MS Security Guide
18 Group Policy settings under MS Security Guide. Browse the sub-folders and settings below.
Settings
- Apply UAC restrictions to local accounts on network logons
- Block Flash activation in Office documents
- Configure RPC packet level privacy setting for incoming connections
- Configure SMB v1 client (extra setting needed for pre-Win8.1/2012R2)
- Configure SMB v1 client driver
- Configure SMB v1 server
- Enable Certificate Padding
- Enable Structured Exception Handling Overwrite Protection (SEHOP)
- Extended Protection for LDAP Authentication (Domain Controllers only) (DEPRECATED)
- Limits print driver installation to Administrators (DEPRECATED)
- LSA Protection
- Lsass.exe audit mode
- Manage processing of Queue-specific files (DEPRECATED)
- NetBT NodeType configuration
- Remove "Run As Different User" from context menus
- Restrict legacy JScript execution for Office
- Turn on Windows Defender protection against Potentially Unwanted Applications (DEPRECATED)
- WDigest Authentication (disabling may require KB2871997)