ArticleField.comInternet's Fastest Growing Free Content Article Directory

To implement software restriction policies, you must complete the following tasks:
1.Set the default security level
2.Create rules
Designate file types
To create a hash rule, complete the following steps:
1.Access the Group Policy Object Editor console for a GPO.
2.In the Group Policy Object Editor console, click Computer Configuration, doubleclick Windows Settings, double-click Security Settings, and then double-click Software Restriction Policies.
3- Right-click Additional Rules, and then click New Hash Rule.
4.In the New Hash Rule dialog box, shown in Figure 13-3, browse to a file, or paste a precalculated hash in the File Hash box.
5.In the Security Level list, select one of the following:
Disallowed, which does not allow the software to run, regardless of the access rights of the user who is logged on to the computer
Unrestricted, which allows software to run with the full rights of the user who is logged on to the computer
6.Type a description for this rule in the mcitp enterprise administrator Description box, and then click OK.
Creating a Certificate Rule Create a certificate rule to automatically trust software from a taisted source in a domain without prompting the user or to run files in disallowed areas of your operating system. Certificate rules can be applied to scripts and Windows Installer packages. They do not apply to files with .exe or .dll filename extensions.
To create a certificate rule, complete the following steps:
1.Access the Group Policy Object Editor console for a GPO.
2.In the Group Policy Object Editor console, click Computer Configuration, doubleclick Windows Settings, double-click Security Settings, and then double-click Software Restriction Policies.
3.Right-click Additional Rules, and then click New Certificate Rule.
In the New Certificate Rule dialog box, shown in Figure 13-4, click Browse and then select a certificate.
In the Security Level list, select one of the following:
Disallowed, which does not allow the software to run, regardless of the access rights of the user who is logged on to the computer
Unrestricted, which allows software to run with the full rights of the user who is logged on to the computer
6.Type a description for this a+ certification rule, and then click OK.

[!] Report This Article

Processing your request, Please wait....

Report as:	Broken Links Invalid / Wrong Links Spam Inappropriate Content Copyrighted Article Other
Your Name:
Your Email:
Message about this article: