Re: Software Restriction not working
- From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxx>
- Date: Tue, 20 Sep 2005 08:23:17 -0500
Keep in mind that applications often call other executables when you try to
start them and that shortcuts are also restricted by SRP which may or may
not be a problem in your case. You might try changing your rule to allow
access to the whole folder for IE to see if that makes a difference and
trying to execute IE directly from the iexplore.exe file in the folder
instead of via the desktop. Look in the application log to see if you can
find anything helpful recorded there with Software Restriction Policies as
the source of the event. For hard to troubleshoot problems you may want to
use the free tool filemon from SysInternals to see if it shows access denied
entries in its log when you try to execute IE which may point to another
file. If you have not seen the link below it is pretty good at explaining
some of the ins and outs of SRP. --- Steve
http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/rstrplcy.mspx
"Gr8Gyro" <Gr8Gyro@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:78FB0175-DDEB-45FC-9BD8-BC9CBCB7021F@xxxxxxxxxxxxxxxx
>I have software restriction policy on a win2003 set as follows:
> Local Group Policy
> Default security level: disallowed
> Path rules
> c:\program files\internet explorer\iexplore.exe - unrestricted.
>
> If i understand group policies, this should allow a user access only to
> internet explorer yet when I click on IE I get the unallowed message
> because
> of policy restrictions.
>
> Can someone tell me if I am doing something wrong??
>
> I would appreciate any feedback.
>
>
> --
> Gyro
.
- Prev by Date: Re: Windows Firewall Group Policy Settings
- Next by Date: Re: Permissions on filesystem via Group policy
- Previous by thread: Re: Windows Firewall Group Policy Settings
- Next by thread: GPO access to security settings tab on C: properties
- Index(es):
Relevant Pages
|
