Tag: Computer Configuration
Turn off automatic termination of applications that block or cancel shutdown
This policy setting specifies whether Windows will allow console applications and GUI applications without visible top-level windows to block or cancel shutdown. By default such applications are automatically terminated if they attempt to cancel shutdown or block it indefinitely. If you enable this setting console applications or GUI applications without visible top-level windows that block or cancel shutdown will not be automatically terminated during shutdown. If you disable or do not configure this setting these applications will be automatically terminated during shutdown helping to ensure that Windows can shut down faster and more smoothly.
Turn off the Store application
Denies or allows access to the Store application. If you enable this setting access to the Store application is denied. Access to the Store is required for installing app updates. If you disable or don’t configure this setting access to the Store application is allowed.
Turn off Automatic Download and Install of updates
Enables or disables the automatic download and installation of app updates. If you enable this setting the automatic download and installation of app updates is turned off. If you disable this setting the automatic download and installation of app updates is turned on. If you don’t configure this setting the automatic download and installation of app updates is determined by a registry setting that the user can change using Settings in the Windows Store.
Display information about previous logons during user logon
This policy setting controls whether or not the system displays information about previous logons and logon failures to the user. For local user accounts and domain user accounts in domains of at least a Windows Server 2008 functional level if you enable this setting a message appears after the user logs on that displays the date and time of the last successful logon by that user the date and time of the last unsuccessful logon attempted with that user name and the number of unsuccessful logons since the last successful logon by that user. This message must be acknowledged by the user before the user is presented with the Microsoft Windows desktop. For domain user accounts in Windows Server 2003 Windows 2000 native or Windows 2000 mixed functional level domains if you enable this setting a warning message will appear that Windows could not retrieve the information and the user will not be able to log on. Therefore you should not enable this policy setting if the domain is not at the Windows Server 2008 domain functional level. If you disable or do not configure this setting messages about the previous logon or logon failures are not displayed.
Reschedule Automatic Updates scheduled installations
Specifies the amount of time for Automatic Updates to wait following system startup before proceeding with a scheduled installation that was missed previously. If the status is set to Enabled a scheduled installation that did not take place earlier will occur the specified number of minutes after the computer is next started. If the status is set to Disabled a missed scheduled installation will occur with the next scheduled installation. If the status is set to Not Configured a missed scheduled installation will occur one minute after the computer is next started. Note: This policy applies only when Automatic Updates is configured to perform scheduled installations of updates. If the “Configure Automatic Updates” policy is disabled this policy has no effect.
Enable client-side targeting
Specifies the target group name or names that should be used to receive updates from an intranet Microsoft update service. If the status is set to Enabled the specified target group information is sent to the intranet Microsoft update service which uses it to determine which updates should be deployed to this computer. If the intranet Microsoft update service supports multiple target groups this policy can specify multiple group names separated by semicolons. Otherwise a single group must be specified. If the status is set to Disabled or Not Configured no target group information will be sent to the intranet Microsoft update service. Note: This policy applies only when the intranet Microsoft update service this computer is directed to is configured to support client-side targeting. If the “Specify intranet Microsoft update service location” policy is disabled or not configured this policy has no effect. Note: This policy is not supported on Windows RT. Setting this policy will not have any effect on Windows RT PCs.
Allow signed updates from an intranet Microsoft update service location
This policy setting allows you to manage whether Automatic Updates accepts updates signed by entities other than Microsoft when the update is found on an intranet Microsoft update service location. If you enable this policy setting Automatic Updates accepts updates received through an intranet Microsoft update service location if they are signed by a certificate found in the “Trusted Publishers” certificate store of the local computer. If you disable or do not configure this policy setting updates from an intranet Microsoft update service location must be signed by Microsoft. Note: Updates from a service other than an intranet Microsoft update service must always be signed by Microsoft and are not affected by this policy setting. Note: This policy is not supported on Windows RT. Setting this policy will not have any effect on Windows RT PCs.
Do not connect to any Windows Update Internet locations
Even when Windows Update is configured to receive updates from an intranet update service it will periodically retrieve information from the public Windows Update service to enable future connections to Windows Update and other services like Microsoft Update or the Windows Store. Enabling this policy will disable that functionality and may cause connection to public services such as the Windows Store to stop working. Note: This policy applies only when this PC is configured to connect to an intranet update service using the “Specify intranet Microsoft update service location” policy.
Turn off legacy remote shutdown interface
This policy setting controls the legacy remote shutdown interface (named pipe). The named pipe remote shutdown interface is needed in order to shutdown this system from a remote Windows XP or Windows Server 2003 system. If you enable this policy setting the system does not create the named pipe remote shutdown interface. If you disable or do not configure this policy setting the system creates the named pipe remote shutdown interface.
Timeout for hung logon sessions during shutdown
This policy setting configures the number of minutes the system waits for the hung logon sessions before proceeding with the system shutdown. If you enable this policy setting the system waits for the hung logon sessions for the number of minutes specified. If you disable or do not configure this policy setting the default timeout value is 3 minutes for workstations and 15 minutes for servers.