How to Add 'MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? "Auto" <auto[ at ]auto.it> 13.07.2007 06:33:10 Hello, I have defined 2 groups policy in Windows Server 2003 SP2, and i would like to add ''MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? How can i do that ? Thanks.

Re: How to Add 'MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? "Florian Frommherz [MVP]" <florian[ at ]PLEASELEAVETHISOUT.frickelsoft.net> 13.07.2007 07:24:26 Howdie! Auto schrieb: [Quoted Text] > I have defined 2 groups policy in Windows Server 2003 SP2, and i would like > to add ''MyFile.exe' to the 'Run only allowed Windows applications', > using a Script / Registry / WMI / API or whatever ? I think I don't get your issue. You already defined the policy "Run only allowed Windows application" from UserConf\AdmTempl\System\ ? Why don't you add your "MyFile.exe" to the "List of allowed applications [Show]"? cheers, Florian -- Microsoft MVP - Windows Server - Group Policy. eMail: prename [at] frickelsoft [dot] net. blog: http://www.frickelsoft.net/blog.

Re: How to Add 'MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? "Auto" <auto[ at ]auto.it> 13.07.2007 09:29:38 "Florian Frommherz [MVP]" <florian[ at ]PLEASELEAVETHISOUT.frickelsoft.net> wrote in message news:e19Vm7RxHHA.4668[ at ]TK2MSFTNGP06.phx.gbl... [Quoted Text] > Howdie! > > Auto schrieb: > > I have defined 2 groups policy in Windows Server 2003 SP2, and i would like > > to add ''MyFile.exe' to the 'Run only allowed Windows applications', > > using a Script / Registry / WMI / API or whatever ? > > I think I don't get your issue. You already defined the policy "Run only > allowed Windows application" from UserConf\AdmTempl\System\ ? Why don't > you add your "MyFile.exe" to the "List of allowed applications [Show]"? Because i can't do that directly. This have to be done by my software upgrade pakage, that will run on the server by the customer. I don't have a remote connection to the server.

Re: How to Add 'MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? "Auto" <auto[ at ]auto.it> 13.07.2007 09:57:21 "Auto" <auto[ at ]auto.it> wrote in message news:uxPYWBTxHHA.4384[ at ]TK2MSFTNGP02.phx.gbl... [Quoted Text] > > "Florian Frommherz [MVP]" <florian[ at ]PLEASELEAVETHISOUT.frickelsoft.net> wrote > in message news:e19Vm7RxHHA.4668[ at ]TK2MSFTNGP06.phx.gbl... > > Howdie! > > > > Auto schrieb: > > > I have defined 2 groups policy in Windows Server 2003 SP2, and i would > like > > > to add ''MyFile.exe' to the 'Run only allowed Windows applications', > > > using a Script / Registry / WMI / API or whatever ? > > > > I think I don't get your issue. You already defined the policy "Run only > > allowed Windows application" from UserConf\AdmTempl\System\ ? Why don't > > you add your "MyFile.exe" to the "List of allowed applications [Show]"? > > Because i can't do that directly. > This have to be done by my software upgrade pakage, that will run on the > server by the customer. > I don't have a remote connection to the server. I found the Registry key: [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy Objects\MyDomain.com{guid}User\Software\Microsoft\Windows\CurrentVersion\Pol icies\Explorer\RestrictRun]

Re: How to Add 'MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? "Florian Frommherz [MVP]" <florian[ at ]PLEASELEAVETHISOUT.frickelsoft.net> 13.07.2007 11:31:44 Howdie! Auto schrieb: [Quoted Text] > I found the Registry key: > > [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy > Objects\MyDomain.com{guid}User\Software\Microsoft\Windows\CurrentVersion\Pol > icies\Explorer\RestrictRun] Great! My next suggestion would have been "auditing" the registry with regmon or a program like that in order to see whether and where this gets written to. Thanks for posting your results back! cheers, Florian -- Microsoft MVP - Windows Server - Group Policy. eMail: prename [at] frickelsoft [dot] net. blog: http://www.frickelsoft.net/blog.

Re: How to Add 'MyFile.exe' to the 'Run only allowed Windows applications', using a Script / Registry / WMI / API or whatever ? "Auto" <Auto[ at ]Auto.com> 13.07.2007 22:07:16 "Florian Frommherz [MVP]" <florian[ at ]PLEASELEAVETHISOUT.frickelsoft.net> wrote in message news:uuFXzFUxHHA.4476[ at ]TK2MSFTNGP06.phx.gbl... [Quoted Text] > Howdie! > > Auto schrieb: >> I found the Registry key: >> >> [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy >> Objects\MyDomain.com{guid}User\Software\Microsoft\Windows\CurrentVersion\Pol >> icies\Explorer\RestrictRun] > > Great! My next suggestion would have been "auditing" the registry with > regmon or a program like that in order to see whether and where this gets > written to. > > Thanks for posting your results back! Anyway, this doesn't fix my problem. I can add the "MyFile.exe" to that Registry Key, but, as soon as I write it, it is deleted automatically. I tried to add it also manually, using Regedit: i see the new row just added, but if i press F5 to refresh the list, it disappears. In the list of 'Run only allowed Windows applications', there is a strange key called, if i remember well: "**delsval" or somthing similar. With regmon i saw that it is written before rewrite all the list of 'Run only allowed Windows applications'. It seems to me that - using group policy gui - even if i add only one file to the list: "MyFile.exe" - it writes to that special key, and than rewrite all the list. :-| Not so easy... Any help?