Demo GPO Local Policy (audit Policy) and software 限制
1.設用戶登入audit (圖1)
2.設管理用戶audit (圖1)
Note:管理用戶包括A user account or group is created, changed, or deleted, A user account is renamed, disabled, or enabled, A password is set or changed.
3.限制軟件訪問 , 測試calc 和 regeidt (圖2,3)
4.使用regeidt 默認enable remote desktop
Computer Configuration > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile > Windows Firewall: Allow Remote Exception (圖4)
Computer Configuration > Administrative Templates > Windows Components > Terminal Services > Allow users to connect remotely using Terminal Services (圖5)
MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server
圖1
1.設用戶登入audit (圖1)
2.設管理用戶audit (圖1)
Note:管理用戶包括A user account or group is created, changed, or deleted, A user account is renamed, disabled, or enabled, A password is set or changed.
3.限制軟件訪問 , 測試calc 和 regeidt (圖2,3)
4.使用regeidt 默認enable remote desktop
Computer Configuration > Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile > Windows Firewall: Allow Remote Exception (圖4)
Computer Configuration > Administrative Templates > Windows Components > Terminal Services > Allow users to connect remotely using Terminal Services (圖5)
MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server
圖1
軟件限制,首給自己留後路,在enforcement上要configure all user.
圖3
圖4
圖5
