NTLM is an insecure authentication protocol that is still found in many environments. Using Group Policy and effective logging,...
Tag Archive for: group policy
4sysops - The online community for SysAdmins and DevOps
Update ADMX templates automatically with EvergreenAdmx

Group Policy admins have to deal with a lot of different ADMX templates. These templates are not limited to...
How to install Group Policy ADMX templates for OneDrive

When companies use OneDrive, they usually want to control its use via Group Policy to prevent data loss or...
Set Chrome, Firefox and Edge as default mail client (mailto handlers)

To set Chrome, Edge, or Firefox as default mail client for mailto links (mailto handlers) requires several steps. In...
Restrict logon time for Active Directory users

You can restrict logon times for Active Directory users for specific days or hours. This can be useful to...
Show or hide users on the logon screen with Group Policy

By default, the Windows logon screen displays some information about the current user as well as accounts that have...
Recommended security settings and new group policies for Microsoft Edge (from 107 on)

Microsoft last updated its security baseline for Edge browser 107, but it is still valid for the current versions....
Download and install ADMX templates for Microsoft Edge

If you take a look at the group policy settings in Windows 11 or the separately available ADMX files,...
Controlled folder access: Configure ransomware protection with Group Policy and PowerShell

Controlled folder access prevents suspicious programs from modifying or creating files in protected directories, such as Documents, Pictures, Favorites,...
FSLogix VHDX compaction: Resize virtual disks

The new FSLogix version, which was released in October, introduces a long-awaited feature: VHDX compaction. FSLogix is a standalone...
Block notifications in Chrome, Edge, and Firefox

Many websites ask users whether they want to receive notifications. In managed environments, this feature can be disabled via...
Disable UAC with Group Policy and set PIN in Windows Hello

User Account Control helps to implement proper permission levels for users accessing systems. Instead of needing administrator privileges, UAC...
Windows 10 22H2: New Group Policy settings and updated Security Baseline, no ADK

Microsoft released version 22H2 of Windows 10 (Windows 10 2022 Update). It offers practically no new features for end...
Configuring the cloud clipboard in Windows 10/11 with Group Policy and PowerShell

In Windows 10 1809, Microsoft introduced a clipboard with multiple entries and added the ability to sync its contents...
New group policies in Windows 11 2022: Start menu, taskbar, winget, printing, Defender, and IE

The current release of Windows 11 includes over 70 new settings for group policies. Most of these serve as...
Security baseline for Windows 11 2022: New recommended settings for printing, Defender, NetBIOS, and VBS

Together with the release of Windows 11 2022, Microsoft published the corresponding security baseline. It recommends activating a whole...
Custom error message for access denied

When you access a file share in Windows and the conditions for access are not met, you are normally...
Microsoft Defender: Control updates for malware signatures using Group Policy or PowerShell

Obtaining effective protection by virus scanners requires that they always use the latest definitions. Therefore, Microsoft Defender is not...
Manage Google Chrome or Microsoft Edge with Group Policy

Managing Google Chrome using Group Policy is not a new idea. Because Microsoft Edge, as you may know, is...
Configure attack surface reduction in Microsoft Defender using Group Policy or PowerShell

In addition to the virus scanner, Microsoft Defender offers other security functions. These include the reduction of the attack...