Prevent registry editors from running silently RRS feed

  • Question

  • Hi all,
    as the name of this thread says ,i recently realized that this option in my GPO is not functioning anymore for my admin account and i suspect some registry entry has been changed silently,from my standard user it is still blocking it but not in my admin account anymore??!!???
    where specificly i can check to see what has been changed? it would always block even my admin account from running the registry(regedit.exe) till i uncheck the option in order to make some changes in reg then switch back to block it...i created applocker rules for all registry apps but i also want this functionality to work to enforce rules,how can i restore this specific policy?
    will b lookin forward for replies!!
    kind regards,
    Thursday, December 3, 2009 9:14 PM

All replies

  • No not yet?
    Saturday, December 5, 2009 4:39 PM
  • DDOS Evader,

    Since Windows Vista you can target local GPO to 3 Targets.

    1. A specific user
    2. Adminstrators
    3. Non - Administrators

    So, probably you targeted your GPO to the Non-Administrators group.
    If you want to set the same GPO for administators you need to create the same GPO and target the administrator group.

    Kind Regeards

    IM me - TWiTTer: @DFTER
    Monday, December 7, 2009 10:57 AM
  • Hi Daft,
    well it used to work for admin as well,but how do i create GPOs?
    sorry if that is a stupid question but i dunno how to create a GPO and target to Admin group..
    Kind regards,

    PS: if u have a how-to guide i apreciate !
    Monday, December 7, 2009 5:20 PM