myITforum.com Community Forum myITforum.com Community Forum

Home  Forums  Blogs  Live Support chat  Search Articles  Wiki  FAQ  Email Lists  Register  Login  My Profile  Inbox  Address Book  My Subscription  My Forums 

Photo Gallery  Member List  Search  Calendars  FAQ  Ticket List  Log Out

All Forums RSS Feed Subscription:


  


Software Restriction

 
View related threads: (in this forum | in all forums)

Logged in as: Guest
  Printable Version
All Forums >> [Management Products] >> Active Directory and Group Policy >> Software Restriction Page: [1]
Login
Message << Older Topic   Newer Topic >>
Software Restriction - 9/10/2008 9:24:35 AM   
bkrekeler535

 

Posts: 13
Score: -4
Joined: 6/23/2008
Status: offline 		I'm trying to restrict running (2) .exe files that are really virus/malware.  To do this I'm setting up a software restriction policy within group policy.  So far, it hasn't worked.  I'm testing it by trying to restrict hpsetup.exe from running in a c:\acad2000 folder.  Below are my settings:

Path Ruleshide




%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%





Security Level
Disallowed

Description


Date last modified
9/10/2008 8:41:09 AM

%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%*.exe





Security Level
Disallowed

Description


Date last modified
9/10/2008 8:40:53 AM

%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%System32\*.exe





Security Level
Disallowed

Description


Date last modified
9/10/2008 8:41:14 AM

%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir%





Security Level
Disallowed

Description


Date last modified
9/10/2008 8:41:18 AM

c:\ACAD2000\hpsetup.exe





Security Level
Disallowed

Description


Date last modified
9/10/2008 8:40:34 AMIs there something else I need to configure in order for it to work?  When I go to my test box (after doing a gpupdate /force and/or rebooting) it still lets me kick off the hpsetup.exe
Post #: 1
RE: Software Restriction - 9/14/2008 9:27:28 PM   
rbennett806


Posts: 825
Score: 13
Joined: 6/14/2006
Status: offline 		Well, first off...
Is this an XP or Vista machine?
Have you used GPRESULT to check to make sure that it's reading the GPO? (the command syntax is slightly different depending on your OS)
Is this a loopback GPO? If not, is it set above the user and/or the computer account object in Active Directory?

Just some questions to gather more info...

(in reply to bkrekeler535)
Post #: 2
Page:   [1]
All Forums >> [Management Products] >> Active Directory and Group Policy >> Software Restriction Page: [1]
Jump to:





New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts



  
Forum Software © ASPPlayground.NET Advanced Edition 2.4.5 ANSI

0.438