In this tutorial, I will explain how to sign your scripts. Before going into the subject, we will see why signing the scripts, the main reason is security. If your environment (computers + servers) is configured to run only signed scripts and a PowerShell script is launched in a malicious file, it will be neutralized …
In this tutorial, I will explain how to configure the default applications (browser, PDF reader…) using a Group Policy (GPO) in an Active Directory environment. Puzzle of IT services, it is the use of default programs for certain types of files (PDF, Images) or even Internet browser, the configuration of such a group strategy allows …
In this tutorial, I will walk you through how to schedule computers to automatically shut down using Group Policy. In fact, there is no native functionality in Windows to shut down computers, but we will use Group Policy to deploy a scheduled task to Active Directory domain member computers that will shut them down. Often …
Since Windows 2012, it is possible to force the update of group policies from the Group Policy Management console. It is no longer necessary to go through all the computers and do a gpudapte. To work, the firewall must allow RPC calls to pass. Force update of GPOs remotely 1. Open the Group Policy Management …
In this tutorial, I will walk you through how to create and use Group Policy WMI Filters to filter the application of Group Policy. Before starting, the “technical” part where we will see how to configure and use a WMI filter on a group policy, I will start from an example to show you the …
In this tutorial, I will explain how to force DNS registration of computers by Group Policy (GPO) in an Active Directory environment. Maintaining a clean, up-to-date DNS (Active Directory) zone is not easy, especially with dynamic computer registration. The first step is the activation of automatic cleaning, but it happens that once this is activated, …
In this tutorial, I will explain how by Group Policy (GPO) in an Active Directory environment, block the launch of programs and prevent the installation of certain software with the software restriction policy. By default, if the users are not administrator (local) of the computer, it is not normally possible to install programs, on the …
In this tutorial, I will walk you through how to disable SMBv1 support add-on using Group Policy. To disable full SMBv1 support, you must act on the two SMB components which are: The server who is the one who shares The client that allows the use of shared resources. Disabling by group policy is done …
In this “troubleshooting”, I will explain how to remove the Remote Installation Services settings that are configured on the Default Domain Policy. On Active Directory domains, which were created with an older version of Windows Server (2003), User settings are configured (Policies / Windows Settings / Remote Installation Services / Client Installation Wizard Options). Custom …
For companies that use firefox as a browser, it was difficult to control due to the lack of admx file and the implementation of policies required scripts to copy the settings file. Since May 2018, firefox has officially offered ADMX files in order to be able to set up group policies (GPO) to configure Firefox …