Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
_OE-C-Browser_Chrome_Firefox_Edge_EdgeChromium
Data collected on: 04.10.2021 14:31:09
General
Details
Domainkit.edu
OwnerKIT\Domain Admins
Created28.09.2021 13:41:14
Modified28.09.2021 13:41:16
User Revisions1 (AD), 1 (SYSVOL)
Computer Revisions1 (AD), 1 (SYSVOL)
Unique ID{04CB6127-EABA-4D50-827F-DB83E0E7D4CC}
GPO StatusUser settings disabled
Links
LocationEnforcedLink StatusPath
BSI-TestNoEnabledkit.edu/KIT/Staff/SCC/Betrieb/CMK/Rechnerkonten/BSI-Test

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
NT AUTHORITY\Authenticated Users
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
KIT\Domain AdminsEdit settings, delete, modify securityNo
KIT\Domain ComputersReadNo
KIT\Enterprise AdminsEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersRead (from Security Filtering)No
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
Computer Configuration (Enabled)
Policies
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Google/Google Chrome
PolicySettingComment
Ads setting for sites with intrusive adsEnabled
Ads setting for sites with intrusive adsDo not allow ads on sites with intrusive ads
PolicySettingComment
Allow collection of WebRTC event logs from Google servicesDisabled
Allow invocation of file selection dialogsEnabled
Allow media autoplayDisabled
Allow proceeding from the SSL warning pageDisabled
Allow queries to a Google time serviceDisabled
Allow user feedbackDisabled
Block third party cookiesEnabledVerhindert u.A. das öffnen der Teams WebAPP
Continue running background apps when Google Chrome is closedDisabled
Control how Chrome Cleanup reports data to GoogleDisabled
Disable synchronization of data with GoogleEnabled
Enable alternate error pagesDisabled
Enable AutoFill for addressesDisabled
Enable AutoFill for credit cardsDisabled
Enable component updates in Google ChromeEnabled
Enable network predictionEnabled
Enable network predictionDo not predict network actions on any network connection
PolicySettingComment
Enable reporting of usage and crash-related dataDisabled
Enable search suggestionsDisabled
Enable showing full-tab promotional contentDisabled
Enable Site Isolation for every siteEnabled
Enable TranslateDisabled
Enable URL-keyed anonymized data collectionDisabled
Import saved passwords from default browser on first runDisabled
Minimum SSL version enabledEnabledMSSCT
Minimum SSL version enabledTLS 1.2
PolicySettingComment
Proxy settingsEnabled
Proxy settings{"ProxyMode":"system"}
PolicySettingComment
Set Google Chrome as Default BrowserEnabled
Google/Google Chrome/Content settings
PolicySettingComment
Default cookies settingEnabled
Default cookies settingKeep cookies for the duration of the session
Google/Google Chrome/Deprecated policies
PolicySettingComment
Configure extension installation blacklistEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
PolicySettingComment
Configure native messaging blocklistEnabled
Names of the forbidden native messaging hosts (or * for all)
*
PolicySettingComment
Enable Safe BrowsingEnabled
Google/Google Chrome/Extensions
PolicySettingComment
Configure extension installation blocklistEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
PolicySettingComment
Configure the list of force-installed apps and extensionsEnabled
Extension/App IDs and update URLs to be silently installed
Bitwarden - Free Password Manager
nngceckbapebfimnlniiiahkandclblb
uBlock Origin
cjpalhdlnbpafiamejdnhcphjbkeiagm
Blank Page
ihknoknoahjhldmpdoajjdkfjhddgpcd
Google/Google Chrome/HTTP authentication
PolicySettingComment
Supported authentication schemesEnabled
Supported authentication schemesntlm,negotiate
Google/Google Chrome/Password manager
PolicySettingComment
Enable saving passwords to the password managerDisabled
Google/Google Chrome/Printing
PolicySettingComment
Enable Google Cloud Print proxyDisabled
Enable submission of documents to Google Cloud PrintDisabled
Google/Google Chrome/Remote access
PolicySettingComment
Configure the required domain names for remote access hostsEnabled
Configure the required domain names for remote access hosts
my-awesome-domain.com
PolicySettingComment
Enable curtaining of remote access hostsEnabled
Enable firewall traversal from remote access hostDisabled
Enable or disable PIN-less authentication for remote access hostsDisabled
Google/Google Chrome/Removed policies
PolicySettingComment
Allow running plugins that are outdatedDisabled
Default Flash settingEnabled
Default Flash settingClick to play
Microsoft Edge
PolicySettingComment
Ads setting for sites with intrusive adsEnabled
Ads setting for sites with intrusive adsBlock ads on sites with intrusive ads. (Default value)
PolicySettingComment
Allow file selection dialogsEnabled
Allow importing of saved passwordsDisabled
Allow media autoplay for websitesDisabled
Allow queries to a Browser Network Time serviceDisabled
Allow user feedbackDisabled
Allow users to proceed from the HTTPS warning pageDisabled
Allow websites to query for available payment methodsDisabled
Block all ads on Bing search resultsEnabled
Block third party cookiesEnabledVerhindert u.A. das öffnen der Teams WebAPP
Block tracking of users' web-browsing activityEnabled
Block tracking of users' web-browsing activityStrict (blocks harmful trackers and majority of trackers from all sites; content and ads will have minimal personalization. Some parts of sites might not work)
PolicySettingComment
Browser sign-in settingsEnabled
Browser sign-in settingsDisable browser sign-in
PolicySettingComment
Configure Do Not TrackEnabled
Configure the Share experienceEnabled
Configure the Share experienceDon't allow using the Share experience
PolicySettingComment
Continue running background apps after Microsoft Edge closesDisabled
Disable synchronization of data using Microsoft sync servicesEnabled
Enable AutoFill for addressesDisabled
Enable AutoFill for credit cardsDisabled
Enable component updates in Microsoft EdgeEnabled
Enable full-tab promotional contentDisabled
Enable Microsoft Search in Bing suggestions in the address barDisabled
Enable network predictionEnabled
Enable network predictionDon't predict network actions on any network connection
PolicySettingComment
Enable resolution of navigation errors using a web serviceDisabled
Enable search suggestionsDisabled
Enable site isolation for every siteEnabled
Enable TranslateDisabled
Enable usage and crash-related data reporting (obsolete)Disabled
Enables background updates to the list of available templates for Collections and other features that use templatesDisabled
Hide the First-run experience and splash screenEnabledFIRSTRUN
Minimum TLS version enabled (deprecated)EnabledMSSCT
Minimum TLS version enabledTLS 1.2
PolicySettingComment
Send site information to improve Microsoft services (obsolete)Disabled
Set Microsoft Edge as default browserDisabled
Suggest similar pages when a webpage can't be foundDisabled
Microsoft Edge/Content settings
PolicySettingComment
Configure cookiesEnabled
Configure cookiesKeep cookies for the duration of the session, except ones listed in "SaveCookiesOnExit"
PolicySettingComment
Default Adobe Flash setting (obsolete)Enabled
Default Adobe Flash settingClick to play
PolicySettingComment
Default geolocation settingEnabled
Default geolocation settingDon't allow any site to track users' physical location
Microsoft Edge/Extensions
PolicySettingComment
Blocks external extensions from being installedNot ConfiguredDeaktiviert = Chrome Extensions im Edge zulassen
Control which extensions are installed silentlyEnabled
Extension/App IDs and update URLs to be silently installed
Bitwarden - Free Password Manager
jbkfoedolllekgbhcbcoahefnbanhhlh
uBlock Origin
odfafepnkmbhccpbejgmiehpchacaeak
Blank Page
ihknoknoahjhldmpdoajjdkfjhddgpcd
PolicySettingComment
Control which extensions cannot be installedEnabled
Extension IDs the user should be prevented from installing (or * for all)
*
Microsoft Edge/HTTP authentication
PolicySettingComment
Supported authentication schemesEnabled
Supported authentication schemesntlm,negotiate
Microsoft Edge/Native Messaging
PolicySettingComment
Allow user-level native messaging hosts (installed without admin permissions)DisabledMSSCT
Microsoft Edge/Password manager and protection
PolicySettingComment
Enable saving passwords to the password managerDisabled
Microsoft Edge/Proxy server
PolicySettingComment
Proxy settingsEnabled
Proxy settings{"ProxyMode":"system"}
Microsoft Edge/SmartScreen settings
PolicySettingComment
Configure Microsoft Defender SmartScreenDisabled
Configure Microsoft Defender SmartScreen to block potentially unwanted appsDisabled
Force Microsoft Defender SmartScreen checks on downloads from trusted sourcesDisabled
Microsoft Edge/Startup, home page and new tab page
PolicySettingComment
Action to take on startupEnabled
Action to take on startupOpen a new tab
PolicySettingComment
Configure the background types allowed for the new tab page layoutEnabled
New tab page experienceDisable all background image types
PolicySettingComment
Set the new tab page as the home pageEnabled
Mozilla/Firefox
PolicySettingComment
Disable Firefox AccountsEnabled
Disable Firefox StudiesEnabled
Disable Master Password CreationEnabled
Disable TelemetryEnabled
Disable UpdateEnabled10.2020
Don't Check Default BrowserEnabled
Minimum SSL version enabledEnabledMSSCT
TLS 1.2
PolicySettingComment
Offer to save loginsDisabled
Offer to save logins (default)Disabled
Password ManagerDisabled
Prevent overriding certificate errorsEnabled
Prevent overriding safe browsing errorsEnabled
Primary (Master) PasswordEnabled10.2020
Proxy SettingsEnabled
Don't allow proxy settings to be changed.Enabled
Connection Type:
Use system proxy settings
HTTP Proxy:
Use this proxy server for all protocols.Disabled
SSL Proxy:
FTP Proxy:
SOCKS Host:
SOCKS Version:
SOCKS v5
No proxy for
Example: .mozilla.org, .net.nz, 192.168.1.0/24
Automatic proxy configuration URL:
Do not prompt for authentication if password is saved.Disabled
Proxy DNS when using SOCKS v5.Disabled
PolicySettingComment
Tracking Protection (Moved)Enabled
Don't allow tracking protection preferences to be changed.Enabled
Block cryptomining scripts.Enabled
Block fingerprinting scripts.Enabled
Exceptions:
dummy
Mozilla/Firefox/Addons
PolicySettingComment
Allow add-on installs from websitesDisabledwird durch ".\Erweiterungen\Erweiterungen mit JSON verwalten" gesteuert
Mozilla/Firefox/Certificates
PolicySettingComment
Import Enterprise RootsEnabled
Mozilla/Firefox/Cookies
PolicySettingComment
Accept third-party cookiesEnabledVerhindert u.A. das öffnen der Teams WebAPP
Never
PolicySettingComment
Reject trackersEnabled
Mozilla/Firefox/Extensions
PolicySettingComment
Extension ManagementEnabledAchtung! Das JSON muss als Einzeiler in das Multi_SZ Feld eingetragen werden. KEINE Zeilenumbrüche

Es wird die ID und die Download URL benötigt, Eine Extension im FF kann diese leichter anzeigen, wenn man auf der Erweiterungsseite ist.
ID: queryamoid@kaply.com
URL: https://github.com/mkaply/queryamoid/releases/download/v0.1/query_amo_addon_id-0.1-fx.xpi
{"*": {"installation_mode":"blocked"},"{446900e4-71c2-419f-a6a7-df9c091e268b}": {"installation_mode": "force_installed","install_url":"https://addons.mozilla.org/firefox/downloads/latest/bitwarden-password-manager/latest.xpi"},"uBlock0@raymondhill.net": {"installation_mode": "force_installed","install_url": "https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi"}}
Mozilla/Firefox/Home page
PolicySettingComment
Start PageEnabled
None
PolicySettingComment
URL for Home pageEnabled
URL:
about:blank
Don't allow the homepage to be changed.Disabled
Mozilla/Firefox/Permissions/Camera
PolicySettingComment
Block new requests asking to access the cameraEnabled
Do not allow preferences to be changedEnabled
Mozilla/Firefox/Permissions/Location
PolicySettingComment
Block new requests asking to access locationEnabled
Do not allow preferences to be changedEnabled
Mozilla/Firefox/Permissions/Microphone
PolicySettingComment
Block new requests asking to access the microphoneEnabled
Do not allow preferences to be changedEnabled
Mozilla/Firefox/Permissions/Notifications
PolicySettingComment
Block new requests asking to send notificationsEnabled
Do not allow preferences to be changedEnabled
Windows Components/Microsoft Edge
PolicySettingComment
Allow Address bar drop-down list suggestionsDisabledMS
Allow configuration updates for the Books LibraryDisabledMS
Allow extended telemetry for the Books tabDisabledMS
Allow ExtensionsDisabledMS
Allow Microsoft Compatibility ListDisabledMS
Allow Microsoft Edge to start and load the Start and New Tab page at Windows startup and each time Microsoft Edge is closedEnabledMS
Configure tab preloadingPrevent tab preloading
PolicySettingComment
Allow Sideloading of extensionDisabledMS
Allow web content on New Tab pageDisabledMS
Configure AutofillDisabledMS
Configure cookiesEnabledMS
Configure Cookies Block only 3rd-party cookies
PolicySettingComment
Configure Do Not TrackEnabledMS
Configure Password ManagerDisabledMS
Configure search suggestions in Address barDisabledMS
Configure Start pagesEnabledMS
Use this format: <support.contoso.com><https://support.microsoft.com/><about:blank>
PolicySettingComment
Configure the Adobe Flash Click-to-Run settingEnabledMS
Configure Windows Defender SmartScreenNot ConfiguredMS
Prevent certificate error overridesEnabledMS
Prevent Microsoft Edge from gathering Live Tile information when pinning a site to StartEnabledMS
Windows Components/Windows Defender SmartScreen/Microsoft Edge
PolicySettingComment
Configure Windows Defender SmartScreenDisabled
User Configuration (Disabled)
No settings defined.