Configure Security Policy for Scripted Diagnostics
Supported on: At least Windows Server 2008 R2 or Windows 7
Registry
HKLM
SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnostics Value name: ValidateTrust
Enabled: ValidateTrust = 1
Disabled: ValidateTrust = 0
Description
This policy setting determines whether scripted diagnostics will execute diagnostic packages that are signed by untrusted publishers. If you enable this policy setting, the scripted diagnostics execution engine validates the signer of any diagnostic package and runs only those signed by trusted publishers. If you disable or do not configure this policy setting, the scripted diagnostics execution engine runs all digitally signed packages.