Windows Server Deviations and GPOs
NOTICE: This Page Has Been Moved.
Please update your bookmarks to:
https://doimspp.sharepoint.com/sites/usgs-ESS/SitePages/STIG-Deviations.aspx
Tag: gpo
Enterprise Deployment of Disable IE11
On Tuesday, November 8, 2022, the GPO “DI – BWTST Disable Internet Explorer 11” was linked to the following regions: CR, DI, ER, Science Centers, and WR. Links to this GPO on local site OUs were removed.
WHAT YOU NEED TO KNOW: All IE11 Dependencies discovered so far have been resolved by using Internet Explorer Mode in Microsoft Edge. …
Deploy Illegal DLL Search Fix Group Policy Object (GPO)
Background: The Enterprise Vulnerability Management System (eVMS)/Tenable plugin ID 48762 – MS KB2269637: Insecure Library Loading Could Allow Remote Code Execution – is a high severity vulnerability that has been found on thousands of USGS computer systems. Deploying the Microsoft patch for this vulnerability is a pre-requisite to remediation, but does not fully remediate. To complete the remediation, the CWDIllegalInDllSearch registry …
Group Policy Preferences
Advanced Group Policy Manager when used on Windows Operating Systems offers an expanded set of configurable options called Preferences. The purpose of this document is to describe the basics of Windows 7 Preferences using Group Policy Objects.
USGCB Windows Client Deviations and GPOs
NOTICE: Migration In Progress.
Most, but not all, of the content has moved. Please update your bookmarks to:
https://doimspp.sharepoint.com/sites/usgs-ESS/SitePages/STIG-Deviations.aspx
Create a Restricted Groups GPO
This page will list the steps for creating Restricted Groups policies that will add specific domain groups to the local administrators group on domain computers.
Creating a New GPO using Advanced Group Policy Management (AGPM) Console
This document describes how sites can create a new GPO using Advanced Group Policy Management Console, including how to apply WMI filters.
Edit a Pre-Staged GPO Using Advanced Group Policy Management (AGPM) Console
This page explains how to edit a pre-staged GPO using AGPM Console.
