammaticaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\broadcast' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\documentinformationpanel\beaconing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\documentinformationpanel\beaconing' + { ValueName = 'beaconing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\documentinformationpanel' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\drm\includehtml' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\drm\includehtml' + { ValueName = 'includehtml' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\drm' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\drm\requireconnection' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\drm\requireconnection' + { ValueName = 'requireconnection' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\drm' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\drm\disablecreation' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\drm\disablecreation' + { ValueName = 'disablecreation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\drm' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\feedback\includescreenshot' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\feedback\includescreenshot' + { ValueName = 'includescreenshot' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\feedback' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\feedback\enabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\feedback\enabled' + { ValueName = 'enabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\feedback' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\fixedformat\disablefixedformatdocproperties' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\fixedformat\disablefixedformatdocproperties' + { ValueName = 'disablefixedformatdocproperties' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\fixedformat' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\general\shownfirstrunoptin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\general\shownfirstrunoptin' + { ValueName = 'shownfirstrunoptin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\general' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\general\skydrivesigninoption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\general\skydrivesigninoption' + { ValueName = 'skydrivesigninoption' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\general' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\internet\opendocumentsreadwritewhilebrowsing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\internet\opendocumentsreadwritewhilebrowsing' + { ValueName = 'opendocumentsreadwritewhilebrowsing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\internet' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\internet\relyonvml' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\internet\relyonvml' + { ValueName = 'relyonvml' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\internet' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\internet\useonlinecontent' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\internet\useonlinecontent' + { ValueName = 'useonlinecontent' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\internet' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\portal\linkpublishingdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\portal\linkpublishingdisabled' + { ValueName = 'linkpublishingdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\portal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\ptwatson\ptwoptin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\ptwatson\ptwoptin' + { ValueName = 'ptwoptin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\ptwatson' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\roaming\roamingsettingsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\roaming\roamingsettingsdisabled' + { ValueName = 'roamingsettingsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\roaming' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\defaultencryption12' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\defaultencryption12' + { ValueName = 'defaultencryption12' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 'Microsoft Enhanced RSA and AES Cryptographic Provider,AES 256,256' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\openxmlencryption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\openxmlencryption' + { ValueName = 'openxmlencryption' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 'Microsoft Enhanced RSA and AES Cryptographic Provider,AES 256,256' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\disablehyperlinkwarning' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\disablehyperlinkwarning' + { ValueName = 'disablehyperlinkwarning' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\disablepasswordui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\disablepasswordui' + { ValueName = 'disablepasswordui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\openxmlencryptproperty' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\openxmlencryptproperty' + { ValueName = 'openxmlencryptproperty' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\drmencryptproperty' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\drmencryptproperty' + { ValueName = 'drmencryptproperty' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\encryptdocprops' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\encryptdocprops' + { ValueName = 'encryptdocprops' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\trusted locations\allow user locations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\security\trusted locations\allow user locations' + { ValueName = 'allow user locations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\services\fax\nofax' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\services\fax\nofax' + { ValueName = 'nofax' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\services\fax' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\signatures\enablecreationofweakxpsignatures' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\signatures\enablecreationofweakxpsignatures' + { ValueName = 'enablecreationofweakxpsignatures' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\signatures' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\signatures\suppressextsigningsvcs' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\signatures\suppressextsigningsvcs' + { ValueName = 'suppressextsigningsvcs' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\signatures' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\signin\signinoptions' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\signin\signinoptions' + { ValueName = 'signinoptions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\signin' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\trustcenter\trustbar' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\common\trustcenter\trustbar' + { ValueName = 'trustbar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\common\trustcenter' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\firstrun\disablemovie' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\firstrun\disablemovie' + { ValueName = 'disablemovie' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\firstrun' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\firstrun\bootedrtm' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\firstrun\bootedrtm' + { ValueName = 'bootedrtm' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\firstrun' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\gfx\disablescreenshotautohyperlink' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\gfx\disablescreenshotautohyperlink' + { ValueName = 'disablescreenshotautohyperlink' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\gfx' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\osm\enableupload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\osm\enableupload' + { ValueName = 'enableupload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\osm' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\osm\enablefileobfuscation' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\osm\enablefileobfuscation' + { ValueName = 'enablefileobfuscation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\osm' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\osm\enablelogging' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\osm\enablelogging' + { ValueName = 'enablelogging' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\osm' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\wef\trustedcatalogs\requireserververification' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\wef\trustedcatalogs\requireserververification' + { ValueName = 'requireserververification' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\wef\trustedcatalogs' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\wef\trustedcatalogs\disableomexcatalogs' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\15.0\wef\trustedcatalogs\disableomexcatalogs' + { ValueName = 'disableomexcatalogs' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\15.0\wef\trustedcatalogs' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\blog\disableblog' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\blog\disableblog' + { ValueName = 'disableblog' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\blog' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\common\security\uficontrols' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\common\security\uficontrols' + { ValueName = 'uficontrols' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecurity' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecurity' + { ValueName = 'automationsecurity' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\smart tag\neverloadmanifests' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\smart tag\neverloadmanifests' + { ValueName = 'neverloadmanifests' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\smart tag' ValueData = 1 - } #> + } #> - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - - + } } diff --git a/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.psd1 b/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.psd1 index 4c3a934..7445e0e 100644 --- a/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.psd1 +++ b/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.schema.psm1 b/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.schema.psm1 index cc6a268..9298e40 100644 --- a/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.schema.psm1 +++ b/DSCResources/DoD_Office_System_2016_and_Components/DoD_Office_System_2016_and_Components.schema.psm1 @@ -1,763 +1,763 @@ -configuration DoD_Office_System_2016_and_Components +configuration 'DoD_Office_System_2016_and_Components' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' -<# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\defaultformat' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\defaultformat' + { ValueName = 'defaultformat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options' ValueData = 51 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\extractdatadisableui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\extractdatadisableui' + { ValueName = 'extractdatadisableui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\binaryoptions\fglobalsheet_37_1' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\options\binaryoptions\fglobalsheet_37_1' + { ValueName = 'fglobalsheet_37_1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\options\binaryoptions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\excel\security\excelbypassencryptedmacroscan' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\excel\security\excelbypassencryptedmacroscan' + { ValueName = 'excelbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\accessvbom' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\accessvbom' + { ValueName = 'accessvbom' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 2 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\excel\security\webservicefunctionwarnings' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\excel\security\webservicefunctionwarnings' + { ValueName = 'webservicefunctionwarnings' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4macros' + { ValueName = 'xl4macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4workbooks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4workbooks' + { ValueName = 'xl4workbooks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl4worksheets' + { ValueName = 'xl4worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl95workbooks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl95workbooks' + { ValueName = 'xl95workbooks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl9597workbooksandtemplates' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl9597workbooksandtemplates' + { ValueName = 'xl9597workbooksandtemplates' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\difandsylkfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\difandsylkfiles' + { ValueName = 'difandsylkfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2macros' + { ValueName = 'xl2macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl2worksheets' + { ValueName = 'xl2worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3macros' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3macros' + { ValueName = 'xl3macros' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3worksheets' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\xl3worksheets' + { ValueName = 'xl3worksheets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\htmlandxmlssfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\htmlandxmlssfiles' + { ValueName = 'htmlandxmlssfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\dbasefiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock\dbasefiles' + { ValueName = 'dbasefiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableintranetcheck' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview\disableintranetcheck' + { ValueName = 'disableintranetcheck' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\excel\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\OneDrive\AllowTenantList\1111-2222-3333-4444' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\OneDrive\AllowTenantList\1111-2222-3333-4444' + { ValueName = '1111-2222-3333-4444' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKLM:\Software\Policies\Microsoft\OneDrive\AllowTenantList' ValueData = '1111-2222-3333-4444' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\meetings\profile\serverui' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\meetings\profile\serverui' + { ValueName = 'serverui' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\meetings\profile' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\disallowattachmentcustomization' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\disallowattachmentcustomization' + { ValueName = 'disallowattachmentcustomization' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\autoformat\pgrfafo_25_1' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\autoformat\pgrfafo_25_1' + { ValueName = 'pgrfafo_25_1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\autoformat' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\blockextcontent' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\blockextcontent' + { ValueName = 'blockextcontent' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\unblockspecificsenders' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\unblockspecificsenders' + { ValueName = 'unblockspecificsenders' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\unblocksafezone' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\unblocksafezone' + { ValueName = 'unblocksafezone' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\trustedzone' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\trustedzone' + { ValueName = 'trustedzone' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\internet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\internet' + { ValueName = 'internet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\intranet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\intranet' + { ValueName = 'intranet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\junkmailenablelinks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\junkmailenablelinks' + { ValueName = 'junkmailenablelinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\readasplain' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\readasplain' + { ValueName = 'readasplain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\readsignedasplain' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\readsignedasplain' + { ValueName = 'readsignedasplain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\editorpreference' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\editorpreference' + { ValueName = 'editorpreference' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 65536 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\message rtf format' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail\message rtf format' + { ValueName = 'message rtf format' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\mail' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\disableofficeonline' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\disableofficeonline' + { ValueName = 'disableofficeonline' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\disabledav' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\disabledav' + { ValueName = 'disabledav' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\publishcalendardetailspolicy' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\publishcalendardetailspolicy' + { ValueName = 'publishcalendardetailspolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal' ValueData = 16384 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\restrictedaccessonly' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal\restrictedaccessonly' + { ValueName = 'restrictedaccessonly' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\pubcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\rss\enablefulltexthtml' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\rss\enablefulltexthtml' + { ValueName = 'enablefulltexthtml' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\rss' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\rss\enableattachments' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\rss\enableattachments' + { ValueName = 'enableattachments' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\rss' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\webcal\enableattachments' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\webcal\enableattachments' + { ValueName = 'enableattachments' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\webcal' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\webcal\disable' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\options\webcal\disable' + { ValueName = 'disable' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\options\webcal' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\rpc\enablerpcencryption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\rpc\enablerpcencryption' + { ValueName = 'enablerpcencryption' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\rpc' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\sharedfolderscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\sharedfolderscript' + { ValueName = 'sharedfolderscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\publicfolderscript' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\publicfolderscript' + { ValueName = 'publicfolderscript' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\allowactivexoneoffforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\allowactivexoneoffforms' + { ValueName = 'allowactivexoneoffforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\addintrust' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\addintrust' + { ValueName = 'addintrust' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\enablerememberpwd' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\enablerememberpwd' + { ValueName = 'enablerememberpwd' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\adminsecuritymode' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\adminsecuritymode' + { ValueName = 'adminsecuritymode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\showlevel1attach' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\showlevel1attach' + { ValueName = 'showlevel1attach' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel1' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel1' + { ValueName = 'fileextensionsremovelevel1' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel2' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\outlook\security\fileextensionsremovelevel2' + { ValueName = 'fileextensionsremovelevel2' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\enableoneoffformscripts' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\enableoneoffformscripts' + { ValueName = 'enableoneoffformscripts' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomcustomaction' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomcustomaction' + { ValueName = 'promptoomcustomaction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsend' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsend' + { ValueName = 'promptoomsend' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressbookaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressbookaccess' + { ValueName = 'promptoomaddressbookaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoommeetingtaskrequestresponse' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoommeetingtaskrequestresponse' + { ValueName = 'promptoommeetingtaskrequestresponse' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsaveas' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomsaveas' + { ValueName = 'promptoomsaveas' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomformulaaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomformulaaccess' + { ValueName = 'promptoomformulaaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\externalsmime' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\externalsmime' + { ValueName = 'externalsmime' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressinformationaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\promptoomaddressinformationaccess' + { ValueName = 'promptoomaddressinformationaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\msgformats' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\msgformats' + { ValueName = 'msgformats' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\fipsmode' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\fipsmode' + { ValueName = 'fipsmode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\clearsign' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\clearsign' + { ValueName = 'clearsign' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\respondtoreceiptrequests' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\respondtoreceiptrequests' + { ValueName = 'respondtoreceiptrequests' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\usecrlchasing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\usecrlchasing' + { ValueName = 'usecrlchasing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\level' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\level' + { ValueName = 'level' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\authenticationservice' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\authenticationservice' + { ValueName = 'authenticationservice' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 16 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\forcedefaultprofile' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\forcedefaultprofile' + { ValueName = 'forcedefaultprofile' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\minenckey' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\minenckey' + { ValueName = 'minenckey' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 168 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\nocheckonsessionsecurity' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\nocheckonsessionsecurity' + { ValueName = 'nocheckonsessionsecurity' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\supressnamechecks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\outlook\security\supressnamechecks' + { ValueName = 'supressnamechecks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security' ValueData = 1 - } + } - RegistryPolicyFile 'DELVALS_CU:\software\policies\microsoft\office\16.0\outlook\security\trustedaddins' - { + RegistryPolicyFile 'DELVALS_CU:\software\policies\microsoft\office\16.0\outlook\security\trustedaddins' + { ValueName = '' TargetType = 'ComputerConfiguration' @@ -765,2161 +765,2160 @@ configuration DoD_Office_System_2016_and_Components ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\outlook\security\trustedaddins' ValueData = '' - } #> + } #> - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_addon_management' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_http_username_password_disable' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_activexinstall' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_restrict_filedownload' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_unc_savedfilecheck' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_validate_navigate_url' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_weboc_popupmanagement' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\microsoft\internet explorer\main\featurecontrol\feature_zone_elevation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\groove.exe' + { ValueName = 'groove.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\excel.exe' + { ValueName = 'excel.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mspub.exe' + { ValueName = 'mspub.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\powerpnt.exe' + { ValueName = 'powerpnt.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\pptview.exe' + { ValueName = 'pptview.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\visio.exe' + { ValueName = 'visio.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winproj.exe' + { ValueName = 'winproj.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\winword.exe' + { ValueName = 'winword.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\outlook.exe' + { ValueName = 'outlook.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\spdesign.exe' + { ValueName = 'spdesign.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\exprwd.exe' + { ValueName = 'exprwd.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\msaccess.exe' + { ValueName = 'msaccess.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\onenote.exe' + { ValueName = 'onenote.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject\mse7.exe' + { ValueName = 'mse7.exe' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\wow6432node\policies\microsoft\internet explorer\main\featurecontrol\feature_safe_bindtoobject' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\OneDrive\DisablePersonalSync' - { + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\OneDrive\DisablePersonalSync' + { ValueName = 'DisablePersonalSync' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\SOFTWARE\Policies\Microsoft\OneDrive' ValueData = 1 - } + } - <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\requireaddinsig' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\trustwss' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\trustwss' + { ValueName = 'trustwss' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\ms project\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\ms project\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\OneDrive\AllowTenantList\1111-2222-3333-4444' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\OneDrive\AllowTenantList\1111-2222-3333-4444' + { ValueName = '1111-2222-3333-4444' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKLM:\Software\Policies\Microsoft\OneDrive\AllowTenantList' ValueData = '1111-2222-3333-4444' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\visio\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\visio\security' ValueData = 2 - } + } - RegistryPolicyFile 'DEL_CU:\keycupoliciesmsvbasecurity\loadcontrolsinforms' - { + RegistryPolicyFile 'DEL_CU:\keycupoliciesmsvbasecurity\loadcontrolsinforms' + { ValueName = 'loadcontrolsinforms' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\keycupoliciesmsvbasecurity' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\sendcustomerdata' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\sendcustomerdata' + { ValueName = 'sendcustomerdata' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\broadcast\disabledefaultservice' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\broadcast\disabledefaultservice' + { ValueName = 'disabledefaultservice' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\broadcast' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\broadcast\disableprogrammaticaccess' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\broadcast\disableprogrammaticaccess' + { ValueName = 'disableprogrammaticaccess' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\broadcast' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\drm\requireconnection' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\drm\requireconnection' + { ValueName = 'requireconnection' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\drm' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\feedback\includescreenshot' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\feedback\includescreenshot' + { ValueName = 'includescreenshot' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\feedback' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\fixedformat\disablefixedformatdocproperties' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\fixedformat\disablefixedformatdocproperties' + { ValueName = 'disablefixedformatdocproperties' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\fixedformat' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\ptwatson\ptwoptin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\ptwatson\ptwoptin' + { ValueName = 'ptwoptin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\ptwatson' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\drmencryptproperty' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\drmencryptproperty' + { ValueName = 'drmencryptproperty' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\openxmlencryptproperty' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\openxmlencryptproperty' + { ValueName = 'openxmlencryptproperty' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\openxmlencryption' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\openxmlencryption' + { ValueName = 'openxmlencryption' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 'Microsoft Enhanced RSA and AES Cryptographic Provider,AES 256,256' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\defaultencryption12' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\defaultencryption12' + { ValueName = 'defaultencryption12' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 'Microsoft Enhanced RSA and AES Cryptographic Provider,AES 256,256' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\encryptdocprops' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\encryptdocprops' + { ValueName = 'encryptdocprops' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\trusted locations\allow user locations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\security\trusted locations\allow user locations' + { ValueName = 'allow user locations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\trustcenter\trustbar' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\trustcenter\trustbar' + { ValueName = 'trustbar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\trustcenter' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\osm\enablefileobfuscation' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\osm\enablefileobfuscation' + { ValueName = 'enablefileobfuscation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\osm' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\wef\trustedcatalogs\requireserververification' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\wef\trustedcatalogs\requireserververification' + { ValueName = 'requireserververification' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\wef\trustedcatalogs' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\common\security\uficontrols' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\common\security\uficontrols' + { ValueName = 'uficontrols' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecurity' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecurity' + { ValueName = 'automationsecurity' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\smart tag\neverloadmanifests' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\smart tag\neverloadmanifests' + { ValueName = 'neverloadmanifests' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\smart tag' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\vba\security\loadcontrolsinforms' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\vba\security\loadcontrolsinforms' + { ValueName = 'loadcontrolsinforms' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\vba\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\OneDrive\DisablePersonalSync' - { + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\OneDrive\DisablePersonalSync' + { ValueName = 'DisablePersonalSync' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\SOFTWARE\Policies\Microsoft\OneDrive' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\promptforbadfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\promptforbadfiles' + { ValueName = 'promptforbadfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\publisher' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\publisher\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\publisher\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\publisher\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\publisher\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecuritypublisher' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\common\security\automationsecuritypublisher' + { ValueName = 'automationsecuritypublisher' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\common\security' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\internet\donotunderlinehyperlinks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\internet\donotunderlinehyperlinks' + { ValueName = 'donotunderlinehyperlinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\internet' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\modaltrustdecisiononly' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\modaltrustdecisiononly' + { ValueName = 'modaltrustdecisiononly' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\settings\default file format' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\access\settings\default file format' + { ValueName = 'default file format' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\access\settings' ValueData = 12 - } #> + } #> - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\savepassword' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\savepassword' + { ValueName = 'savepassword' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\policies\microsoft\office\16.0\lync' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\enablesiphighsecuritymode' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\enablesiphighsecuritymode' + { ValueName = 'enablesiphighsecuritymode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\policies\microsoft\office\16.0\lync' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\disablehttpconnect' - { + RegistryPolicyFile 'Registry(POL): HKLM:\software\policies\microsoft\office\16.0\lync\disablehttpconnect' + { ValueName = 'disablehttpconnect' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKLM:\software\policies\microsoft\office\16.0\lync' ValueData = 1 - } + } - <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\research\translation\useonline' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\common\research\translation\useonline' + { ValueName = 'useonline' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\common\research\translation' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\options\defaultformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\options\defaultformat' + { ValueName = 'defaultformat' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\options' ValueData = ' -' - } + ' + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\options\dontupdatelinks' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\options\dontupdatelinks' + { ValueName = 'dontupdatelinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\options' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\word\security\wordbypassencryptedmacroscan' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\word\security\wordbypassencryptedmacroscan' + { ValueName = 'wordbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\accessvbom' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\accessvbom' + { ValueName = 'accessvbom' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2files' + { ValueName = 'word2files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2000files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word2000files' + { ValueName = 'word2000files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word60files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word60files' + { ValueName = 'word60files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word95files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word95files' + { ValueName = 'word95files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word97files' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\word97files' + { ValueName = 'word97files' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\wordxpfiles' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock\wordxpfiles' + { ValueName = 'wordxpfiles' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\fileblock' ValueData = 5 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\word\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\word\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableintranetcheck' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview\disableintranetcheck' + { ValueName = 'disableintranetcheck' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\word\security\trusted locations' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\options\defaultformat' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\options\defaultformat' + { ValueName = 'defaultformat' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\options' ValueData = 27 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\requireaddinsig' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\requireaddinsig' + { ValueName = 'requireaddinsig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\notbpromptunsignedaddin' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\notbpromptunsignedaddin' + { ValueName = 'notbpromptunsignedaddin' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\powerpoint\security\powerpointbypassencryptedmacroscan' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\powerpoint\security\powerpointbypassencryptedmacroscan' + { ValueName = 'powerpointbypassencryptedmacroscan' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\accessvbom' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\accessvbom' + { ValueName = 'accessvbom' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\powerpoint\security\runprograms' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\powerpoint\security\runprograms' + { ValueName = 'runprograms' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\vbawarnings' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\vbawarnings' + { ValueName = 'vbawarnings' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\blockcontentexecutionfrominternet' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\blockcontentexecutionfrominternet' + { ValueName = 'blockcontentexecutionfrominternet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock\openinprotectedview' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\fileblock' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\enableonload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\enableonload' + { ValueName = 'enableonload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\openinprotectedview' - { + RegistryPolicyFile 'DEL_CU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\openinprotectedview' + { ValueName = 'openinprotectedview' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\disableeditfrompv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation\disableeditfrompv' + { ValueName = 'disableeditfrompv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\filevalidation' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableattachmentsinpv' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableattachmentsinpv' + { ValueName = 'disableattachmentsinpv' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableintranetcheck' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview\disableintranetcheck' + { ValueName = 'disableintranetcheck' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\protectedview' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations\alllocationsdisabled' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations\alllocationsdisabled' + { ValueName = 'alllocationsdisabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations\allownetworklocations' - { + RegistryPolicyFile 'Registry(POL): HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations\allownetworklocations' + { ValueName = 'allownetworklocations' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\software\policies\microsoft\office\16.0\powerpoint\security\trusted locations' ValueData = 0 - } #> + } #> - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - + } } diff --git a/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.psd1 b/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.psd1 index 09ab2f3..cb795fb 100644 --- a/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.psd1 +++ b/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.schema.psm1 b/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.schema.psm1 index 48f2b21..906d6be 100644 --- a/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.schema.psm1 +++ b/DSCResources/DoD_WinSvr_2012_R2_MS_and_DC_v3r7/DoD_WinSvr_2012_R2_MS_and_DC_v3r7.schema.psm1 @@ -1,1040 +1,1040 @@ -configuration DoD_WinSvr_2012_R2_MS_and_DC_v3r7 +configuration 'DoD_WinSvr_2012_R2_MS_and_DC_v3r7' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - param - ( + param + ( [Parameter(Mandatory = $false)] [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, [Parameter(Mandatory = $false)] [System.String]$ADD_YOUR_DOMAIN_ADMINS - ) + ) - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { ValueName = 'EnumerateAdministrators' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { ValueName = 'NoDriveTypeAutoRun' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 255 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetOpenWith' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetOpenWith' + { ValueName = 'NoInternetOpenWith' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' + { ValueName = 'PreXPSP2ShellProtocolBehavior' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { ValueName = 'NoAutorun' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\LocalSourcePath' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\LocalSourcePath' + { ValueName = 'LocalSourcePath' TargetType = 'ComputerConfiguration' ValueType = 'ExpandString' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Servicing' ValueData = $null - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\UseWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\UseWindowsUpdate' + { ValueName = 'UseWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Servicing' ValueData = 2 - } + } - RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\RepairContentServerSource' - { + RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\RepairContentServerSource' + { ValueName = 'RepairContentServerSource' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Servicing' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableBkGndGroupPolicy' - { + RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableBkGndGroupPolicy' + { ValueName = 'DisableBkGndGroupPolicy' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\MSAOptional' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\MSAOptional' + { ValueName = 'MSAOptional' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { ValueName = 'DisableAutomaticRestartSignOn' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { ValueName = 'LocalAccountTokenFilterPolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { ValueName = 'ProcessCreationIncludeCmdLine_Enabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoAdminLogon' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoAdminLogon' + { ValueName = 'AutoAdminLogon' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Microsoft\Windows NT\CurrentVersion\Winlogon' ValueData = '0' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ScreenSaverGracePeriod' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ScreenSaverGracePeriod' + { ValueName = 'ScreenSaverGracePeriod' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Microsoft\Windows NT\CurrentVersion\Winlogon' ValueData = '5' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Biometrics\Enabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Biometrics\Enabled' + { ValueName = 'Enabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Biometrics' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Control Panel\International\BlockUserInputMethodsForSignIn' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Control Panel\International\BlockUserInputMethodsForSignIn' + { ValueName = 'BlockUserInputMethodsForSignIn' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Control Panel\International' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\EventViewer\MicrosoftEventVwrDisableLinks' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\EventViewer\MicrosoftEventVwrDisableLinks' + { ValueName = 'MicrosoftEventVwrDisableLinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\EventViewer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { ValueName = 'DisableEnclosureDownload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Internet Explorer\Feeds' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' + { ValueName = 'AllowBasicAuthInClear' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Internet Explorer\Feeds' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Peernet\Disabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Peernet\Disabled' + { ValueName = 'Disabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Peernet' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { ValueName = 'DCSettingIndex' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { ValueName = 'ACSettingIndex' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\SQMClient\Windows\CEIPEnable' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\SQMClient\Windows\CEIPEnable' + { ValueName = 'CEIPEnable' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\SQMClient\Windows' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisableInventory' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisableInventory' + { ValueName = 'DisableInventory' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\AppCompat' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisablePcaUI' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisablePcaUI' + { ValueName = 'DisablePcaUI' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\AppCompat' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Appx\AllowAllTrustedApps' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Appx\AllowAllTrustedApps' + { ValueName = 'AllowAllTrustedApps' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Appx' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\CredUI\DisablePasswordReveal' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\CredUI\DisablePasswordReveal' + { ValueName = 'DisablePasswordReveal' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\CredUI' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Device Metadata\PreventDeviceMetadataFromNetwork' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Device Metadata\PreventDeviceMetadataFromNetwork' + { ValueName = 'PreventDeviceMetadataFromNetwork' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Device Metadata' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\AllowRemoteRPC' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\AllowRemoteRPC' + { ValueName = 'AllowRemoteRPC' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSystemRestore' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSystemRestore' + { ValueName = 'DisableSystemRestore' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendGenericDriverNotFoundToWER' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendGenericDriverNotFoundToWER' + { ValueName = 'DisableSendGenericDriverNotFoundToWER' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendRequestAdditionalSoftwareToWER' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendRequestAdditionalSoftwareToWER' + { ValueName = 'DisableSendRequestAdditionalSoftwareToWER' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontSearchWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontSearchWindowsUpdate' + { ValueName = 'DontSearchWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontPromptForWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontPromptForWindowsUpdate' + { ValueName = 'DontPromptForWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\SearchOrderConfig' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\SearchOrderConfig' + { ValueName = 'SearchOrderConfig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DriverServerSelection' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DriverServerSelection' + { ValueName = 'DriverServerSelection' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Application\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Application\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\Application' ValueData = 32768 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Security\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Security\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\Security' ValueData = 196608 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Setup\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Setup\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\Setup' ValueData = 32768 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\System\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\System\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\System' ValueData = 32768 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' + { ValueName = 'NoHeapTerminationOnCorruption' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { ValueName = 'NoAutoplayfornonVolume' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' + { ValueName = 'NoDataExecutionPrevention' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoUseStoreOpenWith' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoUseStoreOpenWith' + { ValueName = 'NoUseStoreOpenWith' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { ValueName = 'NoBackgroundPolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { ValueName = 'NoGPOListChanges' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\HandwritingErrorReports\PreventHandwritingErrorReports' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\HandwritingErrorReports\PreventHandwritingErrorReports' + { ValueName = 'PreventHandwritingErrorReports' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\HandwritingErrorReports' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\SafeForScripting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\SafeForScripting' + { ValueName = 'SafeForScripting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\EnableUserControl' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\EnableUserControl' + { ValueName = 'EnableUserControl' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\DisableLUAPatching' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\DisableLUAPatching' + { ValueName = 'DisableLUAPatching' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { ValueName = 'AlwaysInstallElevated' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableLLTDIO' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableLLTDIO' + { ValueName = 'EnableLLTDIO' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnDomain' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnDomain' + { ValueName = 'AllowLLTDIOOnDomain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnPublicNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnPublicNet' + { ValueName = 'AllowLLTDIOOnPublicNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitLLTDIOOnPrivateNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitLLTDIOOnPrivateNet' + { ValueName = 'ProhibitLLTDIOOnPrivateNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableRspndr' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableRspndr' + { ValueName = 'EnableRspndr' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnDomain' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnDomain' + { ValueName = 'AllowRspndrOnDomain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnPublicNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnPublicNet' + { ValueName = 'AllowRspndrOnPublicNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitRspndrOnPrivateNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitRspndrOnPrivateNet' + { ValueName = 'ProhibitRspndrOnPrivateNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LocationAndSensors\DisableLocation' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LocationAndSensors\DisableLocation' + { ValueName = 'DisableLocation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LocationAndSensors' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_AllowNetBridge_NLA' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_AllowNetBridge_NLA' + { ValueName = 'NC_AllowNetBridge_NLA' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Network Connections' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_StdDomainUserSetLocation' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_StdDomainUserSetLocation' + { ValueName = 'NC_StdDomainUserSetLocation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Network Connections' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { ValueName = 'NoLockScreenSlideshow' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Personalization' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { ValueName = 'EnableScriptBlockLogging' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { ValueName = 'EnableScriptBlockInvocationLogging' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\DisableQueryRemoteServer' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\DisableQueryRemoteServer' + { ValueName = 'DisableQueryRemoteServer' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\EnableQueryRemoteServer' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\EnableQueryRemoteServer' + { ValueName = 'EnableQueryRemoteServer' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnumerateLocalUsers' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnumerateLocalUsers' + { ValueName = 'EnumerateLocalUsers' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DisableLockScreenAppNotifications' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DisableLockScreenAppNotifications' + { ValueName = 'DisableLockScreenAppNotifications' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { ValueName = 'DontDisplayNetworkSelectionUI' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnableSmartScreen' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnableSmartScreen' + { ValueName = 'EnableSmartScreen' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TabletPC\PreventHandwritingDataSharing' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TabletPC\PreventHandwritingDataSharing' + { ValueName = 'PreventHandwritingDataSharing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\TabletPC' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TCPIP\v6Transition\Force_Tunneling' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TCPIP\v6Transition\Force_Tunneling' + { ValueName = 'Force_Tunneling' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\TCPIP\v6Transition' ValueData = 'Enabled' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\EnableRegistrars' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\EnableRegistrars' + { ValueName = 'EnableRegistrars' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableUPnPRegistrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableUPnPRegistrar' + { ValueName = 'DisableUPnPRegistrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableInBand802DOT11Registrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableInBand802DOT11Registrar' + { ValueName = 'DisableInBand802DOT11Registrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableFlashConfigRegistrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableFlashConfigRegistrar' + { ValueName = 'DisableFlashConfigRegistrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableWPDRegistrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableWPDRegistrar' + { ValueName = 'DisableWPDRegistrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\MaxWCNDeviceNumber' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\MaxWCNDeviceNumber' + { ValueName = 'MaxWCNDeviceNumber' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\HigherPrecedenceRegistrar' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\HigherPrecedenceRegistrar' + { ValueName = 'HigherPrecedenceRegistrar' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\UI\DisableWcnUi' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\UI\DisableWcnUi' + { ValueName = 'DisableWcnUi' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\UI' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}\ScenarioExecutionEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}\ScenarioExecutionEnabled' + { ValueName = 'ScenarioExecutionEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { ValueName = 'AllowBasic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Client' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { ValueName = 'AllowUnencryptedTraffic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Client' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { ValueName = 'AllowDigest' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Client' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { ValueName = 'AllowBasic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Service' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { ValueName = 'AllowUnencryptedTraffic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Service' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { ValueName = 'DisableRunAs' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Service' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { ValueName = 'DisableHTTPPrinting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Printers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { ValueName = 'DisableWebPnPDownload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Printers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DoNotInstallCompatibleDriverFromWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DoNotInstallCompatibleDriverFromWindowsUpdate' + { ValueName = 'DoNotInstallCompatibleDriverFromWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Printers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowToGetHelp' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowToGetHelp' + { ValueName = 'fAllowToGetHelp' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowFullControl' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowFullControl' + { ValueName = 'fAllowFullControl' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiry' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiry' + { ValueName = 'MaxTicketExpiry' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiryUnits' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiryUnits' + { ValueName = 'MaxTicketExpiryUnits' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fUseMailto' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fUseMailto' + { ValueName = 'fUseMailto' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { ValueName = 'fPromptForPassword' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { ValueName = 'MinEncryptionLevel' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\PerSessionTempDir' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\PerSessionTempDir' + { ValueName = 'PerSessionTempDir' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DeleteTempDirsOnExit' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DeleteTempDirsOnExit' + { ValueName = 'DeleteTempDirsOnExit' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicited' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicited' + { ValueName = 'fAllowUnsolicited' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicitedFullControl' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicitedFullControl' + { ValueName = 'fAllowUnsolicitedFullControl' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { ValueName = 'fEncryptRPCTraffic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { ValueName = 'DisablePasswordSaving' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { ValueName = 'fDisableCdm' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\LoggingEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\LoggingEnabled' + { ValueName = 'LoggingEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCcm' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCcm' + { ValueName = 'fDisableCcm' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableLPT' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableLPT' + { ValueName = 'fDisableLPT' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisablePNPRedir' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisablePNPRedir' + { ValueName = 'fDisablePNPRedir' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEnableSmartCard' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEnableSmartCard' + { ValueName = 'fEnableSmartCard' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\RedirectOnlyDefaultClientPrinter' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\RedirectOnlyDefaultClientPrinter' + { ValueName = 'RedirectOnlyDefaultClientPrinter' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'DELVALS_\Software\policies\Microsoft\Windows NT\Terminal Services\RAUnsolicit' - { + RegistryPolicyFile 'DELVALS_\Software\policies\Microsoft\Windows NT\Terminal Services\RAUnsolicit' + { ValueName = '' TargetType = 'ComputerConfiguration' @@ -1042,1211 +1042,1211 @@ configuration DoD_WinSvr_2012_R2_MS_and_DC_v3r7 ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services\RAUnsolicit' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\DisableAutoUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\DisableAutoUpdate' + { ValueName = 'DisableAutoUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\WindowsMediaPlayer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\GroupPrivacyAcceptance' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\GroupPrivacyAcceptance' + { ValueName = 'GroupPrivacyAcceptance' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\WindowsMediaPlayer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WMDRM\DisableOnline' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WMDRM\DisableOnline' + { ValueName = 'DisableOnline' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\WMDRM' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { ValueName = 'UseLogonCredential' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\SafeDllSearchMode' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\SafeDllSearchMode' + { ValueName = 'SafeDllSearchMode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Control\Session Manager' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' + { ValueName = 'DriverLoadPolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Policies\EarlyLaunch' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Eventlog\Security\WarningLevel' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Eventlog\Security\WarningLevel' + { ValueName = 'WarningLevel' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Eventlog\Security' ValueData = 90 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\IPSEC\NoDefaultExempt' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\IPSEC\NoDefaultExempt' + { ValueName = 'NoDefaultExempt' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\IPSEC' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { ValueName = 'SMB1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' + { ValueName = 'Start' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\MrxSmb10' ValueData = 4 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { ValueName = 'NoNameReleaseOnDemand' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Netbt\Parameters' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { ValueName = 'DisableIPSourceRouting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { ValueName = 'EnableICMPRedirect' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PerformRouterDiscovery' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PerformRouterDiscovery' + { ValueName = 'PerformRouterDiscovery' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\KeepAliveTime' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\KeepAliveTime' + { ValueName = 'KeepAliveTime' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 300000 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\TcpMaxDataRetransmissions' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\TcpMaxDataRetransmissions' + { ValueName = 'TcpMaxDataRetransmissions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableIPAutoConfigurationLimits' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableIPAutoConfigurationLimits' + { ValueName = 'EnableIPAutoConfigurationLimits' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { ValueName = 'DisableIPSourceRouting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\TcpMaxDataRetransmissions' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\TcpMaxDataRetransmissions' + { ValueName = 'TcpMaxDataRetransmissions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { ValueName = 'EnumerateAdministrators' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { ValueName = 'NoDriveTypeAutoRun' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 255 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetOpenWith' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInternetOpenWith' + { ValueName = 'NoInternetOpenWith' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' + { ValueName = 'PreXPSP2ShellProtocolBehavior' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { ValueName = 'NoAutorun' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\LocalSourcePath' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\LocalSourcePath' + { ValueName = 'LocalSourcePath' TargetType = 'ComputerConfiguration' ValueType = 'ExpandString' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Servicing' ValueData = $null - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\UseWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\UseWindowsUpdate' + { ValueName = 'UseWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Servicing' ValueData = 2 - } + } - RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\RepairContentServerSource' - { + RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\Servicing\RepairContentServerSource' + { ValueName = 'RepairContentServerSource' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Servicing' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableBkGndGroupPolicy' - { + RegistryPolicyFile 'DEL_\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableBkGndGroupPolicy' + { ValueName = 'DisableBkGndGroupPolicy' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\MSAOptional' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\MSAOptional' + { ValueName = 'MSAOptional' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { ValueName = 'DisableAutomaticRestartSignOn' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { ValueName = 'LocalAccountTokenFilterPolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { ValueName = 'ProcessCreationIncludeCmdLine_Enabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoAdminLogon' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoAdminLogon' + { ValueName = 'AutoAdminLogon' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Microsoft\Windows NT\CurrentVersion\Winlogon' ValueData = '0' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ScreenSaverGracePeriod' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ScreenSaverGracePeriod' + { ValueName = 'ScreenSaverGracePeriod' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\Microsoft\Windows NT\CurrentVersion\Winlogon' ValueData = '5' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Biometrics\Enabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Biometrics\Enabled' + { ValueName = 'Enabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Biometrics' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Control Panel\International\BlockUserInputMethodsForSignIn' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Control Panel\International\BlockUserInputMethodsForSignIn' + { ValueName = 'BlockUserInputMethodsForSignIn' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Control Panel\International' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\EventViewer\MicrosoftEventVwrDisableLinks' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\EventViewer\MicrosoftEventVwrDisableLinks' + { ValueName = 'MicrosoftEventVwrDisableLinks' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\EventViewer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { ValueName = 'DisableEnclosureDownload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Internet Explorer\Feeds' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' + { ValueName = 'AllowBasicAuthInClear' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Internet Explorer\Feeds' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Peernet\Disabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Peernet\Disabled' + { ValueName = 'Disabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Peernet' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { ValueName = 'DCSettingIndex' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { ValueName = 'ACSettingIndex' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\SQMClient\Windows\CEIPEnable' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\SQMClient\Windows\CEIPEnable' + { ValueName = 'CEIPEnable' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\SQMClient\Windows' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisableInventory' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisableInventory' + { ValueName = 'DisableInventory' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\AppCompat' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisablePcaUI' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\AppCompat\DisablePcaUI' + { ValueName = 'DisablePcaUI' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\AppCompat' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Appx\AllowAllTrustedApps' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Appx\AllowAllTrustedApps' + { ValueName = 'AllowAllTrustedApps' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Appx' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\CredUI\DisablePasswordReveal' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\CredUI\DisablePasswordReveal' + { ValueName = 'DisablePasswordReveal' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\CredUI' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Device Metadata\PreventDeviceMetadataFromNetwork' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Device Metadata\PreventDeviceMetadataFromNetwork' + { ValueName = 'PreventDeviceMetadataFromNetwork' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Device Metadata' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\AllowRemoteRPC' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\AllowRemoteRPC' + { ValueName = 'AllowRemoteRPC' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSystemRestore' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSystemRestore' + { ValueName = 'DisableSystemRestore' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendGenericDriverNotFoundToWER' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendGenericDriverNotFoundToWER' + { ValueName = 'DisableSendGenericDriverNotFoundToWER' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendRequestAdditionalSoftwareToWER' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DeviceInstall\Settings\DisableSendRequestAdditionalSoftwareToWER' + { ValueName = 'DisableSendRequestAdditionalSoftwareToWER' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DeviceInstall\Settings' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontSearchWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontSearchWindowsUpdate' + { ValueName = 'DontSearchWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontPromptForWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DontPromptForWindowsUpdate' + { ValueName = 'DontPromptForWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\SearchOrderConfig' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\SearchOrderConfig' + { ValueName = 'SearchOrderConfig' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DriverServerSelection' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\DriverSearching\DriverServerSelection' + { ValueName = 'DriverServerSelection' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\DriverSearching' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Application\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Application\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\Application' ValueData = 32768 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Security\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Security\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\Security' ValueData = 196608 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Setup\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\Setup\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\Setup' ValueData = 32768 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\System\MaxSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\EventLog\System\MaxSize' + { ValueName = 'MaxSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\EventLog\System' ValueData = 32768 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' + { ValueName = 'NoHeapTerminationOnCorruption' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { ValueName = 'NoAutoplayfornonVolume' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' + { ValueName = 'NoDataExecutionPrevention' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoUseStoreOpenWith' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Explorer\NoUseStoreOpenWith' + { ValueName = 'NoUseStoreOpenWith' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { ValueName = 'NoBackgroundPolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { ValueName = 'NoGPOListChanges' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\HandwritingErrorReports\PreventHandwritingErrorReports' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\HandwritingErrorReports\PreventHandwritingErrorReports' + { ValueName = 'PreventHandwritingErrorReports' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\HandwritingErrorReports' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\SafeForScripting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\SafeForScripting' + { ValueName = 'SafeForScripting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\EnableUserControl' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\EnableUserControl' + { ValueName = 'EnableUserControl' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\DisableLUAPatching' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\DisableLUAPatching' + { ValueName = 'DisableLUAPatching' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { ValueName = 'AlwaysInstallElevated' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Installer' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableLLTDIO' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableLLTDIO' + { ValueName = 'EnableLLTDIO' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnDomain' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnDomain' + { ValueName = 'AllowLLTDIOOnDomain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnPublicNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowLLTDIOOnPublicNet' + { ValueName = 'AllowLLTDIOOnPublicNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitLLTDIOOnPrivateNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitLLTDIOOnPrivateNet' + { ValueName = 'ProhibitLLTDIOOnPrivateNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableRspndr' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\EnableRspndr' + { ValueName = 'EnableRspndr' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnDomain' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnDomain' + { ValueName = 'AllowRspndrOnDomain' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnPublicNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\AllowRspndrOnPublicNet' + { ValueName = 'AllowRspndrOnPublicNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitRspndrOnPrivateNet' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LLTD\ProhibitRspndrOnPrivateNet' + { ValueName = 'ProhibitRspndrOnPrivateNet' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LLTD' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LocationAndSensors\DisableLocation' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\LocationAndSensors\DisableLocation' + { ValueName = 'DisableLocation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\LocationAndSensors' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_AllowNetBridge_NLA' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_AllowNetBridge_NLA' + { ValueName = 'NC_AllowNetBridge_NLA' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Network Connections' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_StdDomainUserSetLocation' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Network Connections\NC_StdDomainUserSetLocation' + { ValueName = 'NC_StdDomainUserSetLocation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Network Connections' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { ValueName = 'NoLockScreenSlideshow' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\Personalization' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { ValueName = 'EnableScriptBlockLogging' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' ValueData = 1 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { ValueName = 'EnableScriptBlockInvocationLogging' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\DisableQueryRemoteServer' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\DisableQueryRemoteServer' + { ValueName = 'DisableQueryRemoteServer' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\EnableQueryRemoteServer' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy\EnableQueryRemoteServer' + { ValueName = 'EnableQueryRemoteServer' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnumerateLocalUsers' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnumerateLocalUsers' + { ValueName = 'EnumerateLocalUsers' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DisableLockScreenAppNotifications' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DisableLockScreenAppNotifications' + { ValueName = 'DisableLockScreenAppNotifications' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { ValueName = 'DontDisplayNetworkSelectionUI' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnableSmartScreen' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\System\EnableSmartScreen' + { ValueName = 'EnableSmartScreen' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\System' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TabletPC\PreventHandwritingDataSharing' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TabletPC\PreventHandwritingDataSharing' + { ValueName = 'PreventHandwritingDataSharing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\TabletPC' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TCPIP\v6Transition\Force_Tunneling' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\TCPIP\v6Transition\Force_Tunneling' + { ValueName = 'Force_Tunneling' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\TCPIP\v6Transition' ValueData = 'Enabled' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\EnableRegistrars' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\EnableRegistrars' + { ValueName = 'EnableRegistrars' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableUPnPRegistrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableUPnPRegistrar' + { ValueName = 'DisableUPnPRegistrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableInBand802DOT11Registrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableInBand802DOT11Registrar' + { ValueName = 'DisableInBand802DOT11Registrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableFlashConfigRegistrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableFlashConfigRegistrar' + { ValueName = 'DisableFlashConfigRegistrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableWPDRegistrar' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\Registrars\DisableWPDRegistrar' + { ValueName = 'DisableWPDRegistrar' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\MaxWCNDeviceNumber' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\MaxWCNDeviceNumber' + { ValueName = 'MaxWCNDeviceNumber' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\HigherPrecedenceRegistrar' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows\WCN\Registrars\HigherPrecedenceRegistrar' + { ValueName = 'HigherPrecedenceRegistrar' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows\WCN\Registrars' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\UI\DisableWcnUi' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WCN\UI\DisableWcnUi' + { ValueName = 'DisableWcnUi' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WCN\UI' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}\ScenarioExecutionEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}\ScenarioExecutionEnabled' + { ValueName = 'ScenarioExecutionEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WDI\{9c5a40da-b965-4fc3-8781-88dd50a6299d}' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { ValueName = 'AllowBasic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Client' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { ValueName = 'AllowUnencryptedTraffic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Client' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { ValueName = 'AllowDigest' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Client' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { ValueName = 'AllowBasic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Service' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { ValueName = 'AllowUnencryptedTraffic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Service' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { ValueName = 'DisableRunAs' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows\WinRM\Service' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { ValueName = 'DisableHTTPPrinting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Printers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { ValueName = 'DisableWebPnPDownload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Printers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DoNotInstallCompatibleDriverFromWindowsUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Printers\DoNotInstallCompatibleDriverFromWindowsUpdate' + { ValueName = 'DoNotInstallCompatibleDriverFromWindowsUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Printers' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' + { ValueName = 'RestrictRemoteClients' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Rpc' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowToGetHelp' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowToGetHelp' + { ValueName = 'fAllowToGetHelp' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowFullControl' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowFullControl' + { ValueName = 'fAllowFullControl' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiry' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiry' + { ValueName = 'MaxTicketExpiry' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiryUnits' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiryUnits' + { ValueName = 'MaxTicketExpiryUnits' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fUseMailto' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fUseMailto' + { ValueName = 'fUseMailto' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { ValueName = 'fPromptForPassword' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { ValueName = 'MinEncryptionLevel' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\PerSessionTempDir' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\PerSessionTempDir' + { ValueName = 'PerSessionTempDir' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DeleteTempDirsOnExit' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DeleteTempDirsOnExit' + { ValueName = 'DeleteTempDirsOnExit' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicited' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicited' + { ValueName = 'fAllowUnsolicited' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 0 - } + } - RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicitedFullControl' - { + RegistryPolicyFile 'DEL_\Software\policies\Microsoft\Windows NT\Terminal Services\fAllowUnsolicitedFullControl' + { ValueName = 'fAllowUnsolicitedFullControl' TargetType = 'ComputerConfiguration' Ensure = 'Absent' ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { ValueName = 'fEncryptRPCTraffic' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { ValueName = 'DisablePasswordSaving' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { ValueName = 'fDisableCdm' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\LoggingEnabled' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\LoggingEnabled' + { ValueName = 'LoggingEnabled' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCcm' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableCcm' + { ValueName = 'fDisableCcm' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableLPT' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisableLPT' + { ValueName = 'fDisableLPT' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisablePNPRedir' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fDisablePNPRedir' + { ValueName = 'fDisablePNPRedir' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEnableSmartCard' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\fEnableSmartCard' + { ValueName = 'fEnableSmartCard' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\RedirectOnlyDefaultClientPrinter' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\Windows NT\Terminal Services\RedirectOnlyDefaultClientPrinter' + { ValueName = 'RedirectOnlyDefaultClientPrinter' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services' ValueData = 1 - } + } - RegistryPolicyFile 'DELVALS_\Software\policies\Microsoft\Windows NT\Terminal Services\RAUnsolicit' - { + RegistryPolicyFile 'DELVALS_\Software\policies\Microsoft\Windows NT\Terminal Services\RAUnsolicit' + { ValueName = '' TargetType = 'ComputerConfiguration' @@ -2254,2382 +2254,2380 @@ configuration DoD_WinSvr_2012_R2_MS_and_DC_v3r7 ValueType = 'String' Key = 'Software\policies\Microsoft\Windows NT\Terminal Services\RAUnsolicit' ValueData = '' - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\DisableAutoUpdate' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\DisableAutoUpdate' + { ValueName = 'DisableAutoUpdate' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\WindowsMediaPlayer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\GroupPrivacyAcceptance' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WindowsMediaPlayer\GroupPrivacyAcceptance' + { ValueName = 'GroupPrivacyAcceptance' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\WindowsMediaPlayer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WMDRM\DisableOnline' - { + RegistryPolicyFile 'Registry(POL): HKLM:\Software\policies\Microsoft\WMDRM\DisableOnline' + { ValueName = 'DisableOnline' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'Software\policies\Microsoft\WMDRM' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { ValueName = 'UseLogonCredential' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\SafeDllSearchMode' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\SafeDllSearchMode' + { ValueName = 'SafeDllSearchMode' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Control\Session Manager' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' + { ValueName = 'DriverLoadPolicy' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Policies\EarlyLaunch' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Eventlog\Security\WarningLevel' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Eventlog\Security\WarningLevel' + { ValueName = 'WarningLevel' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Eventlog\Security' ValueData = 90 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\IPSEC\NoDefaultExempt' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\IPSEC\NoDefaultExempt' + { ValueName = 'NoDefaultExempt' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\IPSEC' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { ValueName = 'SMB1' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' + { ValueName = 'Start' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\MrxSmb10' ValueData = 4 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { ValueName = 'NoNameReleaseOnDemand' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Netbt\Parameters' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { ValueName = 'DisableIPSourceRouting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { ValueName = 'EnableICMPRedirect' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PerformRouterDiscovery' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\PerformRouterDiscovery' + { ValueName = 'PerformRouterDiscovery' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\KeepAliveTime' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\KeepAliveTime' + { ValueName = 'KeepAliveTime' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 300000 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\TcpMaxDataRetransmissions' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\TcpMaxDataRetransmissions' + { ValueName = 'TcpMaxDataRetransmissions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableIPAutoConfigurationLimits' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableIPAutoConfigurationLimits' + { ValueName = 'EnableIPAutoConfigurationLimits' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { ValueName = 'DisableIPSourceRouting' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\TcpMaxDataRetransmissions' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\TcpMaxDataRetransmissions' + { ValueName = 'TcpMaxDataRetransmissions' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' ValueData = 3 - } + } - <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\SaveZoneInformation' - { + <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\SaveZoneInformation' + { ValueName = 'SaveZoneInformation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\HideZoneInfoOnProperties' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\HideZoneInfoOnProperties' + { ValueName = 'HideZoneInfoOnProperties' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\ScanWithAntiVirus' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\ScanWithAntiVirus' + { ValueName = 'ScanWithAntiVirus' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInplaceSharing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInplaceSharing' + { ValueName = 'NoInplaceSharing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' + { ValueName = 'NoReadingPane' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' + { ValueName = 'NoPreviewPane' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoImplicitFeedback' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoImplicitFeedback' + { ValueName = 'NoImplicitFeedback' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoExplicitFeedback' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoExplicitFeedback' + { ValueName = 'NoExplicitFeedback' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaveActive' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaveActive' + { ValueName = 'ScreenSaveActive' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaverIsSecure' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaverIsSecure' + { ValueName = 'ScreenSaverIsSecure' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoCloudApplicationNotification' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoCloudApplicationNotification' + { ValueName = 'NoCloudApplicationNotification' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotificationOnLockScreen' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotificationOnLockScreen' + { ValueName = 'NoToastApplicationNotificationOnLockScreen' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\WindowsMediaPlayer\PreventCodecDownload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\WindowsMediaPlayer\PreventCodecDownload' + { ValueName = 'PreventCodecDownload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\WindowsMediaPlayer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\HideZoneInfoOnProperties' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\HideZoneInfoOnProperties' + { ValueName = 'HideZoneInfoOnProperties' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\SaveZoneInformation' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\SaveZoneInformation' + { ValueName = 'SaveZoneInformation' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments' ValueData = 2 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\ScanWithAntiVirus' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments\ScanWithAntiVirus' + { ValueName = 'ScanWithAntiVirus' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments' ValueData = 3 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInplaceSharing' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoInplaceSharing' + { ValueName = 'NoInplaceSharing' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' + { ValueName = 'NoReadingPane' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' + { ValueName = 'NoPreviewPane' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoImplicitFeedback' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoImplicitFeedback' + { ValueName = 'NoImplicitFeedback' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoExplicitFeedback' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0\NoExplicitFeedback' + { ValueName = 'NoExplicitFeedback' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Assistance\Client\1.0' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaveActive' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaveActive' + { ValueName = 'ScreenSaveActive' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaverIsSecure' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop\ScreenSaverIsSecure' + { ValueName = 'ScreenSaverIsSecure' TargetType = 'ComputerConfiguration' ValueType = 'String' Key = 'HKCU:\Software\Policies\Microsoft\Windows\Control Panel\Desktop' ValueData = '1' - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoCloudApplicationNotification' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoCloudApplicationNotification' + { ValueName = 'NoCloudApplicationNotification' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotificationOnLockScreen' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotificationOnLockScreen' + { ValueName = 'NoToastApplicationNotificationOnLockScreen' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\Windows\CurrentVersion\PushNotifications' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\WindowsMediaPlayer\PreventCodecDownload' - { + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Policies\Microsoft\WindowsMediaPlayer\PreventCodecDownload' + { ValueName = 'PreventCodecDownload' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'HKCU:\Software\Policies\Microsoft\WindowsMediaPlayer' ValueData = 1 - } #> + } #> - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Credential Validation' - } + } AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Credential Validation' - } + } - AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Computer Account Management' - } + } AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Computer Account Management' - } + } - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Other Account Management Events' - } + } AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Other Account Management Events' - } + } - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Security Group Management' - } + } AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Security Group Management' - } + } - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'User Account Management' - } + } AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'User Account Management' - } + } - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Process Creation' - } + } AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Process Creation' - } + } - AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Directory Service Access' - } + } AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Directory Service Access' - } + } - AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Directory Service Changes' - } + } AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Directory Service Changes' - } + } - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Account Lockout' - } + } AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { + { AuditFlag = 'Success' Ensure = 'Absent' Name = 'Account Lockout' - } + } - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Logoff' - } + } AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Logoff' - } + } - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Logon' - } + } AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Logon' - } + } - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Special Logon' - } + } AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Special Logon' - } + } - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Removable Storage' - } + } AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Removable Storage' - } + } - AuditPolicySubcategory 'Audit Central Access Policy Staging (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Central Access Policy Staging (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Central Policy Staging' - } + } AuditPolicySubcategory 'Audit Central Access Policy Staging (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Central Policy Staging' - } + } - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Audit Policy Change' - } + } AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Audit Policy Change' - } + } - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Authentication Policy Change' - } + } AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Authentication Policy Change' - } + } - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Authorization Policy Change' - } + } AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Authorization Policy Change' - } + } - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Sensitive Privilege Use' - } + } AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Sensitive Privilege Use' - } + } - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'IPsec Driver' - } + } AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'IPsec Driver' - } + } - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Other System Events' - } + } AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Other System Events' - } + } - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Security State Change' - } + } AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Security State Change' - } + } - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Security System Extension' - } + } AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Security System Extension' - } + } - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'System Integrity' - } + } AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'System Integrity' - } + } - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Credential Validation' - } + } AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Credential Validation' - } + } - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Other Account Management Events' - } + } AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Other Account Management Events' - } + } - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Security Group Management' - } + } AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Security Group Management' - } + } - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'User Account Management' - } + } AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'User Account Management' - } + } - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Process Creation' - } + } AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Process Creation' - } + } - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Account Lockout' - } + } AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { + { AuditFlag = 'Success' Ensure = 'Absent' Name = 'Account Lockout' - } + } - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Logoff' - } + } AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Logoff' - } + } - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Logon' - } + } AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Logon' - } + } - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Special Logon' - } + } AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Special Logon' - } + } - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Removable Storage' - } + } AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Removable Storage' - } + } - AuditPolicySubcategory 'Audit Central Access Policy Staging (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Central Access Policy Staging (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Central Policy Staging' - } + } AuditPolicySubcategory 'Audit Central Access Policy Staging (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Central Policy Staging' - } + } - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Audit Policy Change' - } + } AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Audit Policy Change' - } + } - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Authentication Policy Change' - } + } AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Authentication Policy Change' - } + } - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Authorization Policy Change' - } + } AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Authorization Policy Change' - } + } - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Sensitive Privilege Use' - } + } AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Sensitive Privilege Use' - } + } - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'IPsec Driver' - } + } AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'IPsec Driver' - } + } - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Other System Events' - } + } AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'Other System Events' - } + } - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Security State Change' - } + } AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Security State Change' - } + } - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'Security System Extension' - } + } AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Absent' Name = 'Security System Extension' - } + } - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { AuditFlag = 'Success' Ensure = 'Present' Name = 'System Integrity' - } + } AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { + { AuditFlag = 'Failure' Ensure = 'Present' Name = 'System Integrity' - } + } - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { Domain_member_Maximum_machine_account_password_age = '30' Name = 'Domain_member_Maximum_machine_account_password_age' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } + } -<# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { + <# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } #> + } #> - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Prompt_user_to_change_password_before_expiration' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Prompt_user_to_change_password_before_expiration' + { Interactive_logon_Prompt_user_to_change_password_before_expiration = '14' Name = 'Interactive_logon_Prompt_user_to_change_password_before_expiration' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Shares_that_can_be_accessed_anonymously' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Shares_that_can_be_accessed_anonymously' + { Network_access_Shares_that_can_be_accessed_anonymously = 'String' Name = 'Network_access_Shares_that_can_be_accessed_anonymously' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths_and_subpaths' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths_and_subpaths' + { Network_access_Remotely_accessible_registry_paths_and_subpaths = 'Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog' Name = 'Network_access_Remotely_accessible_registry_paths_and_subpaths' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' Name = 'Network_security_LAN_Manager_authentication_level' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_require_CTRL_ALT_DEL' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_require_CTRL_ALT_DEL' + { Interactive_logon_Do_not_require_CTRL_ALT_DEL = 'Disabled' Name = 'Interactive_logon_Do_not_require_CTRL_ALT_DEL' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' Name = 'Interactive_logon_Smart_card_removal_behavior' - } + } - SecurityOption 'SecurityRegistry(INF): Devices_Allowed_to_format_and_eject_removable_media' - { + SecurityOption 'SecurityRegistry(INF): Devices_Allowed_to_format_and_eject_removable_media' + { Devices_Allowed_to_format_and_eject_removable_media = 'Administrators' Name = 'Devices_Allowed_to_format_and_eject_removable_media' - } + } - SecurityOption 'SecurityRegistry(INF): Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on' - { + SecurityOption 'SecurityRegistry(INF): Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on' + { Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on = 'Disabled' Name = 'Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_display_last_user_name' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_display_last_user_name' + { Interactive_logon_Do_not_display_last_user_name = 'Enabled' Name = 'Interactive_logon_Do_not_display_last_user_name' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' Name = 'Network_security_LDAP_client_signing_requirements' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Disconnect_clients_when_logon_hours_expire' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Disconnect_clients_when_logon_hours_expire' + { Microsoft_network_server_Disconnect_clients_when_logon_hours_expire = 'Enabled' Name = 'Microsoft_network_server_Disconnect_clients_when_logon_hours_expire' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent' Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_executables_that_are_signed_and_validated' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_executables_that_are_signed_and_validated' + { User_Account_Control_Only_elevate_executables_that_are_signed_and_validated = 'Disabled' Name = 'User_Account_Control_Only_elevate_executables_that_are_signed_and_validated' - } + } - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } + } - SecurityOption 'SecurityRegistry(INF): System_settings_Optional_subsystems' - { + SecurityOption 'SecurityRegistry(INF): System_settings_Optional_subsystems' + { System_settings_Optional_subsystems = 'String' Name = 'System_settings_Optional_subsystems' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' - { + SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' + { Domain_controller_Refuse_machine_account_password_changes = 'Disabled' Name = 'Domain_controller_Refuse_machine_account_password_changes' - } + } - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } + } - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } + } - SecurityOption 'SecurityRegistry(INF): System_objects_Require_case_insensitivity_for_non_Windows_subsystems' - { + SecurityOption 'SecurityRegistry(INF): System_objects_Require_case_insensitivity_for_non_Windows_subsystems' + { System_objects_Require_case_insensitivity_for_non_Windows_subsystems = 'Enabled' Name = 'System_objects_Require_case_insensitivity_for_non_Windows_subsystems' - } + } - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } + } - SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_access_of_global_system_objects' - { + SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_access_of_global_system_objects' + { Audit_Audit_the_access_of_global_system_objects = 'Disabled' Name = 'Audit_Audit_the_access_of_global_system_objects' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } + } - SecurityOption 'SecurityRegistry(INF): Devices_Prevent_users_from_installing_printer_drivers' - { + SecurityOption 'SecurityRegistry(INF): Devices_Prevent_users_from_installing_printer_drivers' + { Devices_Prevent_users_from_installing_printer_drivers = 'Enabled' Name = 'Devices_Prevent_users_from_installing_printer_drivers' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation' + { User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation = 'Enabled' Name = 'User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { Domain_member_Disable_machine_account_password_changes = 'Disabled' Name = 'Domain_member_Disable_machine_account_password_changes' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' - { + SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' + { Domain_controller_LDAP_server_signing_requirements = 'Require Signing' Name = 'Domain_controller_LDAP_server_signing_requirements' - } + } - SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_use_of_Backup_and_Restore_privilege' - { + SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_use_of_Backup_and_Restore_privilege' + { Audit_Audit_the_use_of_Backup_and_Restore_privilege = 'Disabled' Name = 'Audit_Audit_the_use_of_Backup_and_Restore_privilege' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session' + { Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session = '15' Name = 'Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Sharing_and_security_model_for_local_accounts' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Sharing_and_security_model_for_local_accounts' + { Network_access_Sharing_and_security_model_for_local_accounts = 'Classic - Local users authenticate as themselves' Name = 'Network_access_Sharing_and_security_model_for_local_accounts' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { Interactive_logon_Machine_inactivity_limit = '900' Name = 'Interactive_logon_Machine_inactivity_limit' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Server_SPN_target_name_validation_level' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Server_SPN_target_name_validation_level' + { Microsoft_network_server_Server_SPN_target_name_validation_level = 'Off' Name = 'Microsoft_network_server_Server_SPN_target_name_validation_level' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } + } - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Named_Pipes_that_can_be_accessed_anonymously' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Named_Pipes_that_can_be_accessed_anonymously' + { Network_access_Named_Pipes_that_can_be_accessed_anonymously = 'lsarpc,netlogon,samr' Name = 'Network_access_Named_Pipes_that_can_be_accessed_anonymously' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths' + { Network_access_Remotely_accessible_registry_paths = 'System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion' Name = 'Network_access_Remotely_accessible_registry_paths' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } + } - Service 'Services(INF): SCPolicySvc' - { + Service 'Services(INF): SCPolicySvc' + { State = 'Running' Name = 'SCPolicySvc' - } + } -<# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { PasswordHistorySize = 24 Name = 'PasswordHistorySize' - } + } - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { Name = 'LockoutDuration' LockoutDuration = 15 - } + } - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { Name = 'LockoutBadCount' LockoutBadCount = 3 - } + } - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { Name = 'MinimumPasswordAge' MinimumPasswordAge = 1 - } + } - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { NewGuestName = 'Visitor' Name = 'NewGuestName' - } + } - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { ResetLockoutCount = 15 Name = 'ResetLockoutCount' - } + } - SecuritySetting 'SecuritySetting(INF): ForceLogoffWhenHourExpire' - { + SecuritySetting 'SecuritySetting(INF): ForceLogoffWhenHourExpire' + { Name = 'ForceLogoffWhenHourExpire' ForceLogoffWhenHourExpire = 1 - } + } - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { EnableGuestAccount = 0 Name = 'EnableGuestAccount' - } + } - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { MaximumPasswordAge = 60 Name = 'MaximumPasswordAge' - } + } - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { Name = 'MinimumPasswordLength' MinimumPasswordLength = 14 - } + } - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { PasswordComplexity = 1 Name = 'PasswordComplexity' - } + } - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { ClearTextPassword = 0 Name = 'ClearTextPassword' - } + } - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { NewAdministratorName = 'X_Admin' Name = 'NewAdministratorName' - } + } - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { LSAAnonymousNameLookup = 0 Name = 'LSAAnonymousNameLookup' - } #> + } #> - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { Identity = @('') Policy = 'Create_permanent_shared_objects' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { Identity = @('*S-1-5-32-544') Policy = 'Load_and_unload_device_drivers' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') Policy = 'Create_global_objects' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { Identity = @('*S-1-5-32-544') Policy = 'Increase_scheduling_priority' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { Identity = @('') Policy = 'Lock_pages_in_memory' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { Identity = @('*S-1-5-20', '*S-1-5-19') Policy = 'Generate_security_audits' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { Identity = @('') Policy = 'Act_as_part_of_the_operating_system' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { Identity = @('*S-1-5-32-544') Policy = 'Perform_volume_maintenance_tasks' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { Identity = @('*S-1-5-32-546') Policy = 'Deny_log_on_through_Remote_Desktop_Services' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { Identity = @('*S-1-5-32-544') Policy = 'Restore_files_and_directories' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { Identity = @('*S-1-5-32-546') Policy = 'Deny_log_on_locally' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { Identity = @('') Policy = 'Access_Credential_Manager_as_a_trusted_caller' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { Identity = @('*S-1-5-32-546') Policy = 'Deny_log_on_as_a_batch_job' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { Identity = @('*S-1-5-32-546') Policy = 'Deny_access_to_this_computer_from_the_network' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') Policy = 'Impersonate_a_client_after_authentication' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { Identity = @('') Policy = 'Deny_log_on_as_a_service' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { Identity = @('*S-1-5-32-544') Policy = 'Debug_programs' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { Identity = @('*S-1-5-32-544') Policy = 'Modify_firmware_environment_values' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') Policy = 'Access_this_computer_from_the_network' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { Identity = @('*S-1-5-32-544') Policy = 'Profile_single_process' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { Identity = @('*S-1-5-32-544') Policy = 'Create_a_pagefile' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { Identity = @('*S-1-5-32-544') Policy = 'Manage_auditing_and_security_log' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { Identity = @('*S-1-5-32-544') Policy = 'Force_shutdown_from_a_remote_system' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' - { + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' + { Identity = @('*S-1-5-32-544') Policy = 'Allow_log_on_through_Remote_Desktop_Services' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { Identity = @('*S-1-5-32-544') Policy = 'Take_ownership_of_files_or_other_objects' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { Identity = @('*S-1-5-32-544') Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { Identity = @('*S-1-5-32-544') Policy = 'Allow_log_on_locally' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { Identity = @('') Policy = 'Create_a_token_object' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' - { + UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' + { Identity = @('*S-1-5-32-544') Policy = 'Add_workstations_to_domain' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { Identity = @('*S-1-5-32-544') Policy = 'Create_symbolic_links' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { Identity = @('*S-1-5-32-544') Policy = 'Back_up_files_and_directories' Force = $True - } + } - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { Domain_member_Maximum_machine_account_password_age = '30' Name = 'Domain_member_Maximum_machine_account_password_age' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } + } -<# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { + <# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } #> + } #> - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Prompt_user_to_change_password_before_expiration' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Prompt_user_to_change_password_before_expiration' + { Interactive_logon_Prompt_user_to_change_password_before_expiration = '14' Name = 'Interactive_logon_Prompt_user_to_change_password_before_expiration' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Shares_that_can_be_accessed_anonymously' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Shares_that_can_be_accessed_anonymously' + { Network_access_Shares_that_can_be_accessed_anonymously = 'String' Name = 'Network_access_Shares_that_can_be_accessed_anonymously' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths_and_subpaths' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths_and_subpaths' + { Network_access_Remotely_accessible_registry_paths_and_subpaths = 'Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog' Name = 'Network_access_Remotely_accessible_registry_paths_and_subpaths' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' Name = 'Network_security_LAN_Manager_authentication_level' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_require_CTRL_ALT_DEL' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_require_CTRL_ALT_DEL' + { Interactive_logon_Do_not_require_CTRL_ALT_DEL = 'Disabled' Name = 'Interactive_logon_Do_not_require_CTRL_ALT_DEL' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' Name = 'Interactive_logon_Smart_card_removal_behavior' - } + } - SecurityOption 'SecurityRegistry(INF): Devices_Allowed_to_format_and_eject_removable_media' - { + SecurityOption 'SecurityRegistry(INF): Devices_Allowed_to_format_and_eject_removable_media' + { Devices_Allowed_to_format_and_eject_removable_media = 'Administrators' Name = 'Devices_Allowed_to_format_and_eject_removable_media' - } + } - SecurityOption 'SecurityRegistry(INF): Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on' - { + SecurityOption 'SecurityRegistry(INF): Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on' + { Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on = 'Disabled' Name = 'Shutdown_Allow_system_to_be_shut_down_without_having_to_log_on' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_display_last_user_name' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Do_not_display_last_user_name' + { Interactive_logon_Do_not_display_last_user_name = 'Enabled' Name = 'Interactive_logon_Do_not_display_last_user_name' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' Name = 'Network_security_LDAP_client_signing_requirements' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Disconnect_clients_when_logon_hours_expire' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Disconnect_clients_when_logon_hours_expire' + { Microsoft_network_server_Disconnect_clients_when_logon_hours_expire = 'Enabled' Name = 'Microsoft_network_server_Disconnect_clients_when_logon_hours_expire' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent' Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } + } - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } + } - SecurityOption 'SecurityRegistry(INF): System_settings_Optional_subsystems' - { + SecurityOption 'SecurityRegistry(INF): System_settings_Optional_subsystems' + { System_settings_Optional_subsystems = 'String' Name = 'System_settings_Optional_subsystems' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_executables_that_are_signed_and_validated' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_executables_that_are_signed_and_validated' + { User_Account_Control_Only_elevate_executables_that_are_signed_and_validated = 'Disabled' Name = 'User_Account_Control_Only_elevate_executables_that_are_signed_and_validated' - } + } - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } + } - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } + } - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } + } - SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_access_of_global_system_objects' - { + SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_access_of_global_system_objects' + { Audit_Audit_the_access_of_global_system_objects = 'Disabled' Name = 'Audit_Audit_the_access_of_global_system_objects' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } + } - SecurityOption 'SecurityRegistry(INF): Devices_Prevent_users_from_installing_printer_drivers' - { + SecurityOption 'SecurityRegistry(INF): Devices_Prevent_users_from_installing_printer_drivers' + { Devices_Prevent_users_from_installing_printer_drivers = 'Enabled' Name = 'Devices_Prevent_users_from_installing_printer_drivers' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation' + { User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation = 'Enabled' Name = 'User_Account_Control_Switch_to_the_secure_desktop_when_prompting_for_elevation' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } + } - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { Domain_member_Disable_machine_account_password_changes = 'Disabled' Name = 'Domain_member_Disable_machine_account_password_changes' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } + } - SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_use_of_Backup_and_Restore_privilege' - { + SecurityOption 'SecurityRegistry(INF): Audit_Audit_the_use_of_Backup_and_Restore_privilege' + { Audit_Audit_the_use_of_Backup_and_Restore_privilege = 'Disabled' Name = 'Audit_Audit_the_use_of_Backup_and_Restore_privilege' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session' + { Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session = '15' Name = 'Microsoft_network_server_Amount_of_idle_time_required_before_suspending_session' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Sharing_and_security_model_for_local_accounts' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Sharing_and_security_model_for_local_accounts' + { Network_access_Sharing_and_security_model_for_local_accounts = 'Classic - Local users authenticate as themselves' Name = 'Network_access_Sharing_and_security_model_for_local_accounts' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { Interactive_logon_Machine_inactivity_limit = '900' Name = 'Interactive_logon_Machine_inactivity_limit' - } + } - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Server_SPN_target_name_validation_level' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Server_SPN_target_name_validation_level' + { Microsoft_network_server_Server_SPN_target_name_validation_level = 'Off' Name = 'Microsoft_network_server_Server_SPN_target_name_validation_level' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } + } - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Named_Pipes_that_can_be_accessed_anonymously' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Named_Pipes_that_can_be_accessed_anonymously' + { Network_access_Named_Pipes_that_can_be_accessed_anonymously = 'String' Name = 'Network_access_Named_Pipes_that_can_be_accessed_anonymously' - } + } - SecurityOption 'SecurityRegistry(INF): System_objects_Require_case_insensitivity_for_non_Windows_subsystems' - { + SecurityOption 'SecurityRegistry(INF): System_objects_Require_case_insensitivity_for_non_Windows_subsystems' + { System_objects_Require_case_insensitivity_for_non_Windows_subsystems = 'Enabled' Name = 'System_objects_Require_case_insensitivity_for_non_Windows_subsystems' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } + } - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } + } - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } + } - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Remotely_accessible_registry_paths' + { Network_access_Remotely_accessible_registry_paths = 'System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion' Name = 'Network_access_Remotely_accessible_registry_paths' - } + } - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } + } - Service 'Services(INF): SCPolicySvc' - { + Service 'Services(INF): SCPolicySvc' + { State = 'Running' Name = 'SCPolicySvc' - } + } -<# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { PasswordHistorySize = 24 Name = 'PasswordHistorySize' - } + } - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { Name = 'LockoutDuration' LockoutDuration = 15 - } + } - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { Name = 'LockoutBadCount' LockoutBadCount = 3 - } + } - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { Name = 'MinimumPasswordAge' MinimumPasswordAge = 1 - } + } - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { NewGuestName = 'Visitor' Name = 'NewGuestName' - } + } - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { ResetLockoutCount = 15 Name = 'ResetLockoutCount' - } + } - SecuritySetting 'SecuritySetting(INF): ForceLogoffWhenHourExpire' - { + SecuritySetting 'SecuritySetting(INF): ForceLogoffWhenHourExpire' + { Name = 'ForceLogoffWhenHourExpire' ForceLogoffWhenHourExpire = 1 - } + } - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { EnableGuestAccount = 0 Name = 'EnableGuestAccount' - } + } - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { MaximumPasswordAge = 60 Name = 'MaximumPasswordAge' - } + } - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { Name = 'MinimumPasswordLength' MinimumPasswordLength = 14 - } + } - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { PasswordComplexity = 1 Name = 'PasswordComplexity' - } + } - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { ClearTextPassword = 0 Name = 'ClearTextPassword' - } + } - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { NewAdministratorName = 'X_Admin' Name = 'NewAdministratorName' - } + } - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { LSAAnonymousNameLookup = 0 Name = 'LSAAnonymousNameLookup' - } #> + } #> - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { Identity = @('') Policy = 'Create_permanent_shared_objects' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { Identity = @('*S-1-5-32-544') Policy = 'Load_and_unload_device_drivers' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') Policy = 'Create_global_objects' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { Identity = @('*S-1-5-32-544') Policy = 'Increase_scheduling_priority' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { Identity = @('') Policy = 'Lock_pages_in_memory' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { Identity = @('*S-1-5-19', '*S-1-5-20') Policy = 'Generate_security_audits' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { Identity = @('') Policy = 'Act_as_part_of_the_operating_system' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { Identity = @('*S-1-5-32-544') Policy = 'Perform_volume_maintenance_tasks' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') Policy = 'Deny_log_on_through_Remote_Desktop_Services' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { Identity = @('*S-1-5-32-544') Policy = 'Restore_files_and_directories' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') Policy = 'Deny_log_on_locally' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { Identity = @('') Policy = 'Access_Credential_Manager_as_a_trusted_caller' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') Policy = 'Deny_log_on_as_a_batch_job' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') Policy = 'Deny_access_to_this_computer_from_the_network' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') Policy = 'Impersonate_a_client_after_authentication' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) Policy = 'Deny_log_on_as_a_service' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { Identity = @('*S-1-5-32-544') Policy = 'Debug_programs' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { Identity = @('*S-1-5-32-544') Policy = 'Modify_firmware_environment_values' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { Identity = @('*S-1-5-32-544', '*S-1-5-11') Policy = 'Access_this_computer_from_the_network' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { Identity = @('*S-1-5-32-544') Policy = 'Profile_single_process' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { Identity = @('*S-1-5-32-544') Policy = 'Create_a_pagefile' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { Identity = @('*S-1-5-32-544') Policy = 'Manage_auditing_and_security_log' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { Identity = @('*S-1-5-32-544') Policy = 'Force_shutdown_from_a_remote_system' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' - { + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' + { Identity = @('*S-1-5-32-544') Policy = 'Allow_log_on_through_Remote_Desktop_Services' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { Identity = @('*S-1-5-32-544') Policy = 'Take_ownership_of_files_or_other_objects' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { Identity = @('') Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { Identity = @('*S-1-5-32-544') Policy = 'Allow_log_on_locally' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { Identity = @('') Policy = 'Create_a_token_object' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { Identity = @('*S-1-5-32-544') Policy = 'Create_symbolic_links' Force = $True - } + } - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { Identity = @('*S-1-5-32-544') Policy = 'Back_up_files_and_directories' Force = $True - } + } - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - - + } } diff --git a/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.psd1 b/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.psd1 index fe45fd5..7c35c37 100644 --- a/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.psd1 +++ b/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.schema.psm1 b/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.schema.psm1 index 82492b4..24f0bd2 100644 --- a/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.schema.psm1 +++ b/DSCResources/DoD_WinSvr_2016_MS_and_DC_v2r7/DoD_WinSvr_2016_MS_and_DC_v2r7.schema.psm1 @@ -1,2765 +1,2760 @@ -configuration DoD_WinSvr_2016_MS_and_DC_v2r7 +configuration 'DoD_WinSvr_2016_MS_and_DC_v2r7' { - Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - param + param ( - [Parameter(Mandatory = $false)] - [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, - [Parameter(Mandatory = $false)] - [System.String]$ADD_YOUR_DOMAIN_ADMINS + [Parameter(Mandatory = $false)] + [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, + [Parameter(Mandatory = $false)] + [System.String]$ADD_YOUR_DOMAIN_ADMINS ) RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { - ValueName = 'LocalAccountTokenFilterPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 196608 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' - { - ValueName = 'EnumerateLocalUsers' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' - { - ValueName = 'RestrictRemoteClients' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Rpc' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { - ValueName = 'LocalAccountTokenFilterPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 196608 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' - { - ValueName = 'EnumerateLocalUsers' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' - { - ValueName = 'NoReadingPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' - { - ValueName = 'NoPreviewPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' - { - ValueName = 'NoPreviewPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' - { - ValueName = 'NoReadingPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } #> - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Computer Account Management' - } - - AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Computer Account Management' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Directory Service Access' - } - - AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Directory Service Access' - } - - AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Directory Service Changes' - } - - AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Directory Service Changes' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - -<# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } #> - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { - Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' - Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { - Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { - System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' - Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - { - Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = @( - MSFT_RestrictedRemoteSamSecurityDescriptor - { - Permission = 'Allow' - Identity = 'Administrators' - } - ) - Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { - Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { - Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' - Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { - User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' - Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { - Identity = @('*S-1-5-19', '*S-1-5-20') - Policy = 'Generate_security_audits' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @($ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-11', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { - Identity = @('*S-1-5-32-544') - Policy = 'Increase_scheduling_priority' - Force = $True - } - - <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { - PasswordHistorySize = 24 - Name = 'PasswordHistorySize' - } - - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { - Name = 'LockoutDuration' - LockoutDuration = 15 - } - - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { - Name = 'LockoutBadCount' - LockoutBadCount = 3 - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { - Name = 'MinimumPasswordAge' - MinimumPasswordAge = 1 - } - - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { - NewGuestName = 'Visitor' - Name = 'NewGuestName' - } - - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { - ResetLockoutCount = 15 - Name = 'ResetLockoutCount' - } - - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { - LSAAnonymousNameLookup = 0 - Name = 'LSAAnonymousNameLookup' - } - - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { - EnableGuestAccount = 0 - Name = 'EnableGuestAccount' - } - - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { - MaximumPasswordAge = 60 - Name = 'MaximumPasswordAge' - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { - Name = 'MinimumPasswordLength' - MinimumPasswordLength = 14 - } - - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { - PasswordComplexity = 1 - Name = 'PasswordComplexity' - } - - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { - ClearTextPassword = 0 - Name = 'ClearTextPassword' - } - - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { - NewAdministratorName = 'X_Admin' - Name = 'NewAdministratorName' - } - #> - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - -<# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } #> - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { - Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' - Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { - Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' - { - Domain_controller_Refuse_machine_account_password_changes = 'Disabled' - Name = 'Domain_controller_Refuse_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { - System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' - Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { - Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' - { - Domain_controller_LDAP_server_signing_requirements = 'Require Signing' - Name = 'Domain_controller_LDAP_server_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { - Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' - Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { - User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' - Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { - Identity = @('*S-1-5-19', '*S-1-5-20') - Policy = 'Generate_security_audits' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @('') - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('*S-1-5-32-544') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' - { - Identity = @('*S-1-5-32-544') - Policy = 'Add_workstations_to_domain' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { - Identity = @('*S-1-5-32-544') - Policy = 'Increase_scheduling_priority' - Force = $True - } - - A - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } - + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { + ValueName = 'LocalAccountTokenFilterPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 196608 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' + { + ValueName = 'EnumerateLocalUsers' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' + { + ValueName = 'RestrictRemoteClients' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Rpc' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { + ValueName = 'LocalAccountTokenFilterPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 196608 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' + { + ValueName = 'EnumerateLocalUsers' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + + <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' + { + ValueName = 'NoReadingPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' + { + ValueName = 'NoPreviewPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' + { + ValueName = 'NoPreviewPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' + { + ValueName = 'NoReadingPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } #> + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Computer Account Management' + } + + AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Computer Account Management' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Directory Service Access' + } + + AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Directory Service Access' + } + + AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Directory Service Changes' + } + + AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Directory Service Changes' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + <# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } #> + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { + Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' + Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { + Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { + System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' + Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + { + Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = @( + MSFT_RestrictedRemoteSamSecurityDescriptor + { + Permission = 'Allow' + Identity = 'Administrators' + } + ) + Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { + Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { + Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' + Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { + User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' + Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { + Identity = @('*S-1-5-19', '*S-1-5-20') + Policy = 'Generate_security_audits' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @($ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-11', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { + Identity = @('*S-1-5-32-544') + Policy = 'Increase_scheduling_priority' + Force = $True + } + + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { + PasswordHistorySize = 24 + Name = 'PasswordHistorySize' + } + + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { + Name = 'LockoutDuration' + LockoutDuration = 15 + } + + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { + Name = 'LockoutBadCount' + LockoutBadCount = 3 + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { + Name = 'MinimumPasswordAge' + MinimumPasswordAge = 1 + } + + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { + NewGuestName = 'Visitor' + Name = 'NewGuestName' + } + + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { + ResetLockoutCount = 15 + Name = 'ResetLockoutCount' + } + + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { + LSAAnonymousNameLookup = 0 + Name = 'LSAAnonymousNameLookup' + } + + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { + EnableGuestAccount = 0 + Name = 'EnableGuestAccount' + } + + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { + MaximumPasswordAge = 60 + Name = 'MaximumPasswordAge' + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { + Name = 'MinimumPasswordLength' + MinimumPasswordLength = 14 + } + + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { + PasswordComplexity = 1 + Name = 'PasswordComplexity' + } + + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { + ClearTextPassword = 0 + Name = 'ClearTextPassword' + } + + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { + NewAdministratorName = 'X_Admin' + Name = 'NewAdministratorName' + } + #> + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + <# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } #> + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { + Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' + Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { + Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' + { + Domain_controller_Refuse_machine_account_password_changes = 'Disabled' + Name = 'Domain_controller_Refuse_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { + System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' + Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { + Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' + { + Domain_controller_LDAP_server_signing_requirements = 'Require Signing' + Name = 'Domain_controller_LDAP_server_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { + Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' + Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { + User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' + Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { + Identity = @('*S-1-5-19', '*S-1-5-20') + Policy = 'Generate_security_audits' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @('') + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('*S-1-5-32-544') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' + { + Identity = @('*S-1-5-32-544') + Policy = 'Add_workstations_to_domain' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { + Identity = @('*S-1-5-32-544') + Policy = 'Increase_scheduling_priority' + Force = $True + } + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_WinSvr_2019_MS_and_DC_v2r8/DoD_WinSvr_2019_MS_and_DC_v2r8.schema.psm1 b/DSCResources/DoD_WinSvr_2019_MS_and_DC_v2r8/DoD_WinSvr_2019_MS_and_DC_v2r8.schema.psm1 index d06ee56..b477859 100644 --- a/DSCResources/DoD_WinSvr_2019_MS_and_DC_v2r8/DoD_WinSvr_2019_MS_and_DC_v2r8.schema.psm1 +++ b/DSCResources/DoD_WinSvr_2019_MS_and_DC_v2r8/DoD_WinSvr_2019_MS_and_DC_v2r8.schema.psm1 @@ -1,2910 +1,2908 @@ -configuration DoD_WinSvr_2019_MS_and_DC_v2r8 +configuration 'DoD_WinSvr_2019_MS_and_DC_v2r8' { - Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - param + param ( - [Parameter(Mandatory = $false)] - [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, - [Parameter(Mandatory = $false)] - [System.String]$ADD_YOUR_DOMAIN_ADMINS + [Parameter(Mandatory = $false)] + [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, + [Parameter(Mandatory = $false)] + [System.String]$ADD_YOUR_DOMAIN_ADMINS ) - <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' - { - ValueName = 'NoPreviewPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' - { - ValueName = 'NoReadingPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } #> - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' - { - ValueName = 'AllowProtectedCreds' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\CredentialsDelegation' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' - { - ValueName = 'DODownloadMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeliveryOptimization' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' - { - ValueName = 'HVCIMATRequired' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' - { - ValueName = 'ConfigureSystemGuardLaunch' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 196608 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' - { - ValueName = 'NoReadingPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' - { - ValueName = 'NoPreviewPane' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } #> - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordComplexity' - { - ValueName = 'PasswordComplexity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordLength' - { - ValueName = 'PasswordLength' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 14 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordAgeDays' - { - ValueName = 'PasswordAgeDays' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 60 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { - ValueName = 'LocalAccountTokenFilterPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' - { - ValueName = 'AllowProtectedCreds' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\CredentialsDelegation' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' - { - ValueName = 'DODownloadMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeliveryOptimization' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' - { - ValueName = 'HVCIMATRequired' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' - { - ValueName = 'ConfigureSystemGuardLaunch' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 196608 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' - { - ValueName = 'EnumerateLocalUsers' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' - { - ValueName = 'RestrictRemoteClients' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Rpc' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Computer Account Management' - } - - AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Computer Account Management' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Directory Service Access' - } - - AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Directory Service Access' - } - - AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Directory Service Changes' - } - - AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Directory Service Changes' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { - User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' - Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } - - SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' - { - Domain_controller_LDAP_server_signing_requirements = 'Require Signing' - Name = 'Domain_controller_LDAP_server_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { - Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' - Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { - System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' - Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { - Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' - { - Domain_controller_Refuse_machine_account_password_changes = 'Disabled' - Name = 'Domain_controller_Refuse_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { - Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { - Identity = @('*S-1-5-19', '*S-1-5-20') - Policy = 'Generate_security_audits' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @('') - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('*S-1-5-32-544') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' - { - Identity = @('*S-1-5-32-544') - Policy = 'Add_workstations_to_domain' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { - Identity = @('*S-1-5-32-544') - Policy = 'Increase_scheduling_priority' - Force = $True - } - - <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { - PasswordHistorySize = 24 - Name = 'PasswordHistorySize' - } - - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { - Name = 'LockoutDuration' - LockoutDuration = 15 - } - - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { - Name = 'LockoutBadCount' - LockoutBadCount = 3 - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { - Name = 'MinimumPasswordAge' - MinimumPasswordAge = 1 - } - - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { - NewGuestName = 'Visitor' - Name = 'NewGuestName' - } - - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { - ResetLockoutCount = 15 - Name = 'ResetLockoutCount' - } - - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { - LSAAnonymousNameLookup = 0 - Name = 'LSAAnonymousNameLookup' - } - - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { - EnableGuestAccount = 0 - Name = 'EnableGuestAccount' - } - - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { - MaximumPasswordAge = 60 - Name = 'MaximumPasswordAge' - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { - Name = 'MinimumPasswordLength' - MinimumPasswordLength = 14 - } - - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { - PasswordComplexity = 1 - Name = 'PasswordComplexity' - } - - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { - ClearTextPassword = 0 - Name = 'ClearTextPassword' - } - - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { - NewAdministratorName = 'X_Admin' - Name = 'NewAdministratorName' - } - #> - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { - User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' - Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { - Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' - Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { - System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' - Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - { - Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = 'O:BAG:BAD:(A;;RC;;;BA)' - Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { - Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { - Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { - Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' - Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { - Identity = @('*S-1-5-19', '*S-1-5-20') - Policy = 'Generate_security_audits' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @($ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-11', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { - Identity = @('*S-1-5-32-544') - Policy = 'Increase_scheduling_priority' - Force = $True - } + <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' + { + ValueName = 'NoPreviewPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' + { + ValueName = 'NoReadingPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } #> + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' + { + ValueName = 'AllowProtectedCreds' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\CredentialsDelegation' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' + { + ValueName = 'DODownloadMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeliveryOptimization' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' + { + ValueName = 'HVCIMATRequired' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' + { + ValueName = 'ConfigureSystemGuardLaunch' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 196608 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + + <# RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoReadingPane' + { + ValueName = 'NoReadingPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoPreviewPane' + { + ValueName = 'NoPreviewPane' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } #> + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordComplexity' + { + ValueName = 'PasswordComplexity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordLength' + { + ValueName = 'PasswordLength' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 14 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordAgeDays' + { + ValueName = 'PasswordAgeDays' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 60 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { + ValueName = 'LocalAccountTokenFilterPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' + { + ValueName = 'AllowProtectedCreds' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\CredentialsDelegation' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' + { + ValueName = 'DODownloadMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeliveryOptimization' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' + { + ValueName = 'HVCIMATRequired' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' + { + ValueName = 'ConfigureSystemGuardLaunch' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 196608 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1,RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' + { + ValueName = 'EnumerateLocalUsers' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' + { + ValueName = 'RestrictRemoteClients' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Rpc' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\System\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'System\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Computer Account Management' + } + + AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Computer Account Management' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Directory Service Access' + } + + AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Directory Service Access' + } + + AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Directory Service Changes' + } + + AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Directory Service Changes' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { + User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' + Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + } + + SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' + { + Domain_controller_LDAP_server_signing_requirements = 'Require Signing' + Name = 'Domain_controller_LDAP_server_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { + Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' + Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { + System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' + Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { + Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' + { + Domain_controller_Refuse_machine_account_password_changes = 'Disabled' + Name = 'Domain_controller_Refuse_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { + Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { + Identity = @('*S-1-5-19', '*S-1-5-20') + Policy = 'Generate_security_audits' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @('') + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('*S-1-5-32-544') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' + { + Identity = @('*S-1-5-32-544') + Policy = 'Add_workstations_to_domain' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { + Identity = @('*S-1-5-32-544') + Policy = 'Increase_scheduling_priority' + Force = $True + } + + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { + PasswordHistorySize = 24 + Name = 'PasswordHistorySize' + } + + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { + Name = 'LockoutDuration' + LockoutDuration = 15 + } + + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { + Name = 'LockoutBadCount' + LockoutBadCount = 3 + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { + Name = 'MinimumPasswordAge' + MinimumPasswordAge = 1 + } + + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { + NewGuestName = 'Visitor' + Name = 'NewGuestName' + } + + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { + ResetLockoutCount = 15 + Name = 'ResetLockoutCount' + } + + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { + LSAAnonymousNameLookup = 0 + Name = 'LSAAnonymousNameLookup' + } + + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { + EnableGuestAccount = 0 + Name = 'EnableGuestAccount' + } + + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { + MaximumPasswordAge = 60 + Name = 'MaximumPasswordAge' + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { + Name = 'MinimumPasswordLength' + MinimumPasswordLength = 14 + } + + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { + PasswordComplexity = 1 + Name = 'PasswordComplexity' + } + + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { + ClearTextPassword = 0 + Name = 'ClearTextPassword' + } + + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { + NewAdministratorName = 'X_Admin' + Name = 'NewAdministratorName' + } + #> + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { + User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' + Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { + Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' + Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { + System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' + Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + { + Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = 'O:BAG:BAD:(A;;RC;;;BA)' + Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { + Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { + Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { + Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' + Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { + Identity = @('*S-1-5-19', '*S-1-5-20') + Policy = 'Generate_security_audits' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @('*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @('*S-1-5-113', '*S-1-5-32-546', $ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @($ADD_YOUR_ENTERPRISE_ADMINS, $ADD_YOUR_DOMAIN_ADMINS) + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-11', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { + Identity = @('*S-1-5-32-544') + Policy = 'Increase_scheduling_priority' + Force = $True + } <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { - PasswordHistorySize = 24 - Name = 'PasswordHistorySize' - } - - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { - Name = 'LockoutDuration' - LockoutDuration = 15 - } - - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { - Name = 'LockoutBadCount' - LockoutBadCount = 3 - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { - Name = 'MinimumPasswordAge' - MinimumPasswordAge = 1 - } - - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { - NewGuestName = 'Visitor' - Name = 'NewGuestName' - } - - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { - ResetLockoutCount = 15 - Name = 'ResetLockoutCount' - } - - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { - LSAAnonymousNameLookup = 0 - Name = 'LSAAnonymousNameLookup' - } - - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { - EnableGuestAccount = 0 - Name = 'EnableGuestAccount' - } - - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { - MaximumPasswordAge = 60 - Name = 'MaximumPasswordAge' - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { - Name = 'MinimumPasswordLength' - MinimumPasswordLength = 14 - } - - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { - PasswordComplexity = 1 - Name = 'PasswordComplexity' - } - - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { - ClearTextPassword = 0 - Name = 'ClearTextPassword' - } - - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { - NewAdministratorName = 'X_Admin' - Name = 'NewAdministratorName' - } - #> - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } - + { + PasswordHistorySize = 24 + Name = 'PasswordHistorySize' + } + + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { + Name = 'LockoutDuration' + LockoutDuration = 15 + } + + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { + Name = 'LockoutBadCount' + LockoutBadCount = 3 + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { + Name = 'MinimumPasswordAge' + MinimumPasswordAge = 1 + } + + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { + NewGuestName = 'Visitor' + Name = 'NewGuestName' + } + + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { + ResetLockoutCount = 15 + Name = 'ResetLockoutCount' + } + + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { + LSAAnonymousNameLookup = 0 + Name = 'LSAAnonymousNameLookup' + } + + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { + EnableGuestAccount = 0 + Name = 'EnableGuestAccount' + } + + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { + MaximumPasswordAge = 60 + Name = 'MaximumPasswordAge' + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { + Name = 'MinimumPasswordLength' + MinimumPasswordLength = 14 + } + + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { + PasswordComplexity = 1 + Name = 'PasswordComplexity' + } + + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { + ClearTextPassword = 0 + Name = 'ClearTextPassword' + } + + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { + NewAdministratorName = 'X_Admin' + Name = 'NewAdministratorName' + } + #> + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.psd1 b/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.psd1 index 4f04fd0..bc042c8 100644 --- a/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.psd1 +++ b/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.schema.psm1 b/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.schema.psm1 index 83394c5..7d505f4 100644 --- a/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.schema.psm1 +++ b/DSCResources/DoD_WinSvr_2022_MS_and_DC_v1r4/DoD_WinSvr_2022_MS_and_DC_v1r4.schema.psm1 @@ -1,3057 +1,3056 @@ -configuration DoD_WinSvr_2022_MS_and_DC_v1r4 +configuration 'DoD_WinSvr_2022_MS_and_DC_v1r4' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - param + param ( - [Parameter(Mandatory = $false)] - [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, - [Parameter(Mandatory = $false)] - [System.String]$ADD_YOUR_DOMAIN_ADMINS + [Parameter(Mandatory = $false)] + [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, + [Parameter(Mandatory = $false)] + [System.String]$ADD_YOUR_DOMAIN_ADMINS ) - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' - { - ValueName = 'PreXPSP2ShellProtocolBehavior' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordComplexity' - { - ValueName = 'PasswordComplexity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordLength' - { - ValueName = 'PasswordLength' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 14 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordAgeDays' - { - ValueName = 'PasswordAgeDays' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 60 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { - ValueName = 'LocalAccountTokenFilterPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' - { - ValueName = 'AllowBasicAuthInClear' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' - { - ValueName = 'AllowProtectedCreds' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' - { - ValueName = 'DODownloadMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' - { - ValueName = 'HVCIMATRequired' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' - { - ValueName = 'ConfigureSystemGuardLaunch' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 196608 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' - { - ValueName = 'NoDataExecutionPrevention' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' - { - ValueName = 'NoHeapTerminationOnCorruption' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\SafeForScripting' - { - ValueName = 'SafeForScripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\ShellSmartScreenLevel' - { - ValueName = 'ShellSmartScreenLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 'Block' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' - { - ValueName = 'EnumerateLocalUsers' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' - { - ValueName = 'RestrictRemoteClients' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Rpc' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' - { - ValueName = 'DriverLoadPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' - { - ValueName = 'PreXPSP2ShellProtocolBehavior' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { - ValueName = 'LocalAccountTokenFilterPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' - { - ValueName = 'AllowBasicAuthInClear' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' - { - ValueName = 'AllowProtectedCreds' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' - { - ValueName = 'DODownloadMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' - { - ValueName = 'HVCIMATRequired' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' - { - ValueName = 'ConfigureSystemGuardLaunch' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 196608 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' - { - ValueName = 'NoDataExecutionPrevention' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' - { - ValueName = 'NoHeapTerminationOnCorruption' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\SafeForScripting' - { - ValueName = 'SafeForScripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\ShellSmartScreenLevel' - { - ValueName = 'ShellSmartScreenLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 'Block' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' - { - ValueName = 'EnumerateLocalUsers' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' - { - ValueName = 'DriverLoadPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Computer Account Management' - } - - AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Computer Account Management' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Other Account Management Events' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Directory Service Access' - } - - AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Directory Service Access' - } - - AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Directory Service Changes' - } - - AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Directory Service Changes' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { - Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' - Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { - Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { - System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' - Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - { - Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = @( - MSFT_RestrictedRemoteSamSecurityDescriptor - { - Permission = 'Allow' - Identity = 'Administrators' - } - ) - Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { - Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { - Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' - Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { - User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' - Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { - Identity = @('*S-1-5-20', '*S-1-5-19') - Policy = 'Generate_security_audits' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-114') - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-11', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { - Identity = @('*S-1-5-32-544') - Policy = 'Increase_scheduling_priority' - Force = $True - } - - <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { - PasswordHistorySize = 24 - Name = 'PasswordHistorySize' - } - - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { - Name = 'LockoutDuration' - LockoutDuration = 15 - } - - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { - Name = 'LockoutBadCount' - LockoutBadCount = 3 - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { - Name = 'MinimumPasswordAge' - MinimumPasswordAge = 1 - } - - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { - NewGuestName = 'Visitor' - Name = 'NewGuestName' - } - - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { - ResetLockoutCount = 15 - Name = 'ResetLockoutCount' - } - - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { - LSAAnonymousNameLookup = 0 - Name = 'LSAAnonymousNameLookup' - } - - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { - EnableGuestAccount = 0 - Name = 'EnableGuestAccount' - } - - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { - MaximumPasswordAge = 60 - Name = 'MaximumPasswordAge' - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { - Name = 'MinimumPasswordLength' - MinimumPasswordLength = 14 - } - - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { - PasswordComplexity = 1 - Name = 'PasswordComplexity' - } - - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { - ClearTextPassword = 0 - Name = 'ClearTextPassword' - } - - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { - NewAdministratorName = 'X_Admin' - Name = 'NewAdministratorName' - } #> - - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - { - Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' - Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - { - Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' - { - Domain_controller_Refuse_machine_account_password_changes = 'Disabled' - Name = 'Domain_controller_Refuse_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - { - System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' - Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - { - Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = 'O:BAG:BAD:(A;;RC;;;BA)' - Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - { - Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' - { - Domain_controller_LDAP_server_signing_requirements = 'Require Signing' - Name = 'Domain_controller_LDAP_server_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { - Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' - Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - { - User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' - Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - <# SecuritySetting 'SecuritySetting(INF): TicketValidateClient' - { - TicketValidateClient = 1 - Name = 'TicketValidateClient' - } - - SecuritySetting 'SecuritySetting(INF): MaxRenewAge' - { - MaxRenewAge = 8 - Name = 'MaxRenewAge' - } - - SecuritySetting 'SecuritySetting(INF): MaxServiceAge' - { - Name = 'MaxServiceAge' - MaxServiceAge = -1 - } - - SecuritySetting 'SecuritySetting(INF): MaxTicketAge' - { - Name = 'MaxTicketAge' - MaxTicketAge = -1 - } - - SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { - PasswordHistorySize = 24 - Name = 'PasswordHistorySize' - } - - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { - Name = 'LockoutDuration' - LockoutDuration = 15 - } - - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { - Name = 'LockoutBadCount' - LockoutBadCount = 3 - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { - Name = 'MinimumPasswordAge' - MinimumPasswordAge = 1 - } - - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { - NewGuestName = 'Visitor' - Name = 'NewGuestName' - } - - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { - ResetLockoutCount = 15 - Name = 'ResetLockoutCount' - } - - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { - LSAAnonymousNameLookup = 0 - Name = 'LSAAnonymousNameLookup' - } - - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { - EnableGuestAccount = 0 - Name = 'EnableGuestAccount' - } - - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { - MaximumPasswordAge = 60 - Name = 'MaximumPasswordAge' - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { - Name = 'MinimumPasswordLength' - MinimumPasswordLength = 14 - } - - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { - PasswordComplexity = 1 - Name = 'PasswordComplexity' - } - - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { - ClearTextPassword = 0 - Name = 'ClearTextPassword' - } - - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { - NewAdministratorName = 'X_Admin' - Name = 'NewAdministratorName' - } #> - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' - { - Identity = @('*S-1-5-19', '*S-1-5-20') - Policy = 'Generate_security_audits' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @('*S-1-5-32-546') - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @('') - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('*S-1-5-32-544') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' - { - Identity = @('*S-1-5-32-544') - Policy = 'Add_workstations_to_domain' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' - { - Identity = @('*S-1-5-32-544') - Policy = 'Increase_scheduling_priority' - Force = $True - } - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } - + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' + { + ValueName = 'PreXPSP2ShellProtocolBehavior' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordComplexity' + { + ValueName = 'PasswordComplexity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordLength' + { + ValueName = 'PasswordLength' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 14 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordAgeDays' + { + ValueName = 'PasswordAgeDays' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 60 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { + ValueName = 'LocalAccountTokenFilterPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' + { + ValueName = 'AllowBasicAuthInClear' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' + { + ValueName = 'AllowProtectedCreds' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' + { + ValueName = 'DODownloadMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' + { + ValueName = 'HVCIMATRequired' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' + { + ValueName = 'ConfigureSystemGuardLaunch' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 196608 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' + { + ValueName = 'NoDataExecutionPrevention' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' + { + ValueName = 'NoHeapTerminationOnCorruption' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\SafeForScripting' + { + ValueName = 'SafeForScripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\ShellSmartScreenLevel' + { + ValueName = 'ShellSmartScreenLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 'Block' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' + { + ValueName = 'EnumerateLocalUsers' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' + { + ValueName = 'RestrictRemoteClients' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Rpc' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' + { + ValueName = 'DriverLoadPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' + { + ValueName = 'PreXPSP2ShellProtocolBehavior' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { + ValueName = 'LocalAccountTokenFilterPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' + { + ValueName = 'AllowBasicAuthInClear' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' + { + ValueName = 'AllowProtectedCreds' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\CredentialsDelegation' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' + { + ValueName = 'DODownloadMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeliveryOptimization' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' + { + ValueName = 'HVCIMATRequired' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' + { + ValueName = 'ConfigureSystemGuardLaunch' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 196608 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' + { + ValueName = 'NoDataExecutionPrevention' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' + { + ValueName = 'NoHeapTerminationOnCorruption' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Installer\SafeForScripting' + { + ValueName = 'SafeForScripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\Software\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\ShellSmartScreenLevel' + { + ValueName = 'ShellSmartScreenLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 'Block' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\System\EnumerateLocalUsers' + { + ValueName = 'EnumerateLocalUsers' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\Software\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' + { + ValueName = 'DriverLoadPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Computer Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Computer Account Management' + } + + AuditPolicySubcategory 'Audit Computer Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Computer Account Management' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Other Account Management Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Other Account Management Events' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Directory Service Access (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Directory Service Access' + } + + AuditPolicySubcategory 'Audit Directory Service Access (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Directory Service Access' + } + + AuditPolicySubcategory 'Audit Directory Service Changes (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Directory Service Changes' + } + + AuditPolicySubcategory 'Audit Directory Service Changes (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Directory Service Changes' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { + Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' + Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { + Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { + System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' + Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + { + Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = @( + MSFT_RestrictedRemoteSamSecurityDescriptor + { + Permission = 'Allow' + Identity = 'Administrators' + } + ) + Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { + Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { + Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' + Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { + User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' + Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { + Identity = @('*S-1-5-20', '*S-1-5-19') + Policy = 'Generate_security_audits' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-114') + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-11', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { + Identity = @('*S-1-5-32-544') + Policy = 'Increase_scheduling_priority' + Force = $True + } + + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { + PasswordHistorySize = 24 + Name = 'PasswordHistorySize' + } + + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { + Name = 'LockoutDuration' + LockoutDuration = 15 + } + + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { + Name = 'LockoutBadCount' + LockoutBadCount = 3 + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { + Name = 'MinimumPasswordAge' + MinimumPasswordAge = 1 + } + + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { + NewGuestName = 'Visitor' + Name = 'NewGuestName' + } + + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { + ResetLockoutCount = 15 + Name = 'ResetLockoutCount' + } + + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { + LSAAnonymousNameLookup = 0 + Name = 'LSAAnonymousNameLookup' + } + + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { + EnableGuestAccount = 0 + Name = 'EnableGuestAccount' + } + + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { + MaximumPasswordAge = 60 + Name = 'MaximumPasswordAge' + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { + Name = 'MinimumPasswordLength' + MinimumPasswordLength = 14 + } + + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { + PasswordComplexity = 1 + Name = 'PasswordComplexity' + } + + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { + ClearTextPassword = 0 + Name = 'ClearTextPassword' + } + + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { + NewAdministratorName = 'X_Admin' + Name = 'NewAdministratorName' + } #> + + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + { + Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM = 'Enabled' + Name = 'Network_security_Allow_Local_System_to_use_computer_identity_for_NTLM' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + { + Microsoft_network_client_Digitally_sign_communications_if_server_agrees = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_if_server_agrees' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): Domain_controller_Refuse_machine_account_password_changes' + { + Domain_controller_Refuse_machine_account_password_changes = 'Disabled' + Name = 'Domain_controller_Refuse_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + { + System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer = 'User must enter a password each time they use a key' + Name = 'System_cryptography_Force_strong_key_protection_for_user_keys_stored_on_the_computer' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + { + Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = 'O:BAG:BAD:(A;;RC;;;BA)' + Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + { + Microsoft_network_server_Digitally_sign_communications_if_client_agrees = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_if_client_agrees' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): Domain_controller_LDAP_server_signing_requirements' + { + Domain_controller_LDAP_server_signing_requirements = 'Require Signing' + Name = 'Domain_controller_LDAP_server_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { + Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '4' + Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + { + User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop = 'Disabled' + Name = 'User_Account_Control_Allow_UIAccess_applications_to_prompt_for_elevation_without_using_the_secure_desktop' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + <# SecuritySetting 'SecuritySetting(INF): TicketValidateClient' + { + TicketValidateClient = 1 + Name = 'TicketValidateClient' + } + + SecuritySetting 'SecuritySetting(INF): MaxRenewAge' + { + MaxRenewAge = 8 + Name = 'MaxRenewAge' + } + + SecuritySetting 'SecuritySetting(INF): MaxServiceAge' + { + Name = 'MaxServiceAge' + MaxServiceAge = -1 + } + + SecuritySetting 'SecuritySetting(INF): MaxTicketAge' + { + Name = 'MaxTicketAge' + MaxTicketAge = -1 + } + + SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { + PasswordHistorySize = 24 + Name = 'PasswordHistorySize' + } + + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { + Name = 'LockoutDuration' + LockoutDuration = 15 + } + + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { + Name = 'LockoutBadCount' + LockoutBadCount = 3 + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { + Name = 'MinimumPasswordAge' + MinimumPasswordAge = 1 + } + + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { + NewGuestName = 'Visitor' + Name = 'NewGuestName' + } + + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { + ResetLockoutCount = 15 + Name = 'ResetLockoutCount' + } + + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { + LSAAnonymousNameLookup = 0 + Name = 'LSAAnonymousNameLookup' + } + + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { + EnableGuestAccount = 0 + Name = 'EnableGuestAccount' + } + + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { + MaximumPasswordAge = 60 + Name = 'MaximumPasswordAge' + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { + Name = 'MinimumPasswordLength' + MinimumPasswordLength = 14 + } + + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { + PasswordComplexity = 1 + Name = 'PasswordComplexity' + } + + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { + ClearTextPassword = 0 + Name = 'ClearTextPassword' + } + + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { + NewAdministratorName = 'X_Admin' + Name = 'NewAdministratorName' + } #> + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Generate_security_audits' + { + Identity = @('*S-1-5-19', '*S-1-5-20') + Policy = 'Generate_security_audits' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @('*S-1-5-32-546') + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @('') + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-9', '*S-1-5-11', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('*S-1-5-32-544') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Add_workstations_to_domain' + { + Identity = @('*S-1-5-32-544') + Policy = 'Add_workstations_to_domain' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Increase_scheduling_priority' + { + Identity = @('*S-1-5-32-544') + Policy = 'Increase_scheduling_priority' + Force = $True + } + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.psd1 b/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.psd1 index 5ff807b..fcd82e3 100644 --- a/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.psd1 +++ b/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.schema.psm1 b/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.schema.psm1 index fbc9090..9f9a50f 100644 --- a/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.schema.psm1 +++ b/DSCResources/DoD_Windows_10_v2r8/DoD_Windows_10_v2r8.schema.psm1 @@ -1,11 +1,10 @@ -configuration DoD_Windows_10_v2r8 +configuration 'DoD_Windows_10_v2r8' { - Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - param + param ( [Parameter(Mandatory = $false)] [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, @@ -13,7 +12,7 @@ configuration DoD_Windows_10_v2r8 [System.String]$ADD_YOUR_DOMAIN_ADMINS ) - RegistryPolicyFile 'Registry(POL): HKLM:\Software\Classes\batfile\shell\runasuser\SuppressionPolicy' + RegistryPolicyFile 'Registry(POL): HKLM:\Software\Classes\batfile\shell\runasuser\SuppressionPolicy' { ValueName = 'SuppressionPolicy' TargetType = 'ComputerConfiguration' @@ -1478,7 +1477,7 @@ configuration DoD_Windows_10_v2r8 Name = 'Domain_member_Maximum_machine_account_password_age' } -<# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + <# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' { Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' @@ -1574,7 +1573,7 @@ configuration DoD_Windows_10_v2r8 Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' } -<# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + <# SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' { Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' @@ -1712,7 +1711,7 @@ configuration DoD_Windows_10_v2r8 Name = 'seclogon' } -<# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' { PasswordHistorySize = 24 Name = 'PasswordHistorySize' @@ -1995,5 +1994,4 @@ configuration DoD_Windows_10_v2r8 { IsSingleInstance = 'Yes' } - } diff --git a/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.psd1 b/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.psd1 index e1f5349..d38a254 100644 --- a/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.psd1 +++ b/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.schema.psm1 b/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.schema.psm1 index 9b59d2a..969767e 100644 --- a/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.schema.psm1 +++ b/DSCResources/DoD_Windows_11_v1r5/DoD_Windows_11_v1r5.schema.psm1 @@ -1,10 +1,10 @@ -configuration DoD_Windows_11_v1r5 +configuration 'DoD_Windows_11_v1r5' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - param + param ( [Parameter(Mandatory = $false)] [System.String]$ADD_YOUR_ENTERPRISE_ADMINS, @@ -12,1923 +12,1923 @@ configuration DoD_Windows_11_v1r5 [System.String]$ADD_YOUR_DOMAIN_ADMINS ) - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments\SaveZoneInformation' - { - ValueName = 'SaveZoneInformation' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent\DisableThirdPartySuggestions' - { - ValueName = 'DisableThirdPartySuggestions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotificationOnLockScreen' - { - ValueName = 'NoToastApplicationNotificationOnLockScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'HKCU:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\batfile\shell\runasuser\SuppressionPolicy' - { - ValueName = 'SuppressionPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Classes\batfile\shell\runasuser' - ValueData = 4096 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\cmdfile\shell\runasuser\SuppressionPolicy' - { - ValueName = 'SuppressionPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Classes\cmdfile\shell\runasuser' - ValueData = 4096 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\exefile\shell\runasuser\SuppressionPolicy' - { - ValueName = 'SuppressionPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Classes\exefile\shell\runasuser' - ValueData = 4096 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\mscfile\shell\runasuser\SuppressionPolicy' - { - ValueName = 'SuppressionPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Classes\mscfile\shell\runasuser' - ValueData = 4096 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\wcmsvc\wifinetworkmanager\config\AutoConnectAllowedOEM' - { - ValueName = 'AutoConnectAllowedOEM' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\wcmsvc\wifinetworkmanager\config' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' - { - ValueName = 'EnumerateAdministrators' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoStartBanner' - { - ValueName = 'NoStartBanner' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebServices' - { - ValueName = 'NoWebServices' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' - { - ValueName = 'NoAutorun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' - { - ValueName = 'NoDriveTypeAutoRun' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 255 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' - { - ValueName = 'PreXPSP2ShellProtocolBehavior' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordComplexity' - { - ValueName = 'PasswordComplexity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordLength' - { - ValueName = 'PasswordLength' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 14 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordAgeDays' - { - ValueName = 'PasswordAgeDays' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS' - ValueData = 60 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' - { - ValueName = 'LocalAccountTokenFilterPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\MSAOptional' - { - ValueName = 'MSAOptional' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' - { - ValueName = 'DisableAutomaticRestartSignOn' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' - { - ValueName = 'ProcessCreationIncludeCmdLine_Enabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters\DevicePKInitEnabled' - { - ValueName = 'DevicePKInitEnabled' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters\DevicePKInitBehavior' - { - ValueName = 'DevicePKInitBehavior' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Biometrics\FacialFeatures\EnhancedAntiSpoofing' - { - ValueName = 'EnhancedAntiSpoofing' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Biometrics\FacialFeatures' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Cryptography\Configuration\SSL\00010002\EccCurves' - { - ValueName = 'EccCurves' - TargetType = 'ComputerConfiguration' - ValueType = 'MultiString' - Key = 'SOFTWARE\Policies\Microsoft\Cryptography\Configuration\SSL\00010002' - ValueData = 'NistP384NistP256' + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments\SaveZoneInformation' + { + ValueName = 'SaveZoneInformation' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Attachments' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent\DisableThirdPartySuggestions' + { + ValueName = 'DisableThirdPartySuggestions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\SOFTWARE\Policies\Microsoft\Windows\CloudContent' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKCU:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotificationOnLockScreen' + { + ValueName = 'NoToastApplicationNotificationOnLockScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'HKCU:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\batfile\shell\runasuser\SuppressionPolicy' + { + ValueName = 'SuppressionPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Classes\batfile\shell\runasuser' + ValueData = 4096 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\cmdfile\shell\runasuser\SuppressionPolicy' + { + ValueName = 'SuppressionPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Classes\cmdfile\shell\runasuser' + ValueData = 4096 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\exefile\shell\runasuser\SuppressionPolicy' + { + ValueName = 'SuppressionPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Classes\exefile\shell\runasuser' + ValueData = 4096 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Classes\mscfile\shell\runasuser\SuppressionPolicy' + { + ValueName = 'SuppressionPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Classes\mscfile\shell\runasuser' + ValueData = 4096 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\wcmsvc\wifinetworkmanager\config\AutoConnectAllowedOEM' + { + ValueName = 'AutoConnectAllowedOEM' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\wcmsvc\wifinetworkmanager\config' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI\EnumerateAdministrators' + { + ValueName = 'EnumerateAdministrators' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\CredUI' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoStartBanner' + { + ValueName = 'NoStartBanner' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoWebServices' + { + ValueName = 'NoWebServices' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoAutorun' + { + ValueName = 'NoAutorun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDriveTypeAutoRun' + { + ValueName = 'NoDriveTypeAutoRun' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 255 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\PreXPSP2ShellProtocolBehavior' + { + ValueName = 'PreXPSP2ShellProtocolBehavior' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordComplexity' + { + ValueName = 'PasswordComplexity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordLength' + { + ValueName = 'PasswordLength' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 14 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS\PasswordAgeDays' + { + ValueName = 'PasswordAgeDays' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\LAPS' + ValueData = 60 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\LocalAccountTokenFilterPolicy' + { + ValueName = 'LocalAccountTokenFilterPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\MSAOptional' + { + ValueName = 'MSAOptional' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableAutomaticRestartSignOn' + { + ValueName = 'DisableAutomaticRestartSignOn' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit\ProcessCreationIncludeCmdLine_Enabled' + { + ValueName = 'ProcessCreationIncludeCmdLine_Enabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Audit' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters\DevicePKInitEnabled' + { + ValueName = 'DevicePKInitEnabled' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters\DevicePKInitBehavior' + { + ValueName = 'DevicePKInitBehavior' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Biometrics\FacialFeatures\EnhancedAntiSpoofing' + { + ValueName = 'EnhancedAntiSpoofing' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Biometrics\FacialFeatures' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Cryptography\Configuration\SSL\00010002\EccCurves' + { + ValueName = 'EccCurves' + TargetType = 'ComputerConfiguration' + ValueType = 'MultiString' + Key = 'SOFTWARE\Policies\Microsoft\Cryptography\Configuration\SSL\00010002' + ValueData = 'NistP384NistP256' } RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseAdvancedStartup' - { - ValueName = 'UseAdvancedStartup' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\EnableBDEWithNoTPM' - { - ValueName = 'EnableBDEWithNoTPM' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPM' - { - ValueName = 'UseTPM' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPMPIN' - { - ValueName = 'UseTPMPIN' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPMKey' - { - ValueName = 'UseTPMKey' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPMKeyPIN' - { - ValueName = 'UseTPMKeyPIN' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\MinimumPIN' - { - ValueName = 'MinimumPIN' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\FVE' - ValueData = 6 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' - { - ValueName = 'DisableEnclosureDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' - { - ValueName = 'AllowBasicAuthInClear' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Internet Explorer\Main\NotifyDisableIEOptions' - { - ValueName = 'NotifyDisableIEOptions' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Internet Explorer\Main' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\PassportForWork\RequireSecurityDevice' - { - ValueName = 'RequireSecurityDevice' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\PassportForWork' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\PassportForWork\ExcludeSecurityDevices\TPM12' - { - ValueName = 'TPM12' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\PassportForWork\ExcludeSecurityDevices' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\PassportForWork\PINComplexity\MinimumPINLength' - { - ValueName = 'MinimumPINLength' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\PassportForWork\PINComplexity' - ValueData = 6 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' - { - ValueName = 'DCSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' - { - ValueName = 'ACSettingIndex' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppCompat\DisableInventory' - { - ValueName = 'DisableInventory' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\AppCompat' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy\LetAppsActivateWithVoiceAboveLock' - { - ValueName = 'LetAppsActivateWithVoiceAboveLock' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\AppPrivacy' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent\DisableWindowsConsumerFeatures' - { - ValueName = 'DisableWindowsConsumerFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\CloudContent' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' - { - ValueName = 'AllowProtectedCreds' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection\LimitEnhancedDiagnosticDataWindowsAnalytics' - { - ValueName = 'LimitEnhancedDiagnosticDataWindowsAnalytics' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' - { - ValueName = 'AllowTelemetry' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DataCollection' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' - { - ValueName = 'DODownloadMode' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' - { - ValueName = 'EnableVirtualizationBasedSecurity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' - { - ValueName = 'RequirePlatformSecurityFeatures' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' - { - ValueName = 'HypervisorEnforcedCodeIntegrity' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' - { - ValueName = 'HVCIMATRequired' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' - { - ValueName = 'LsaCfgFlags' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' - { - ValueName = 'ConfigureSystemGuardLaunch' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' - ValueData = 1024000 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\EventLog\System\MaxSize' - { - ValueName = 'MaxSize' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\EventLog\System' - ValueData = 32768 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' - { - ValueName = 'NoAutoplayfornonVolume' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Explorer' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' - { - ValueName = 'NoDataExecutionPrevention' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' - { - ValueName = 'NoHeapTerminationOnCorruption' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Explorer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\GameDVR\AllowGameDVR' - { - ValueName = 'AllowGameDVR' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\GameDVR' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' - { - ValueName = 'NoBackgroundPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' - { - ValueName = 'NoGPOListChanges' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Installer\EnableUserControl' - { - ValueName = 'EnableUserControl' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' - { - ValueName = 'AlwaysInstallElevated' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Installer\SafeForScripting' - { - ValueName = 'SafeForScripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Installer' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Kernel DMA Protection\DeviceEnumerationPolicy' - { - ValueName = 'DeviceEnumerationPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Kernel DMA Protection' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' - { - ValueName = 'AllowInsecureGuestAuth' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\LanmanWorkstation' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Network Connections\NC_ShowSharedAccessUI' - { - ValueName = 'NC_ShowSharedAccessUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Network Connections' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' - { - ValueName = '\\*\SYSVOL' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' - { - ValueName = '\\*\NETLOGON' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' - ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization\NoLockScreenCamera' - { - ValueName = 'NoLockScreenCamera' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' - { - ValueName = 'NoLockScreenSlideshow' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Personalization' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' - { - ValueName = 'EnableScriptBlockLogging' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = 1 - } - - RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' - { - ValueName = 'EnableScriptBlockInvocationLogging' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' - { - ValueName = 'EnableTranscripting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' - { - ValueName = 'OutputDirectory' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = 'C:\ProgramData\PS_Transcript' - } - - RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' - { - ValueName = 'EnableInvocationHeader' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' - { - ValueName = 'DontDisplayNetworkSelectionUI' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\EnumerateLocalUsers' - { - ValueName = 'EnumerateLocalUsers' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\EnableSmartScreen' - { - ValueName = 'EnableSmartScreen' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\System' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\ShellSmartScreenLevel' - { - ValueName = 'ShellSmartScreenLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows\System' - ValueData = 'Block' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\AllowDomainPINLogon' - { - ValueName = 'AllowDomainPINLogon' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\System' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy\fMinimizeConnections' - { - ValueName = 'fMinimizeConnections' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy\fBlockNonDomain' - { - ValueName = 'fBlockNonDomain' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' - { - ValueName = 'AllowIndexingEncryptedStoresOrItems' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\Windows Search' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' - { - ValueName = 'AllowDigest' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' - { - ValueName = 'AllowBasic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' - { - ValueName = 'AllowUnencryptedTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' - { - ValueName = 'DisableRunAs' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' - { - ValueName = 'DisableWebPnPDownload' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' - { - ValueName = 'DisableHTTPPrinting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Printers' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' - { - ValueName = 'RestrictRemoteClients' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Rpc' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fAllowToGetHelp' - { - ValueName = 'fAllowToGetHelp' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 0 - } - - RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fAllowFullControl' - { - ValueName = 'fAllowFullControl' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = '' - } - - RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiry' - { - ValueName = 'MaxTicketExpiry' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = '' - } - - RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiryUnits' - { - ValueName = 'MaxTicketExpiryUnits' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = '' - } - - RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fUseMailto' - { - ValueName = 'fUseMailto' - TargetType = 'ComputerConfiguration' - Ensure = 'Absent' - ValueType = 'String' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = '' - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' - { - ValueName = 'DisablePasswordSaving' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' - { - ValueName = 'fDisableCdm' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' - { - ValueName = 'fPromptForPassword' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' - { - ValueName = 'fEncryptRPCTraffic' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' - { - ValueName = 'MinEncryptionLevel' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsInkWorkspace\AllowWindowsInkWorkspace' - { - ValueName = 'AllowWindowsInkWorkspace' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SOFTWARE\Policies\Microsoft\WindowsInkWorkspace' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' - { - ValueName = 'UseLogonCredential' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\DisableExceptionChainValidation' - { - ValueName = 'DisableExceptionChainValidation' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Control\Session Manager\kernel' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' - { - ValueName = 'DriverLoadPolicy' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Policies\EarlyLaunch' - ValueData = 3 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' - { - ValueName = 'SMB1' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' - { - ValueName = 'Start' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Services\MrxSmb10' - ValueData = 4 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' - { - ValueName = 'NoNameReleaseOnDemand' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Services\Netbt\Parameters' - ValueData = 1 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 2 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' - { - ValueName = 'EnableICMPRedirect' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' - ValueData = 0 - } - - RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' - { - ValueName = 'DisableIPSourceRouting' - TargetType = 'ComputerConfiguration' - ValueType = 'Dword' - Key = 'SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' - ValueData = 2 - } - - AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Credential Validation' - } - - AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security Group Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'User Account Management' - } - - AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Plug and Play Events' - } - - AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Process Creation' - } - - AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Account Lockout' - } - - AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Group Membership' - } - - AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Logoff' - } - - AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Logon' - } - - AuditPolicySubcategory 'Audit Other Logon/Logoff Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Logon/Logoff Events' - } - - AuditPolicySubcategory 'Audit Other Logon/Logoff Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Logon/Logoff Events' - } - - AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Special Logon' - } - - AuditPolicySubcategory 'Audit Detailed File Share (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Detailed File Share' - } - - AuditPolicySubcategory 'Audit Detailed File Share (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'Detailed File Share' - } - - AuditPolicySubcategory 'Audit File Share (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'File Share' - } - - AuditPolicySubcategory 'Audit File Share (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'File Share' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Object Access Events' - } - - AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Removable Storage' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Audit Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authentication Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Authorization Policy Change' - } - - AuditPolicySubcategory 'Audit MPSSVC Rule-Level Policy Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'MPSSVC Rule-Level Policy Change' - } - - AuditPolicySubcategory 'Audit MPSSVC Rule-Level Policy Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'MPSSVC Rule-Level Policy Change' - } - - AuditPolicySubcategory 'Audit Other Policy Change Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other Policy Change Events' - } - - AuditPolicySubcategory 'Audit Other Policy Change Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other Policy Change Events' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Sensitive Privilege Use' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Absent' - Name = 'IPsec Driver' - } - - AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'Other System Events' - } - - AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security State Change' - } - - AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Absent' - Name = 'Security System Extension' - } - - AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' - { - AuditFlag = 'Success' - Ensure = 'Present' - Name = 'System Integrity' - } - - AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' - { - AuditFlag = 'Failure' - Ensure = 'Present' - Name = 'System Integrity' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' - { - Domain_member_Maximum_machine_account_password_age = '30' - Name = 'Domain_member_Maximum_machine_account_password_age' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' - { - Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' - Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - { - User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' - Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' - { - Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' - Name = 'Interactive_logon_Smart_card_removal_behavior' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' - { - Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' - Name = 'Network_security_LDAP_client_signing_requirements' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' - Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - { - User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' - Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' - { - Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_server_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - { - System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' - Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - { - Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' - Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' - } - - SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - { - Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' - Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' - } - - SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - { - System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' - Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - { - Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' - Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' - { - Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' - Name = 'Network_security_LAN_Manager_authentication_level' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - { - Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = @( - MSFT_RestrictedRemoteSamSecurityDescriptor - { - Permission = 'Allow' - Identity = 'Administrators' - } - ) - Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' - { - Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' - Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' - { - Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' - Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' - { - Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' - Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - { - Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - { - Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' - Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' - { - Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' - { - Domain_member_Disable_machine_account_password_changes = 'Disabled' - Name = 'Domain_member_Disable_machine_account_password_changes' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - { - User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' - Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' - { - Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' - Name = 'Microsoft_network_client_Digitally_sign_communications_always' - } - - SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' - { - Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' - Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' - { - Interactive_logon_Machine_inactivity_limit = '900' - Name = 'Interactive_logon_Machine_inactivity_limit' - } - - SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - { - Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '10' - Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' - } - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' - } - - SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - { - Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' - Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' - } - - SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - { - Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' - Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' - } - - SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - { - Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' - Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - { - User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' - Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' - } - - SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - { - Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' - Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' - } - - SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - { - User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' - Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' - } - -<# SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - { - Network_security_Minimum_session_security_for_NTLM_SSP_based_including_Fsecure_RPC_clients = 'Both options checked' - Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' - } #> - - SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - { - Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' - Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' - } - - Service 'Services(INF): seclogon' - { - State = 'Stopped' - Name = 'seclogon' - } - - <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' - { - PasswordHistorySize = 24 - Name = 'PasswordHistorySize' - } - - SecuritySetting 'SecuritySetting(INF): LockoutDuration' - { - Name = 'LockoutDuration' - LockoutDuration = 15 - } - - SecuritySetting 'SecuritySetting(INF): LockoutBadCount' - { - Name = 'LockoutBadCount' - LockoutBadCount = 3 - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' - { - Name = 'MinimumPasswordAge' - MinimumPasswordAge = 1 - } - - SecuritySetting 'SecuritySetting(INF): NewGuestName' - { - NewGuestName = 'Visitor' - Name = 'NewGuestName' - } - - SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' - { - ResetLockoutCount = 15 - Name = 'ResetLockoutCount' - } - - SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' - { - LSAAnonymousNameLookup = 0 - Name = 'LSAAnonymousNameLookup' - } - - SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' - { - EnableGuestAccount = 0 - Name = 'EnableGuestAccount' - } - - SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' - { - MaximumPasswordAge = 60 - Name = 'MaximumPasswordAge' - } - - SecuritySetting 'SecuritySetting(INF): EnableAdminAccount' - { - EnableAdminAccount = 0 - Name = 'EnableAdminAccount' - } - - SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' - { - Name = 'MinimumPasswordLength' - MinimumPasswordLength = 14 - } - - SecuritySetting 'SecuritySetting(INF): PasswordComplexity' - { - PasswordComplexity = 1 - Name = 'PasswordComplexity' - } - - SecuritySetting 'SecuritySetting(INF): ClearTextPassword' - { - ClearTextPassword = 0 - Name = 'ClearTextPassword' - } - - SecuritySetting 'SecuritySetting(INF): NewAdministratorName' - { - NewAdministratorName = 'X_Admin' - Name = 'NewAdministratorName' - } - #> - UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' - { - Identity = @('') - Policy = 'Create_permanent_shared_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' - { - Identity = @('*S-1-5-32-544') - Policy = 'Load_and_unload_device_drivers' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' - { - Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') - Policy = 'Create_global_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' - { - Identity = @('*S-1-5-32-544') - Policy = 'Perform_volume_maintenance_tasks' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' - { - Identity = @('') - Policy = 'Lock_pages_in_memory' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' - { - Identity = @('') - Policy = 'Act_as_part_of_the_operating_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' - { - Identity = @('*S-1-5-32-544') - Policy = 'Manage_auditing_and_security_log' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Restore_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') - Policy = 'Deny_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' - { - Identity = @('') - Policy = 'Access_Credential_Manager_as_a_trusted_caller' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) - Policy = 'Deny_log_on_as_a_batch_job' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') - Policy = 'Deny_access_to_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' - { - Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') - Policy = 'Impersonate_a_client_after_authentication' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) - Policy = 'Deny_log_on_as_a_service' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' - { - Identity = @('*S-1-5-32-544') - Policy = 'Debug_programs' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' - { - Identity = @('*S-1-5-32-544') - Policy = 'Modify_firmware_environment_values' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' - { - Identity = @('*S-1-5-32-555', '*S-1-5-32-544') - Policy = 'Access_this_computer_from_the_network' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' - { - Identity = @('*S-1-5-32-544') - Policy = 'Profile_single_process' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_a_pagefile' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' - { - Identity = @('*S-1-5-32-544') - Policy = 'Force_shutdown_from_a_remote_system' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' - { - Identity = @('*S-1-5-32-544') - Policy = 'Take_ownership_of_files_or_other_objects' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - { - Identity = @('') - Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' - { - Identity = @('*S-1-5-32-545', '*S-1-5-32-544') - Policy = 'Allow_log_on_locally' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' - { - Identity = @('') - Policy = 'Create_a_token_object' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Change_the_system_time' - { - Identity = @('*S-1-5-19', '*S-1-5-32-544') - Policy = 'Change_the_system_time' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' - { - Identity = @('*S-1-5-32-544') - Policy = 'Create_symbolic_links' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' - { - Identity = @('*S-1-5-32-544') - Policy = 'Back_up_files_and_directories' - Force = $True - } - - UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' - { - Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') - Policy = 'Deny_log_on_through_Remote_Desktop_Services' - Force = $True - } - - RefreshRegistryPolicy 'ActivateClientSideExtension' - { - IsSingleInstance = 'Yes' - } + { + ValueName = 'UseAdvancedStartup' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\EnableBDEWithNoTPM' + { + ValueName = 'EnableBDEWithNoTPM' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPM' + { + ValueName = 'UseTPM' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPMPIN' + { + ValueName = 'UseTPMPIN' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPMKey' + { + ValueName = 'UseTPMKey' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\UseTPMKeyPIN' + { + ValueName = 'UseTPMKeyPIN' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\FVE\MinimumPIN' + { + ValueName = 'MinimumPIN' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\FVE' + ValueData = 6 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds\DisableEnclosureDownload' + { + ValueName = 'DisableEnclosureDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds\AllowBasicAuthInClear' + { + ValueName = 'AllowBasicAuthInClear' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Internet Explorer\Main\NotifyDisableIEOptions' + { + ValueName = 'NotifyDisableIEOptions' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Internet Explorer\Main' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\PassportForWork\RequireSecurityDevice' + { + ValueName = 'RequireSecurityDevice' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\PassportForWork' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\PassportForWork\ExcludeSecurityDevices\TPM12' + { + ValueName = 'TPM12' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\PassportForWork\ExcludeSecurityDevices' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\PassportForWork\PINComplexity\MinimumPINLength' + { + ValueName = 'MinimumPINLength' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\PassportForWork\PINComplexity' + ValueData = 6 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\DCSettingIndex' + { + ValueName = 'DCSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51\ACSettingIndex' + { + ValueName = 'ACSettingIndex' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Power\PowerSettings\0e796bdb-100d-47d6-a2d5-f7d2daa51f51' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppCompat\DisableInventory' + { + ValueName = 'DisableInventory' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\AppCompat' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy\LetAppsActivateWithVoiceAboveLock' + { + ValueName = 'LetAppsActivateWithVoiceAboveLock' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\AppPrivacy' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\CloudContent\DisableWindowsConsumerFeatures' + { + ValueName = 'DisableWindowsConsumerFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\CloudContent' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation\AllowProtectedCreds' + { + ValueName = 'AllowProtectedCreds' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\CredentialsDelegation' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection\LimitEnhancedDiagnosticDataWindowsAnalytics' + { + ValueName = 'LimitEnhancedDiagnosticDataWindowsAnalytics' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection\AllowTelemetry' + { + ValueName = 'AllowTelemetry' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DataCollection' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization\DODownloadMode' + { + ValueName = 'DODownloadMode' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\EnableVirtualizationBasedSecurity' + { + ValueName = 'EnableVirtualizationBasedSecurity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\RequirePlatformSecurityFeatures' + { + ValueName = 'RequirePlatformSecurityFeatures' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\HypervisorEnforcedCodeIntegrity' + { + ValueName = 'HypervisorEnforcedCodeIntegrity' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\HVCIMATRequired' + { + ValueName = 'HVCIMATRequired' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\LsaCfgFlags' + { + ValueName = 'LsaCfgFlags' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\DeviceGuard\ConfigureSystemGuardLaunch' + { + ValueName = 'ConfigureSystemGuardLaunch' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\DeviceGuard' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\EventLog\Application\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\EventLog\Application' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\EventLog\Security\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\EventLog\Security' + ValueData = 1024000 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\EventLog\System\MaxSize' + { + ValueName = 'MaxSize' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\EventLog\System' + ValueData = 32768 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Explorer\NoAutoplayfornonVolume' + { + ValueName = 'NoAutoplayfornonVolume' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Explorer' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Explorer\NoDataExecutionPrevention' + { + ValueName = 'NoDataExecutionPrevention' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Explorer\NoHeapTerminationOnCorruption' + { + ValueName = 'NoHeapTerminationOnCorruption' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Explorer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\GameDVR\AllowGameDVR' + { + ValueName = 'AllowGameDVR' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\GameDVR' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoBackgroundPolicy' + { + ValueName = 'NoBackgroundPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}\NoGPOListChanges' + { + ValueName = 'NoGPOListChanges' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Group Policy\{35378EAC-683F-11D2-A89A-00C04FBBCFA2}' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Installer\EnableUserControl' + { + ValueName = 'EnableUserControl' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Installer\AlwaysInstallElevated' + { + ValueName = 'AlwaysInstallElevated' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Installer\SafeForScripting' + { + ValueName = 'SafeForScripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Installer' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Kernel DMA Protection\DeviceEnumerationPolicy' + { + ValueName = 'DeviceEnumerationPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Kernel DMA Protection' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\LanmanWorkstation\AllowInsecureGuestAuth' + { + ValueName = 'AllowInsecureGuestAuth' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\LanmanWorkstation' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Network Connections\NC_ShowSharedAccessUI' + { + ValueName = 'NC_ShowSharedAccessUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Network Connections' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\SYSVOL' + { + ValueName = '\\*\SYSVOL' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths\*\NETLOGON' + { + ValueName = '\\*\NETLOGON' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths' + ValueData = 'RequireMutualAuthentication=1, RequireIntegrity=1' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization\NoLockScreenCamera' + { + ValueName = 'NoLockScreenCamera' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization\NoLockScreenSlideshow' + { + ValueName = 'NoLockScreenSlideshow' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Personalization' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockLogging' + { + ValueName = 'EnableScriptBlockLogging' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = 1 + } + + RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging\EnableScriptBlockInvocationLogging' + { + ValueName = 'EnableScriptBlockInvocationLogging' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\ScriptBlockLogging' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription\EnableTranscripting' + { + ValueName = 'EnableTranscripting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription\OutputDirectory' + { + ValueName = 'OutputDirectory' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = 'C:\ProgramData\PS_Transcript' + } + + RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription\EnableInvocationHeader' + { + ValueName = 'EnableInvocationHeader' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows\PowerShell\Transcription' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\DontDisplayNetworkSelectionUI' + { + ValueName = 'DontDisplayNetworkSelectionUI' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\EnumerateLocalUsers' + { + ValueName = 'EnumerateLocalUsers' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\EnableSmartScreen' + { + ValueName = 'EnableSmartScreen' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\System' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\ShellSmartScreenLevel' + { + ValueName = 'ShellSmartScreenLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows\System' + ValueData = 'Block' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\System\AllowDomainPINLogon' + { + ValueName = 'AllowDomainPINLogon' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\System' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy\fMinimizeConnections' + { + ValueName = 'fMinimizeConnections' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy\fBlockNonDomain' + { + ValueName = 'fBlockNonDomain' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WcmSvc\GroupPolicy' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\Windows Search\AllowIndexingEncryptedStoresOrItems' + { + ValueName = 'AllowIndexingEncryptedStoresOrItems' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\Windows Search' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Client\AllowDigest' + { + ValueName = 'AllowDigest' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Client' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\AllowBasic' + { + ValueName = 'AllowBasic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\AllowUnencryptedTraffic' + { + ValueName = 'AllowUnencryptedTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows\WinRM\Service\DisableRunAs' + { + ValueName = 'DisableRunAs' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows\WinRM\Service' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Printers\DisableWebPnPDownload' + { + ValueName = 'DisableWebPnPDownload' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Printers\DisableHTTPPrinting' + { + ValueName = 'DisableHTTPPrinting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Printers' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Rpc\RestrictRemoteClients' + { + ValueName = 'RestrictRemoteClients' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Rpc' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fAllowToGetHelp' + { + ValueName = 'fAllowToGetHelp' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 0 + } + + RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fAllowFullControl' + { + ValueName = 'fAllowFullControl' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = '' + } + + RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiry' + { + ValueName = 'MaxTicketExpiry' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = '' + } + + RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\MaxTicketExpiryUnits' + { + ValueName = 'MaxTicketExpiryUnits' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = '' + } + + RegistryPolicyFile 'DEL_\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fUseMailto' + { + ValueName = 'fUseMailto' + TargetType = 'ComputerConfiguration' + Ensure = 'Absent' + ValueType = 'String' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = '' + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\DisablePasswordSaving' + { + ValueName = 'DisablePasswordSaving' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fDisableCdm' + { + ValueName = 'fDisableCdm' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fPromptForPassword' + { + ValueName = 'fPromptForPassword' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\fEncryptRPCTraffic' + { + ValueName = 'fEncryptRPCTraffic' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services\MinEncryptionLevel' + { + ValueName = 'MinEncryptionLevel' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsInkWorkspace\AllowWindowsInkWorkspace' + { + ValueName = 'AllowWindowsInkWorkspace' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SOFTWARE\Policies\Microsoft\WindowsInkWorkspace' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest\UseLogonCredential' + { + ValueName = 'UseLogonCredential' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\DisableExceptionChainValidation' + { + ValueName = 'DisableExceptionChainValidation' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Control\Session Manager\kernel' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Policies\EarlyLaunch\DriverLoadPolicy' + { + ValueName = 'DriverLoadPolicy' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Policies\EarlyLaunch' + ValueData = 3 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\SMB1' + { + ValueName = 'SMB1' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\MrxSmb10\Start' + { + ValueName = 'Start' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Services\MrxSmb10' + ValueData = 4 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Netbt\Parameters\NoNameReleaseOnDemand' + { + ValueName = 'NoNameReleaseOnDemand' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Services\Netbt\Parameters' + ValueData = 1 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 2 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect' + { + ValueName = 'EnableICMPRedirect' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Services\Tcpip\Parameters' + ValueData = 0 + } + + RegistryPolicyFile 'Registry(POL): HKLM:\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\DisableIPSourceRouting' + { + ValueName = 'DisableIPSourceRouting' + TargetType = 'ComputerConfiguration' + ValueType = 'Dword' + Key = 'SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters' + ValueData = 2 + } + + AuditPolicySubcategory 'Audit Credential Validation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Credential Validation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Credential Validation' + } + + AuditPolicySubcategory 'Audit Security Group Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit Security Group Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security Group Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit User Account Management (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'User Account Management' + } + + AuditPolicySubcategory 'Audit PNP Activity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit PNP Activity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Plug and Play Events' + } + + AuditPolicySubcategory 'Audit Process Creation (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Process Creation (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Process Creation' + } + + AuditPolicySubcategory 'Audit Account Lockout (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Account Lockout (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Account Lockout' + } + + AuditPolicySubcategory 'Audit Group Membership (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Group Membership (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Group Membership' + } + + AuditPolicySubcategory 'Audit Logoff (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logoff (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Logoff' + } + + AuditPolicySubcategory 'Audit Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Logon' + } + + AuditPolicySubcategory 'Audit Other Logon/Logoff Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Logon/Logoff Events' + } + + AuditPolicySubcategory 'Audit Other Logon/Logoff Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Logon/Logoff Events' + } + + AuditPolicySubcategory 'Audit Special Logon (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Special Logon (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Special Logon' + } + + AuditPolicySubcategory 'Audit Detailed File Share (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Detailed File Share' + } + + AuditPolicySubcategory 'Audit Detailed File Share (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'Detailed File Share' + } + + AuditPolicySubcategory 'Audit File Share (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'File Share' + } + + AuditPolicySubcategory 'Audit File Share (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'File Share' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Other Object Access Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Object Access Events' + } + + AuditPolicySubcategory 'Audit Removable Storage (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Removable Storage (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Removable Storage' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Audit Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Audit Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authentication Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authentication Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit Authorization Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Authorization Policy Change' + } + + AuditPolicySubcategory 'Audit MPSSVC Rule-Level Policy Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'MPSSVC Rule-Level Policy Change' + } + + AuditPolicySubcategory 'Audit MPSSVC Rule-Level Policy Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'MPSSVC Rule-Level Policy Change' + } + + AuditPolicySubcategory 'Audit Other Policy Change Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other Policy Change Events' + } + + AuditPolicySubcategory 'Audit Other Policy Change Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other Policy Change Events' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit Sensitive Privilege Use (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Sensitive Privilege Use' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit IPsec Driver (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Absent' + Name = 'IPsec Driver' + } + + AuditPolicySubcategory 'Audit Other System Events (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Other System Events (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'Other System Events' + } + + AuditPolicySubcategory 'Audit Security State Change (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security State Change (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security State Change' + } + + AuditPolicySubcategory 'Audit Security System Extension (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit Security System Extension (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Absent' + Name = 'Security System Extension' + } + + AuditPolicySubcategory 'Audit System Integrity (Success) - Inclusion' + { + AuditFlag = 'Success' + Ensure = 'Present' + Name = 'System Integrity' + } + + AuditPolicySubcategory 'Audit System Integrity (Failure) - Inclusion' + { + AuditFlag = 'Failure' + Ensure = 'Present' + Name = 'System Integrity' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Maximum_machine_account_password_age' + { + Domain_member_Maximum_machine_account_password_age = '30' + Name = 'Domain_member_Maximum_machine_account_password_age' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_text_for_users_attempting_to_log_on' + { + Interactive_logon_Message_text_for_users_attempting_to_log_on = 'You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.,By using this IS (which includes any device attached to this IS)"," you consent to the following conditions:,-The USG routinely intercepts and monitors communications on this IS for purposes including"," but not limited to"," penetration testing"," COMSEC monitoring"," network operations and defense"," personnel misconduct (PM)"," law enforcement (LE)"," and counterintelligence (CI) investigations.,-At any time"," the USG may inspect and seize data stored on this IS.,-Communications using"," or data stored on"," this IS are not private"," are subject to routine monitoring"," interception"," and search"," and may be disclosed or used for any USG-authorized purpose.,-This IS includes security measures (e.g."," authentication and access controls) to protect USG interests--not for your personal benefit or privacy.,-Notwithstanding the above"," using this IS does not constitute consent to PM"," LE or CI investigative searching or monitoring of the content of privileged communications"," or work product"," related to personal representation or services by attorneys"," psychotherapists"," or clergy"," and their assistants. Such communications and work product are private and confidential. See User Agreement for details.' + Name = 'Interactive_logon_Message_text_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + { + User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account = 'Enabled' + Name = 'User_Account_Control_Admin_Approval_Mode_for_the_Built_in_Administrator_account' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Smart_card_removal_behavior' + { + Interactive_logon_Smart_card_removal_behavior = 'Lock workstation' + Name = 'Interactive_logon_Smart_card_removal_behavior' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users = 'Automatically deny elevation request' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_standard_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LDAP_client_signing_requirements' + { + Network_security_LDAP_client_signing_requirements = 'Negotiate Signing' + Name = 'Network_security_LDAP_client_signing_requirements' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode = 'Enabled' + Name = 'User_Account_Control_Run_all_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + { + User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode = 'Prompt for consent on the secure desktop' + Name = 'User_Account_Control_Behavior_of_the_elevation_prompt_for_administrators_in_Admin_Approval_Mode' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_server_Digitally_sign_communications_always' + { + Microsoft_network_server_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_server_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + { + System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing = 'Enabled' + Name = 'System_cryptography_Use_FIPS_compliant_algorithms_for_encryption_hashing_and_signing' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + { + Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change = 'Enabled' + Name = 'Network_security_Do_not_store_LAN_Manager_hash_value_on_next_password_change' + } + + SecurityOption 'SecurityRegistry(INF): Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + { + Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only = 'Enabled' + Name = 'Accounts_Limit_local_account_use_of_blank_passwords_to_console_logon_only' + } + + SecurityOption 'SecurityRegistry(INF): System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + { + System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links = 'Enabled' + Name = 'System_objects_Strengthen_default_permissions_of_internal_system_objects_eg_Symbolic_Links' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + { + Network_access_Let_Everyone_permissions_apply_to_anonymous_users = 'Disabled' + Name = 'Network_access_Let_Everyone_permissions_apply_to_anonymous_users' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_LAN_Manager_authentication_level' + { + Network_security_LAN_Manager_authentication_level = 'Send NTLMv2 responses only. Refuse LM & NTLM' + Name = 'Network_security_LAN_Manager_authentication_level' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + { + Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM = @( + MSFT_RestrictedRemoteSamSecurityDescriptor + { + Permission = 'Allow' + Identity = 'Administrators' + } + ) + Name = 'Network_access_Restrict_clients_allowed_to_make_remote_calls_to_SAM' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_servers' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Message_title_for_users_attempting_to_log_on' + { + Interactive_logon_Message_title_for_users_attempting_to_log_on = 'US Department of Defense Warning Statement' + Name = 'Interactive_logon_Message_title_for_users_attempting_to_log_on' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Configure_encryption_types_allowed_for_Kerberos' + { + Network_security_Configure_encryption_types_allowed_for_Kerberos = '2147483640' + Name = 'Network_security_Configure_encryption_types_allowed_for_Kerberos' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Require_strong_Windows_2000_or_later_session_key' + { + Domain_member_Require_strong_Windows_2000_or_later_session_key = 'Enabled' + Name = 'Domain_member_Require_strong_Windows_2000_or_later_session_key' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + { + Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_or_sign_secure_channel_data_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + { + Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares = 'Enabled' + Name = 'Network_access_Restrict_anonymous_access_to_Named_Pipes_and_Shares' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_sign_secure_channel_data_when_possible' + { + Domain_member_Digitally_sign_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_sign_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Disable_machine_account_password_changes' + { + Domain_member_Disable_machine_account_password_changes = 'Disabled' + Name = 'Domain_member_Disable_machine_account_password_changes' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + { + User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations = 'Enabled' + Name = 'User_Account_Control_Only_elevate_UIAccess_applications_that_are_installed_in_secure_locations' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Digitally_sign_communications_always' + { + Microsoft_network_client_Digitally_sign_communications_always = 'Enabled' + Name = 'Microsoft_network_client_Digitally_sign_communications_always' + } + + SecurityOption 'SecurityRegistry(INF): Network_security_Allow_LocalSystem_NULL_session_fallback' + { + Network_security_Allow_LocalSystem_NULL_session_fallback = 'Disabled' + Name = 'Network_security_Allow_LocalSystem_NULL_session_fallback' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Machine_inactivity_limit' + { + Interactive_logon_Machine_inactivity_limit = '900' + Name = 'Interactive_logon_Machine_inactivity_limit' + } + + SecurityOption 'SecurityRegistry(INF): Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + { + Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available = '10' + Name = 'Interactive_logon_Number_of_previous_logons_to_cache_in_case_domain_controller_is_not_available' + } + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts_and_shares' + } + + SecurityOption 'SecurityRegistry(INF): Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + { + Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities = 'Disabled' + Name = 'Network_Security_Allow_PKU2U_authentication_requests_to_this_computer_to_use_online_identities' + } + + SecurityOption 'SecurityRegistry(INF): Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + { + Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings = 'Enabled' + Name = 'Audit_Force_audit_policy_subcategory_settings_Windows_Vista_or_later_to_override_audit_policy_category_settings' + } + + SecurityOption 'SecurityRegistry(INF): Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + { + Domain_member_Digitally_encrypt_secure_channel_data_when_possible = 'Enabled' + Name = 'Domain_member_Digitally_encrypt_secure_channel_data_when_possible' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + { + User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations = 'Enabled' + Name = 'User_Account_Control_Virtualize_file_and_registry_write_failures_to_per_user_locations' + } + + SecurityOption 'SecurityRegistry(INF): Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + { + Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers = 'Disabled' + Name = 'Microsoft_network_client_Send_unencrypted_password_to_third_party_SMB_servers' + } + + SecurityOption 'SecurityRegistry(INF): User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + { + User_Account_Control_Detect_application_installations_and_prompt_for_elevation = 'Enabled' + Name = 'User_Account_Control_Detect_application_installations_and_prompt_for_elevation' + } + + <# SecurityOption 'SecurityRegistry(INF): Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + { + Network_security_Minimum_session_security_for_NTLM_SSP_based_including_Fsecure_RPC_clients = 'Both options checked' + Name = 'Network_security_Minimum_session_security_for_NTLM_SSP_based_including_secure_RPC_clients' + } #> + + SecurityOption 'SecurityRegistry(INF): Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + { + Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts = 'Enabled' + Name = 'Network_access_Do_not_allow_anonymous_enumeration_of_SAM_accounts' + } + + Service 'Services(INF): seclogon' + { + State = 'Stopped' + Name = 'seclogon' + } + + <# SecuritySetting 'SecuritySetting(INF): PasswordHistorySize' + { + PasswordHistorySize = 24 + Name = 'PasswordHistorySize' + } + + SecuritySetting 'SecuritySetting(INF): LockoutDuration' + { + Name = 'LockoutDuration' + LockoutDuration = 15 + } + + SecuritySetting 'SecuritySetting(INF): LockoutBadCount' + { + Name = 'LockoutBadCount' + LockoutBadCount = 3 + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordAge' + { + Name = 'MinimumPasswordAge' + MinimumPasswordAge = 1 + } + + SecuritySetting 'SecuritySetting(INF): NewGuestName' + { + NewGuestName = 'Visitor' + Name = 'NewGuestName' + } + + SecuritySetting 'SecuritySetting(INF): ResetLockoutCount' + { + ResetLockoutCount = 15 + Name = 'ResetLockoutCount' + } + + SecuritySetting 'SecuritySetting(INF): LSAAnonymousNameLookup' + { + LSAAnonymousNameLookup = 0 + Name = 'LSAAnonymousNameLookup' + } + + SecuritySetting 'SecuritySetting(INF): EnableGuestAccount' + { + EnableGuestAccount = 0 + Name = 'EnableGuestAccount' + } + + SecuritySetting 'SecuritySetting(INF): MaximumPasswordAge' + { + MaximumPasswordAge = 60 + Name = 'MaximumPasswordAge' + } + + SecuritySetting 'SecuritySetting(INF): EnableAdminAccount' + { + EnableAdminAccount = 0 + Name = 'EnableAdminAccount' + } + + SecuritySetting 'SecuritySetting(INF): MinimumPasswordLength' + { + Name = 'MinimumPasswordLength' + MinimumPasswordLength = 14 + } + + SecuritySetting 'SecuritySetting(INF): PasswordComplexity' + { + PasswordComplexity = 1 + Name = 'PasswordComplexity' + } + + SecuritySetting 'SecuritySetting(INF): ClearTextPassword' + { + ClearTextPassword = 0 + Name = 'ClearTextPassword' + } + + SecuritySetting 'SecuritySetting(INF): NewAdministratorName' + { + NewAdministratorName = 'X_Admin' + Name = 'NewAdministratorName' + } + #> + UserRightsAssignment 'UserRightsAssignment(INF): Create_permanent_shared_objects' + { + Identity = @('') + Policy = 'Create_permanent_shared_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Load_and_unload_device_drivers' + { + Identity = @('*S-1-5-32-544') + Policy = 'Load_and_unload_device_drivers' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_global_objects' + { + Identity = @('*S-1-5-6', '*S-1-5-20', '*S-1-5-19', '*S-1-5-32-544') + Policy = 'Create_global_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Perform_volume_maintenance_tasks' + { + Identity = @('*S-1-5-32-544') + Policy = 'Perform_volume_maintenance_tasks' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Lock_pages_in_memory' + { + Identity = @('') + Policy = 'Lock_pages_in_memory' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Act_as_part_of_the_operating_system' + { + Identity = @('') + Policy = 'Act_as_part_of_the_operating_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Manage_auditing_and_security_log' + { + Identity = @('*S-1-5-32-544') + Policy = 'Manage_auditing_and_security_log' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Restore_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Restore_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_locally' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546') + Policy = 'Deny_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_Credential_Manager_as_a_trusted_caller' + { + Identity = @('') + Policy = 'Access_Credential_Manager_as_a_trusted_caller' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_batch_job' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) + Policy = 'Deny_log_on_as_a_batch_job' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_access_to_this_computer_from_the_network' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') + Policy = 'Deny_access_to_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Impersonate_a_client_after_authentication' + { + Identity = @('*S-1-5-32-544', '*S-1-5-19', '*S-1-5-20', '*S-1-5-6') + Policy = 'Impersonate_a_client_after_authentication' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_as_a_service' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS) + Policy = 'Deny_log_on_as_a_service' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Debug_programs' + { + Identity = @('*S-1-5-32-544') + Policy = 'Debug_programs' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Modify_firmware_environment_values' + { + Identity = @('*S-1-5-32-544') + Policy = 'Modify_firmware_environment_values' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Access_this_computer_from_the_network' + { + Identity = @('*S-1-5-32-555', '*S-1-5-32-544') + Policy = 'Access_this_computer_from_the_network' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Profile_single_process' + { + Identity = @('*S-1-5-32-544') + Policy = 'Profile_single_process' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_pagefile' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_a_pagefile' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Force_shutdown_from_a_remote_system' + { + Identity = @('*S-1-5-32-544') + Policy = 'Force_shutdown_from_a_remote_system' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Take_ownership_of_files_or_other_objects' + { + Identity = @('*S-1-5-32-544') + Policy = 'Take_ownership_of_files_or_other_objects' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + { + Identity = @('') + Policy = 'Enable_computer_and_user_accounts_to_be_trusted_for_delegation' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Allow_log_on_locally' + { + Identity = @('*S-1-5-32-545', '*S-1-5-32-544') + Policy = 'Allow_log_on_locally' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_a_token_object' + { + Identity = @('') + Policy = 'Create_a_token_object' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Change_the_system_time' + { + Identity = @('*S-1-5-19', '*S-1-5-32-544') + Policy = 'Change_the_system_time' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Create_symbolic_links' + { + Identity = @('*S-1-5-32-544') + Policy = 'Create_symbolic_links' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Back_up_files_and_directories' + { + Identity = @('*S-1-5-32-544') + Policy = 'Back_up_files_and_directories' + Force = $True + } + + UserRightsAssignment 'UserRightsAssignment(INF): Deny_log_on_through_Remote_Desktop_Services' + { + Identity = @($ADD_YOUR_DOMAIN_ADMINS, $ADD_YOUR_ENTERPRISE_ADMINS, '*S-1-5-32-546', '*S-1-5-113') + Policy = 'Deny_log_on_through_Remote_Desktop_Services' + Force = $True + } + + RefreshRegistryPolicy 'ActivateClientSideExtension' + { + IsSingleInstance = 'Yes' + } } diff --git a/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.psd1 b/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.psd1 index 88f6e97..fce8ede 100644 --- a/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.psd1 +++ b/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.psd1 @@ -120,5 +120,3 @@ PrivateData = @{ # DefaultCommandPrefix = '' } - - diff --git a/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.schema.psm1 b/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.schema.psm1 index 09bc6fc..2d3627d 100644 --- a/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.schema.psm1 +++ b/DSCResources/DoD_Windows_Defender_Firewall_v2r2/DoD_Windows_Defender_Firewall_v2r2.schema.psm1 @@ -1,201 +1,200 @@ -configuration DoD_Windows_Defender_Firewall_v2r2 +configuration 'DoD_Windows_Defender_Firewall_v2r2' { Import-DSCResource -ModuleName 'GPRegistryPolicyDsc' Import-DSCResource -ModuleName 'AuditPolicyDSC' Import-DSCResource -ModuleName 'SecurityPolicyDSC' - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PolicyVersion' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PolicyVersion' + { ValueName = 'PolicyVersion' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall' ValueData = 539 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\EnableFirewall' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\EnableFirewall' + { ValueName = 'EnableFirewall' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\DefaultOutboundAction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\DefaultOutboundAction' + { ValueName = 'DefaultOutboundAction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\DefaultInboundAction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\DefaultInboundAction' + { ValueName = 'DefaultInboundAction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging\LogFileSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging\LogFileSize' + { ValueName = 'LogFileSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' ValueData = 16384 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging\LogDroppedPackets' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging\LogDroppedPackets' + { ValueName = 'LogDroppedPackets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging\LogSuccessfulConnections' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging\LogSuccessfulConnections' + { ValueName = 'LogSuccessfulConnections' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile\Logging' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\EnableFirewall' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\EnableFirewall' + { ValueName = 'EnableFirewall' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\DefaultOutboundAction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\DefaultOutboundAction' + { ValueName = 'DefaultOutboundAction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\DefaultInboundAction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\DefaultInboundAction' + { ValueName = 'DefaultInboundAction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging\LogFileSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging\LogFileSize' + { ValueName = 'LogFileSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' ValueData = 16384 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging\LogDroppedPackets' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging\LogDroppedPackets' + { ValueName = 'LogDroppedPackets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging\LogSuccessfulConnections' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging\LogSuccessfulConnections' + { ValueName = 'LogSuccessfulConnections' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PrivateProfile\Logging' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\EnableFirewall' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\EnableFirewall' + { ValueName = 'EnableFirewall' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\DefaultOutboundAction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\DefaultOutboundAction' + { ValueName = 'DefaultOutboundAction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\DefaultInboundAction' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\DefaultInboundAction' + { ValueName = 'DefaultInboundAction' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\AllowLocalPolicyMerge' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\AllowLocalPolicyMerge' + { ValueName = 'AllowLocalPolicyMerge' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\AllowLocalIPsecPolicyMerge' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\AllowLocalIPsecPolicyMerge' + { ValueName = 'AllowLocalIPsecPolicyMerge' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile' ValueData = 0 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging\LogFileSize' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging\LogFileSize' + { ValueName = 'LogFileSize' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' ValueData = 16384 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging\LogDroppedPackets' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging\LogDroppedPackets' + { ValueName = 'LogDroppedPackets' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' ValueData = 1 - } + } - RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging\LogSuccessfulConnections' - { + RegistryPolicyFile 'Registry(POL): HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging\LogSuccessfulConnections' + { ValueName = 'LogSuccessfulConnections' TargetType = 'ComputerConfiguration' ValueType = 'Dword' Key = 'SOFTWARE\Policies\Microsoft\WindowsFirewall\PublicProfile\Logging' ValueData = 1 - } + } - RefreshRegistryPolicy 'ActivateClientSideExtension' - { + RefreshRegistryPolicy 'ActivateClientSideExtension' + { IsSingleInstance = 'Yes' - } - + } } diff --git a/Examples/XOAPSTIGJanuary2024DSC.ps1 b/Examples/XOAPSTIGJanuary2024DSC.ps1 index ffd79f3..7284bc9 100644 --- a/Examples/XOAPSTIGJanuary2024DSC.ps1 +++ b/Examples/XOAPSTIGJanuary2024DSC.ps1 @@ -6,7 +6,7 @@ Configuration 'XOAPSTIGJanuary2024DSC' ( ) - Node 'XOAPSTIGAugust2023DSC' + Node 'XOAPSTIGAugust2024DSC' { DoD_Adobe_Acrobat_Reader_DC_Continuous_V2R1 'Example' { diff --git a/LICENSE b/LICENSE index 3ebd87e..705ff82 100644 --- a/LICENSE +++ b/LICENSE @@ -1,6 +1,6 @@ MIT License -Copyright (c) 2023 XOAP.io +Copyright (c) 2024 XOAP.io Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal