Tag: Computer Configuration
Disable binding directly to IPropertySetStorage without intermediate layers.
Changes the behavior of IShellFolder::BindToObject for IID_IPropertySetStorage to not bind directly to the IPropertySetStorage implementation and to include the intermediate layers provided by the Property System. This behavior is consistent with Windows Vista’s behavior in this scenario. This disables access to user-defined properties and properties stored in NTFS secondary streams.
Turn off numerical sorting in File Explorer
This policy setting allows you to have file names sorted literally (as in Windows 2000 and earlier) rather than in numerical order. If you enable this policy setting File Explorer will sort file names by each digit in a file name (for example 111 < 22 < 3). If you disable or do not configure this policy setting File Explorer will sort file names by increasing number value (for example 3 < 22 < 111).
Allow OpenSearch queries in File Explorer
This policy setting allows you to manage whether OpenSearch queries in this zone can be performed using Search Connectors in File Explorer. Search Connectors allow rich searching of remote sources from within File Explorer. Search results will be returned in File Explorer and can be acted upon like local files. If you enable this policy setting users can perform OpenSearch queries in this zone using Search Connectors. If you disable this policy setting users are prevented from performing OpenSearch queries in this zone using Search Connectors. If you do not configure this policy setting users can perform OpenSearch queries in this zone using Search Connectors.
Allow OpenSearch queries in File Explorer
This policy setting allows you to manage whether OpenSearch queries in this zone can be performed using Search Connectors in File Explorer. Search Connectors allow rich searching of remote sources from within File Explorer. Search results will be returned in File Explorer and can be acted upon like local files. If you enable this policy setting users can perform OpenSearch queries in this zone using Search Connectors. If you disable this policy setting users are prevented from performing OpenSearch queries in this zone using Search Connectors. If you do not configure this policy setting users can perform OpenSearch queries in this zone using Search Connectors.
Turn off shell protocol protected mode
This policy setting allows you to configure the amount of functionality that the shell protocol can have. When using the full functionality of this protocol applications can open folders and launch files. The protected mode reduces the functionality of this protocol allowing applications to only open a limited set of folders. Applications are not able to open files with this protocol when it is in the protected mode. It is recommended to leave this protocol in the protected mode to increase the security of Windows. If you enable this policy setting the protocol is fully enabled allowing the opening of folders and files. If you disable this policy setting the protocol is in the protected mode allowing applications to only open a limited set of folders. If you do not configure this policy setting the protocol is in the protected mode allowing applications to only open a limited set of folders.
Verify old and new Folder Redirection targets point to the same share before redirecting
This policy setting allows you to prevent data loss when you change the target location for Folder Redirection and the new and old targets point to the same network share but have different network paths. If you enable this policy setting Folder Redirection creates a temporary file in the old location in order to verify that new and old locations point to the same network share. If both new and old locations point to the same share the target path is updated and files are not copied or deleted. The temporary file is deleted. If you disable or do not configure this policy setting Folder Redirection does not create a temporary file and functions as if both new and old locations point to different shares when their network paths are different. Note: If the paths point to different network shares this policy setting is not required. If the paths point to the same network share any data contained in the redirected folders is deleted if this policy setting is not enabled.
Specify threat alert levels at which default action should not be taken when detected
This policy setting allows you to customize which automatic remediation action will be taken for each threat alert level. Threat alert levels should be added under the Options for this setting. Each entry must be listed as a name value pair. The name defines a threat alert level. The value contains the action ID for the remediation action that should be taken. Valid threat alert levels are:1 = Low2 = Medium4 = High5 = SevereValid remediation action values are:2 = Quarantine3 = Remove6 = Ignore
Display notifications to clients when they need to perform actions
This policy setting allows you to configure whether or not to display notifications to clients when they need to perform the following actions:Run a full scanDownload the latest virus and spyware definitions Download Standalone System SweeperIf you enable or do not configure this setting notifications will be displayed to clients when they need to perform the specified actions. If you disable this setting notifications will not be displayed to clients when they need to perform the specified actions.
Display additional text to clients when they need to perform an action
This policy setting allows you to configure whether or not to display additional text to clients when they need to perform an action. The text displayed is a custom administrator-defined string. For example the phone number to call the company help desk. The client interface will only display a maximum of 1024 characters. Longer strings will be truncated before display. If you enable this setting the additional text specified will be displayed. If you disable or do not configure this setting there will be no additional text displayed.
Configure local setting override for reporting to Microsoft MAPS
This policy setting configures a local override for the configuration to join Microsoft MAPS. This setting can only be set by Group Policy. If you enable this setting the local preference setting will take priority over Group Policy. If you disable or do not configure this setting Group Policy will take priority over the local preference setting.