Re: Software Restriction Policy

From: Debbie Giuliano (gda6587_at_qwest.net)
Date: 01/27/05 

Date: Thu, 27 Jan 2005 16:07:01 -0700

Hello KM,

That did the trick, I now have the software restrictions folder. Thanks
very much. I did not need to import the snap-ins. It must have been
certificate manager snap-in that did the trick.

Thanks again and I owe you a big favor.

Deb 

-- 
---------------------------------------------------------------------
"Eliminate annoying spam!
My mailbox is protected by iHateSpam, the #1-rated spam buster."
http://www.ihatespam.net
"Debbie Giuliano" <gda6587@qwest.net> wrote in message 
news:%23m4vtlLBFHA.3592@TK2MSFTNGP09.phx.gbl...
>I believe I had the Certificate MMC Snap-In in.  However, I am running 
>through another FBA and I will check the registry keys and import them and 
>let you know what happens.  Thanks for all your help, it is much 
>appreciated!  I should know in a couple of hours.
>
> -- 
>
>
> ---------------------------------------------------------------------
> "Eliminate annoying spam!
> My mailbox is protected by iHateSpam, the #1-rated spam buster."
>
> http://www.ihatespam.net
>
>
> "KM" <konstmor@nospam_yahoo.com> wrote in message 
> news:eB6PX6KBFHA.2076@TK2MSFTNGP10.phx.gbl...
>> Debbie,
>>
>> Just in case, check if you also got "Certificate MMC Snap-In" component.
>>
>> If you did, please exprot the following keys from XP Pro machine and 
>> install them on your run time:
>>
>> [HKLM\SOFTWARE\Microsoft\MMC\SnapIns\{93F7AA8E-CF82-4CB7-9251-48BC637A43B8}]
>>
>> [HKLM\SOFTWARE\Microsoft\MMC\NodeTypes\{668A49ED-8888-11d1-AB72-00C04FB6C6FA}]
>>
>> Then reboot and see if the folder appears in the running secpol.msc GUI.
>> Let us know the results.
>>
>> -- 
>> Regards,
>>        KM, BSquare Corp.
>>
>>
>>> Yes, I have Security Shell Extension and Windows Security Configuration
>>> Editor Client Engine and Windows Security Configuration Editor Engine as
>>> well.  I am unsure if I have to do something custom for it to appear
>>>
>>> -- 
>>>
>>>
>>> ---------------------------------------------------------------------
>>> "Eliminate annoying spam!
>>> My mailbox is protected by iHateSpam, the #1-rated spam buster."
>>>
>>> http://www.ihatespam.net
>>>
>>>
>>> "KM" <konstmor@nospam_yahoo.com> wrote in message
>>> news:ueRQwmKBFHA.1408@TK2MSFTNGP10.phx.gbl...
>>> > Debbie,
>>> >
>>> > Do you have "Security Shell Extension" component in your 
>>> > configuration?
>>> > I assumed the "Windows Security Configuration Editor Client Engine"
>>> > component is in your image already.
>>> >
>>> >
>>> > Also, that was a known issue with SP1:
>>> > http://groups-beta.google.com/group/microsoft.public.windowsxp.embedded/msg/576f8d764b15fe40
>>> >
>>> > -- 
>>> > Regards,
>>> >        KM, BSquare Corp.
>>> >
>>> >> I have currently upgraded to XPe SP2.  I have added the necessary
>>> >> snap-ins
>>> >> for managment console and local security policy.  However in the 
>>> >> local
>>> >> security policy on an XP Pro machine I have a folder called Software
>>> >> Restriction Policy.  This policy will allow you to add a file path to
>>> >> restrict users from using a program.  I have a few customer who want 
>>> >> to
>>> >> disallow users to use Internet Explorer.  When I view the local 
>>> >> security
>>> >> policy on the XPe machine, I have no folder called Software 
>>> >> Restrictions.
>>> >> I
>>> >> looked in the mmc and tried adding snap ins but do not see how I can 
>>> >> get
>>> >> this folder.  I also know that on XP Home that the software 
>>> >> restriction
>>> >> policy folder is not available in XP Home.  Is that also the case 
>>> >> with
>>> >> XPe?
>>> >> Or am I missing a component in my image?
>>> >>
>>> >> Thanks,
>>> >>
>>> >> Debbie Giuliano
>>> >>
>>> >> -- 
>>> >>
>>> >>
>>> >> ---------------------------------------------------------------------
>>> >> "Eliminate annoying spam!
>>> >> My mailbox is protected by iHateSpam, the #1-rated spam buster."
>>> >>
>>> >> http://www.ihatespam.net
>>> >>
>>> >>
>>> >>
>>> >
>>> >
>>>
>>>
>>
>>
>
>

Relevant Pages

  • Re: allow users to run application
    ... Security and Configuration Analysis mmc Snap-in. ... > you will find users denied access to the application folder in program ... > user computer use policy. ... >>I have a bunch of application that needs admin rights to run. ...
    (microsoft.public.win2000.group_policy)
  • Re: Cannot Open Local Policy Database
    ... folder and make sure administrators has access. ... One thing we do to stop local policy applying to admins is remove access to ... > Security patches. ... > admin ofcourse), I get the error "Windows cannot open the ...
    (microsoft.public.win2000.security)
  • Re: AD DC and File Permissions
    ... The Group policy setting for file and folder security is found under ... > NIL about file permissions there. ...
    (microsoft.public.win2000.active_directory)
  • Re: audit folder/file delet
    ... >size of the security log and only audit the bare number of permissions for the bare ... >> I try to audit a folder and its subdirectory for deletion. ... >> first to enable in local security policy, audit policy, audit object ...
    (microsoft.public.win2000.security)
  • Re: << Small Bus Server news of the week>>
    ... > will pick up the mail that is in the Incoming Mail folder. ... > A Chinese security group has released sample ... > Cyber law expert Pavan Duggal feels India's ... > A California blood bank has retrieved a stolen ...
    (microsoft.public.backoffice.smallbiz)