diff --git a/windows/client-management/enable-admx-backed-policies-in-mdm.md b/windows/client-management/enable-admx-backed-policies-in-mdm.md
index a5dc882b93..ce77a2e025 100644
--- a/windows/client-management/enable-admx-backed-policies-in-mdm.md
+++ b/windows/client-management/enable-admx-backed-policies-in-mdm.md
@@ -8,7 +8,7 @@ ms.technology: itpro-manage
author: vinaypamnani-msft
ms.localizationpriority: medium
ms.date: 11/01/2017
-ms.reviewer:
+ms.reviewer:
manager: aaroncz
---
@@ -105,7 +105,7 @@ See [Support Tip: Ingesting Office ADMX policies using Microsoft Intune](https:/
2. Find the variable names of the parameters in the ADMX file.
- You can find the ADMX file name in the policy description in Policy CSP. In this example, the filename appv.admx is listed in [AppVirtualization/PublishingAllowServer2](mdm/policy-configuration-service-provider.md#appvirtualization-publishingallowserver2).
+ You can find the ADMX file name in the policy description in Policy CSP. In this example, the filename appv.admx is listed in [AppVirtualization/PublishingAllowServer2](mdm/policy-csp-appvirtualization.md#appvirtualization-publishingallowserver2).
diff --git a/windows/client-management/mdm/defender-csp.md b/windows/client-management/mdm/defender-csp.md
index f0d3fb39b0..dd6034f807 100644
--- a/windows/client-management/mdm/defender-csp.md
+++ b/windows/client-management/mdm/defender-csp.md
@@ -1,445 +1,3100 @@
---
title: Defender CSP
-description: Learn how the Windows Defender configuration service provider is used to configure various Windows Defender actions across the enterprise.
-ms.reviewer:
+description: Learn more about the Defender CSP
+author: vinaypamnani-msft
manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/02/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 02/22/2022
+ms.topic: reference
---
+
+
+
# Defender CSP
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+
+
-> [!WARNING]
-> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+The following example shows the Defender configuration service provider in tree format.
-The Windows Defender configuration service provider is used to configure various Windows Defender actions across the enterprise.
-
-The following example shows the Windows Defender configuration service provider in tree format.
+```text
+./Device/Vendor/MSFT/Defender
+--- Configuration
+------ AllowDatagramProcessingOnWinServer
+------ AllowNetworkProtectionDownLevel
+------ AllowNetworkProtectionOnWinServer
+------ ASROnlyPerRuleExclusions
+------ DataDuplicationDirectory
+------ DataDuplicationRemoteLocation
+------ DefaultEnforcement
+------ DeviceControl
+--------- PolicyGroups
+------------ {GroupId}
+--------------- GroupData
+--------- PolicyRules
+------------ {RuleId}
+--------------- RuleData
+------ DeviceControlEnabled
+------ DisableCpuThrottleOnIdleScans
+------ DisableDnsOverTcpParsing
+------ DisableDnsParsing
+------ DisableFtpParsing
+------ DisableGradualRelease
+------ DisableHttpParsing
+------ DisableInboundConnectionFiltering
+------ DisableLocalAdminMerge
+------ DisableNetworkProtectionPerfTelemetry
+------ DisableRdpParsing
+------ DisableSshParsing
+------ DisableTlsParsing
+------ EnableDnsSinkhole
+------ EnableFileHashComputation
+------ EngineUpdatesChannel
+------ ExcludedIpAddresses
+------ HideExclusionsFromLocalAdmins
+------ MeteredConnectionUpdates
+------ PassiveRemediation
+------ PauseUpdateExpirationTime
+------ PauseUpdateFlag
+------ PauseUpdateStartTime
+------ PlatformUpdatesChannel
+------ SchedulerRandomizationTime
+------ SecurityIntelligenceUpdatesChannel
+------ SupportLogLocation
+------ TamperProtection
+------ TDTFeatureEnabled
+------ ThrottleForScheduledScanOnly
+--- Detections
+------ {ThreatId}
+--------- Category
+--------- CurrentStatus
+--------- ExecutionStatus
+--------- InitialDetectionTime
+--------- LastThreatStatusChangeTime
+--------- Name
+--------- NumberOfDetections
+--------- Severity
+--------- URL
+--- Health
+------ ComputerState
+------ DefenderEnabled
+------ DefenderVersion
+------ EngineVersion
+------ FullScanOverdue
+------ FullScanRequired
+------ FullScanSigVersion
+------ FullScanTime
+------ IsVirtualMachine
+------ NisEnabled
+------ ProductStatus
+------ QuickScanOverdue
+------ QuickScanSigVersion
+------ QuickScanTime
+------ RebootRequired
+------ RtpEnabled
+------ SignatureOutOfDate
+------ SignatureVersion
+------ TamperProtectionEnabled
+--- OfflineScan
+--- RollbackEngine
+--- RollbackPlatform
+--- Scan
+--- UpdateSignature
```
-./Vendor/MSFT
-Defender
-----Detections
---------ThreatId
-------------Name
-------------URL
-------------Severity
-------------Category
-------------CurrentStatus
-------------ExecutionStatus
-------------InitialDetectionTime
-------------LastThreatStatusChangeTime
-------------NumberOfDetections
-----EnableNetworkProtection
---------AllowNetworkProtectionDownLevel
---------AllowNetworkProtectionOnWinServer
---------DisableNetworkProtectionPerfTelemetry
---------DisableDatagramProcessing
---------DisableInboundConnectionFiltering
---------EnableDnsSinkhole
---------DisableDnsOverTcpParsing
---------DisableHttpParsing
---------DisableRdpParsing
---------DisableSshParsing
---------DisableTlsParsing
-----Health
---------ProductStatus (Added in Windows 10 version 1809)
---------ComputerState
---------DefenderEnabled
---------RtpEnabled
---------NisEnabled
---------QuickScanOverdue
---------FullScanOverdue
---------SignatureOutOfDate
---------RebootRequired
---------FullScanRequired
---------EngineVersion
---------SignatureVersion
---------DefenderVersion
---------QuickScanTime
---------FullScanTime
---------QuickScanSigVersion
---------FullScanSigVersion
---------TamperProtectionEnabled (Added in Windows 10, version 1903)
---------IsVirtualMachine (Added in Windows 10, version 1903)
-----Configuration (Added in Windows 10, version 1903)
---------TamperProtection (Added in Windows 10, version 1903)
---------EnableFileHashComputation (Added in Windows 10, version 1903)
---------SupportLogLocation (Added in the next major release of Windows 10)
---------PlatformUpdatesChannel (Added with the 4.18.2106.5 Defender platform release)
---------EngineUpdatesChannel (Added with the 4.18.2106.5 Defender platform release)
---------SecurityIntelligenceUpdatesChannel (Added with the 4.18.2106.5 Defender platform release)
---------DisableGradualRelease (Added with the 4.18.2106.5 Defender platform release)
---------PassiveRemediation (Added with the 4.18.2202.X Defender platform release)
-----Scan
-----UpdateSignature
-----OfflineScan (Added in Windows 10 version 1803)
+
+
+
+## Configuration
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration
```
-**Detections**
+
+
+
+An interior node to group Windows Defender configuration information.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Configuration/AllowDatagramProcessingOnWinServer
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/AllowDatagramProcessingOnWinServer
+```
+
+
+
+This settings controls whether Network Protection is allowed to enable datagram processing on Windows Server. If false, the value of DisableDatagramProcessing will be ignored and default to disabling Datagram inspection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Datagram processing on Windows Server is enabled. |
+| 0 | Datagram processing on Windows Server is disabled. |
+
+
+
+
+
+
+
+
+
+### Configuration/AllowNetworkProtectionDownLevel
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/AllowNetworkProtectionDownLevel
+```
+
+
+
+This settings controls whether Network Protection is allowed to be configured into block or audit mode on windows downlevel of RS3. If false, the value of EnableNetworkProtection will be ignored.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Network protection will be enabled downlevel. |
+| 0 | Network protection will be disabled downlevel. |
+
+
+
+
+
+
+
+
+
+### Configuration/AllowNetworkProtectionOnWinServer
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/AllowNetworkProtectionOnWinServer
+```
+
+
+
+This settings controls whether Network Protection is allowed to be configured into block or audit mode on Windows Server. If false, the value of EnableNetworkProtection will be ignored.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 (Default) | Allow |
+| 0 | Disallow |
+
+
+
+
+
+
+
+
+
+### Configuration/ASROnlyPerRuleExclusions
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/ASROnlyPerRuleExclusions
+```
+
+
+
+Apply ASR only per rule exclusions.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/DataDuplicationDirectory
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DataDuplicationDirectory
+```
+
+
+
+Define data duplication directory for device control.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/DataDuplicationRemoteLocation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DataDuplicationRemoteLocation
+```
+
+
+
+Define data duplication remote location for device control.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/DefaultEnforcement
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DefaultEnforcement
+```
+
+
+
+Control Device Control default enforcement. This is the enforcement applied if there are no policy rules present or at the end of the policy rules evaluation none were matched.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Default Allow Enforcement |
+| 2 | Default Deny Enforcement |
+
+
+
+
+
+
+
+
+
+### Configuration/DeviceControl
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+#### Configuration/DeviceControl/PolicyGroups
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyGroups
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+##### Configuration/DeviceControl/PolicyGroups/{GroupId}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyGroups/{GroupId}
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+###### Configuration/DeviceControl/PolicyGroups/{GroupId}/GroupData
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyGroups/{GroupId}/GroupData
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+#### Configuration/DeviceControl/PolicyRules
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyRules
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+##### Configuration/DeviceControl/PolicyRules/{RuleId}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyRules/{RuleId}
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+###### Configuration/DeviceControl/PolicyRules/{RuleId}/RuleData
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControl/PolicyRules/{RuleId}/RuleData
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/DeviceControlEnabled
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DeviceControlEnabled
+```
+
+
+
+Control Device Control feature.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | |
+| 0 | |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableCpuThrottleOnIdleScans
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableCpuThrottleOnIdleScans
+```
+
+
+
+Indicates whether the CPU will be throttled for scheduled scans while the device is idle. This feature is enabled by default and will not throttle the CPU for scheduled scans performed when the device is otherwise idle, regardless of what ScanAvgCPULoadFactor is set to. For all other scheduled scans this flag will have no impact and normal throttling will occur.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 (Default) | Disable CPU Throttle on idle scans |
+| 0 | Enable CPU Throttle on idle scans |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableDnsOverTcpParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableDnsOverTcpParsing
+```
+
+
+
+This setting disables DNS over TCP Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | DNS over TCP parsing is disabled |
+| 0 (Default) | DNS over TCP parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableDnsParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableDnsParsing
+```
+
+
+
+This setting disables DNS Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | DNS parsing is disabled |
+| 0 (Default) | DNS parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableFtpParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableFtpParsing
+```
+
+
+
+This setting disables FTP Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | FTP parsing is disabled |
+| 0 (Default) | FTP parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableGradualRelease
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableGradualRelease
+```
+
+
+
+Enable this policy to disable gradual rollout of Defender updates.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Gradual release is disabled |
+| 0 | Gradual release is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableHttpParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableHttpParsing
+```
+
+
+
+This setting disables HTTP Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | HTTP parsing is disabled |
+| 0 (Default) | HTTP parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableInboundConnectionFiltering
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableInboundConnectionFiltering
+```
+
+
+
+This setting disables Inbound connection filtering for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Inbound connection filtering is disabled |
+| 0 | Inbound connection filtering is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableLocalAdminMerge
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableLocalAdminMerge
+```
+
+
+
+When this value is set to false, it allows a local admin the ability to specify some settings for complex list type that will then merge /override the Preference settings with the Policy settings
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Disable Local Admin Merge |
+| 0 | Enable Local Admin Merge |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableNetworkProtectionPerfTelemetry
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableNetworkProtectionPerfTelemetry
+```
+
+
+
+This setting disables the gathering and send of performance telemetry from Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Network protection telemetry is disabled |
+| 0 | Network protection telemetry is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableRdpParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableRdpParsing
+```
+
+
+
+This setting disables RDP Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | RDP Parsing is disabled |
+| 0 | RDP Parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableSshParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableSshParsing
+```
+
+
+
+This setting disables SSH Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | SSH parsing is disabled |
+| 0 (Default) | SSH parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/DisableTlsParsing
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/DisableTlsParsing
+```
+
+
+
+This setting disables TLS Parsing for Network Protection.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | TLS parsing is disabled |
+| 0 (Default) | TLS parsing is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/EnableDnsSinkhole
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/EnableDnsSinkhole
+```
+
+
+
+This setting enables the DNS Sinkhole feature for Network Protection, respecting the value of EnableNetworkProtection for block vs audit, does nothing in inspect mode.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | DNS Sinkhole is disabled |
+| 0 | DNS Sinkhole is enabled |
+
+
+
+
+
+
+
+
+
+### Configuration/EnableFileHashComputation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/EnableFileHashComputation
+```
+
+
+
+Enables or disables file hash computation feature. When this feature is enabled Windows defender will compute hashes for files it scans.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disable |
+| 1 | Enable |
+
+
+
+
+
+
+
+
+
+### Configuration/EngineUpdatesChannel
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/EngineUpdatesChannel
+```
+
+
+
+Enable this policy to specify when devices receive Microsoft Defender engine updates during the monthly gradual rollout.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices. |
+| 2 | Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices. |
+| 3 | Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments. |
+| 4 | Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%). |
+| 5 | Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%). |
+| 6 | Critical - Time delay: Devices will be offered updates with a 48-hour delay. Suggested for critical environments only. |
+
+
+
+
+
+
+
+
+
+### Configuration/ExcludedIpAddresses
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/ExcludedIpAddresses
+```
+
+
+
+This node contains a list of values specifying any IP addresses that wdnisdrv will ignore when intercepting traffic.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+
+
+
+
+
+
+### Configuration/HideExclusionsFromLocalAdmins
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/HideExclusionsFromLocalAdmins
+```
+
+
+
+This policy setting controls whether or not exclusions are visible to local admins. For end users (that are not local admins) exclusions are not visible, whether or not this setting is enabled.
+
+
+
+
+> [!NOTE]
+> Applying this setting won't remove exclusions from the device registry, it will only prevent them from being applied/used. This is reflected in Get-MpPreference.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | If you enable this setting, local admins will no longer be able to see the exclusion list in Windows Security App or via PowerShell. |
+| 0 | If you disable or do not configure this setting, local admins will be able to see exclusions in the Windows Security App and via PowerShell. |
+
+
+
+
+
+
+
+
+
+### Configuration/MeteredConnectionUpdates
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/MeteredConnectionUpdates
+```
+
+
+
+Allow managed devices to update through metered connections. Default is 0 - not allowed, 1 - allowed
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Allowed |
+| 0 (Default) | Not Allowed |
+
+
+
+
+
+
+
+
+
+### Configuration/PassiveRemediation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/PassiveRemediation
+```
+
+
+
+Setting to control automatic remediation for Sense scans.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Flag | Description |
+|:--|:--|
+| 0x1 | PASSIVE_REMEDIATION_FLAG_SENSE_AUTO_REMEDIATION: Passive Remediation Sense AutoRemediation |
+| 0x2 | PASSIVE_REMEDIATION_FLAG_RTP_AUDIT: Passive Remediation Realtime Protection Audit |
+| 0x4 | PASSIVE_REMEDIATION_FLAG_RTP_REMEDIATION: Passive Remediation Realtime Protection Remediation |
+
+
+
+
+
+
+
+
+
+### Configuration/PauseUpdateExpirationTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/PauseUpdateExpirationTime
+```
+
+
+
+Pause update until the UTC time in ISO string format without milliseconds, for example, 2022-02-24T00:03:59Z.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/PauseUpdateFlag
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/PauseUpdateFlag
+```
+
+
+
+Setting to control automatic remediation for Sense scans.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Update not paused |
+| 1 | Update paused |
+
+
+
+
+
+
+
+
+
+### Configuration/PauseUpdateStartTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/PauseUpdateStartTime
+```
+
+
+
+Pause update from the UTC time in ISO string format without milliseconds, for example, 2022-02-24T00:03:59Z.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/PlatformUpdatesChannel
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/PlatformUpdatesChannel
+```
+
+
+
+Enable this policy to specify when devices receive Microsoft Defender platform updates during the monthly gradual rollout.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices. |
+| 2 | Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices. |
+| 3 | Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments. |
+| 4 | Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%). |
+| 5 | Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%). |
+| 6 | Critical - Time delay: Devices will be offered updates with a 48-hour delay. Suggested for critical environments only. |
+
+
+
+
+
+
+
+
+
+### Configuration/SchedulerRandomizationTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/SchedulerRandomizationTime
+```
+
+
+
+This setting allows you to configure the scheduler randomization in hours. The randomization interval is [1 - 23] hours. For more information on the randomization effect please check the RandomizeScheduleTaskTimes setting.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[1-23]` |
+| Default Value | 4 |
+
+
+
+
+
+
+
+
+
+### Configuration/SecurityIntelligenceUpdatesChannel
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/SecurityIntelligenceUpdatesChannel
+```
+
+
+
+Enable this policy to specify when devices receive Microsoft Defender security intelligence updates during the daily gradual rollout.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices. |
+| 4 | Current Channel (Staged): Devices will be offered updates after the release cycle. Suggested to apply to a small, representative part of production population (~10%). |
+| 5 | Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%). |
+
+
+
+
+
+
+
+
+
+### Configuration/SupportLogLocation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/SupportLogLocation
+```
+
+
+
+The support log location setting allows the administrator to specify where the Microsoft Defender Antivirus diagnostic data collection tool (MpCmdRun.exe) will save the resulting log files. This setting is configured with an MDM solution, such as Intune, and is available for Windows 10 Enterprise.
+
+
+
+
+Intune Support Log Location setting UI supports three states:
+
+- Not configured (default) - Doesn't have any impact on the default state of the device.
+- 1 - Enabled. Enables the Support log location feature. Requires admin to set custom file path.
+- 0 - Disabled. Turns off the Support log location feature.
+
+When enabled or disabled exists on the client and admin moves the setting to not configured, it won't have any impact on the device state. To change the state to either enabled or disabled would require to be set explicitly.
+
+More details:
+
+- [Microsoft Defender Antivirus diagnostic data](/microsoft-365/security/defender-endpoint/collect-diagnostic-data)
+- [Collect investigation package from devices](/microsoft-365/security/defender-endpoint/respond-machine-alerts#collect-investigation-package-from-devices)
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/TamperProtection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/TamperProtection
+```
+
+
+
+Tamper protection helps protect important security features from unwanted changes and interference. This includes real-time protection, behavior monitoring, and more. Accepts signed string to turn the feature on or off. Settings are configured with an MDM solution, such as Intune and is available in Windows 10 Enterprise E5 or equivalent subscriptions. Send off blob to device to reset tamper protection state before setting this configuration to "not configured" or "unassigned" in Intune. The data type is a Signed blob.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+### Configuration/TDTFeatureEnabled
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/TDTFeatureEnabled
+```
+
+
+
+This policy setting configures the integration level for Intel TDT integration for Intel TDT-capable devices.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | If you do not configure this setting, the default value will be applied. The default value is set to control by signatures. TDT will be enabled based on particular signatures that are released by Microsoft. |
+| 2 | If you configure this setting to disabled, Intel TDT integration will be turned off. |
+
+
+
+
+
+
+
+
+
+### Configuration/ThrottleForScheduledScanOnly
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Configuration/ThrottleForScheduledScanOnly
+```
+
+
+
+A CPU usage limit can be applied to scheduled scans only, or to scheduled and custom scans. The default value applies a CPU usage limit to scheduled scans only.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 (Default) | If you enable this setting, CPU throttling will apply only to scheduled scans. |
+| 0 | If you disable this setting, CPU throttling will apply to scheduled and custom scans. |
+
+
+
+
+
+
+
+
+
+## Detections
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections
+```
+
+
+
An interior node to group all threats detected by Windows Defender.
+
-Supported operation is Get.
+
+
+
-**Detections/***ThreatId*
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Detections/{ThreatId}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}
+```
+
+
+
The ID of a threat that has been detected by Windows Defender.
+
-Supported operation is Get.
+
+
+
-**Detections/*ThreatId*/Name**
-The name of the specific threat.
+
+**Description framework properties**:
-The data type is a string.
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+| Dynamic Node Naming | ClientInventory |
+
-Supported operation is Get.
+
+
+
-**Detections/*ThreatId*/URL**
-URL link for more threat information.
+
-The data type is a string.
+
+#### Detections/{ThreatId}/Category
-Supported operation is Get.
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-**Detections/*ThreatId*/Severity**
-Threat severity ID.
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/Category
+```
+
-The data type is integer.
+
+Threat category ID. Supported values:
-The following list shows the supported values:
+| Value | Description |
+|:--|:--|
+| 0 | Invalid |
+| 1 | Adware |
+| 2 | Spyware |
+| 3 | Password stealer |
+| 4 | Trojan downloader |
+| 5 | Worm |
+| 6 | Backdoor |
+| 7 | Remote access Trojan |
+| 8 | Trojan |
+| 9 | Email flooder |
+| 10 | Keylogger |
+| 11 | Dialer |
+| 12 | Monitoring software |
+| 13 | Browser modifier |
+| 14 | Cookie |
+| 15 | Browser plugin |
+| 16 | AOL exploit |
+| 17 | Nuker |
+| 18 | Security disabler |
+| 19 | Joke program |
+| 20 | Hostile ActiveX control |
+| 21 | Software bundler |
+| 22 | Stealth modifier |
+| 23 | Settings modifier |
+| 24 | Toolbar |
+| 25 | Remote control software |
+| 26 | Trojan FTP |
+| 27 | Potential unwanted software |
+| 28 | ICQ exploit |
+| 29 | Trojan telnet |
+| 30 | Exploit |
+| 31 | File sharing program |
+| 32 | Malware creation tool |
+| 33 | Remote control software |
+| 34 | Tool |
+| 36 | Trojan denial of service |
+| 37 | Trojan dropper |
+| 38 | Trojan mass mailer |
+| 39 | Trojan monitoring software |
+| 40 | Trojan proxy server |
+| 42 | Virus |
+| 43 | Known |
+| 44 | Unknown |
+| 45 | SPP |
+| 46 | Behavior |
+| 47 | Vulnerability |
+| 48 | Policy |
+| 49 | EUS (Enterprise Unwanted Software) |
+| 50 | Ransomware |
+| 51 | ASR Rule |
+
-- 0 = Unknown
-- 1 = Low
-- 2 = Moderate
-- 4 = High
-- 5 = Severe
+
+
+
-Supported operation is Get.
+
+**Description framework properties**:
-**Detections/*ThreatId*/Category**
-Threat category ID.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
-The data type is integer.
+
+
+
-The following table describes the supported values:
-
+
-| Value | Description |
-|-------|-----------------------------|
-| 0 | Invalid |
-| 1 | Adware |
-| 2 | Spyware |
-| 3 | Password stealer |
-| 4 | Trojan downloader |
-| 5 | Worm |
-| 6 | Backdoor |
-| 7 | Remote access Trojan |
-| 8 | Trojan |
-| 9 | Email flooder |
-| 10 | Key logger |
-| 11 | Dialer |
-| 12 | Monitoring software |
-| 13 | Browser modifier |
-| 14 | Cookie |
-| 15 | Browser plugin |
-| 16 | AOL exploit |
-| 17 | Nuker |
-| 18 | Security disabler |
-| 19 | Joke program |
-| 20 | Hostile ActiveX control |
-| 21 | Software bundler |
-| 22 | Stealth modifier |
-| 23 | Settings modifier |
-| 24 | Toolbar |
-| 25 | Remote control software |
-| 26 | Trojan FTP |
-| 27 | Potential unwanted software |
-| 28 | ICQ exploit |
-| 29 | Trojan telnet |
-| 30 | Exploit |
-| 31 | File sharing program |
-| 32 | Malware creation tool |
-| 33 | Remote control software |
-| 34 | Tool |
-| 36 | Trojan denial of service |
-| 37 | Trojan dropper |
-| 38 | Trojan mass mailer |
-| 39 | Trojan monitoring software |
-| 40 | Trojan proxy server |
-| 42 | Virus |
-| 43 | Known |
-| 44 | Unknown |
-| 45 | SPP |
-| 46 | Behavior |
-| 47 | Vulnerability |
-| 48 | Policy |
-| 49 | EUS (Enterprise Unwanted Software)|
-| 50 | Ransomware |
-| 51 | ASR Rule |
+
+#### Detections/{ThreatId}/CurrentStatus
-Supported operation is Get.
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-**Detections/*ThreatId*/CurrentStatus**
-Information about the current status of the threat.
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/CurrentStatus
+```
+
-The data type is integer.
+
+Information about the current status of the threat. The following list shows the supported values:
-The following list shows the supported values:
+| Value | Description |
+|:--|:--|
+| 0 | Active |
+| 1 | Action failed |
+| 2 | Manual steps required |
+| 3 | Full scan required |
+| 4 | Reboot required |
+| 5 | Remediated with noncritical failures |
+| 6 | Quarantined |
+| 7 | Removed |
+| 8 | Cleaned |
+| 9 | Allowed |
+| 10 | No Status ( Cleared) |
+
-- 0 = Active
-- 1 = Action failed
-- 2 = Manual steps required
-- 3 = Full scan required
-- 4 = Reboot required
-- 5 = Remediated with noncritical failures
-- 6 = Quarantined
-- 7 = Removed
-- 8 = Cleaned
-- 9 = Allowed
-- 10 = No Status (Cleared)
+
+
+
-Supported operation is Get.
+
+**Description framework properties**:
-**Detections/*ThreatId*/CurrentStatus**
-Information about the current status of the threat.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
-The data type is integer.
+
+
+
-The following list shows the supported values:
+
-- 0 = Active
-- 1 = Action failed
-- 2 = Manual steps required
-- 3 = Full scan required
-- 4 = Reboot required
-- 5 = Remediated with noncritical failures
-- 6 = Quarantined
-- 7 = Removed
-- 8 = Cleaned
-- 9 = Allowed
-- 10 = No Status (Cleared)
+
+#### Detections/{ThreatId}/ExecutionStatus
-Supported operation is Get.
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-**Detections/*ThreatId*/ExecutionStatus**
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/ExecutionStatus
+```
+
+
+
Information about the execution status of the threat.
+
-The data type is integer.
+
+
+
-The following list shows the supported values:
+
+**Description framework properties**:
-- 0 = Unknown
-- 1 = Blocked
-- 2 = Allowed
-- 3 = Running
-- 4 = Not running
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
-Supported operation is Get.
+
+
+
-**Detections/*ThreatId*/InitialDetectionTime**
+
+
+
+#### Detections/{ThreatId}/InitialDetectionTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/InitialDetectionTime
+```
+
+
+
The first time this particular threat was detected.
+
-The data type is a string.
+
+
+
-Supported operation is Get.
+
+**Description framework properties**:
-**Detections/*ThreatId*/LastThreatStatusChangeTime**
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+#### Detections/{ThreatId}/LastThreatStatusChangeTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/LastThreatStatusChangeTime
+```
+
+
+
The last time this particular threat was changed.
+
-The data type is a string.
+
+
+
-Supported operation is Get.
+
+**Description framework properties**:
-**Detections/*ThreatId*/NumberOfDetections**
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+#### Detections/{ThreatId}/Name
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/Name
+```
+
+
+
+The name of the specific threat.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+#### Detections/{ThreatId}/NumberOfDetections
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/NumberOfDetections
+```
+
+
+
Number of times this threat has been detected on a particular client.
+
-The data type is integer.
+
+
+
-Supported operation is Get.
+
+**Description framework properties**:
-**EnableNetworkProtection**
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
-The Network Protection Service is a network filter that helps to protect you against web-based malicious threats, including phishing and malware. The Network Protection service contacts the SmartScreen URL reputation service to validate the safety of connections to web resources.
-The acceptable values for this parameter are:
-- 0: Disabled. The Network Protection service won't block navigation to malicious websites, or contact the SmartScreen URL reputation service. It will still send connection metadata to the antimalware engine if behavior monitoring is enabled, to enhance AV Detections.
-- 1: Enabled. The Network Protection service will block connections to malicious websites based on URL Reputation from the SmartScreen URL reputation service.
-- 2: AuditMode. As above, but the Network Protection service won't block connections to malicious websites, but will instead log the access to the event log.
+
+
+
-Accepted values: Disabled, Enabled, and AuditMode
-Position: Named
-Default value: Disabled
-Accept pipeline input: False
-Accept wildcard characters: False
+
-**EnableNetworkProtection/AllowNetworkProtectionDownLevel**
+
+#### Detections/{ThreatId}/Severity
-By default, network protection isn't allowed to be enabled on Windows versions before 1709, regardless of the setting of the EnableNetworkProtection configuration. Set this configuration to "$true" to override that behavior and allow Network Protection to be set to Enabled or Audit Mode.
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-**EnableNetworkProtection/AllowNetworkProtectionOnWinServer**
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/Severity
+```
+
-By default, network protection isn't allowed to be enabled on Windows Server, regardless of the setting of the EnableNetworkProtection configuration. Set this configuration to "$true" to override that behavior and allow Network Protection to be set to Enabled or Audit Mode.
+
+Threat severity ID. The following list shows the supported values:
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+| Value | Description |
+|:--|:--|
+| 0 | Unknown |
+| 1 | Low |
+| 2 | Moderate |
+| 4 | High |
+| 5 | Severe |
+
-**EnableNetworkProtection/DisableNetworkProtectionPerfTelemetry**
+
+
+
-Network Protection sends up anonymized performance statistics about its connection monitoring to improve our product and help to find bugs. You can disable this behavior by setting this configuration to "$true".
+
+**Description framework properties**:
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
-**EnableNetworkProtection/DisableDatagramProcessing**
+
+
+
-Network Protection inspects UDP connections allowing us to find malicious DNS or other UDP Traffic. To disable this functionality, set this configuration to "$true".
+
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+
+#### Detections/{ThreatId}/URL
-**EnableNetworkProtection/DisableInboundConnectionFiltering**
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-Network Protection inspects and can block both connections that originate from the host machine, and those connections that originate from outside the machine. To have network connection to inspect only outbound connections, set this configuration to "$true".
+
+```Device
+./Device/Vendor/MSFT/Defender/Detections/{ThreatId}/URL
+```
+
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+
+URL link for additional threat information.
+
-**EnableNetworkProtection/EnableDnsSinkhole**
+
+
+
-Network Protection can inspect the DNS traffic of a machine and, in conjunction with behavior monitoring, detect and sink hole DNS exfiltration attempts and other DNS-based malicious attacks. Set this configuration to "$true" to enable this feature.
+
+**Description framework properties**:
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
-**EnableNetworkProtection/DisableDnsOverTcpParsing**
+
+
+
-Network Protection inspects DNS traffic that occurs over a TCP channel, to provide metadata for Anti-malware Behavior Monitoring or to allow for DNS sink holing if the -EnableDnsSinkhole configuration is set. This attribute can be disabled by setting this value to "$true".
+
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
+
+## Health
-**EnableNetworkProtection/DisableDnsParsing**
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-Network Protection inspects DNS traffic that occurs over a UDP channel, to provide metadata for Anti-malware Behavior Monitoring or to allow for DNS sink holing if the -EnableDnsSinkhole configuration is set. This attribute can be disabled by setting this value to "$true".
+
+```Device
+./Device/Vendor/MSFT/Defender/Health
+```
+
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
-
-**EnableNetworkProtection/DisableHttpParsing**
-
-Network Protection inspects HTTP traffic to see if a connection is being made to a malicious website, and to provide metadata to Behavior Monitoring. HTTP connections to malicious websites can also be blocked if Enable Network Protection is set to enabled. HTTP inspection can be disabled by setting this value to "$true".
-
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
-
-**EnableNetworkProtection/DisableRdpParsing**
-
-Network Protection inspects RDP traffic so that it can block connections from known malicious hosts if Enable Network Protection is set to be enabled, and to provide metadata to behavior monitoring. RDP inspection can be disabled by setting this value to "$true".
-
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
-
-**EnableNetworkProtection/DisableSshParsing**
-
-Network Protection inspects SSH traffic, so that it can block connections from known malicious hosts. If Enable Network Protection is set to be enabled, and to provide metadata to behavior monitoring. SSH inspection can be disabled by setting this value to "$true".
-
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
-
-**EnableNetworkProtection/DisableTlsParsing**
-
-Network Protection inspects TLS traffic (also known as HTTPS traffic) to see if a connection is being made to a malicious website, and to provide metadata to Behavior Monitoring. TLS connections to malicious websites can also be blocked if Enable Network Protection is set to enabled. HTTP inspection can be disabled by setting this value to "$true".
-
-- Type: Boolean
-- Position: Named
-- Default value: False
-- Accept pipeline input: False
-- Accept wildcard characters: False
-
-**Health**
+
An interior node to group information about Windows Defender health status.
+
-Supported operation is Get.
+
+
+
-**Health/ProductStatus**
-Added in Windows 10, version 1809. Provide the current state of the product. This value is a bitmask flag value that can represent one or multiple product states from below list.
+
+**Description framework properties**:
-The data type is integer. Supported operation is Get.
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
-Supported product status values:
-- No status = 0
-- Service not running = 1 << 0
-- Service started without any malware protection engine = 1 << 1
-- Pending full scan due to threat action = 1 << 2
-- Pending reboot due to threat action = 1 << 3
-- ending manual steps due to threat action = 1 << 4
-- AV signatures out of date = 1 << 5
-- AS signatures out of date = 1 << 6
-- No quick scan has happened for a specified period = 1 << 7
-- No full scan has happened for a specified period = 1 << 8
-- System initiated scan in progress = 1 << 9
-- System initiated clean in progress = 1 << 10
-- There are samples pending submission = 1 << 11
-- Product running in evaluation mode = 1 << 12
-- Product running in non-genuine Windows mode = 1 << 13
-- Product expired = 1 << 14
-- Off-line scan required = 1 << 15
-- Service is shutting down as part of system shutdown = 1 << 16
-- Threat remediation failed critically = 1 << 17
-- Threat remediation failed non-critically = 1 << 18
-- No status flags set (well-initialized state) = 1 << 19
-- Platform is out of date = 1 << 20
-- Platform update is in progress = 1 << 21
-- Platform is about to be outdated = 1 << 22
-- Signature or platform end of life is past or is impending = 1 << 23
-- Windows SMode signatures still in use on non-Win10S install = 1 << 24
+
+
+
-Example:
+
+
+
+### Health/ComputerState
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/ComputerState
+```
+
+
+
+Provide the current state of the device. The following list shows the supported values:
+
+| Value | Description |
+|:--|:--|
+| 0 | Clean |
+| 1 | Pending full scan |
+| 2 | Pending reboot |
+| 4 | Pending manual steps (Windows Defender is waiting for the user to take some action, such as restarting the computer or running a full scan) |
+| 8 | Pending offline scan |
+| 16 | Pending critical failure (Windows Defender has failed critically and an Administrator needs to investigate and take some action, such as restarting the computer or reinstalling Windows Defender) |
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/DefenderEnabled
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/DefenderEnabled
+```
+
+
+
+Indicates whether the Windows Defender service is running.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/DefenderVersion
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/DefenderVersion
+```
+
+
+
+Version number of Windows Defender on the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/EngineVersion
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/EngineVersion
+```
+
+
+
+Version number of the current Windows Defender engine on the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/FullScanOverdue
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/FullScanOverdue
+```
+
+
+
+Indicates whether a Windows Defender full scan is overdue for the device. A Full scan is overdue when a scheduled Full scan did not complete successfully for 2 weeks and catchup Full scans are disabled (default).
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/FullScanRequired
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/FullScanRequired
+```
+
+
+
+Indicates whether a Windows Defender full scan is required.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/FullScanSigVersion
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/FullScanSigVersion
+```
+
+
+
+Signature version used for the last full scan of the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/FullScanTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/FullScanTime
+```
+
+
+
+Time of the last Windows Defender full scan of the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/IsVirtualMachine
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/IsVirtualMachine
+```
+
+
+
+Indicates whether the device is a virtual machine.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/NisEnabled
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/NisEnabled
+```
+
+
+
+Indicates whether network protection is running.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/ProductStatus
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/ProductStatus
+```
+
+
+
+Provide the current state of the product. This is a bitmask flag value that can represent one or multiple product states from below list. Supported product status values:
+
+| Value | Description |
+|:--|:--|
+| 0 | No status |
+| 1 (1 << 0) | Service not running |
+| 2 (1 << 1) | Service started without any malware protection engine |
+| 4 (1 << 2) | Pending full scan due to threat action |
+| 8 (1 << 3) | Pending reboot due to threat action |
+| 16 (1 << 4) | ending manual steps due to threat action |
+| 32 (1 << 5) | AV signatures out of date |
+| 64 (1 << 6) | AS signatures out of date |
+| 128 (1 << 7) | No quick scan has happened for a specified period |
+| 256 (1 << 8) | No full scan has happened for a specified period |
+| 512 (1 << 9) | System initiated scan in progress |
+| 1024 (1 << 10) | System initiated clean in progress |
+| 2048 (1 << 11) | There are samples pending submission |
+| 4096 (1 << 12) | Product running in evaluation mode |
+| 8192 (1 << 13) | Product running in non-genuine Windows mode |
+| 16384 (1 << 14) | Product expired |
+| 32768 (1 << 15) | Off-line scan required |
+| 65536 (1 << 16) | Service is shutting down as part of system shutdown |
+| 131072 (1 << 17) | Threat remediation failed critically |
+| 262144 (1 << 18) | Threat remediation failed non-critically |
+| 524288 (1 << 19) | No status flags set (well initialized state) |
+| 1048576 (1 << 20) | Platform is out of date |
+| 2097152 (1 << 21) | Platform update is in progress |
+| 4194304 (1 << 22) | Platform is about to be outdated |
+| 8388608 (1 << 23) | Signature or platform end of life is past or is impending |
+| 16777216 (1 << 24) | Windows SMode signatures still in use on non-Win10S install |
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Get |
+
+
+
+
+**Example**:
```xml
@@ -456,421 +3111,522 @@ Example:
```
+
-**Health/ComputerState**
-Provide the current state of the device.
+
-The data type is integer.
+
+### Health/QuickScanOverdue
-The following list shows the supported values:
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-- 0 = Clean
-- 1 = Pending full scan
-- 2 = Pending reboot
-- 4 = Pending manual steps (Windows Defender is waiting for the user to take some action, such as restarting the computer or running a full scan)
-- 8 = Pending offline scan
-- 16 = Pending critical failure (Windows Defender has failed critically and an Administrator needs to investigate and take some action, such as restarting the computer or reinstalling Windows Defender)
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/QuickScanOverdue
+```
+
-Supported operation is Get.
+
+Indicates whether a Windows Defender quick scan is overdue for the device. A Quick scan is overdue when a scheduled Quick scan did not complete successfully for 2 weeks and catchup Quick scans are disabled (default).
+
-**Health/DefenderEnabled**
-Indicates whether the Windows Defender service is running.
+
+
+
-The data type is a Boolean.
+
+**Description framework properties**:
-Supported operation is Get.
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
-**Health/RtpEnabled**
-Indicates whether real-time protection is running.
+
+
+
-The data type is a Boolean.
+
-Supported operation is Get.
+
+### Health/QuickScanSigVersion
-**Health/NisEnabled**
-Indicates whether network protection is running.
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
-The data type is a Boolean.
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/QuickScanSigVersion
+```
+
-Supported operation is Get.
-
-**Health/QuickScanOverdue**
-Indicates whether a Windows Defender quick scan is overdue for the device.
-
-A Quick scan is overdue when a scheduled Quick scan didn't complete successfully for 2 weeks and [catchup Quick scans](./policy-csp-defender.md#defender-disablecatchupquickscan) are disabled (default).
-
-The data type is a Boolean.
-
-Supported operation is Get.
-
-**Health/FullScanOverdue**
-Indicates whether a Windows Defender full scan is overdue for the device.
-
-A Full scan is overdue when a scheduled Full scan didn't complete successfully for 2 weeks and [catchup Full scans](./policy-csp-defender.md#defender-disablecatchupfullscan) are disabled (default).
-
-The data type is a Boolean.
-
-Supported operation is Get.
-
-**Health/SignatureOutOfDate**
-Indicates whether the Windows Defender signature is outdated.
-
-The data type is a Boolean.
-
-Supported operation is Get.
-
-**Health/RebootRequired**
-Indicates whether a device reboot is needed.
-
-The data type is a Boolean.
-
-Supported operation is Get.
-
-**Health/FullScanRequired**
-Indicates whether a Windows Defender full scan is required.
-
-The data type is a Boolean.
-
-Supported operation is Get.
-
-**Health/EngineVersion**
-Version number of the current Windows Defender engine on the device.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Health/SignatureVersion**
-Version number of the current Windows Defender signatures on the device.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Health/DefenderVersion**
-Version number of Windows Defender on the device.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Health/QuickScanTime**
-Time of the last Windows Defender quick scan of the device.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Health/FullScanTime**
-Time of the last Windows Defender full scan of the device.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Health/QuickScanSigVersion**
+
Signature version used for the last quick scan of the device.
+
-The data type is a string.
+
+
+
-Supported operation is Get.
-
-**Health/FullScanSigVersion**
-Signature version used for the last full scan of the device.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Health/TamperProtectionEnabled**
-Indicates whether the Windows Defender tamper protection feature is enabled.
-
-The data type is a Boolean.
-
-Supported operation is Get.
-
-**Health/IsVirtualMachine**
-Indicates whether the device is a virtual machine.
-
-The data type is a string.
-
-Supported operation is Get.
-
-**Configuration**
-An interior node to group Windows Defender configuration information.
-
-Supported operation is Get.
-
-**Configuration/TamperProtection**
-
-Tamper protection helps protect important security features from unwanted changes and interference. This protection includes real-time protection, behavior monitoring, and more. Accepts signed string to turn the feature on or off. Settings are configured with an MDM solution, such as Intune and is available in Windows 10 Enterprise E5 or equivalent subscriptions.
-
-
-Send off blob to device to reset the tamper protection state before setting this configuration to "not configured" or "unassigned" in Intune.
-
-The data type is a Signed BLOB.
-
-Supported operations are Add, Delete, Get, Replace.
-
-Intune tamper protection setting UX supports three states:
-- Not configured (default): Doesn't have any impact on the default state of the device.
-- Enabled: Enables the tamper protection feature.
-- Disabled: Turns off the tamper protection feature.
-
-When enabled or disabled exists on the client and admin moves the setting to not configured, it won't have any impact on the device state. To change the state to either enabled or disabled would require to be set explicitly.
-
-**Configuration/DisableLocalAdminMerge**
-This policy setting controls whether or not complex list settings configured by a local administrator are merged with managed settings. This setting applies to lists such as threats and exclusion list.
-
-If you disable or don't configure this setting, unique items defined in preference settings configured by the local administrator will be merged into the resulting effective policy. If conflicts occur, management settings will override preference settings.
-
-If you enable this setting, only items defined by management will be used in the resulting effective policy. Managed settings will override preference settings configured by the local administrator.
-
-> [!NOTE]
-> Applying this setting won't remove exclusions from the device registry, it will only prevent them from being applied/used. This is reflected in **Get-MpPreference**.
-
-Supported OS versions: Windows 10
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, Replace.
-
-Valid values are:
-- 1 – Enable.
-- 0 (default) – Disable.
-
-**Configuration/HideExclusionsFromLocalAdmins**
-
-This policy setting controls whether or not exclusions are visible to Local Admins. For end users (that aren't Local Admins) exclusions aren't visible, whether or not this setting is enabled.
-
-If you disable or don't configure this setting, Local Admins will be able to see exclusions in the Windows Security App, in the registry, and via PowerShell.
-
-If you enable this setting, Local Admins will no longer be able to see the exclusion list in the Windows Security app, in the registry, or via PowerShell.
-
-> [!NOTE]
-> Applying this setting won't remove exclusions, it will only prevent them from being visible to Local Admins. This is reflected in **Get-MpPreference**.
-
-Supported OS versions: Windows 10
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 1 – Enable.
-- 0 (default) – Disable.
-
-**Configuration/DisableCpuThrottleOnIdleScans**
-
-Indicates whether the CPU will be throttled for scheduled scans while the device is idle. This feature is enabled by default and won't throttle the CPU for scheduled scans performed when the device is otherwise idle, regardless of what ScanAvgCPULoadFactor is set to. For all other scheduled scans, this flag will have no impact and normal throttling will occur.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 1 (default) – Enable.
-- 0 – Disable.
-
-**Configuration/MeteredConnectionUpdates**
-Allow managed devices to update through metered connections. Data charges may apply.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 1 – Enable.
-- 0 (default) – Disable.
-
-**Configuration/AllowNetworkProtectionOnWinServer**
-This settings controls whether Network Protection is allowed to be configured into block or audit mode on Windows Server. If false, the value of EnableNetworkProtection will be ignored.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 1 – Enable.
-- 0 (default) – Disable.
-
-**Configuration/ExclusionIpAddress**
-Allows an administrator to explicitly disable network packet inspection made by wdnisdrv on a particular set of IP addresses.
-
-The data type is string.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-**Configuration/EnableFileHashComputation**
-Enables or disables file hash computation feature.
-When this feature is enabled, Windows Defender will compute hashes for files it scans.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 1 – Enable.
-- 0 (default) – Disable.
-
-**Configuration/SupportLogLocation**
-The support log location setting allows the administrator to specify where the Microsoft Defender Antivirus diagnostic data collection tool (**MpCmdRun.exe**) will save the resulting log files. This setting is configured with an MDM solution, such as Intune, and is available for Windows 10 Enterprise.
-
-Data type is string.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Intune Support log location setting UX supports three states:
-
-- Not configured (default) - Doesn't have any impact on the default state of the device.
-- 1 - Enabled. Enables the Support log location feature. Requires admin to set custom file path.
-- 0 - Disabled. Turns off the Support log location feature.
-
-When enabled or disabled exists on the client and admin moves the setting to not configured, it won't have any impact on the device state. To change the state to either enabled or disabled would require to be set explicitly.
-
-More details:
-
-- [Microsoft Defender Antivirus diagnostic data](/microsoft-365/security/defender-endpoint/collect-diagnostic-data)
-- [Collect investigation package from devices](/microsoft-365/security/defender-endpoint/respond-machine-alerts#collect-investigation-package-from-devices)
-
-**Configuration/PlatformUpdatesChannel**
-Enable this policy to specify when devices receive Microsoft Defender platform updates during the monthly gradual rollout.
-
-Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices.
-
-Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments.
-
-Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested applying to a small, representative part of your production population (~10%).
-
-Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
-
-Critical: Devices will be offered updates with a 48-hour delay. Suggested for critical environments only
-
-If you disable or don't configure this policy, the device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 0: Not configured (Default)
-- 2: Beta Channel - Prerelease
-- 3: Current Channel (Preview)
-- 4: Current Channel (Staged)
-- 5: Current Channel (Broad)
-- 6: Critical- Time Delay
-
-
-More details:
-
-- [Manage the gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/manage-gradual-rollout)
-- [Create a custom gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/configure-updates)
-
-**Configuration/EngineUpdatesChannel**
-Enable this policy to specify when devices receive Microsoft Defender engine updates during the monthly gradual rollout.
-
-Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices.
-
-Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments.
-
-Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested applying to a small, representative part of your production population (~10%).
-
-Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
-
-Critical: Devices will be offered updates with a 48-hour delay. Suggested for critical environments only
-
-If you disable or don't configure this policy, the device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 0: Not configured (Default)
-- 2: Beta Channel - Prerelease
-- 3: Current Channel (Preview)
-- 4: Current Channel (Staged)
-- 5: Current Channel (Broad)
-- 6: Critical- Time Delay
-
-More details:
-
-- [Manage the gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/manage-gradual-rollout)
-- [Create a custom gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/configure-updates)
-
-**Configuration/SecurityIntelligenceUpdatesChannel**
-Enable this policy to specify when devices receive daily Microsoft Defender security intelligence (definition) updates during the daily gradual rollout.
-
-Current Channel (Staged): Devices will be offered updates after the release cycle. Suggested to apply to a small, representative part of production population (~10%).
-
-Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
-
-If you disable or don't configure this policy, the device will stay up to date automatically during the daily release cycle. Suitable for most devices.
-
-The data type is integer.
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid Values are:
-- 0: Not configured (Default)
-- 4: Current Channel (Staged)
-- 5: Current Channel (Broad)
-
-More details:
-
-- [Manage the gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/manage-gradual-rollout)
-- [Create a custom gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/configure-updates)
-
-**Configuration/DisableGradualRelease**
-Enable this policy to disable gradual rollout of monthly and daily Microsoft Defender updates.
-Devices will be offered all Microsoft Defender updates after the gradual release cycle completes. This facility for devices is best for datacenters that only receive limited updates.
-
-> [!NOTE]
-> This setting applies to both monthly as well as daily Microsoft Defender updates and will override any previously configured channel selections for platform and engine updates.
-
-If you disable or don't configure this policy, the device will remain in Current Channel (Default) unless specified otherwise in specific channels for platform and engine updates. Stay up to date automatically during the gradual release cycle. Suitable for most devices.
-
-The data type is integer.
-
-Supported operations are Add, Delete, Get, and Replace.
-
-Valid values are:
-- 1 – Enabled.
-- 0 (default) – Not Configured.
-
-More details:
-
-- [Manage the gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/manage-gradual-rollout)
-- [Create a custom gradual rollout process for Microsoft Defender updates](/microsoft-365/security/defender-endpoint/configure-updates)
-
-**Configuration/PassiveRemediation**
-This policy setting enables or disables EDR in block mode (recommended for devices running Microsoft Defender Antivirus in passive mode). For more information, see Endpoint detection and response in block mode | Microsoft Docs. Available with platform release: 4.18.2202.X
-
-The data type is integer
-
-Supported values:
-- 1: Turn EDR in block mode on
-- 0: Turn EDR in block mode off
-
-
-**Scan**
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/QuickScanTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/QuickScanTime
+```
+
+
+
+Time of the last Windows Defender quick scan of the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/RebootRequired
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/RebootRequired
+```
+
+
+
+Indicates whether a device reboot is needed.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/RtpEnabled
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/RtpEnabled
+```
+
+
+
+Indicates whether real-time protection is running.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/SignatureOutOfDate
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/SignatureOutOfDate
+```
+
+
+
+Indicates whether the Windows Defender signature is outdated.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/SignatureVersion
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/SignatureVersion
+```
+
+
+
+Version number of the current Windows Defender signatures on the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Health/TamperProtectionEnabled
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Health/TamperProtectionEnabled
+```
+
+
+
+Indicates whether the Windows Defender tamper protection feature is enabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | bool |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+## OfflineScan
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/OfflineScan
+```
+
+
+
+OfflineScan action starts a Microsoft Defender Offline scan on the computer where you run the command. After the next OS reboot, the device will start in Microsoft Defender Offline mode to begin the scan.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Exec, Get |
+| Reboot Behavior | ServerInitiated |
+
+
+
+
+
+
+
+
+
+## RollbackEngine
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/RollbackEngine
+```
+
+
+
+RollbackEngine action rolls back Microsoft Defender engine to it's last known good saved version on the computer where you run the command.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Exec, Get |
+| Reboot Behavior | ServerInitiated |
+
+
+
+
+
+
+
+
+
+## RollbackPlatform
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/RollbackPlatform
+```
+
+
+
+RollbackPlatform action rolls back Microsoft Defender to it's last known good installation location on the computer where you run the command.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Exec, Get |
+| Reboot Behavior | ServerInitiated |
+
+
+
+
+
+
+
+
+
+## Scan
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/Scan
+```
+
+
+
Node that can be used to start a Windows Defender scan on a device.
+
-Valid values are:
-- 1 - quick scan
-- 2 - full scan
+
+
+
-Supported operations are Get and Execute.
+
+**Description framework properties**:
-**UpdateSignature**
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Exec, Get |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | quick scan |
+| 2 | full scan |
+
+
+
+
+
+
+
+
+
+## UpdateSignature
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1511 [10.0.10586] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Defender/UpdateSignature
+```
+
+
+
Node that can be used to perform signature updates for Windows Defender.
+
-Supported operations are Get and Execute.
+
+
+
-**OfflineScan**
-Added in Windows 10, version 1803. OfflineScan action starts a Microsoft Defender Offline scan on the computer where you run the command. After the next OS reboot, the device will start in Microsoft Defender Offline mode to begin the scan.
+
+**Description framework properties**:
-Supported operations are Get and Execute.
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Exec, Get |
+
-## See also
+
+
+
-[Configuration service provider reference](index.yml)
+
+
+
+
+
+
+
+
+## Related articles
+
+[Configuration service provider reference](configuration-service-provider-reference.md)
diff --git a/windows/client-management/mdm/defender-ddf.md b/windows/client-management/mdm/defender-ddf.md
index 03f96374f6..661c491b22 100644
--- a/windows/client-management/mdm/defender-ddf.md
+++ b/windows/client-management/mdm/defender-ddf.md
@@ -1,35 +1,748 @@
---
title: Defender DDF file
-description: Learn how the OMA DM device description framework (DDF) for the Defender configuration service provider is used.
-ms.reviewer:
+description: View the XML file containing the device description framework (DDF) for the Defender configuration service provider.
+author: vinaypamnani-msft
manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/02/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 07/23/2021
+ms.topic: reference
---
+
+
# Defender DDF file
-This article shows the OMA DM device description framework (DDF) for the Defender configuration service provider. DDF files are used only with OMA DM provisioning XML.
-
-Looking for the DDF XML files? See [CSP DDF files download](configuration-service-provider-ddf.md).
-
-The XML below is the current version for this CSP.
+The following XML file contains the device description framework (DDF) for the Defender configuration service provider.
```xml
-]>
+]>
1.2
+
+
+
+ Defender
+ ./Device/Vendor/MSFT
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.10586
+ 1.0
+ 0x4;0x1B;0x30;0x31;0x48;0x54;0x62;0x63;0x64;0x65;0x77;0x79;0x7A;0x7D;0x7E;0x81;0x82;0x8A;0x8B;0xA1;0xA2;0xA4;0xA5;0xAB;0xAC;0xAF;0xB4;0xBC;0xBD;0xBF;0xCA;0xCB;
+
+
+
+ Detections
+
+
+
+
+ An interior node to group all threats detected by Windows Defender.
+
+
+
+
+
+
+
+
+
+
+
+
+
- Defender
- ./Vendor/MSFT
+
+
+
+
+
+
+ The ID of a threat that has been detected by Windows Defender.
+
+
+
+
+
+
+
+
+
+ ThreatId
+
+
+
+
+
+
+
+
+ Name
+
+
+
+
+ The name of the specific threat.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ URL
+
+
+
+
+ URL link for additional threat information.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Severity
+
+
+
+
+ Threat severity ID. The following list shows the supported values: 0 = Unknown; 1 = Low; 2 = Moderate; 4 = High; 5 = Severe;
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Category
+
+
+
+
+ Threat category ID. Supported values: 0-Invalid; 1-Adware; 2-Spyware; 3-Password stealer; 4-Trojan downloader; 5-Worm; 6-Backdoor; 7-Remote access Trojan; 8-Trojan; 9-Email flooder; 10-Keylogger; 11-Dialer; 12-Monitoring software; 13-Browser modifier; 14-Cookie; 15-Browser plugin; 16-AOL exploit; 17-Nuker; 18-Security disabler; 19-Joke program; 20-Hostile ActiveX control; 21-Software bundler; 22-Stealth modifier; 23-Settings modifier; 24-Toolbar; 25-Remote control software; 26-Trojan FTP; 27-Potential unwanted software; 28-ICQ exploit; 29-Trojan telnet; 30-Exploit; 31-File sharing program; 32-Malware creation tool; 33-Remote control software; 34-Tool; 36-Trojan denial of service; 37-Trojan dropper; 38-Trojan mass mailer; 39-Trojan monitoring software; 40-Trojan proxy server; 42-Virus; 43-Known; 44-Unknown; 45-SPP; 46-Behavior; 47-Vulnerability; 48-Policy; 49-EUS (Enterprise Unwanted Software); 50-Ransomware; 51-ASR Rule
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ CurrentStatus
+
+
+
+
+ Information about the current status of the threat. The following list shows the supported values: 0 = Active; 1 = Action failed; 2 = Manual steps required; 3 = Full scan required; 4 = Reboot required; 5 = Remediated with noncritical failures; 6 = Quarantined; 7 = Removed; 8 = Cleaned; 9 = Allowed; 10 = No Status ( Cleared)
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ ExecutionStatus
+
+
+
+
+ Information about the execution status of the threat.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ InitialDetectionTime
+
+
+
+
+ The first time this particular threat was detected.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ LastThreatStatusChangeTime
+
+
+
+
+ The last time this particular threat was changed.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ NumberOfDetections
+
+
+
+
+ Number of times this threat has been detected on a particular client.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Health
+
+
+
+
+ An interior node to group information about Windows Defender health status.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ ProductStatus
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17763
+ 1.2
+
+
+
+
+ ComputerState
+
+
+
+
+ Provide the current state of the device. The following list shows the supported values: 0 = Clean; 1 = Pending full scan; 2 = Pending reboot; 4 = Pending manual steps (Windows Defender is waiting for the user to take some action, such as restarting the computer or running a full scan); 8 = Pending offline scan; 16 = Pending critical failure (Windows Defender has failed critically and an Administrator needs to investigate and take some action, such as restarting the computer or reinstalling Windows Defender)
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ DefenderEnabled
+
+
+
+
+ Indicates whether the Windows Defender service is running.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ RtpEnabled
+
+
+
+
+ Indicates whether real-time protection is running.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ NisEnabled
+
+
+
+
+ Indicates whether network protection is running.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ QuickScanOverdue
+
+
+
+
+ Indicates whether a Windows Defender quick scan is overdue for the device. A Quick scan is overdue when a scheduled Quick scan did not complete successfully for 2 weeks and catchup Quick scans are disabled (default).
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ FullScanOverdue
+
+
+
+
+ Indicates whether a Windows Defender full scan is overdue for the device. A Full scan is overdue when a scheduled Full scan did not complete successfully for 2 weeks and catchup Full scans are disabled (default).
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ SignatureOutOfDate
+
+
+
+
+ Indicates whether the Windows Defender signature is outdated.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ RebootRequired
+
+
+
+
+ Indicates whether a device reboot is needed.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ FullScanRequired
+
+
+
+
+ Indicates whether a Windows Defender full scan is required.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ EngineVersion
+
+
+
+
+ Version number of the current Windows Defender engine on the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ SignatureVersion
+
+
+
+
+ Version number of the current Windows Defender signatures on the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ DefenderVersion
+
+
+
+
+ Version number of Windows Defender on the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ QuickScanTime
+
+
+
+
+ Time of the last Windows Defender quick scan of the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ FullScanTime
+
+
+
+
+ Time of the last Windows Defender full scan of the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ QuickScanSigVersion
+
+
+
+
+ Signature version used for the last quick scan of the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ FullScanSigVersion
+
+
+
+
+ Signature version used for the last full scan of the device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ TamperProtectionEnabled
+
+
+
+
+ Indicates whether the Windows Defender tamper protection feature is enabled.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.18362
+ 1.3
+
+
+
+
+ IsVirtualMachine
+
+
+
+
+ Indicates whether the device is a virtual machine.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.18362
+ 1.3
+
+
+
+
+
+ Configuration
+
+
+
+
+ An interior node to group Windows Defender configuration information.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.18362
+ 1.3
+
+
+
+ DeviceControl
@@ -41,14 +754,18 @@ The XML below is the current version for this CSP.
-
+
- com.microsoft/1.3/MDM/Defender
+
+
+ 10.0.17763
+ 1.3
+
- Detections
+ PolicyGroups
@@ -63,14 +780,18 @@ The XML below is the current version for this CSP.
-
+
-
+
+
+
+
+
@@ -81,16 +802,19 @@ The XML below is the current version for this CSP.
- ThreatId
+ GroupId
-
+
- Name
+ GroupData
+
+
+
@@ -102,174 +826,14 @@ The XML below is the current version for this CSP.
- text/plain
-
-
-
-
- URL
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- Severity
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- Category
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- CurrentStatus
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- ExecutionStatus
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- InitialDetectionTime
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- LastThreatStatusChangeTime
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- NumberOfDetections
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
+
- Health
+ PolicyRules
@@ -284,480 +848,61 @@ The XML below is the current version for this CSP.
-
+
- ProductStatus
+
+
+
+
+
-
+
-
+
+ RuleId
- text/plain
-
-
-
-
- ComputerState
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- DefenderEnabled
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- RtpEnabled
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- NisEnabled
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- QuickScanOverdue
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- FullScanOverdue
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- SignatureOutOfDate
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- RebootRequired
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- FullScanRequired
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- EngineVersion
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- SignatureVersion
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- DefenderVersion
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- QuickScanTime
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- FullScanTime
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- QuickScanSigVersion
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- FullScanSigVersion
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- TamperProtectionEnabled
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- IsVirtualMachine
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
+
+
+ RuleData
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
-
- Configuration
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- TamperProtection
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- EnableFileHashComputation
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- SupportLogLocation
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- DisableGradualRelease
+
+
+ TamperProtection
@@ -765,7 +910,34 @@ The XML below is the current version for this CSP.
- Enable this policy to disable gradual rollout of Defender updates.
+ Tamper protection helps protect important security features from unwanted changes and interference. This includes real-time protection, behavior monitoring, and more. Accepts signed string to turn the feature on or off. Settings are configured with an MDM solution, such as Intune and is available in Windows 10 Enterprise E5 or equivalent subscriptions. Send off blob to device to reset tamper protection state before setting this configuration to "not configured" or "unassigned" in Intune. The data type is a Signed blob.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ EnableFileHashComputation
+
+
+
+
+
+
+
+ 0
+ Enables or disables file hash computation feature. When this feature is enabled Windows defender will compute hashes for files it scans.
@@ -776,26 +948,22 @@ The XML below is the current version for this CSP.
- text/plain
+
-
- 99.9.99999
- 1.3
-
-
-
- 1
- Gradual release is disabled
-
-
- 0
- Gradual release is enabled
-
-
+
+
+ 0
+ Disable
+
+
+ 1
+ Enable
+
+
-
- DefinitionUpdatesChannel
+
+ MeteredConnectionUpdates
@@ -803,7 +971,8 @@ The XML below is the current version for this CSP.
- Enable this policy to specify when devices receive daily Microsoft Defender definition updates during the daily gradual rollout.
+ 0
+ Allow managed devices to update through metered connections. Default is 0 - not allowed, 1 - allowed
@@ -814,30 +983,25 @@ The XML below is the current version for this CSP.
- text/plain
+
-
- 99.9.99999
- 1.3
-
-
-
- 0
- Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
-
-
- 4
- Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%).
-
-
- 5
- Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
-
-
+
+ 10.0.14393
+
+
+
+ 1
+ Allowed
+
+
+ 0
+ Not Allowed
+
+
-
- EngineUpdatesChannel
+
+ SupportLogLocation
@@ -845,7 +1009,38 @@ The XML below is the current version for this CSP.
- Enable this policy to specify when devices receive Microsoft Defender engine updates during the monthly gradual rollout.
+ The support log location setting allows the administrator to specify where the Microsoft Defender Antivirus diagnostic data collection tool (MpCmdRun.exe) will save the resulting log files. This setting is configured with an MDM solution, such as Intune, and is available for Windows 10 Enterprise.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 9.9
+
+
+
+
+
+
+ AllowNetworkProtectionOnWinServer
+
+
+
+
+
+
+
+ 1
+ This settings controls whether Network Protection is allowed to be configured into block or audit mode on Windows Server. If false, the value of EnableNetworkProtection will be ignored.
@@ -856,37 +1051,399 @@ The XML below is the current version for this CSP.
- text/plain
+
-
- 99.9.99999
- 1.3
-
-
-
- 0
- Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
-
-
- 2
- Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices.
-
-
- 3
- Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments.
-
-
- 4
- Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%).
-
-
- 5
- Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
-
-
+
+ 10.0.16299
+ 1.3
+
+
+
+ 1
+ Allow
+
+
+ 0
+ Disallow
+
+
-
+
+ ExcludedIpAddresses
+
+
+
+
+
+
+
+ This node contains a list of values specifying any IP addresses that wdnisdrv will ignore when intercepting traffic.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+
+
+
+
+ DisableCpuThrottleOnIdleScans
+
+
+
+
+
+
+
+ 1
+ Indicates whether the CPU will be throttled for scheduled scans while the device is idle. This feature is enabled by default and will not throttle the CPU for scheduled scans performed when the device is otherwise idle, regardless of what ScanAvgCPULoadFactor is set to. For all other scheduled scans this flag will have no impact and normal throttling will occur.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Disable CPU Throttle on idle scans
+
+
+ 0
+ Enable CPU Throttle on idle scans
+
+
+
+
+
+ DisableLocalAdminMerge
+
+
+
+
+
+
+
+ When this value is set to false, it allows a local admin the ability to specify some settings for complex list type that will then merge /override the Preference settings with the Policy settings
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Disable Local Admin Merge
+
+
+ 0
+ Enable Local Admin Merge
+
+
+
+
+
+ SchedulerRandomizationTime
+
+
+
+
+
+
+
+ 4
+ This setting allows you to configure the scheduler randomization in hours. The randomization interval is [1 - 23] hours. For more information on the randomization effect please check the RandomizeScheduleTaskTimes setting.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+ [1-23]
+
+
+
+
+ DisableTlsParsing
+
+
+
+
+
+
+
+ 0
+ This setting disables TLS Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ TLS parsing is disabled
+
+
+ 0
+ TLS parsing is enabled
+
+
+
+
+
+ DisableFtpParsing
+
+
+
+
+
+
+
+ 0
+ This setting disables FTP Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ FTP parsing is disabled
+
+
+ 0
+ FTP parsing is enabled
+
+
+
+
+
+ DisableHttpParsing
+
+
+
+
+
+
+
+ 0
+ This setting disables HTTP Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ HTTP parsing is disabled
+
+
+ 0
+ HTTP parsing is enabled
+
+
+
+
+
+ DisableDnsParsing
+
+
+
+
+
+
+
+ 0
+ This setting disables DNS Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ DNS parsing is disabled
+
+
+ 0
+ DNS parsing is enabled
+
+
+
+
+
+ DisableDnsOverTcpParsing
+
+
+
+
+
+
+
+ 0
+ This setting disables DNS over TCP Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ DNS over TCP parsing is disabled
+
+
+ 0
+ DNS over TCP parsing is enabled
+
+
+
+
+
+ DisableSshParsing
+
+
+
+
+
+
+
+ 0
+ This setting disables SSH Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ SSH parsing is disabled
+
+
+ 0
+ SSH parsing is enabled
+
+
+
+
+
PlatformUpdatesChannel
@@ -906,104 +1463,966 @@ The XML below is the current version for this CSP.
- text/plain
+
-
- 99.9.99999
- 1.3
-
-
-
- 0
- Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
-
-
- 2
- Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices.
-
-
- 3
- Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments.
-
-
- 4
- Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%).
-
-
- 5
- Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
-
-
+
+ 10.0.14393
+ 1.3
+
+
+
+ 0
+ Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
+
+
+ 2
+ Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices.
+
+
+ 3
+ Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments.
+
+
+ 4
+ Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%).
+
+
+ 5
+ Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
+
+
+ 6
+ Critical - Time delay: Devices will be offered updates with a 48-hour delay. Suggested for critical environments only.
+
+
-
-
- Scan
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- UpdateSignature
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
-
- OfflineScan
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- text/plain
-
-
-
+
+ EngineUpdatesChannel
+
+
+
+
+
+
+
+ Enable this policy to specify when devices receive Microsoft Defender engine updates during the monthly gradual rollout.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 0
+ Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
+
+
+ 2
+ Beta Channel: Devices set to this channel will be the first to receive new updates. Select Beta Channel to participate in identifying and reporting issues to Microsoft. Devices in the Windows Insider Program are subscribed to this channel by default. For use in (manual) test environments only and a limited number of devices.
+
+
+ 3
+ Current Channel (Preview): Devices set to this channel will be offered updates earliest during the monthly gradual release cycle. Suggested for pre-production/validation environments.
+
+
+ 4
+ Current Channel (Staged): Devices will be offered updates after the monthly gradual release cycle. Suggested to apply to a small, representative part of your production population (~10%).
+
+
+ 5
+ Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
+
+
+ 6
+ Critical - Time delay: Devices will be offered updates with a 48-hour delay. Suggested for critical environments only.
+
+
+
+
+ SecurityIntelligenceUpdatesChannel
+
+
+
+
+
+
+
+ Enable this policy to specify when devices receive Microsoft Defender security intelligence updates during the daily gradual rollout.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 0
+ Not configured (Default). The device will stay up to date automatically during the gradual release cycle. Suitable for most devices.
+
+
+ 4
+ Current Channel (Staged): Devices will be offered updates after the release cycle. Suggested to apply to a small, representative part of production population (~10%).
+
+
+ 5
+ Current Channel (Broad): Devices will be offered updates only after the gradual release cycle completes. Suggested to apply to a broad set of devices in your production population (~10-100%).
+
+
+
+
+
+ DisableGradualRelease
+
+
+
+
+
+
+
+ Enable this policy to disable gradual rollout of Defender updates.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Gradual release is disabled
+
+
+ 0
+ Gradual release is enabled
+
+
+
+
+
+ AllowNetworkProtectionDownLevel
+
+
+
+
+
+
+
+ This settings controls whether Network Protection is allowed to be configured into block or audit mode on windows downlevel of RS3. If false, the value of EnableNetworkProtection will be ignored.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Network protection will be enabled downlevel.
+
+
+ 0
+ Network protection will be disabled downlevel.
+
+
+
+
+
+ EnableDnsSinkhole
+
+
+
+
+
+
+
+ This setting enables the DNS Sinkhole feature for Network Protection, respecting the value of EnableNetworkProtection for block vs audit, does nothing in inspect mode.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ DNS Sinkhole is disabled
+
+
+ 0
+ DNS Sinkhole is enabled
+
+
+
+
+
+ DisableInboundConnectionFiltering
+
+
+
+
+
+
+
+ This setting disables Inbound connection filtering for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Inbound connection filtering is disabled
+
+
+ 0
+ Inbound connection filtering is enabled
+
+
+
+
+
+ DisableRdpParsing
+
+
+
+
+
+
+
+ This setting disables RDP Parsing for Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ RDP Parsing is disabled
+
+
+ 0
+ RDP Parsing is enabled
+
+
+
+
+
+ AllowDatagramProcessingOnWinServer
+
+
+
+
+
+
+
+ This settings controls whether Network Protection is allowed to enable datagram processing on Windows Server. If false, the value of DisableDatagramProcessing will be ignored and default to disabling Datagram inspection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Datagram processing on Windows Server is enabled.
+
+
+ 0
+ Datagram processing on Windows Server is disabled.
+
+
+
+
+
+ DisableNetworkProtectionPerfTelemetry
+
+
+
+
+
+
+
+ This setting disables the gathering and send of performance telemetry from Network Protection.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ Network protection telemetry is disabled
+
+
+ 0
+ Network protection telemetry is enabled
+
+
+
+
+
+ HideExclusionsFromLocalAdmins
+
+
+
+
+
+
+
+ This policy setting controls whether or not exclusions are visible to local admins. For end users (that are not local admins) exclusions are not visible, whether or not this setting is enabled.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17763
+ 1.3
+
+
+
+ 1
+ If you enable this setting, local admins will no longer be able to see the exclusion list in Windows Security App or via PowerShell.
+
+
+ 0
+ If you disable or do not configure this setting, local admins will be able to see exclusions in the Windows Security App and via PowerShell.
+
+
+
+
+
+ ThrottleForScheduledScanOnly
+
+
+
+
+
+
+
+ 1
+ A CPU usage limit can be applied to scheduled scans only, or to scheduled and custom scans. The default value applies a CPU usage limit to scheduled scans only.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 1
+ If you enable this setting, CPU throttling will apply only to scheduled scans.
+
+
+ 0
+ If you disable this setting, CPU throttling will apply to scheduled and custom scans.
+
+
+
+
+
+ ASROnlyPerRuleExclusions
+
+
+
+
+
+
+
+ Apply ASR only per rule exclusions.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.16299
+ 1.3
+
+
+
+
+
+
+ DataDuplicationDirectory
+
+
+
+
+
+
+
+ Define data duplication directory for device control.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17763
+ 1.3
+
+
+
+
+
+
+ DataDuplicationRemoteLocation
+
+
+
+
+
+
+
+ Define data duplication remote location for device control.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17763
+ 1.3
+
+
+
+
+
+
+ DeviceControlEnabled
+
+
+
+
+
+
+
+ Control Device Control feature.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17763
+ 1.3
+
+
+
+ 1
+
+
+
+
+ 0
+
+
+
+
+
+
+
+ DefaultEnforcement
+
+
+
+
+
+
+
+ Control Device Control default enforcement. This is the enforcement applied if there are no policy rules present or at the end of the policy rules evaluation none were matched.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17763
+ 1.3
+
+
+
+ 1
+ Default Allow Enforcement
+
+
+ 2
+ Default Deny Enforcement
+
+
+
+
+
+ PassiveRemediation
+
+
+
+
+
+
+
+ Setting to control automatic remediation for Sense scans.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 0x1
+ PASSIVE_REMEDIATION_FLAG_SENSE_AUTO_REMEDIATION: Passive Remediation Sense AutoRemediation
+
+
+ 0x2
+ PASSIVE_REMEDIATION_FLAG_RTP_AUDIT: Passive Remediation Realtime Protection Audit
+
+
+ 0x4
+ PASSIVE_REMEDIATION_FLAG_RTP_REMEDIATION: Passive Remediation Realtime Protection Remediation
+
+
+
+
+
+ PauseUpdateStartTime
+
+
+
+
+
+
+
+ Pause update from the UTC time in ISO string format without milliseconds, for example, 2022-02-24T00:03:59Z.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+
+
+
+ PauseUpdateExpirationTime
+
+
+
+
+
+
+
+ Pause update until the UTC time in ISO string format without milliseconds, for example, 2022-02-24T00:03:59Z.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+
+
+
+ PauseUpdateFlag
+
+
+
+
+
+
+
+ Setting to control automatic remediation for Sense scans.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.14393
+ 1.3
+
+
+
+ 0
+ Update not paused
+
+
+ 1
+ Update paused
+
+
+
+
+
+ TDTFeatureEnabled
+
+
+
+
+
+
+
+ 0
+ This policy setting configures the integration level for Intel TDT integration for Intel TDT-capable devices.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.19041
+ 1.3
+
+
+
+ 0
+ If you do not configure this setting, the default value will be applied. The default value is set to control by signatures. TDT will be enabled based on particular signatures that are released by Microsoft.
+
+
+ 2
+ If you configure this setting to disabled, Intel TDT integration will be turned off.
+
+
+
+
+
+
+ Scan
+
+
+
+
+
+ Node that can be used to start a Windows Defender scan on a device.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 1
+ quick scan
+
+
+ 2
+ full scan
+
+
+
+
+
+ UpdateSignature
+
+
+
+
+
+ Node that can be used to perform signature updates for Windows Defender.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ OfflineScan
+
+
+
+
+
+ OfflineScan action starts a Microsoft Defender Offline scan on the computer where you run the command. After the next OS reboot, the device will start in Microsoft Defender Offline mode to begin the scan.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17134
+ 1.1
+
+ ServerInitiated
+
+
+
+ RollbackPlatform
+
+
+
+
+
+ RollbackPlatform action rolls back Microsoft Defender to it's last known good installation location on the computer where you run the command.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17134
+ 1.1
+
+ ServerInitiated
+
+
+
+ RollbackEngine
+
+
+
+
+
+ RollbackEngine action rolls back Microsoft Defender engine to it's last known good saved version on the computer where you run the command.
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 10.0.17134
+ 1.1
+
+ ServerInitiated
+
+
+
```
-## See also
+## Related articles
-[Defender configuration service provider](defender-csp.md)
+[Defender configuration service provider reference](defender-csp.md)
diff --git a/windows/client-management/mdm/enterprisedataprotection-csp.md b/windows/client-management/mdm/enterprisedataprotection-csp.md
index 86f5334e40..3a3a87afe4 100644
--- a/windows/client-management/mdm/enterprisedataprotection-csp.md
+++ b/windows/client-management/mdm/enterprisedataprotection-csp.md
@@ -277,7 +277,7 @@ Specifies whether to allow Azure RMS encryption for Windows Information Protecti
Supported operations are Add, Get, Replace, and Delete. Value type is integer.
**Settings/SMBAutoEncryptedFileExtensions**
-Added in Windows 10, version 1703. Specifies a list of file extensions, so that files with these extensions are encrypted when copying from a Server Message Block (SMB) share within the corporate boundary as defined in the Policy CSP nodes for [NetworkIsolation/EnterpriseIPRange](policy-configuration-service-provider.md#networkisolation-enterpriseiprange) and [NetworkIsolation/EnterpriseNetworkDomainNames](policy-configuration-service-provider.md#networkisolation-enterprisenetworkdomainnames). Use semicolon (;) delimiter in the list.
+Added in Windows 10, version 1703. Specifies a list of file extensions, so that files with these extensions are encrypted when copying from a Server Message Block (SMB) share within the corporate boundary as defined in the Policy CSP nodes for [NetworkIsolation/EnterpriseIPRange](policy-csp-networkisolation.md) and [NetworkIsolation/EnterpriseNetworkDomainNames](policy-csp-networkisolation.md). Use semicolon (;) delimiter in the list.
When this policy isn't specified, the existing auto-encryption behavior is applied. When this policy is configured, only files with the extensions in the list will be encrypted.
Supported operations are Add, Get, Replace and Delete. Value type is string.
diff --git a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
index b683f12d06..0224b374cf 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-admx-backed.md
@@ -1,1913 +1,3028 @@
---
title: ADMX-backed policies in Policy CSP
description: Learn about the ADMX-backed policies in Policy CSP.
-ms.reviewer:
+author: vinaypamnani-msft
manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/29/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 10/08/2020
+ms.topic: reference
---
+
+
# ADMX-backed policies in Policy CSP
-- [ActiveXControls/ApprovedInstallationSites](./policy-csp-activexcontrols.md#activexcontrols-approvedinstallationsites)
-- [ADMX_ActiveXInstallService/AxISURLZonePolicies](./policy-csp-admx-activexinstallservice.md#admx-activexinstallservice-axisurlzonepolicies)
-- [ADMX_AddRemovePrograms/DefaultCategory](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-defaultcategory)
-- [ADMX_AddRemovePrograms/NoAddFromCDorFloppy](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfromcdorfloppy)
-- [ADMX_AddRemovePrograms/NoAddFromInternet](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfrominternet)
-- [ADMX_AddRemovePrograms/NoAddFromNetwork](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfromnetwork)
-- [ADMX_AddRemovePrograms/NoAddPage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddpage)
-- [ADMX_AddRemovePrograms/NoAddRemovePrograms](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddremoveprograms)
-- [ADMX_AddRemovePrograms/NoChooseProgramsPage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nochooseprogramspage)
-- [ADMX_AddRemovePrograms/NoRemovePage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noremovepage)
-- [ADMX_AddRemovePrograms/NoServices](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noservices)
-- [ADMX_AddRemovePrograms/NoSupportInfo](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nosupportinfo)
-- [ADMX_AddRemovePrograms/NoWindowsSetupPage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nowindowssetuppage)
-- [ADMX_AdmPwd/POL_AdmPwd_DontAllowPwdExpirationBehindPolicy](./policy-csp-admx-admpwd.md#admx-admpwd-pol_admpwd_dontallowpwdexpirationbehindpolicy)
-- [ADMX_AdmPwd/POL_AdmPwd_Enabled](./policy-csp-admx-admpwd.md#admx-admpwd-pol_admpwd_enabled)
-- [ADMX_AdmPwd/POL_AdmPwd_AdminName](./policy-csp-admx-admpwd.md#admx-admpwd-pol_admpwd_adminname)
-- [ADMX_AdmPwd/POL_AdmPwd](./policy-csp-admx-admpwd.md#admx-admpwd-pol_admpwd)
-- [ADMX_AppCompat/AppCompatPrevent16BitMach](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatprevent16bitmach)
-- [ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatremoveprogramcompatproppage)
-- [ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffapplicationimpacttelemetry)
-- [ADMX_AppCompat/AppCompatTurnOffSwitchBack](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffswitchback)
-- [ADMX_AppCompat/AppCompatTurnOffEngine](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffengine)
-- [ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_1)
-- [ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_2)
-- [ADMX_AppCompat/AppCompatTurnOffUserActionRecord](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffuseractionrecord)
-- [ADMX_AppCompat/AppCompatTurnOffProgramInventory](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprograminventory)
-- [ADMX_AppxPackageManager/AllowDeploymentInSpecialProfiles](./policy-csp-admx-appxpackagemanager.md#admx-appxpackagemanager-allowdeploymentinspecialprofiles)
-- [ADMX_AppXRuntime/AppxRuntimeApplicationContentUriRules](./policy-csp-admx-appxruntime.md#admx-appxruntime-appxruntimeapplicationcontenturirules)
-- [ADMX_AppXRuntime/AppxRuntimeBlockFileElevation](./policy-csp-admx-appxruntime.md#admx-appxruntime-appxruntimeblockfileelevation)
-- [ADMX_AppXRuntime/AppxRuntimeBlockHostedAppAccessWinRT](./policy-csp-admx-appxruntime.md#admx-appxruntime-appxruntimeblockhostedappaccesswinrt)
-- [ADMX_AppXRuntime/AppxRuntimeBlockProtocolElevation](./policy-csp-admx-appxruntime.md#admx-appxruntime-appxruntimeblockprotocolelevation)
-- [ADMX_AttachmentManager/AM_EstimateFileHandlerRisk](./policy-csp-admx-attachmentmanager.md#admx-attachmentmanager-am-estimatefilehandlerrisk)
-- [ADMX_AttachmentManager/AM_SetFileRiskLevel](./policy-csp-admx-attachmentmanager.md#admx-attachmentmanager-am-setfilerisklevel)
-- [ADMX_AttachmentManager/AM_SetHighRiskInclusion](./policy-csp-admx-attachmentmanager.md#admx-attachmentmanager-am-sethighriskinclusion)
-- [ADMX_AttachmentManager/AM_SetLowRiskInclusion](./policy-csp-admx-attachmentmanager.md#admx-attachmentmanager-am-setlowriskinclusion)
-- [ADMX_AttachmentManager/AM_SetModRiskInclusion](./policy-csp-admx-attachmentmanager.md#admx-attachmentmanager-am-setmodriskinclusion)
-- [ADMX_AuditSettings/IncludeCmdLine](./policy-csp-admx-auditsettings.md#admx-auditsettings-includecmdline)
-- [ADMX_Bits/BITS_DisableBranchCache](./policy-csp-admx-bits.md#admx-bits-bits-disablebranchcache)
-- [ADMX_Bits/BITS_DisablePeercachingClient](./policy-csp-admx-bits.md#admx-bits-bits-disablepeercachingclient)
-- [ADMX_Bits/BITS_DisablePeercachingServer](./policy-csp-admx-bits.md#admx-bits-bits-disablepeercachingserver)
-- [ADMX_Bits/BITS_EnablePeercaching](./policy-csp-admx-bits.md#admx-bits-bits-enablepeercaching)
-- [ADMX_Bits/BITS_MaxBandwidthServedForPeers](./policy-csp-admx-bits.md#admx-bits-bits-maxbandwidthservedforpeers)
-- [ADMX_Bits/BITS_MaxBandwidthV2_Maintenance](./policy-csp-admx-bits.md#admx-bits-bits-maxbandwidthv2-maintenance)
-- [ADMX_Bits/BITS_MaxBandwidthV2_Work](./policy-csp-admx-bits.md#admx-bits-bits-maxbandwidthv2-work)
-- [ADMX_Bits/BITS_MaxCacheSize](./policy-csp-admx-bits.md#admx-bits-bits-maxcachesize)
-- [ADMX_Bits/BITS_MaxContentAge](./policy-csp-admx-bits.md#admx-bits-bits-maxcontentage)
-- [ADMX_Bits/BITS_MaxDownloadTime](./policy-csp-admx-bits.md#admx-bits-bits-maxdownloadtime)
-- [ADMX_Bits/BITS_MaxFilesPerJob](./policy-csp-admx-bits.md#admx-bits-bits-maxfilesperjob)
-- [ADMX_Bits/BITS_MaxJobsPerMachine](./policy-csp-admx-bits.md#admx-bits-bits-maxjobspermachine)
-- [ADMX_Bits/BITS_MaxJobsPerUser](./policy-csp-admx-bits.md#admx-bits-bits-maxjobsperuser)
-- [ADMX_Bits/BITS_MaxRangesPerFile](./policy-csp-admx-bits.md#admx-bits-bits-maxrangesperfile)
-- [ADMX_CipherSuiteOrder/SSLCipherSuiteOrder](./policy-csp-admx-ciphersuiteorder.md#admx-ciphersuiteorder-sslciphersuiteorder)
-- [ADMX_CipherSuiteOrder/SSLCurveOrder](./policy-csp-admx-ciphersuiteorder.md#admx-ciphersuiteorder-sslcurveorder)
-- [ADMX_COM/AppMgmt_COM_SearchForCLSID_1](./policy-csp-admx-com.md#admx-com-appmgmt-com-searchforclsid-1)
-- [ADMX_COM/AppMgmt_COM_SearchForCLSID_2](./policy-csp-admx-com.md#admx-com-appmgmt-com-searchforclsid-2)
-- [ADMX_ControlPanel/DisallowCpls](./policy-csp-admx-controlpanel.md#admx-controlpanel-disallowcpls)
-- [ADMX_ControlPanel/ForceClassicControlPanel](./policy-csp-admx-controlpanel.md#admx-controlpanel-forceclassiccontrolpanel)
-- [ADMX_ControlPanel/NoControlPanel](./policy-csp-admx-controlpanel.md#admx-controlpanel-nocontrolpanel)
-- [ADMX_ControlPanel/RestrictCpls](./policy-csp-admx-controlpanel.md#admx-controlpanel-restrictcpls)
-- [ADMX_ControlPanelDisplay/CPL_Display_Disable](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-display-disable)
-- [ADMX_ControlPanelDisplay/CPL_Display_HideSettings](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-display-hidesettings)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_DisableColorSchemeChoice](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-disablecolorschemechoice)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_DisableThemeChange](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-disablethemechange)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_DisableVisualStyle](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-disablevisualstyle)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_EnableScreenSaver](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-enablescreensaver)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_ForceDefaultLockScreen](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-forcedefaultlockscreen)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_LockFontSize](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-lockfontsize)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoChangingLockScreen](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nochanginglockscreen)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoChangingStartMenuBackground](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nochangingstartmenubackground)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoColorAppearanceUI](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nocolorappearanceui)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoDesktopBackgroundUI](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nodesktopbackgroundui)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoDesktopIconsUI](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nodesktopiconsui)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoLockScreen](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nolockscreen)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoMousePointersUI](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nomousepointersui)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoScreenSaverUI](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-noscreensaverui)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_NoSoundSchemeUI](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-nosoundschemeui)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_PersonalColors](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-personalcolors)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_ScreenSaverIsSecure](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-screensaverissecure)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_ScreenSaverTimeOut](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-screensavertimeout)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_SetScreenSaver](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-setscreensaver)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_SetTheme](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-settheme)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_SetVisualStyle](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-setvisualstyle)
-- [ADMX_ControlPanelDisplay/CPL_Personalization_StartBackground](./policy-csp-admx-controlpaneldisplay.md#admx-controlpaneldisplay-cpl-personalization-startbackground)
-- [ADMX_Cpls/UseDefaultTile](./policy-csp-admx-cpls.md#admx-cpls-usedefaulttile)
-- [ADMX_CredentialProviders/AllowDomainDelayLock](./policy-csp-admx-credentialproviders.md#admx-credentialproviders-allowdomaindelaylock)
-- [ADMX_CredentialProviders/DefaultCredentialProvider](./policy-csp-admx-credentialproviders.md#admx-credentialproviders-defaultcredentialprovider)
-- [ADMX_CredentialProviders/ExcludedCredentialProviders](./policy-csp-admx-credentialproviders.md#admx-credentialproviders-excludedcredentialproviders)
-- [ADMX_CredSsp/AllowDefCredentialsWhenNTLMOnly](./policy-csp-admx-credssp.md#admx-credssp-allowdefcredentialswhenntlmonly)
-- [ADMX_CredSsp/AllowDefaultCredentials](./policy-csp-admx-credssp.md#admx-credssp-allowdefaultcredentials)
-- [ADMX_CredSsp/AllowEncryptionOracle](./policy-csp-admx-credssp.md#admx-credssp-allowencryptionoracle)
-- [ADMX_CredSsp/AllowFreshCredentials](./policy-csp-admx-credssp.md#admx-credssp-allowfreshcredentials)
-- [ADMX_CredSsp/AllowFreshCredentialsWhenNTLMOnly](./policy-csp-admx-credssp.md#admx-credssp-allowfreshcredentialswhenntlmonly)
-- [ADMX_CredSsp/AllowSavedCredentials](./policy-csp-admx-credssp.md#admx-credssp-allowsavedcredentials)
-- [ADMX_CredSsp/AllowSavedCredentialsWhenNTLMOnly](./policy-csp-admx-credssp.md#admx-credssp-allowsavedcredentialswhenntlmonly)
-- [ADMX_CredSsp/DenyDefaultCredentials](./policy-csp-admx-credssp.md#admx-credssp-denydefaultcredentials)
-- [ADMX_CredSsp/DenyFreshCredentials](./policy-csp-admx-credssp.md#admx-credssp-denyfreshcredentials)
-- [ADMX_CredSsp/DenySavedCredentials](./policy-csp-admx-credssp.md#admx-credssp-denysavedcredentials)
-- [ADMX_CredSsp/RestrictedRemoteAdministration](./policy-csp-admx-credssp.md#admx-credssp-restrictedremoteadministration)
-- [ADMX_CredUI/EnableSecureCredentialPrompting](./policy-csp-admx-credui.md#admx-credui-enablesecurecredentialprompting)
-- [ADMX_CredUI/NoLocalPasswordResetQuestions](./policy-csp-admx-credui.md#admx-credui-nolocalpasswordresetquestions)
-- [ADMX_CtrlAltDel/DisableChangePassword](./policy-csp-admx-ctrlaltdel.md#admx-ctrlaltdel-disablechangepassword)
-- [ADMX_CtrlAltDel/DisableLockComputer](./policy-csp-admx-ctrlaltdel.md#admx-ctrlaltdel-disablelockcomputer)
-- [ADMX_CtrlAltDel/DisableTaskMgr](./policy-csp-admx-ctrlaltdel.md#admx-ctrlaltdel-disabletaskmgr)
-- [ADMX_CtrlAltDel/NoLogoff](./policy-csp-admx-ctrlaltdel.md#admx-ctrlaltdel-nologoff)
-- [ADMX_DataCollection/CommercialIdPolicy](./policy-csp-admx-datacollection.md#admx-datacollection-commercialidpolicy)
-- [ADMX_DCOM/DCOMActivationSecurityCheckAllowLocalList](./policy-csp-admx-dcom.md#admx-dcom-dcomactivationsecuritycheckallowlocallist)
-- [ADMX_DCOM/DCOMActivationSecurityCheckExemptionList](./policy-csp-admx-dcom.md#admx-dcom-dcomactivationsecuritycheckexemptionlist)
-- [ADMX_Desktop/AD_EnableFilter](./policy-csp-admx-desktop.md#admx-desktop-ad-enablefilter)
-- [ADMX_Desktop/AD_HideDirectoryFolder](./policy-csp-admx-desktop.md#admx-desktop-ad-hidedirectoryfolder)
-- [ADMX_Desktop/AD_QueryLimit](./policy-csp-admx-desktop.md#admx-desktop-ad-querylimit)
-- [ADMX_Desktop/ForceActiveDesktopOn](./policy-csp-admx-desktop.md#admx-desktop-forceactivedesktopon)
-- [ADMX_Desktop/NoActiveDesktop](./policy-csp-admx-desktop.md#admx-desktop-noactivedesktop)
-- [ADMX_Desktop/NoActiveDesktopChanges](./policy-csp-admx-desktop.md#admx-desktop-noactivedesktopchanges)
-- [ADMX_Desktop/NoDesktop](./policy-csp-admx-desktop.md#admx-desktop-nodesktop)
-- [ADMX_Desktop/NoDesktopCleanupWizard](./policy-csp-admx-desktop.md#admx-desktop-nodesktopcleanupwizard)
-- [ADMX_Desktop/NoInternetIcon](./policy-csp-admx-desktop.md#admx-desktop-nointerneticon)
-- [ADMX_Desktop/NoMyComputerIcon](./policy-csp-admx-desktop.md#admx-desktop-nomycomputericon)
-- [ADMX_Desktop/NoMyDocumentsIcon](./policy-csp-admx-desktop.md#admx-desktop-nomydocumentsicon)
-- [ADMX_Desktop/NoNetHood](./policy-csp-admx-desktop.md#admx-desktop-nonethood)
-- [ADMX_Desktop/NoPropertiesMyComputer](./policy-csp-admx-desktop.md#admx-desktop-nopropertiesmycomputer)
-- [ADMX_Desktop/NoPropertiesMyDocuments](./policy-csp-admx-desktop.md#admx-desktop-nopropertiesmydocuments)
-- [ADMX_Desktop/NoRecentDocsNetHood](./policy-csp-admx-desktop.md#admx-desktop-norecentdocsnethood)
-- [ADMX_Desktop/NoRecycleBinIcon](./policy-csp-admx-desktop.md#admx-desktop-norecyclebinicon)
-- [ADMX_Desktop/NoRecycleBinProperties](./policy-csp-admx-desktop.md#admx-desktop-norecyclebinproperties)
-- [ADMX_Desktop/NoSaveSettings](./policy-csp-admx-desktop.md#admx-desktop-nosavesettings)
-- [ADMX_Desktop/NoWindowMinimizingShortcuts](./policy-csp-admx-desktop.md#admx-desktop-nowindowminimizingshortcuts)
-- [ADMX_Desktop/Wallpaper](./policy-csp-admx-desktop.md#admx-desktop-wallpaper)
-- [ADMX_Desktop/sz_ATC_DisableAdd](./policy-csp-admx-desktop.md#admx-desktop-sz-atc-disableadd)
-- [ADMX_Desktop/sz_ATC_DisableClose](./policy-csp-admx-desktop.md#admx-desktop-sz-atc-disableclose)
-- [ADMX_Desktop/sz_ATC_DisableDel](./policy-csp-admx-desktop.md#admx-desktop-sz-atc-disabledel)
-- [ADMX_Desktop/sz_ATC_DisableEdit](./policy-csp-admx-desktop.md#admx-desktop-sz-atc-disableedit)
-- [ADMX_Desktop/sz_ATC_NoComponents](./policy-csp-admx-desktop.md#admx-desktop-sz-atc-nocomponents)
-- [ADMX_Desktop/sz_AdminComponents_Title](./policy-csp-admx-desktop.md#admx-desktop-sz-admincomponents-title)
-- [ADMX_Desktop/sz_DB_DragDropClose](./policy-csp-admx-desktop.md#admx-desktop-sz-db-dragdropclose)
-- [ADMX_Desktop/sz_DB_Moving](./policy-csp-admx-desktop.md#admx-desktop-sz-db-moving)
-- [ADMX_Desktop/sz_DWP_NoHTMLPaper](./policy-csp-admx-desktop.md#admx-desktop-sz-dwp-nohtmlpaper)
-- [ADMX_DeviceCompat/DeviceFlags](./policy-csp-admx-devicecompat.md#admx-devicecompat-deviceflags)
-- [ADMX_DeviceCompat/DriverShims](./policy-csp-admx-devicecompat.md#admx-devicecompat-drivershims)
-- [ADMX_DeviceInstallation/DeviceInstall_AllowAdminInstall](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-allowadmininstall)
-- [ADMX_DeviceInstallation/DeviceInstall_DeniedPolicy_DetailText](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-deniedpolicy-detailtext)
-- [ADMX_DeviceInstallation/DeviceInstall_DeniedPolicy_SimpleText](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-deniedpolicy-simpletext)
-- [ADMX_DeviceInstallation/DeviceInstall_InstallTimeout](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-installtimeout)
-- [ADMX_DeviceInstallation/DeviceInstall_Policy_RebootTime](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-policy-reboottime)
-- [ADMX_DeviceInstallation/DeviceInstall_Removable_Deny](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-removable-deny)
-- [ADMX_DeviceInstallation/DeviceInstall_SystemRestore](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-systemrestore)
-- [ADMX_DeviceInstallation/DriverInstall_Classes_AllowUser](./policy-csp-admx-deviceinstallation.md#admx-deviceinstallation-deviceinstall-classes-allowuser)
-- [ADMX_DeviceGuard/ConfigCIPolicy](./policy-csp-admx-deviceguard.md#admx-deviceguard-configcipolicy)
-- [ADMX_DeviceSetup/DeviceInstall_BalloonTips](./policy-csp-admx-devicesetup.md#admx-devicesetup-deviceinstall-balloontips)
-- [ADMX_DeviceSetup/DriverSearchPlaces_SearchOrderConfiguration](./policy-csp-admx-devicesetup.md#admx-devicesetup-driversearchplaces-searchorderconfiguration)
-- [ADMX_DigitalLocker/Digitalx_DiableApplication_TitleText_1](./policy-csp-admx-digitallocker.md#admx-digitallocker-digitalx-diableapplication-titletext-1)
-- [ADMX_DigitalLocker/Digitalx_DiableApplication_TitleText_2](./policy-csp-admx-digitallocker.md#admx-digitallocker-digitalx-diableapplication-titletext-2)
-- [ADMX_DiskNVCache/BootResumePolicy](./policy-csp-admx-disknvcache.md#admx-disknvcache-bootresumepolicy)
-- [ADMX_DiskNVCache/FeatureOffPolicy](./policy-csp-admx-disknvcache.md#admx-disknvcache-featureoffpolicy)
-- [ADMX_DiskNVCache/SolidStatePolicy](./policy-csp-admx-disknvcache.md#admx-disknvcache-solidstatepolicy)
-- [ADMX_DiskQuota/DQ_RemovableMedia](./policy-csp-admx-diskquota.md#admx-diskquota-dq_removablemedia)
-- [ADMX_DiskQuota/DQ_Enable](./policy-csp-admx-diskquota.md#admx-diskquota-dq_enable)
-- [ADMX_DiskQuota/DQ_Enforce](./policy-csp-admx-diskquota.md#admx-diskquota-dq_enforce)
-- [ADMX_DiskQuota/DQ_LogEventOverLimit](./policy-csp-admx-diskquota.md#admx-diskquota-dq_logeventoverlimit)
-- [ADMX_DiskQuota/DQ_LogEventOverThreshold](./policy-csp-admx-diskquota.md#admx-diskquota-dq_logeventoverthreshold)
-- [ADMX_DiskQuota/DQ_Limit](./policy-csp-admx-diskquota.md#admx-diskquota-dq_limit)
-- [ADMX_DistributedLinkTracking/DLT_AllowDomainMode](./policy-csp-admx-distributedlinktracking.md#admx-distributedlinktracking-dlt_allowdomainmode)
-- [ADMX_DnsClient/DNS_AllowFQDNNetBiosQueries](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-allowfqdnnetbiosqueries)
-- [ADMX_DnsClient/DNS_AppendToMultiLabelName](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-appendtomultilabelname)
-- [ADMX_DnsClient/DNS_Domain](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-domain)
-- [ADMX_DnsClient/DNS_DomainNameDevolutionLevel](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-domainnamedevolutionlevel)
-- [ADMX_DnsClient/DNS_IdnEncoding](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-idnencoding)
-- [ADMX_DnsClient/DNS_IdnMapping](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-idnmapping)
-- [ADMX_DnsClient/DNS_NameServer](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-nameserver)
-- [ADMX_DnsClient/DNS_PreferLocalResponsesOverLowerOrderDns](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-preferlocalresponsesoverlowerorderdns)
-- [ADMX_DnsClient/DNS_PrimaryDnsSuffix](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-primarydnssuffix)
-- [ADMX_DnsClient/DNS_RegisterAdapterName](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registeradaptername)
-- [ADMX_DnsClient/DNS_RegisterReverseLookup](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registerreverselookup)
-- [ADMX_DnsClient/DNS_RegistrationEnabled](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationenabled)
-- [ADMX_DnsClient/DNS_RegistrationOverwritesInConflict](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationoverwritesinconflict)
-- [ADMX_DnsClient/DNS_RegistrationRefreshInterval](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationrefreshinterval)
-- [ADMX_DnsClient/DNS_RegistrationTtl](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationttl)
-- [ADMX_DnsClient/DNS_SearchList](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-searchlist)
-- [ADMX_DnsClient/DNS_SmartMultiHomedNameResolution](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-smartmultihomednameresolution)
-- [ADMX_DnsClient/DNS_SmartProtocolReorder](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-smartprotocolreorder)
-- [ADMX_DnsClient/DNS_UpdateSecurityLevel](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatesecuritylevel)
-- [ADMX_DnsClient/DNS_UpdateTopLevelDomainZones](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatetopleveldomainzones)
-- [ADMX_DnsClient/DNS_UseDomainNameDevolution](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-usedomainnamedevolution)
-- [ADMX_DnsClient/Turn_Off_Multicast](./policy-csp-admx-dnsclient.md#admx-dnsclient-turn-off-multicast)
-- [ADMX_DFS/DFSDiscoverDC](./policy-csp-admx-dfs.md#admx-dfs-dfsdiscoverdc)
-- [ADMX_DWM/DwmDefaultColorizationColor_1](./policy-csp-admx-dwm.md#admx-dwm-dwmdefaultcolorizationcolor-1)
-- [ADMX_DWM/DwmDefaultColorizationColor_2](./policy-csp-admx-dwm.md#admx-dwm-dwmdefaultcolorizationcolor-2)
-- [ADMX_DWM/DwmDisallowAnimations_1](./policy-csp-admx-dwm.md#admx-dwm-dwmdisallowanimations-1)
-- [ADMX_DWM/DwmDisallowAnimations_2](./policy-csp-admx-dwm.md#admx-dwm-dwmdisallowanimations-2)
-- [ADMX_DWM/DwmDisallowColorizationColorChanges_1](./policy-csp-admx-dwm.md#admx-dwm-dwmdisallowcolorizationcolorchanges-1)
-- [ADMX_DWM/DwmDisallowColorizationColorChanges_2](./policy-csp-admx-dwm.md#admx-dwm-dwmdisallowcolorizationcolorchanges-2)
-- [ADMX_EAIME/L_DoNotIncludeNonPublishingStandardGlyphInTheCandidateList](./policy-csp-admx-eaime.md#admx-eaime-l-donotincludenonpublishingstandardglyphinthecandidatelist)
-- [ADMX_EAIME/L_RestrictCharacterCodeRangeOfConversion](./policy-csp-admx-eaime.md#admx-eaime-l-restrictcharactercoderangeofconversion)
-- [ADMX_EAIME/L_TurnOffCustomDictionary](./policy-csp-admx-eaime.md#admx-eaime-l-turnoffcustomdictionary)
-- [ADMX_EAIME/L_TurnOffHistorybasedPredictiveInput](./policy-csp-admx-eaime.md#admx-eaime-l-turnoffhistorybasedpredictiveinput)
-- [ADMX_EAIME/L_TurnOffInternetSearchIntegration](./policy-csp-admx-eaime.md#admx-eaime-l-turnoffinternetsearchintegration)
-- [ADMX_EAIME/L_TurnOffOpenExtendedDictionary](./policy-csp-admx-eaime.md#admx-eaime-l-turnoffopenextendeddictionary)
-- [ADMX_EAIME/L_TurnOffSavingAutoTuningDataToFile](./policy-csp-admx-eaime.md#admx-eaime-l-turnoffsavingautotuningdatatofile)
-- [ADMX_EAIME/L_TurnOnCloudCandidate](./policy-csp-admx-eaime.md#admx-eaime-l-turnoncloudcandidate)
-- [ADMX_EAIME/L_TurnOnCloudCandidateCHS](./policy-csp-admx-eaime.md#admx-eaime-l-turnoncloudcandidatechs)
-- [ADMX_EAIME/L_TurnOnLexiconUpdate](./policy-csp-admx-eaime.md#admx-eaime-l-turnonlexiconupdate)
-- [ADMX_EAIME/L_TurnOnLiveStickers](./policy-csp-admx-eaime.md#admx-eaime-l-turnonlivestickers)
-- [ADMX_EAIME/L_TurnOnMisconversionLoggingForMisconversionReport](./policy-csp-admx-eaime.md#admx-eaime-l-turnonmisconversionloggingformisconversionreport)
-- [ADMX_EventLogging/EnableProtectedEventLogging](./policy-csp-admx-eventlogging.md#admx-eventlogging-enableprotectedeventlogging)
-- [ADMX_EncryptFilesonMove/NoEncryptOnMove](./policy-csp-admx-encryptfilesonmove.md#admx-encryptfilesonmove-noencryptonmove)
-- [ADMX_EnhancedStorage/ApprovedEnStorDevices](./policy-csp-admx-enhancedstorage.md#admx-enhancedstorage-approvedenstordevices)
-- [ADMX_EnhancedStorage/ApprovedSilos](./policy-csp-admx-enhancedstorage.md#admx-enhancedstorage-approvedsilos)
-- [ADMX_EnhancedStorage/DisablePasswordAuthentication](./policy-csp-admx-enhancedstorage.md#admx-enhancedstorage-disablepasswordauthentication)
-- [ADMX_EnhancedStorage/DisallowLegacyDiskDevices](./policy-csp-admx-enhancedstorage.md#admx-enhancedstorage-disallowlegacydiskdevices)
-- [ADMX_EnhancedStorage/LockDeviceOnMachineLock](./policy-csp-admx-enhancedstorage.md#admx-enhancedstorage-lockdeviceonmachinelock)
-- [ADMX_EnhancedStorage/RootHubConnectedEnStorDevices](./policy-csp-admx-enhancedstorage.md#admx-enhancedstorage-roothubconnectedenstordevices)
-- [ADMX_ErrorReporting/PCH_AllOrNoneDef](./policy-csp-admx-errorreporting.md#admx-errorreporting-pch-allornonedef)
-- [ADMX_ErrorReporting/PCH_AllOrNoneEx](./policy-csp-admx-errorreporting.md#admx-errorreporting-pch-allornoneex)
-- [ADMX_ErrorReporting/PCH_AllOrNoneInc](./policy-csp-admx-errorreporting.md#admx-errorreporting-pch-allornoneinc)
-- [ADMX_ErrorReporting/PCH_ConfigureReport](./policy-csp-admx-errorreporting.md#admx-errorreporting-pch-configurereport)
-- [ADMX_ErrorReporting/PCH_ReportOperatingSystemFaults](./policy-csp-admx-errorreporting.md#admx-errorreporting-pch-reportoperatingsystemfaults)
-- [ADMX_ErrorReporting/WerArchive_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werarchive-1)
-- [ADMX_ErrorReporting/WerArchive_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werarchive-2)
-- [ADMX_ErrorReporting/WerAutoApproveOSDumps_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werautoapproveosdumps-1)
-- [ADMX_ErrorReporting/WerAutoApproveOSDumps_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werautoapproveosdumps-2)
-- [ADMX_ErrorReporting/WerBypassDataThrottling_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werbypassdatathrottling-1)
-- [ADMX_ErrorReporting/WerBypassDataThrottling_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werbypassdatathrottling-2)
-- [ADMX_ErrorReporting/WerBypassNetworkCostThrottling_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werbypassnetworkcostthrottling-1)
-- [ADMX_ErrorReporting/WerBypassNetworkCostThrottling_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werbypassnetworkcostthrottling-2)
-- [ADMX_ErrorReporting/WerBypassPowerThrottling_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werbypasspowerthrottling-1)
-- [ADMX_ErrorReporting/WerBypassPowerThrottling_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werbypasspowerthrottling-2)
-- [ADMX_ErrorReporting/WerCER](./policy-csp-admx-errorreporting.md#admx-errorreporting-wercer)
-- [ADMX_ErrorReporting/WerConsentCustomize_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werconsentcustomize-1)
-- [ADMX_ErrorReporting/WerConsentOverride_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werconsentoverride-1)
-- [ADMX_ErrorReporting/WerConsentOverride_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werconsentoverride-2)
-- [ADMX_ErrorReporting/WerDefaultConsent_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werdefaultconsent-1)
-- [ADMX_ErrorReporting/WerDefaultConsent_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werdefaultconsent-2)
-- [ADMX_ErrorReporting/WerDisable_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werdisable-1)
-- [ADMX_ErrorReporting/WerExlusion_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werexlusion-1)
-- [ADMX_ErrorReporting/WerExlusion_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werexlusion-2)
-- [ADMX_ErrorReporting/WerNoLogging_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-wernologging-1)
-- [ADMX_ErrorReporting/WerNoLogging_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-wernologging-2)
-- [ADMX_ErrorReporting/WerNoSecondLevelData_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-wernosecondleveldata-1)
-- [ADMX_ErrorReporting/WerQueue_1](./policy-csp-admx-errorreporting.md#admx-errorreporting-werqueue-1)
-- [ADMX_ErrorReporting/WerQueue_2](./policy-csp-admx-errorreporting.md#admx-errorreporting-werqueue-2)
-- [ADMX_EventForwarding/ForwarderResourceUsage](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-forwarderresourceusage)
-- [ADMX_EventForwarding/SubscriptionManager](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-subscriptionmanager)
-- [ADMX_EventLog/Channel_LogEnabled](./policy-csp-admx-eventlog.md#admx-eventlog-channel-logenabled)
-- [ADMX_EventLog/Channel_LogFilePath_1](./policy-csp-admx-eventlog.md#admx-eventlog-channel-logfilepath-1)
-- [ADMX_EventLog/Channel_LogFilePath_2](./policy-csp-admx-eventlog.md#admx-eventlog-channel-logfilepath-2)
-- [ADMX_EventLog/Channel_LogFilePath_3](./policy-csp-admx-eventlog.md#admx-eventlog-channel-logfilepath-3)
-- [ADMX_EventLog/Channel_LogFilePath_4](./policy-csp-admx-eventlog.md#admx-eventlog-channel-logfilepath-4)
-- [ADMX_EventLog/Channel_LogMaxSize_3](./policy-csp-admx-eventlog.md#admx-eventlog-channel-logmaxsize-3)
-- [ADMX_EventLog/Channel_Log_AutoBackup_1](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-autobackup-1)
-- [ADMX_EventLog/Channel_Log_AutoBackup_2](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-autobackup-2)
-- [ADMX_EventLog/Channel_Log_AutoBackup_3](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-autobackup-3)
-- [ADMX_EventLog/Channel_Log_AutoBackup_4](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-autobackup-4)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_1](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-1)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_2](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-2)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_3](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-3)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_4](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-4)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_5](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-5)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_6](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-6)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_7](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-7)
-- [ADMX_EventLog/Channel_Log_FileLogAccess_8](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-filelogaccess-8)
-- [ADMX_EventLog/Channel_Log_Retention_2](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-retention-2)
-- [ADMX_EventLog/Channel_Log_Retention_3](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-retention-3)
-- [ADMX_EventLog/Channel_Log_Retention_4](./policy-csp-admx-eventlog.md#admx-eventlog-channel-log-retention-4)
-- [ADMX_EventViewer/EventViewer_RedirectionProgram](./policy-csp-admx-eventviewer.md#admx-eventviewer-eventviewer_redirectionprogram)
-- [ADMX_EventViewer/EventViewer_RedirectionProgramCommandLineParameters](./policy-csp-admx-eventviewer.md#admx-eventviewer-eventviewer_redirectionprogramcommandlineparameters)
-- [ADMX_EventViewer/EventViewer_RedirectionURL](./policy-csp-admx-eventviewer.md#admx-eventviewer-eventviewer_redirectionurl)
-- [ADMX_Explorer/AdminInfoUrl](./policy-csp-admx-explorer.md#admx-explorer-admininfourl)
-- [ADMX_Explorer/AlwaysShowClassicMenu](./policy-csp-admx-explorer.md#admx-explorer-alwaysshowclassicmenu)
-- [ADMX_Explorer/DisableRoamedProfileInit](./policy-csp-admx-explorer.md#admx-explorer-disableroamedprofileinit)
-- [ADMX_Explorer/PreventItemCreationInUsersFilesFolder](./policy-csp-admx-explorer.md#admx-explorer-preventitemcreationinusersfilesfolder)
-- [ADMX_Explorer/TurnOffSPIAnimations](./policy-csp-admx-explorer.md#admx-explorer-turnoffspianimations)
-- [ADMX_ExternalBoot/PortableOperatingSystem_Hibernate](./policy-csp-admx-externalboot.md#admx-externalboot-portableoperatingsystem_hibernate)
-- [ADMX_ExternalBoot/PortableOperatingSystem_Sleep](./policy-csp-admx-externalboot.md#admx-externalboot-portableoperatingsystem_sleep)
-- [ADMX_ExternalBoot/PortableOperatingSystem_Launcher](./policy-csp-admx-externalboot.md#admx-externalboot-portableoperatingsystem_launcher)
-- [ADMX_FileRecovery/WdiScenarioExecutionPolicy](./policy-csp-admx-filerecovery.md#admx-filerecovery-wdiscenarioexecutionpolicy)
-- [ADMX_FileServerVSSProvider/Pol_EncryptProtocol](./policy-csp-admx-fileservervssprovider.md#admx-fileservervssprovider-pol-encryptprotocol)
-- [ADMX_FileSys/DisableCompression](./policy-csp-admx-filesys.md#admx-filesys-disablecompression)
-- [ADMX_FileSys/DisableDeleteNotification](./policy-csp-admx-filesys.md#admx-filesys-disabledeletenotification)
-- [ADMX_FileSys/DisableEncryption](./policy-csp-admx-filesys.md#admx-filesys-disableencryption)
-- [ADMX_FileSys/EnablePagefileEncryption](./policy-csp-admx-filesys.md#admx-filesys-enablepagefileencryption)
-- [ADMX_FileSys/LongPathsEnabled](./policy-csp-admx-filesys.md#admx-filesys-longpathsenabled)
-- [ADMX_FileSys/ShortNameCreationSettings](./policy-csp-admx-filesys.md#admx-filesys-shortnamecreationsettings)
-- [ADMX_FileSys/SymlinkEvaluation](./policy-csp-admx-filesys.md#admx-filesys-symlinkevaluation)
-- [ADMX_FileSys/TxfDeprecatedFunctionality](./policy-csp-admx-filesys.md#admx-filesys-txfdeprecatedfunctionality)
-- [ADMX_FileRecovery/WdiScenarioExecutionPolicy](./policy-csp-admx-filerecovery.md#admx-filerecovery-wdiscenarioexecutionpolicy)
-- [ADMX_FileRevocation/DelegatedPackageFamilyNames](./policy-csp-admx-filerevocation.md#admx-filerevocation-delegatedpackagefamilynames)
-- [ADMX_FolderRedirection/DisableFRAdminPin](./policy-csp-admx-folderredirection.md#admx-folderredirection-disablefradminpin)
-- [ADMX_FolderRedirection/DisableFRAdminPinByFolder](./policy-csp-admx-folderredirection.md#admx-folderredirection-disablefradminpinbyfolder)
-- [ADMX_FolderRedirection/FolderRedirectionEnableCacheRename](./policy-csp-admx-folderredirection.md#admx-folderredirection-folderredirectionenablecacherename)
-- [ADMX_FolderRedirection/LocalizeXPRelativePaths_1](./policy-csp-admx-folderredirection.md#admx-folderredirection-localizexprelativepaths-1)
-- [ADMX_FolderRedirection/LocalizeXPRelativePaths_2](./policy-csp-admx-folderredirection.md#admx-folderredirection-localizexprelativepaths-2)
-- [ADMX_FolderRedirection/PrimaryComputer_FR_1](./policy-csp-admx-folderredirection.md#admx-folderredirection-primarycomputer-fr-1)
-- [ADMX_FolderRedirection/PrimaryComputer_FR_2](./policy-csp-admx-folderredirection.md#admx-folderredirection-primarycomputer-fr-2)
-- [ADMX_FramePanes/NoReadingPane](./policy-csp-admx-framepanes.md#admx-framepanes-noreadingpane)
-- [ADMX_FramePanes/NoPreviewPane](./policy-csp-admx-framepanes.md#admx-framepanes-nopreviewpane)
-- [ADMX_FTHSVC/WdiScenarioExecutionPolicy](./policy-csp-admx-fthsvc.md#admx-fthsvc-wdiscenarioexecutionpolicy)
-- [ADMX_Globalization/BlockUserInputMethodsForSignIn](./policy-csp-admx-globalization.md#admx-globalization-blockuserinputmethodsforsignin)
-- [ADMX_Globalization/CustomLocalesNoSelect_1](./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-1)
-- [ADMX_Globalization/CustomLocalesNoSelect_2](./policy-csp-admx-globalization.md#admx-globalization-customlocalesnoselect-2)
-- [ADMX_Globalization/HideAdminOptions](./policy-csp-admx-globalization.md#admx-globalization-hideadminoptions)
-- [ADMX_Globalization/HideCurrentLocation](./policy-csp-admx-globalization.md#admx-globalization-hidecurrentlocation)
-- [ADMX_Globalization/HideLanguageSelection](./policy-csp-admx-globalization.md#admx-globalization-hidelanguageselection)
-- [ADMX_Globalization/HideLocaleSelectAndCustomize](./policy-csp-admx-globalization.md#admx-globalization-hidelocaleselectandcustomize)
-- [ADMX_Globalization/ImplicitDataCollectionOff_1](./policy-csp-admx-globalization.md#admx-globalization-implicitdatacollectionoff-1)
-- [ADMX_Globalization/ImplicitDataCollectionOff_2](./policy-csp-admx-globalization.md#admx-globalization-implicitdatacollectionoff-2)
-- [ADMX_Globalization/LocaleSystemRestrict](./policy-csp-admx-globalization.md#admx-globalization-localesystemrestrict)
-- [ADMX_Globalization/LocaleUserRestrict_1](./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-1)
-- [ADMX_Globalization/LocaleUserRestrict_2](./policy-csp-admx-globalization.md#admx-globalization-localeuserrestrict-2)
-- [ADMX_Globalization/LockMachineUILanguage](./policy-csp-admx-globalization.md#admx-globalization-lockmachineuilanguage)
-- [ADMX_Globalization/LockUserUILanguage](./policy-csp-admx-globalization.md#admx-globalization-lockuseruilanguage)
-- [ADMX_Globalization/PreventGeoIdChange_1](./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-1)
-- [ADMX_Globalization/PreventGeoIdChange_2](./policy-csp-admx-globalization.md#admx-globalization-preventgeoidchange-2)
-- [ADMX_Globalization/PreventUserOverrides_1](./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-1)
-- [ADMX_Globalization/PreventUserOverrides_2](./policy-csp-admx-globalization.md#admx-globalization-preventuseroverrides-2)
-- [ADMX_Globalization/RestrictUILangSelect](./policy-csp-admx-globalization.md#admx-globalization-restrictuilangselect)
-- [ADMX_Globalization/TurnOffAutocorrectMisspelledWords](./policy-csp-admx-globalization.md#admx-globalization-turnoffautocorrectmisspelledwords)
-- [ADMX_Globalization/TurnOffHighlightMisspelledWords](./policy-csp-admx-globalization.md#admx-globalization-turnoffhighlightmisspelledwords)
-- [ADMX_Globalization/TurnOffInsertSpace](./policy-csp-admx-globalization.md#admx-globalization-turnoffinsertspace)
-- [ADMX_Globalization/TurnOffOfferTextPredictions](./policy-csp-admx-globalization.md#admx-globalization-turnoffoffertextpredictions)
-- [ADMX_Globalization/Y2K](./policy-csp-admx-globalization.md#admx-globalization-y2k)
-- [ADMX_GroupPolicy/AllowX-ForestPolicy-and-RUP](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-allowx-forestpolicy-and-rup)
-- [ADMX_GroupPolicy/CSE_AppMgmt](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-appmgmt)
-- [ADMX_GroupPolicy/CSE_DiskQuota](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-diskquota)
-- [ADMX_GroupPolicy/CSE_EFSRecovery](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-efsrecovery)
-- [ADMX_GroupPolicy/CSE_FolderRedirection](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-folderredirection)
-- [ADMX_GroupPolicy/CSE_IEM](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-iem)
-- [ADMX_GroupPolicy/CSE_IPSecurity](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-ipsecurity)
-- [ADMX_GroupPolicy/CSE_Registry](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-registry)
-- [ADMX_GroupPolicy/CSE_Scripts](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-scripts)
-- [ADMX_GroupPolicy/CSE_Security](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-security)
-- [ADMX_GroupPolicy/CSE_Wired](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-wired)
-- [ADMX_GroupPolicy/CSE_Wireless](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-cse-wireless)
-- [ADMX_GroupPolicy/CorpConnSyncWaitTime](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-corpconnsyncwaittime)
-- [ADMX_GroupPolicy/DenyRsopToInteractiveUser_1](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-denyrsoptointeractiveuser-1)
-- [ADMX_GroupPolicy/DenyRsopToInteractiveUser_2](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-denyrsoptointeractiveuser-2)
-- [ADMX_GroupPolicy/DisableAOACProcessing](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableaoacprocessing)
-- [ADMX_GroupPolicy/DisableAutoADMUpdate](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableautoadmupdate)
-- [ADMX_GroupPolicy/DisableBackgroundPolicy](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disablebackgroundpolicy)
-- [ADMX_GroupPolicy/DisableLGPOProcessing](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disablelgpoprocessing)
-- [ADMX_GroupPolicy/DisableUsersFromMachGP](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-disableusersfrommachgp)
-- [ADMX_GroupPolicy/EnableCDP](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablecdp)
-- [ADMX_GroupPolicy/EnableLogonOptimization](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablelogonoptimization)
-- [ADMX_GroupPolicy/EnableLogonOptimizationOnServerSKU](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablelogonoptimizationonserversku)
-- [ADMX_GroupPolicy/EnableMMX](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enablemmx)
-- [ADMX_GroupPolicy/EnforcePoliciesOnly](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-enforcepoliciesonly)
-- [ADMX_GroupPolicy/FontMitigation](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-fontmitigation)
-- [ADMX_GroupPolicy/GPDCOptions](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gpdcoptions)
-- [ADMX_GroupPolicy/GPTransferRate_1](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gptransferrate-1)
-- [ADMX_GroupPolicy/GPTransferRate_2](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-gptransferrate-2)
-- [ADMX_GroupPolicy/GroupPolicyRefreshRate](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshrate)
-- [ADMX_GroupPolicy/GroupPolicyRefreshRateDC](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshratedc)
-- [ADMX_GroupPolicy/GroupPolicyRefreshRateUser](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-grouppolicyrefreshrateuser)
-- [ADMX_GroupPolicy/LogonScriptDelay](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-logonscriptdelay)
-- [ADMX_GroupPolicy/NewGPODisplayName](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-newgpodisplayname)
-- [ADMX_GroupPolicy/NewGPOLinksDisabled](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-newgpolinksdisabled)
-- [ADMX_GroupPolicy/OnlyUseLocalAdminFiles](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-onlyuselocaladminfiles)
-- [ADMX_GroupPolicy/ProcessMitigationOptions](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-processmitigationoptions)
-- [ADMX_GroupPolicy/RSoPLogging](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-rsoplogging)
-- [ADMX_GroupPolicy/ResetDfsClientInfoDuringRefreshPolicy](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-resetdfsclientinfoduringrefreshpolicy)
-- [ADMX_GroupPolicy/SlowLinkDefaultForDirectAccess](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-slowlinkdefaultfordirectaccess)
-- [ADMX_GroupPolicy/SlowlinkDefaultToAsync](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-slowlinkdefaulttoasync)
-- [ADMX_GroupPolicy/SyncWaitTime](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-syncwaittime)
-- [ADMX_GroupPolicy/UserPolicyMode](./policy-csp-admx-grouppolicy.md#admx-grouppolicy-userpolicymode)
-- [ADMX_Help/DisableHHDEP](./policy-csp-admx-help.md#admx-help-disablehhdep)
-- [ADMX_Help/HelpQualifiedRootDir_Comp](./policy-csp-admx-help.md#admx-help-helpqualifiedrootdir-comp)
-- [ADMX_Help/RestrictRunFromHelp](./policy-csp-admx-help.md#admx-help-restrictrunfromhelp)
-- [ADMX_Help/RestrictRunFromHelp_Comp](./policy-csp-admx-help.md#admx-help-restrictrunfromhelp-comp)
-- [ADMX_HelpAndSupport/ActiveHelp](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-activehelp)
-- [ADMX_HelpAndSupport/HPExplicitFeedback](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpexplicitfeedback)
-- [ADMX_HelpAndSupport/HPImplicitFeedback](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hpimplicitfeedback)
-- [ADMX_HelpAndSupport/HPOnlineAssistance](./policy-csp-admx-helpandsupport.md#admx-helpandsupport-hponlineassistance)
-- [ADMX_ICM/CEIPEnable](./policy-csp-admx-icm.md#admx-icm-ceipenable)
-- [ADMX_ICM/CertMgr_DisableAutoRootUpdates](./policy-csp-admx-icm.md#admx-icm-certmgr-disableautorootupdates)
-- [ADMX_ICM/DisableHTTPPrinting_1](./policy-csp-admx-icm.md#admx-icm-disablehttpprinting-1)
-- [ADMX_ICM/DisableWebPnPDownload_1](./policy-csp-admx-icm.md#admx-icm-disablewebpnpdownload-1)
-- [ADMX_ICM/DriverSearchPlaces_DontSearchWindowsUpdate](./policy-csp-admx-icm.md#admx-icm-driversearchplaces-dontsearchwindowsupdate)
-- [ADMX_ICM/EventViewer_DisableLinks](./policy-csp-admx-icm.md#admx-icm-eventviewer-disablelinks)
-- [ADMX_ICM/HSS_HeadlinesPolicy](./policy-csp-admx-icm.md#admx-icm-hss-headlinespolicy)
-- [ADMX_ICM/HSS_KBSearchPolicy](./policy-csp-admx-icm.md#admx-icm-hss-kbsearchpolicy)
-- [ADMX_ICM/InternetManagement_RestrictCommunication_1](./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-1)
-- [ADMX_ICM/InternetManagement_RestrictCommunication_2](./policy-csp-admx-icm.md#admx-icm-internetmanagement-restrictcommunication-2)
-- [ADMX_ICM/NC_ExitOnISP](./policy-csp-admx-icm.md#admx-icm-nc-exitonisp)
-- [ADMX_ICM/NC_NoRegistration](./policy-csp-admx-icm.md#admx-icm-nc-noregistration)
-- [ADMX_ICM/PCH_DoNotReport](./policy-csp-admx-icm.md#admx-icm-pch-donotreport)
-- [ADMX_ICM/RemoveWindowsUpdate_ICM](./policy-csp-admx-icm.md#admx-icm-removewindowsupdate-icm)
-- [ADMX_ICM/SearchCompanion_DisableFileUpdates](./policy-csp-admx-icm.md#admx-icm-searchcompanion-disablefileupdates)
-- [ADMX_ICM/ShellNoUseInternetOpenWith_1](./policy-csp-admx-icm.md#admx-icm-shellnouseinternetopenwith-1)
-- [ADMX_ICM/ShellNoUseInternetOpenWith_2](./policy-csp-admx-icm.md#admx-icm-shellnouseinternetopenwith-2)
-- [ADMX_ICM/ShellNoUseStoreOpenWith_1](./policy-csp-admx-icm.md#admx-icm-shellnousestoreopenwith-1)
-- [ADMX_ICM/ShellNoUseStoreOpenWith_2](./policy-csp-admx-icm.md#admx-icm-shellnousestoreopenwith-2)
-- [ADMX_ICM/ShellPreventWPWDownload_1](./policy-csp-admx-icm.md#admx-icm-shellpreventwpwdownload-1)
-- [ADMX_ICM/ShellRemoveOrderPrints_1](./policy-csp-admx-icm.md#admx-icm-shellremoveorderprints-1)
-- [ADMX_ICM/ShellRemoveOrderPrints_2](./policy-csp-admx-icm.md#admx-icm-shellremoveorderprints-2)
-- [ADMX_ICM/ShellRemovePublishToWeb_1](./policy-csp-admx-icm.md#admx-icm-shellremovepublishtoweb-1)
-- [ADMX_ICM/ShellRemovePublishToWeb_2](./policy-csp-admx-icm.md#admx-icm-shellremovepublishtoweb-2)
-- [ADMX_ICM/WinMSG_NoInstrumentation_1](./policy-csp-admx-icm.md#admx-icm-winmsg_noinstrumentation-1)
-- [ADMX_ICM/WinMSG_NoInstrumentation_2](./policy-csp-admx-icm.md#admx-icm-winmsg_noinstrumentation-2)
-- [ADMX_IIS/PreventIISInstall](./policy-csp-admx-iis.md#admx-iis-preventiisinstall)
-- [ADMX_iSCSI/iSCSIGeneral_RestrictAdditionalLogins](./policy-csp-admx-iscsi.md#admx-iscsi-iscsigeneral_restrictadditionallogins)
-- [ADMX_iSCSI/iSCSIGeneral_ChangeIQNName](./policy-csp-admx-iscsi.md#admx-iscsi-iscsigeneral_changeiqnname)
-- [ADMX_iSCSI/iSCSISecurity_ChangeCHAPSecret](./policy-csp-admx-iscsi.md#admx-iscsi-iscsisecurity_changechapsecret)
-- [ADMX_kdc/CbacAndArmor](./policy-csp-admx-kdc.md#admx-kdc-cbacandarmor)
-- [ADMX_kdc/ForestSearch](./policy-csp-admx-kdc.md#admx-kdc-forestsearch)
-- [ADMX_kdc/PKINITFreshness](./policy-csp-admx-kdc.md#admx-kdc-pkinitfreshness)
-- [ADMX_kdc/RequestCompoundId](./policy-csp-admx-kdc.md#admx-kdc-requestcompoundid)
-- [ADMX_kdc/TicketSizeThreshold](./policy-csp-admx-kdc.md#admx-kdc-ticketsizethreshold)
-- [ADMX_kdc/emitlili](./policy-csp-admx-kdc.md#admx-kdc-emitlili)
-- [ADMX_Kerberos/AlwaysSendCompoundId](./policy-csp-admx-kerberos.md#admx-kerberos-alwayssendcompoundid)
-- [ADMX_Kerberos/DevicePKInitEnabled](./policy-csp-admx-kerberos.md#admx-kerberos-devicepkinitenabled)
-- [ADMX_Kerberos/HostToRealm](./policy-csp-admx-kerberos.md#admx-kerberos-hosttorealm)
-- [ADMX_Kerberos/KdcProxyDisableServerRevocationCheck](./policy-csp-admx-kerberos.md#admx-kerberos-kdcproxydisableserverrevocationcheck)
-- [ADMX_Kerberos/KdcProxyServer](./policy-csp-admx-kerberos.md#admx-kerberos-kdcproxyserver)
-- [ADMX_Kerberos/MitRealms](./policy-csp-admx-kerberos.md#admx-kerberos-mitrealms)
-- [ADMX_Kerberos/ServerAcceptsCompound](./policy-csp-admx-kerberos.md#admx-kerberos-serveracceptscompound)
-- [ADMX_Kerberos/StrictTarget](./policy-csp-admx-kerberos.md#admx-kerberos-stricttarget)
-- [ADMX_LanmanServer/Pol_CipherSuiteOrder](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-ciphersuiteorder)
-- [ADMX_LanmanServer/Pol_HashPublication](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-hashpublication)
-- [ADMX_LanmanServer/Pol_HashSupportVersion](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-hashsupportversion)
-- [ADMX_LanmanServer/Pol_HonorCipherSuiteOrder](./policy-csp-admx-lanmanserver.md#admx-lanmanserver-pol-honorciphersuiteorder)
-- [ADMX_LanmanWorkstation/Pol_CipherSuiteOrder](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-ciphersuiteorder)
-- [ADMX_LanmanWorkstation/Pol_EnableHandleCachingForCAFiles](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enablehandlecachingforcafiles)
-- [ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares](./policy-csp-admx-lanmanworkstation.md#admx-lanmanworkstation-pol-enableofflinefilesforcashares)
-- [ADMX_LeakDiagnostic/WdiScenarioExecutionPolicy](./policy-csp-admx-leakdiagnostic.md#admx-leakdiagnostic-wdiscenarioexecutionpolicy)
-- [ADMX_LinkLayerTopologyDiscovery/LLTD_EnableLLTDIO](./policy-csp-admx-linklayertopologydiscovery.md#admx-linklayertopologydiscovery-lltd-enablelltdio)
-- [ADMX_LinkLayerTopologyDiscovery/LLTD_EnableRspndr](./policy-csp-admx-linklayertopologydiscovery.md#admx-linklayertopologydiscovery-lltd-enablerspndr)
-- [ADMX_LocationProviderAdm/DisableWindowsLocationProvider_1](./policy-csp-admx-locationprovideradm.md#admx-locationprovideradm-disablewindowslocationprovider_1)
-- [ADMX_Logon/BlockUserFromShowingAccountDetailsOnSignin](./policy-csp-admx-logon.md#admx-logon-blockuserfromshowingaccountdetailsonsignin)
-- [ADMX_Logon/DisableAcrylicBackgroundOnLogon](./policy-csp-admx-logon.md#admx-logon-disableacrylicbackgroundonlogon)
-- [ADMX_Logon/DisableExplorerRunLegacy_1](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunlegacy-1)
-- [ADMX_Logon/DisableExplorerRunLegacy_2](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunlegacy-2)
-- [ADMX_Logon/DisableExplorerRunOnceLegacy_1](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunoncelegacy-1)
-- [ADMX_Logon/DisableExplorerRunOnceLegacy_2](./policy-csp-admx-logon.md#admx-logon-disableexplorerrunoncelegacy-2)
-- [ADMX_Logon/DisableStatusMessages](./policy-csp-admx-logon.md#admx-logon-disablestatusmessages)
-- [ADMX_Logon/DontEnumerateConnectedUsers](./policy-csp-admx-logon.md#admx-logon-dontenumerateconnectedusers)
-- [ADMX_Logon/NoWelcomeTips_1](./policy-csp-admx-logon.md#admx-logon-nowelcometips-1)
-- [ADMX_Logon/NoWelcomeTips_2](./policy-csp-admx-logon.md#admx-logon-nowelcometips-2)
-- [ADMX_Logon/Run_1](./policy-csp-admx-logon.md#admx-logon-run-1)
-- [ADMX_Logon/Run_2](./policy-csp-admx-logon.md#admx-logon-run-2)
-- [ADMX_Logon/SyncForegroundPolicy](./policy-csp-admx-logon.md#admx-logon-syncforegroundpolicy)
-- [ADMX_Logon/UseOEMBackground](./policy-csp-admx-logon.md#admx-logon-useoembackground)
-- [ADMX_Logon/VerboseStatus](./policy-csp-admx-logon.md#admx-logon-verbosestatus)
-- [ADMX_MicrosoftDefenderAntivirus/AllowFastServiceStartup](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-allowfastservicestartup)
-- [ADMX_MicrosoftDefenderAntivirus/DisableAntiSpywareDefender](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disableantispywaredefender)
-- [ADMX_MicrosoftDefenderAntivirus/DisableAutoExclusions](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disableautoexclusions)
-- [ADMX_MicrosoftDefenderAntivirus/DisableBlockAtFirstSeen](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disableblockatfirstseen)
-- [ADMX_MicrosoftDefenderAntivirus/DisableLocalAdminMerge](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disablelocaladminmerge)
-- [ADMX_MicrosoftDefenderAntivirus/DisableRealtimeMonitoring](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disablerealtimemonitoring)
-- [ADMX_MicrosoftDefenderAntivirus/DisableRoutinelyTakingAction](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-disableroutinelytakingaction)
-- [ADMX_MicrosoftDefenderAntivirus/Exclusions_Extensions](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exclusions-extensions)
-- [ADMX_MicrosoftDefenderAntivirus/Exclusions_Paths](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exclusions-paths)
-- [ADMX_MicrosoftDefenderAntivirus/Exclusions_Processes](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exclusions-processes)
-- [ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ASR_ASROnlyExclusions](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exploitguard-asr-asronlyexclusions)
-- [ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ASR_Rules](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exploitguard-asr-rules)
-- [ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ControlledFolderAccess_AllowedApplications](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exploitguard-controlledfolderaccess-allowedapplications)
-- [ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ControlledFolderAccess_ProtectedFolders](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-exploitguard-controlledfolderaccess-protectedfolders)
-- [ADMX_MicrosoftDefenderAntivirus/MpEngine_EnableFileHashComputation](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-mpengine-enablefilehashcomputation)
-- [ADMX_MicrosoftDefenderAntivirus/Nis_Consumers_IPS_DisableSignatureRetirement](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-nis-consumers-ips-disablesignatureretirement)
-- [ADMX_MicrosoftDefenderAntivirus/Nis_Consumers_IPS_sku_differentiation_Signature_Set_Guid](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-nis-consumers-ips-sku-differentiation-signature-set-guid)
-- [ADMX_MicrosoftDefenderAntivirus/Nis_DisableProtocolRecognition](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-nis-disableprotocolrecognition)
-- [ADMX_MicrosoftDefenderAntivirus/ProxyBypass](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-proxybypass)
-- [ADMX_MicrosoftDefenderAntivirus/ProxyPacUrl](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-proxypacurl)
-- [ADMX_MicrosoftDefenderAntivirus/ProxyServer](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-proxyserver)
-- [ADMX_MicrosoftDefenderAntivirus/Quarantine_LocalSettingOverridePurgeItemsAfterDelay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-quarantine-localsettingoverridepurgeitemsafterdelay)
-- [ADMX_MicrosoftDefenderAntivirus/Quarantine_PurgeItemsAfterDelay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-quarantine-purgeitemsafterdelay)
-- [ADMX_MicrosoftDefenderAntivirus/RandomizeScheduleTaskTimes](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-randomizescheduletasktimes)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableBehaviorMonitoring](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-disablebehaviormonitoring)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableIOAVProtection](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-disableioavprotection)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableOnAccessProtection](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-disableonaccessprotection)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableRawWriteNotification](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-disablerawwritenotification)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableScanOnRealtimeEnable](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-disablescanonrealtimeenable)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_IOAVMaxSize](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-ioavmaxsize)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableBehaviorMonitoring](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-localsettingoverridedisablebehaviormonitoring)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableIOAVProtection](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-localsettingoverridedisableioavprotection)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableOnAccessProtection](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-localsettingoverridedisableonaccessprotection)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableRealtimeMonitoring](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-localsettingoverridedisablerealtimemonitoring)
-- [ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideRealtimeScanDirection](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-realtimeprotection-localsettingoverriderealtimescandirection)
-- [ADMX_MicrosoftDefenderAntivirus/Remediation_LocalSettingOverrideScan_ScheduleTime](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-remediation-localsettingoverridescan-scheduletime)
-- [ADMX_MicrosoftDefenderAntivirus/Remediation_Scan_ScheduleDay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-remediation-scan-scheduleday)
-- [ADMX_MicrosoftDefenderAntivirus/Remediation_Scan_ScheduleTime](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-remediation-scan-scheduletime)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_AdditionalActionTimeout](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-additionalactiontimeout)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_CriticalFailureTimeout](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-criticalfailuretimeout)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_DisableEnhancedNotifications](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-disableenhancednotifications)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_Disablegenericreports](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-disablegenericreports)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_NonCriticalTimeout](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-noncriticaltimeout)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_RecentlyCleanedTimeout](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-recentlycleanedtimeout)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_WppTracingComponents](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-wpptracingcomponents)
-- [ADMX_MicrosoftDefenderAntivirus/Reporting_WppTracingLevel](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-reporting-wpptracinglevel)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_AllowPause](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-allowpause)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_ArchiveMaxDepth](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-archivemaxdepth)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_ArchiveMaxSize](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-archivemaxsize)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableArchiveScanning](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disablearchivescanning)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableEmailScanning](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disableemailscanning)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableHeuristics](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disableheuristics)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisablePackedExeScanning](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disablepackedexescanning)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableRemovableDriveScanning](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disableremovabledrivescanning)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableReparsePointScanning](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disablereparsepointscanning)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableRestorePoint](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disablerestorepoint)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableScanningMappedNetworkDrivesForFullScan](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disablescanningmappednetworkdrivesforfullscan)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_DisableScanningNetworkFiles](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-disablescanningnetworkfiles)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideAvgCPULoadFactor](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-localsettingoverrideavgcpuloadfactor)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScanParameters](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-localsettingoverridescanparameters)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScheduleDay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-localsettingoverridescheduleday)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScheduleQuickScantime](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-localsettingoverrideschedulequickscantime)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScheduleTime](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-localsettingoverridescheduletime)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_LowCpuPriority](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-lowcpupriority)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_MissedScheduledScanCountBeforeCatchup](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-missedscheduledscancountbeforecatchup)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_PurgeItemsAfterDelay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-purgeitemsafterdelay)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_QuickScanInterval](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-quickscaninterval)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_ScanOnlyIfIdle](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-scanonlyifidle)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_ScheduleDay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-scheduleday)
-- [ADMX_MicrosoftDefenderAntivirus/Scan_ScheduleTime](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-scan-scheduletime)
-- [ADMX_MicrosoftDefenderAntivirus/ServiceKeepAlive](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-servicekeepalive)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ASSignatureDue](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-assignaturedue)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_AVSignatureDue](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-avsignaturedue)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DefinitionUpdateFileSharesSources](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-definitionupdatefilesharessources)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DisableScanOnUpdate](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-disablescanonupdate)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DisableScheduledSignatureUpdateonBattery](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-disablescheduledsignatureupdateonbattery)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DisableUpdateOnStartupWithoutEngine](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-disableupdateonstartupwithoutengine)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_FallbackOrder](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-fallbackorder)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ForceUpdateFromMU](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-forceupdatefrommu)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_RealtimeSignatureDelivery](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-realtimesignaturedelivery)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ScheduleDay](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-scheduleday)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ScheduleTime](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-scheduletime)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_SharedSignaturesLocation](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-sharedsignatureslocation)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_SignatureDisableNotification](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-signaturedisablenotification)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_SignatureUpdateCatchupInterval](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-signatureupdatecatchupinterval)
-- [ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_UpdateOnStartup](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-signatureupdate-updateonstartup)
-- [ADMX_MicrosoftDefenderAntivirus/SpynetReporting](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-spynetreporting)
-- [ADMX_MicrosoftDefenderAntivirus/Spynet_LocalSettingOverrideSpynetReporting](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-spynet-localsettingoverridespynetreporting)
-- [ADMX_MicrosoftDefenderAntivirus/Threats_ThreatIdDefaultAction](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-threats-threatiddefaultaction)
-- [ADMX_MicrosoftDefenderAntivirus/UX_Configuration_CustomDefaultActionToastString](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-ux-configuration-customdefaultactiontoaststring)
-- [ADMX_MicrosoftDefenderAntivirus/UX_Configuration_Notification_Suppress](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-ux-configuration-notification-suppress)
-- [ADMX_MicrosoftDefenderAntivirus/UX_Configuration_SuppressRebootNotification](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-ux-configuration-suppressrebootnotification)
-- [ADMX_MicrosoftDefenderAntivirus/UX_Configuration_UILockdown](./policy-csp-admx-microsoftdefenderantivirus.md#admx-microsoftdefenderantivirus-ux-configuration-uilockdown)
-- [ADMX_MMC/MMC_ActiveXControl](./policy-csp-admx-mmc.md#admx-mmc-mmc-activexcontrol)
-- [ADMX_MMC/MMC_ExtendView](./policy-csp-admx-mmc.md#admx-mmc-mmc-extendview)
-- [ADMX_MMC/MMC_LinkToWeb](./policy-csp-admx-mmc.md#admx-mmc-mmc-linktoweb)
-- [ADMX_MMC/MMC_Restrict_Author](./policy-csp-admx-mmc.md#admx-mmc-mmc-restrict-author)
-- [ADMX_MMC/MMC_Restrict_To_Permitted_Snapins](./policy-csp-admx-mmc.md#admx-mmc-mmc-restrict-to-permitted-snapins)
-- [ADMX_MMCSnapins/MMC_ADMComputers_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-admcomputers-1)
-- [ADMX_MMCSnapins/MMC_ADMComputers_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-admcomputers-2)
-- [ADMX_MMCSnapins/MMC_ADMUsers_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-admusers-1)
-- [ADMX_MMCSnapins/MMC_ADMUsers_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-admusers-2)
-- [ADMX_MMCSnapins/MMC_ADSI](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-adsi)
-- [ADMX_MMCSnapins/MMC_ActiveDirDomTrusts](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-activedirdomtrusts)
-- [ADMX_MMCSnapins/MMC_ActiveDirSitesServices](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-activedirsitesservices)
-- [ADMX_MMCSnapins/MMC_ActiveDirUsersComp](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-activediruserscomp)
-- [ADMX_MMCSnapins/MMC_AppleTalkRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-appletalkrouting)
-- [ADMX_MMCSnapins/MMC_AuthMan](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-authman)
-- [ADMX_MMCSnapins/MMC_CertAuth](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-certauth)
-- [ADMX_MMCSnapins/MMC_CertAuthPolSet](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-certauthpolset)
-- [ADMX_MMCSnapins/MMC_Certs](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-certs)
-- [ADMX_MMCSnapins/MMC_CertsTemplate](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-certstemplate)
-- [ADMX_MMCSnapins/MMC_ComponentServices](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-componentservices)
-- [ADMX_MMCSnapins/MMC_ComputerManagement](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-computermanagement)
-- [ADMX_MMCSnapins/MMC_ConnectionSharingNAT](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-connectionsharingnat)
-- [ADMX_MMCSnapins/MMC_DCOMCFG](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-dcomcfg)
-- [ADMX_MMCSnapins/MMC_DFS](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-dfs)
-- [ADMX_MMCSnapins/MMC_DHCPRelayMgmt](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-dhcprelaymgmt)
-- [ADMX_MMCSnapins/MMC_DeviceManager_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-devicemanager-1)
-- [ADMX_MMCSnapins/MMC_DeviceManager_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-devicemanager-2)
-- [ADMX_MMCSnapins/MMC_DiskDefrag](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-diskdefrag)
-- [ADMX_MMCSnapins/MMC_DiskMgmt](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-diskmgmt)
-- [ADMX_MMCSnapins/MMC_EnterprisePKI](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-enterprisepki)
-- [ADMX_MMCSnapins/MMC_EventViewer_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-eventviewer-1)
-- [ADMX_MMCSnapins/MMC_EventViewer_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-eventviewer-2)
-- [ADMX_MMCSnapins/MMC_EventViewer_3](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-eventviewer-3)
-- [ADMX_MMCSnapins/MMC_EventViewer_4](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-eventviewer-4)
-- [ADMX_MMCSnapins/MMC_FAXService](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-faxservice)
-- [ADMX_MMCSnapins/MMC_FailoverClusters](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-failoverclusters)
-- [ADMX_MMCSnapins/MMC_FolderRedirection_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-folderredirection-1)
-- [ADMX_MMCSnapins/MMC_FolderRedirection_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-folderredirection-2)
-- [ADMX_MMCSnapins/MMC_FrontPageExt](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-frontpageext)
-- [ADMX_MMCSnapins/MMC_GroupPolicyManagementSnapIn](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-grouppolicymanagementsnapin)
-- [ADMX_MMCSnapins/MMC_GroupPolicySnapIn](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-grouppolicysnapin)
-- [ADMX_MMCSnapins/MMC_GroupPolicyTab](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-grouppolicytab)
-- [ADMX_MMCSnapins/MMC_HRA](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-hra)
-- [ADMX_MMCSnapins/MMC_IAS](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ias)
-- [ADMX_MMCSnapins/MMC_IASLogging](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-iaslogging)
-- [ADMX_MMCSnapins/MMC_IEMaintenance_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-iemaintenance-1)
-- [ADMX_MMCSnapins/MMC_IEMaintenance_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-iemaintenance-2)
-- [ADMX_MMCSnapins/MMC_IGMPRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-igmprouting)
-- [ADMX_MMCSnapins/MMC_IIS](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-iis)
-- [ADMX_MMCSnapins/MMC_IPRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-iprouting)
-- [ADMX_MMCSnapins/MMC_IPSecManage_GP](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ipsecmanage-gp)
-- [ADMX_MMCSnapins/MMC_IPXRIPRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ipxriprouting)
-- [ADMX_MMCSnapins/MMC_IPXRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ipxrouting)
-- [ADMX_MMCSnapins/MMC_IPXSAPRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ipxsaprouting)
-- [ADMX_MMCSnapins/MMC_IndexingService](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-indexingservice)
-- [ADMX_MMCSnapins/MMC_IpSecManage](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ipsecmanage)
-- [ADMX_MMCSnapins/MMC_IpSecMonitor](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ipsecmonitor)
-- [ADMX_MMCSnapins/MMC_LocalUsersGroups](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-localusersgroups)
-- [ADMX_MMCSnapins/MMC_LogicalMappedDrives](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-logicalmappeddrives)
-- [ADMX_MMCSnapins/MMC_NPSUI](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-npsui)
-- [ADMX_MMCSnapins/MMC_NapSnap](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-napsnap)
-- [ADMX_MMCSnapins/MMC_NapSnap_GP](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-napsnap-gp)
-- [ADMX_MMCSnapins/MMC_Net_Framework](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-net-framework)
-- [ADMX_MMCSnapins/MMC_OCSP](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ocsp)
-- [ADMX_MMCSnapins/MMC_OSPFRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ospfrouting)
-- [ADMX_MMCSnapins/MMC_PerfLogsAlerts](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-perflogsalerts)
-- [ADMX_MMCSnapins/MMC_PublicKey](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-publickey)
-- [ADMX_MMCSnapins/MMC_QoSAdmission](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-qosadmission)
-- [ADMX_MMCSnapins/MMC_RAS_DialinUser](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ras-dialinuser)
-- [ADMX_MMCSnapins/MMC_RIPRouting](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-riprouting)
-- [ADMX_MMCSnapins/MMC_RIS](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-ris)
-- [ADMX_MMCSnapins/MMC_RRA](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-rra)
-- [ADMX_MMCSnapins/MMC_RSM](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-rsm)
-- [ADMX_MMCSnapins/MMC_RemStore](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-remstore)
-- [ADMX_MMCSnapins/MMC_RemoteAccess](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-remoteaccess)
-- [ADMX_MMCSnapins/MMC_RemoteDesktop](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-remotedesktop)
-- [ADMX_MMCSnapins/MMC_ResultantSetOfPolicySnapIn](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-resultantsetofpolicysnapin)
-- [ADMX_MMCSnapins/MMC_Routing](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-routing)
-- [ADMX_MMCSnapins/MMC_SCA](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-sca)
-- [ADMX_MMCSnapins/MMC_SMTPProtocol](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-smtpprotocol)
-- [ADMX_MMCSnapins/MMC_SNMP](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-snmp)
-- [ADMX_MMCSnapins/MMC_ScriptsMachine_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-scriptsmachine-1)
-- [ADMX_MMCSnapins/MMC_ScriptsMachine_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-scriptsmachine-2)
-- [ADMX_MMCSnapins/MMC_ScriptsUser_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-scriptsuser-1)
-- [ADMX_MMCSnapins/MMC_ScriptsUser_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-scriptsuser-2)
-- [ADMX_MMCSnapins/MMC_SecuritySettings_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-securitysettings-1)
-- [ADMX_MMCSnapins/MMC_SecuritySettings_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-securitysettings-2)
-- [ADMX_MMCSnapins/MMC_SecurityTemplates](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-securitytemplates)
-- [ADMX_MMCSnapins/MMC_SendConsoleMessage](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-sendconsolemessage)
-- [ADMX_MMCSnapins/MMC_ServerManager](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-servermanager)
-- [ADMX_MMCSnapins/MMC_ServiceDependencies](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-servicedependencies)
-- [ADMX_MMCSnapins/MMC_Services](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-services)
-- [ADMX_MMCSnapins/MMC_SharedFolders](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-sharedfolders)
-- [ADMX_MMCSnapins/MMC_SharedFolders_Ext](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-sharedfolders-ext)
-- [ADMX_MMCSnapins/MMC_SoftwareInstalationComputers_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-softwareinstalationcomputers-1)
-- [ADMX_MMCSnapins/MMC_SoftwareInstalationComputers_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-softwareinstalationcomputers-2)
-- [ADMX_MMCSnapins/MMC_SoftwareInstallationUsers_1](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-softwareinstallationusers-1)
-- [ADMX_MMCSnapins/MMC_SoftwareInstallationUsers_2](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-softwareinstallationusers-2)
-- [ADMX_MMCSnapins/MMC_SysInfo](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-sysinfo)
-- [ADMX_MMCSnapins/MMC_SysProp](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-sysprop)
-- [ADMX_MMCSnapins/MMC_TPMManagement](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-tpmmanagement)
-- [ADMX_MMCSnapins/MMC_Telephony](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-telephony)
-- [ADMX_MMCSnapins/MMC_TerminalServices](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-terminalservices)
-- [ADMX_MMCSnapins/MMC_WMI](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-wmi)
-- [ADMX_MMCSnapins/MMC_WindowsFirewall](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-windowsfirewall)
-- [ADMX_MMCSnapins/MMC_WindowsFirewall_GP](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-windowsfirewall-gp)
-- [ADMX_MMCSnapins/MMC_WiredNetworkPolicy](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-wirednetworkpolicy)
-- [ADMX_MMCSnapins/MMC_WirelessMon](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-wirelessmon)
-- [ADMX_MMCSnapins/MMC_WirelessNetworkPolicy](./policy-csp-admx-mmcsnapins.md#admx-mmcsnapins-mmc-wirelessnetworkpolicy)
-- [ADMX_MobilePCMobilityCenter/MobilityCenterEnable_1](./policy-csp-admx-mobilepcmobilitycenter.md#admx-mobilepcmobilitycenter-mobilitycenterenable_1)
-- [ADMX_MobilePCMobilityCenter/MobilityCenterEnable_2](./policy-csp-admx-mobilepcmobilitycenter.md#admx-mobilepcmobilitycenter-mobilitycenterenable_2)
-- [ADMX_MobilePCPresentationSettings/PresentationSettingsEnable_1](./policy-csp-admx-mobilepcpresentationsettings.md#admx-mobilepcpresentationsettings-presentationsettingsenable_1)
-- [ADMX_MobilePCPresentationSettings/PresentationSettingsEnable_2](./policy-csp-admx-mobilepcpresentationsettings.md#admx-mobilepcpresentationsettings-presentationsettingsenable_2)
-- [ADMX_MSAPolicy/IncludeMicrosoftAccount_DisableUserAuthCmdLine](./policy-csp-admx-msapolicy.md#admx-msapolicy-microsoftaccount-disableuserauth)
-- [ADMX_msched/ActivationBoundaryPolicy](./policy-csp-admx-msched.md#admx-msched-activationboundarypolicy)
-- [ADMX_msched/RandomDelayPolicy](./policy-csp-admx-msched.md#admx-msched-randomdelaypolicy)
-- [ADMX_MSDT/MsdtSupportProvider](./policy-csp-admx-msdt.md#admx-msdt-msdtsupportprovider)
-- [ADMX_MSDT/MsdtToolDownloadPolicy](./policy-csp-admx-msdt.md#admx-msdt-msdttooldownloadpolicy)
-- [ADMX_MSDT/WdiScenarioExecutionPolicy](./policy-csp-admx-msdt.md#admx-msdt-wdiscenarioexecutionpolicy)
-- [ADMX_MSI/AllowLockdownBrowse](./policy-csp-admx-msi.md#admx-msi-allowlockdownbrowse)
-- [ADMX_MSI/AllowLockdownMedia](./policy-csp-admx-msi.md#admx-msi-allowlockdownmedia)
-- [ADMX_MSI/AllowLockdownPatch](./policy-csp-admx-msi.md#admx-msi-allowlockdownpatch)
-- [ADMX_MSI/DisableAutomaticApplicationShutdown](./policy-csp-admx-msi.md#admx-msi-disableautomaticapplicationshutdown)
-- [ADMX_MSI/DisableBrowse](./policy-csp-admx-msi.md#admx-msi-disablebrowse)
-- [ADMX_MSI/DisableFlyweightPatching](./policy-csp-admx-msi.md#admx-msi-disableflyweightpatching)
-- [ADMX_MSI/DisableLoggingFromPackage](./policy-csp-admx-msi.md#admx-msi-disableloggingfrompackage)
-- [ADMX_MSI/DisableMSI](./policy-csp-admx-msi.md#admx-msi-disablemsi)
-- [ADMX_MSI/DisableMedia](./policy-csp-admx-msi.md#admx-msi-disablemedia)
-- [ADMX_MSI/DisablePatch](./policy-csp-admx-msi.md#admx-msi-disablepatch)
-- [ADMX_MSI/DisableRollback_1](./policy-csp-admx-msi.md#admx-msi-disablerollback-1)
-- [ADMX_MSI/DisableRollback_2](./policy-csp-admx-msi.md#admx-msi-disablerollback-2)
-- [ADMX_MSI/DisableSharedComponent](./policy-csp-admx-msi.md#admx-msi-disablesharedcomponent)
-- [ADMX_MSI/MSILogging](./policy-csp-admx-msi.md#admx-msi-msilogging)
-- [ADMX_MSI/MSI_DisableLUAPatching](./policy-csp-admx-msi.md#admx-msi-msi-disableluapatching)
-- [ADMX_MSI/MSI_DisablePatchUninstall](./policy-csp-admx-msi.md#admx-msi-msi-disablepatchuninstall)
-- [ADMX_MSI/MSI_DisableSRCheckPoints](./policy-csp-admx-msi.md#admx-msi-msi-disablesrcheckpoints)
-- [ADMX_MSI/MSI_DisableUserInstalls](./policy-csp-admx-msi.md#admx-msi-msi-disableuserinstalls)
-- [ADMX_MSI/MSI_EnforceUpgradeComponentRules](./policy-csp-admx-msi.md#admx-msi-msi-enforceupgradecomponentrules)
-- [ADMX_MSI/MSI_MaxPatchCacheSize](./policy-csp-admx-msi.md#admx-msi-msi-maxpatchcachesize)
-- [ADMX_MSI/MsiDisableEmbeddedUI](./policy-csp-admx-msi.md#admx-msi-msidisableembeddedui)
-- [ADMX_MSI/SafeForScripting](./policy-csp-admx-msi.md#admx-msi-safeforscripting)
-- [ADMX_MSI/SearchOrder](./policy-csp-admx-msi.md#admx-msi-searchorder)
-- [ADMX_MSI/TransformsSecure](./policy-csp-admx-msi.md#admx-msi-transformssecure)
-- [ADMX_MsiFileRecovery/WdiScenarioExecutionPolicy](./policy-csp-admx-msifilerecovery.md#admx-msifilerecovery-wdiscenarioexecutionpolicy)
-- [ADMX_nca/CorporateResources](./policy-csp-admx-nca.md#admx-nca-corporateresources)
-- [ADMX_nca/CustomCommands](./policy-csp-admx-nca.md#admx-nca-customcommands)
-- [ADMX_nca/DTEs](./policy-csp-admx-nca.md#admx-nca-dtes)
-- [ADMX_nca/FriendlyName](./policy-csp-admx-nca.md#admx-nca-friendlyname)
-- [ADMX_nca/LocalNamesOn](./policy-csp-admx-nca.md#admx-nca-localnameson)
-- [ADMX_nca/PassiveMode](./policy-csp-admx-nca.md#admx-nca-passivemode)
-- [ADMX_nca/ShowUI](./policy-csp-admx-nca.md#admx-nca-showui)
-- [ADMX_nca/SupportEmail](./policy-csp-admx-nca.md#admx-nca-supportemail)
-- [ADMX_NCSI/NCSI_CorpDnsProbeContent](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-corpdnsprobecontent)
-- [ADMX_NCSI/NCSI_CorpDnsProbeHost](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-corpdnsprobehost)
-- [ADMX_NCSI/NCSI_CorpSitePrefixes](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-corpsiteprefixes)
-- [ADMX_NCSI/NCSI_CorpWebProbeUrl](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-corpwebprobeurl)
-- [ADMX_NCSI/NCSI_DomainLocationDeterminationUrl](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-domainlocationdeterminationurl)
-- [ADMX_NCSI/NCSI_GlobalDns](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-globaldns)
-- [ADMX_NCSI/NCSI_PassivePolling](./policy-csp-admx-ncsi.md#admx-ncsi-ncsi-passivepolling)
-- [ADMX_Netlogon/Netlogon_AddressLookupOnPingBehavior](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-addresslookuponpingbehavior)
-- [ADMX_Netlogon/Netlogon_AddressTypeReturned](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-addresstypereturned)
-- [ADMX_Netlogon/Netlogon_AllowDnsSuffixSearch](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-allowdnssuffixsearch)
-- [ADMX_Netlogon/Netlogon_AllowNT4Crypto](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-allownt4crypto)
-- [ADMX_Netlogon/Netlogon_AllowSingleLabelDnsDomain](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-allowsinglelabeldnsdomain)
-- [ADMX_Netlogon/Netlogon_AutoSiteCoverage](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-autositecoverage)
-- [ADMX_Netlogon/Netlogon_AvoidFallbackNetbiosDiscovery](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-avoidfallbacknetbiosdiscovery)
-- [ADMX_Netlogon/Netlogon_AvoidPdcOnWan](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-avoidpdconwan)
-- [ADMX_Netlogon/Netlogon_BackgroundRetryInitialPeriod](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-backgroundretryinitialperiod)
-- [ADMX_Netlogon/Netlogon_BackgroundRetryMaximumPeriod](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-backgroundretrymaximumperiod)
-- [ADMX_Netlogon/Netlogon_BackgroundRetryQuitTime](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-backgroundretryquittime)
-- [ADMX_Netlogon/Netlogon_BackgroundSuccessfulRefreshPeriod](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-backgroundsuccessfulrefreshperiod)
-- [ADMX_Netlogon/Netlogon_DebugFlag](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-debugflag)
-- [ADMX_Netlogon/Netlogon_DnsAvoidRegisterRecords](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-dnsavoidregisterrecords)
-- [ADMX_Netlogon/Netlogon_DnsRefreshInterval](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-dnsrefreshinterval)
-- [ADMX_Netlogon/Netlogon_DnsSrvRecordUseLowerCaseHostNames](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-dnssrvrecorduselowercasehostnames)
-- [ADMX_Netlogon/Netlogon_DnsTtl](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-dnsttl)
-- [ADMX_Netlogon/Netlogon_ExpectedDialupDelay](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-expecteddialupdelay)
-- [ADMX_Netlogon/Netlogon_ForceRediscoveryInterval](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-forcerediscoveryinterval)
-- [ADMX_Netlogon/Netlogon_GcSiteCoverage](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-gcsitecoverage)
-- [ADMX_Netlogon/Netlogon_IgnoreIncomingMailslotMessages](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-ignoreincomingmailslotmessages)
-- [ADMX_Netlogon/Netlogon_LdapSrvPriority](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-ldapsrvpriority)
-- [ADMX_Netlogon/Netlogon_LdapSrvWeight](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-ldapsrvweight)
-- [ADMX_Netlogon/Netlogon_MaximumLogFileSize](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-maximumlogfilesize)
-- [ADMX_Netlogon/Netlogon_NdncSiteCoverage](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-ndncsitecoverage)
-- [ADMX_Netlogon/Netlogon_NegativeCachePeriod](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-negativecacheperiod)
-- [ADMX_Netlogon/Netlogon_NetlogonShareCompatibilityMode](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-netlogonsharecompatibilitymode)
-- [ADMX_Netlogon/Netlogon_NonBackgroundSuccessfulRefreshPeriod](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-nonbackgroundsuccessfulrefreshperiod)
-- [ADMX_Netlogon/Netlogon_PingUrgencyMode](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-pingurgencymode)
-- [ADMX_Netlogon/Netlogon_ScavengeInterval](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-scavengeinterval)
-- [ADMX_Netlogon/Netlogon_SiteCoverage](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-sitecoverage)
-- [ADMX_Netlogon/Netlogon_SiteName](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-sitename)
-- [ADMX_Netlogon/Netlogon_SysvolShareCompatibilityMode](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-sysvolsharecompatibilitymode)
-- [ADMX_Netlogon/Netlogon_TryNextClosestSite](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-trynextclosestsite)
-- [ADMX_Netlogon/Netlogon_UseDynamicDns](./policy-csp-admx-netlogon.md#admx-netlogon-netlogon-usedynamicdns)
-- [ADMX_NetworkConnections/NC_AddRemoveComponents](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-addremovecomponents)
-- [ADMX_NetworkConnections/NC_AdvancedSettings](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-advancedsettings)
-- [ADMX_NetworkConnections/NC_AllowAdvancedTCPIPConfig](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-allowadvancedtcpipconfig)
-- [ADMX_NetworkConnections/NC_ChangeBindState](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-changebindstate)
-- [ADMX_NetworkConnections/NC_DeleteAllUserConnection](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-deletealluserconnection)
-- [ADMX_NetworkConnections/NC_DeleteConnection](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-deleteconnection)
-- [ADMX_NetworkConnections/NC_DialupPrefs](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-dialupprefs)
-- [ADMX_NetworkConnections/NC_DoNotShowLocalOnlyIcon](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-donotshowlocalonlyicon)
-- [ADMX_NetworkConnections/NC_EnableAdminProhibits](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-enableadminprohibits)
-- [ADMX_NetworkConnections/NC_ForceTunneling](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-forcetunneling)
-- [ADMX_NetworkConnections/NC_IpStateChecking](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-ipstatechecking)
-- [ADMX_NetworkConnections/NC_LanChangeProperties](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-lanchangeproperties)
-- [ADMX_NetworkConnections/NC_LanConnect](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-lanconnect)
-- [ADMX_NetworkConnections/NC_LanProperties](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-lanproperties)
-- [ADMX_NetworkConnections/NC_NewConnectionWizard](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-newconnectionwizard)
-- [ADMX_NetworkConnections/NC_PersonalFirewallConfig](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-personalfirewallconfig)
-- [ADMX_NetworkConnections/NC_RasAllUserProperties](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-rasalluserproperties)
-- [ADMX_NetworkConnections/NC_RasChangeProperties](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-raschangeproperties)
-- [ADMX_NetworkConnections/NC_RasConnect](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-rasconnect)
-- [ADMX_NetworkConnections/NC_RasMyProperties](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-rasmyproperties)
-- [ADMX_NetworkConnections/NC_RenameAllUserRasConnection](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-renamealluserrasconnection)
-- [ADMX_NetworkConnections/NC_RenameConnection](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-renameconnection)
-- [ADMX_NetworkConnections/NC_RenameLanConnection](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-renamelanconnection)
-- [ADMX_NetworkConnections/NC_RenameMyRasConnection](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-renamemyrasconnection)
-- [ADMX_NetworkConnections/NC_ShowSharedAccessUI](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-showsharedaccessui)
-- [ADMX_NetworkConnections/NC_Statistics](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-statistics)
-- [ADMX_NetworkConnections/NC_StdDomainUserSetLocation](./policy-csp-admx-networkconnections.md#admx-networkconnections-nc-stddomainusersetlocation)
-- [ADMX_OfflineFiles/Pol_AlwaysPinSubFolders](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-alwayspinsubfolders)
-- [ADMX_OfflineFiles/Pol_AssignedOfflineFiles_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-assignedofflinefiles-1)
-- [ADMX_OfflineFiles/Pol_AssignedOfflineFiles_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-assignedofflinefiles-2)
-- [ADMX_OfflineFiles/Pol_BackgroundSyncSettings](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-backgroundsyncsettings)
-- [ADMX_OfflineFiles/Pol_CacheSize](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-cachesize)
-- [ADMX_OfflineFiles/Pol_CustomGoOfflineActions_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-customgoofflineactions-1)
-- [ADMX_OfflineFiles/Pol_CustomGoOfflineActions_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-customgoofflineactions-2)
-- [ADMX_OfflineFiles/Pol_DefCacheSize](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-defcachesize)
-- [ADMX_OfflineFiles/Pol_Enabled](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-enabled)
-- [ADMX_OfflineFiles/Pol_EncryptOfflineFiles](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-encryptofflinefiles)
-- [ADMX_OfflineFiles/Pol_EventLoggingLevel_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-eventlogginglevel-1)
-- [ADMX_OfflineFiles/Pol_EventLoggingLevel_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-eventlogginglevel-2)
-- [ADMX_OfflineFiles/Pol_ExclusionListSettings](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-exclusionlistsettings)
-- [ADMX_OfflineFiles/Pol_ExtExclusionList](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-extexclusionlist)
-- [ADMX_OfflineFiles/Pol_GoOfflineAction_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-goofflineaction-1)
-- [ADMX_OfflineFiles/Pol_GoOfflineAction_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-goofflineaction-2)
-- [ADMX_OfflineFiles/Pol_NoCacheViewer_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-nocacheviewer-1)
-- [ADMX_OfflineFiles/Pol_NoCacheViewer_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-nocacheviewer-2)
-- [ADMX_OfflineFiles/Pol_NoConfigCache_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-noconfigcache-1)
-- [ADMX_OfflineFiles/Pol_NoConfigCache_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-noconfigcache-2)
-- [ADMX_OfflineFiles/Pol_NoMakeAvailableOffline_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-nomakeavailableoffline-1)
-- [ADMX_OfflineFiles/Pol_NoMakeAvailableOffline_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-nomakeavailableoffline-2)
-- [ADMX_OfflineFiles/Pol_NoPinFiles_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-nopinfiles-1)
-- [ADMX_OfflineFiles/Pol_NoPinFiles_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-nopinfiles-2)
-- [ADMX_OfflineFiles/Pol_NoReminders_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-noreminders-1)
-- [ADMX_OfflineFiles/Pol_NoReminders_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-noreminders-2)
-- [ADMX_OfflineFiles/Pol_OnlineCachingSettings](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-onlinecachingsettings)
-- [ADMX_OfflineFiles/Pol_PurgeAtLogoff](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-purgeatlogoff)
-- [ADMX_OfflineFiles/Pol_QuickAdimPin](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-quickadimpin)
-- [ADMX_OfflineFiles/Pol_ReminderFreq_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-reminderfreq-1)
-- [ADMX_OfflineFiles/Pol_ReminderFreq_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-reminderfreq-2)
-- [ADMX_OfflineFiles/Pol_ReminderInitTimeout_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-reminderinittimeout-1)
-- [ADMX_OfflineFiles/Pol_ReminderInitTimeout_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-reminderinittimeout-2)
-- [ADMX_OfflineFiles/Pol_ReminderTimeout_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-remindertimeout-1)
-- [ADMX_OfflineFiles/Pol_ReminderTimeout_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-remindertimeout-2)
-- [ADMX_OfflineFiles/Pol_SlowLinkSettings](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-slowlinksettings)
-- [ADMX_OfflineFiles/Pol_SlowLinkSpeed](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-slowlinkspeed)
-- [ADMX_OfflineFiles/Pol_SyncAtLogoff_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-syncatlogoff-1)
-- [ADMX_OfflineFiles/Pol_SyncAtLogoff_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-syncatlogoff-2)
-- [ADMX_OfflineFiles/Pol_SyncAtLogon_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-syncatlogon-1)
-- [ADMX_OfflineFiles/Pol_SyncAtLogon_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-syncatlogon-2)
-- [ADMX_OfflineFiles/Pol_SyncAtSuspend_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-syncatsuspend-1)
-- [ADMX_OfflineFiles/Pol_SyncAtSuspend_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-syncatsuspend-2)
-- [ADMX_OfflineFiles/Pol_SyncOnCostedNetwork](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-synconcostednetwork)
-- [ADMX_OfflineFiles/Pol_WorkOfflineDisabled_1](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-workofflinedisabled-1)
-- [ADMX_OfflineFiles/Pol_WorkOfflineDisabled_2](./policy-csp-admx-offlinefiles.md#admx-offlinefiles-pol-workofflinedisabled-2)
-- [ADMX_pca/DetectDeprecatedCOMComponentFailuresPolicy](./policy-csp-admx-pca.md#admx-pca-detectdeprecatedcomcomponentfailurespolicy)
-- [ADMX_pca/DetectDeprecatedComponentFailuresPolicy](./policy-csp-admx-pca.md#admx-pca-detectdeprecatedcomponentfailurespolicy)
-- [ADMX_pca/DetectInstallFailuresPolicy](./policy-csp-admx-pca.md#admx-pca-detectinstallfailurespolicy)
-- [ADMX_pca/DetectUndetectedInstallersPolicy](./policy-csp-admx-pca.md#admx-pca-detectundetectedinstallerspolicy)
-- [ADMX_pca/DetectUpdateFailuresPolicy](./policy-csp-admx-pca.md#admx-pca-detectupdatefailurespolicy)
-- [ADMX_pca/DisablePcaUIPolicy](./policy-csp-admx-pca.md#admx-pca-disablepcauipolicy)
-- [ADMX_pca/DetectBlockedDriversPolicy](./policy-csp-admx-pca.md#admx-pca-detectblockeddriverspolicy)
-- [ADMX_PeerToPeerCaching/EnableWindowsBranchCache](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-enablewindowsbranchcache)
-- [ADMX_PeerToPeerCaching/EnableWindowsBranchCache_Distributed](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-enablewindowsbranchcache-distributed)
-- [ADMX_PeerToPeerCaching/EnableWindowsBranchCache_Hosted](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-enablewindowsbranchcache-hosted)
-- [ADMX_PeerToPeerCaching/EnableWindowsBranchCache_HostedCacheDiscovery](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-enablewindowsbranchcache-hostedcachediscovery)
-- [ADMX_PeerToPeerCaching/EnableWindowsBranchCache_HostedMultipleServers](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-enablewindowsbranchcache-hostedmultipleservers)
-- [ADMX_PeerToPeerCaching/EnableWindowsBranchCache_SMB](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-enablewindowsbranchcache-smb)
-- [ADMX_PeerToPeerCaching/SetCachePercent](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-setcachepercent)
-- [ADMX_PeerToPeerCaching/SetDataCacheEntryMaxAge](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-setdatacacheentrymaxage)
-- [ADMX_PeerToPeerCaching/SetDowngrading](./policy-csp-admx-peertopeercaching.md#admx-peertopeercaching-setdowngrading)
-- [ADMX_PenTraining/PenTrainingOff_1](./policy-csp-admx-pentraining.md#admx-pentraining-pentrainingoff_1)
-- [ADMX_PenTraining/PenTrainingOff_2](./policy-csp-admx-pentraining.md#admx-pentraining-pentrainingoff_2)
-- [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_1](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-1)
-- [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_2](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-2)
-- [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_3](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-3)
-- [ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_4](./policy-csp-admx-performancediagnostics.md#admx-performancediagnostics-wdiscenarioexecutionpolicy-4)
-- [ADMX_Power/ACConnectivityInStandby_2](./policy-csp-admx-power.md#admx-power-acconnectivityinstandby-2)
-- [ADMX_Power/ACCriticalSleepTransitionsDisable_2](./policy-csp-admx-power.md#admx-power-accriticalsleeptransitionsdisable-2)
-- [ADMX_Power/ACStartMenuButtonAction_2](./policy-csp-admx-power.md#admx-power-acstartmenubuttonaction-2)
-- [ADMX_Power/AllowSystemPowerRequestAC](./policy-csp-admx-power.md#admx-power-allowsystempowerrequestac)
-- [ADMX_Power/AllowSystemPowerRequestDC](./policy-csp-admx-power.md#admx-power-allowsystempowerrequestdc)
-- [ADMX_Power/AllowSystemSleepWithRemoteFilesOpenAC](./policy-csp-admx-power.md#admx-power-allowsystemsleepwithremotefilesopenac)
-- [ADMX_Power/AllowSystemSleepWithRemoteFilesOpenDC](./policy-csp-admx-power.md#admx-power-allowsystemsleepwithremotefilesopendc)
-- [ADMX_Power/CustomActiveSchemeOverride_2](./policy-csp-admx-power.md#admx-power-customactiveschemeoverride-2)
-- [ADMX_Power/DCBatteryDischargeAction0_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargeaction0-2)
-- [ADMX_Power/DCBatteryDischargeAction1_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargeaction1-2)
-- [ADMX_Power/DCBatteryDischargeLevel0_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel0-2)
-- [ADMX_Power/DCBatteryDischargeLevel1UINotification_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel1uinotification-2)
-- [ADMX_Power/DCBatteryDischargeLevel1_2](./policy-csp-admx-power.md#admx-power-dcbatterydischargelevel1-2)
-- [ADMX_Power/DCConnectivityInStandby_2](./policy-csp-admx-power.md#admx-power-dcconnectivityinstandby-2)
-- [ADMX_Power/DCCriticalSleepTransitionsDisable_2](./policy-csp-admx-power.md#admx-power-dccriticalsleeptransitionsdisable-2)
-- [ADMX_Power/DCStartMenuButtonAction_2](./policy-csp-admx-power.md#admx-power-dcstartmenubuttonaction-2)
-- [ADMX_Power/DiskACPowerDownTimeOut_2](./policy-csp-admx-power.md#admx-power-diskacpowerdowntimeout-2)
-- [ADMX_Power/DiskDCPowerDownTimeOut_2](./policy-csp-admx-power.md#admx-power-diskdcpowerdowntimeout-2)
-- [ADMX_Power/Dont_PowerOff_AfterShutdown](./policy-csp-admx-power.md#admx-power-dont-poweroff-aftershutdown)
-- [ADMX_Power/EnableDesktopSlideShowAC](./policy-csp-admx-power.md#admx-power-enabledesktopslideshowac)
-- [ADMX_Power/EnableDesktopSlideShowDC](./policy-csp-admx-power.md#admx-power-enabledesktopslideshowdc)
-- [ADMX_Power/InboxActiveSchemeOverride_2](./policy-csp-admx-power.md#admx-power-inboxactiveschemeoverride-2)
-- [ADMX_Power/PW_PromptPasswordOnResume](./policy-csp-admx-power.md#admx-power-pw-promptpasswordonresume)
-- [ADMX_Power/PowerThrottlingTurnOff](./policy-csp-admx-power.md#admx-power-powerthrottlingturnoff)
-- [ADMX_Power/ReserveBatteryNotificationLevel](./policy-csp-admx-power.md#admx-power-reservebatterynotificationlevel)
-- [ADMX_PowerShellExecutionPolicy/EnableModuleLogging](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enablemodulelogging)
-- [ADMX_PowerShellExecutionPolicy/EnableScripts](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enablescripts)
-- [ADMX_PowerShellExecutionPolicy/EnableTranscripting](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enabletranscripting)
-- [ADMX_PowerShellExecutionPolicy/EnableUpdateHelpDefaultSourcePath](./policy-csp-admx-powershellexecutionpolicy.md#admx-powershellexecutionpolicy-enableupdatehelpdefaultsourcepath)
-- [ADMX_PreviousVersions/DisableLocalPage_1](./policy-csp-admx-previousversions.md#admx-previousversions-disablelocalpage_1)
-- [ADMX_PreviousVersions/DisableLocalPage_2](./policy-csp-admx-previousversions.md#admx-previousversions-disablelocalpage_2)
-- [ADMX_PreviousVersions/DisableRemotePage_1](./policy-csp-admx-previousversions.md#admx-previousversions-disableremotepage_1)
-- [ADMX_PreviousVersions/DisableRemotePage_2](./policy-csp-admx-previousversions.md#admx-previousversions-disableremotepage_2)
-- [ADMX_PreviousVersions/HideBackupEntries_1](./policy-csp-admx-previousversions.md#admx-previousversions-hidebackupentries_1)
-- [ADMX_PreviousVersions/HideBackupEntries_2](./policy-csp-admx-previousversions.md#admx-previousversions-hidebackupentries_2)
-- [ADMX_PreviousVersions/DisableLocalRestore_1](./policy-csp-admx-previousversions.md#admx-previousversions-disablelocalrestore_1)
-- [ADMX_PreviousVersions/DisableLocalRestore_2](./policy-csp-admx-previousversions.md#admx-previousversions-disablelocalrestore_2)
-- [ADMX_Printing/AllowWebPrinting](./policy-csp-admx-printing.md#admx-printing-allowwebprinting)
-- [ADMX_Printing/ApplicationDriverIsolation](./policy-csp-admx-printing.md#admx-printing-applicationdriverisolation)
-- [ADMX_Printing/CustomizedSupportUrl](./policy-csp-admx-printing.md#admx-printing-customizedsupporturl)
-- [ADMX_Printing/DoNotInstallCompatibleDriverFromWindowsUpdate](./policy-csp-admx-printing.md#admx-printing-donotinstallcompatibledriverfromwindowsupdate)
-- [ADMX_Printing/DomainPrinters](./policy-csp-admx-printing.md#admx-printing-domainprinters)
-- [ADMX_Printing/DownlevelBrowse](./policy-csp-admx-printing.md#admx-printing-downlevelbrowse)
-- [ADMX_Printing/EMFDespooling](./policy-csp-admx-printing.md#admx-printing-emfdespooling)
-- [ADMX_Printing/ForceSoftwareRasterization](./policy-csp-admx-printing.md#admx-printing-forcesoftwarerasterization)
-- [ADMX_Printing/IntranetPrintersUrl](./policy-csp-admx-printing.md#admx-printing-intranetprintersurl)
-- [ADMX_Printing/KMPrintersAreBlocked](./policy-csp-admx-printing.md#admx-printing-kmprintersareblocked)
-- [ADMX_Printing/LegacyDefaultPrinterMode](./policy-csp-admx-printing.md#admx-printing-legacydefaultprintermode)
-- [ADMX_Printing/MXDWUseLegacyOutputFormatMSXPS](./policy-csp-admx-printing.md#admx-printing-mxdwuselegacyoutputformatmsxps)
-- [ADMX_Printing/NoDeletePrinter](./policy-csp-admx-printing.md#admx-printing-nodeleteprinter)
-- [ADMX_Printing/NonDomainPrinters](./policy-csp-admx-printing.md#admx-printing-nondomainprinters)
-- [ADMX_Printing/PackagePointAndPrintOnly](./policy-csp-admx-printing.md#admx-printing-packagepointandprintonly)
-- [ADMX_Printing/PackagePointAndPrintOnly_Win7](./policy-csp-admx-printing.md#admx-printing-packagepointandprintonly-win7)
-- [ADMX_Printing/PackagePointAndPrintServerList](./policy-csp-admx-printing.md#admx-printing-packagepointandprintserverlist)
-- [ADMX_Printing/PackagePointAndPrintServerList_Win7](./policy-csp-admx-printing.md#admx-printing-packagepointandprintserverlist-win7)
-- [ADMX_Printing/PhysicalLocation](./policy-csp-admx-printing.md#admx-printing-physicallocation)
-- [ADMX_Printing/PhysicalLocationSupport](./policy-csp-admx-printing.md#admx-printing-physicallocationsupport)
-- [ADMX_Printing/PrintDriverIsolationExecutionPolicy](./policy-csp-admx-printing.md#admx-printing-printdriverisolationexecutionpolicy
-)
-- [ADMX_Printing/PrintDriverIsolationOverrideCompat](./policy-csp-admx-printing.md#admx-printing-printdriverisolationoverridecompat)
-- [ADMX_Printing/PrinterDirectorySearchScope](./policy-csp-admx-printing.md#admx-printing-printerdirectorysearchscope)
-- [ADMX_Printing/PrinterServerThread](./policy-csp-admx-printing.md#admx-printing-printerserverthread)
-- [ADMX_Printing/ShowJobTitleInEventLogs](./policy-csp-admx-printing.md#admx-printing-showjobtitleineventlogs)
-- [ADMX_Printing/V4DriverDisallowPrinterExtension](./policy-csp-admx-printing.md#admx-printing-v4driverdisallowprinterextension)
-- [ADMX_Printing2/AutoPublishing](./policy-csp-admx-printing2.md#admx-printing2-autopublishing)
-- [ADMX_Printing2/ImmortalPrintQueue](./policy-csp-admx-printing2.md#admx-printing2-immortalprintqueue)
-- [ADMX_Printing2/PruneDownlevel](./policy-csp-admx-printing2.md#admx-printing2-prunedownlevel)
-- [ADMX_Printing2/PruningInterval](./policy-csp-admx-printing2.md#admx-printing2-pruninginterval)
-- [ADMX_Printing2/PruningPriority](./policy-csp-admx-printing2.md#admx-printing2-pruningpriority)
-- [ADMX_Printing2/PruningRetries](./policy-csp-admx-printing2.md#admx-printing2-pruningretries)
-- [ADMX_Printing2/PruningRetryLog](./policy-csp-admx-printing2.md#admx-printing2-pruningretrylog)
-- [ADMX_Printing2/RegisterSpoolerRemoteRpcEndPoint](./policy-csp-admx-printing2.md#admx-printing2-registerspoolerremoterpcendpoint)
-- [ADMX_Printing2/VerifyPublishedState](./policy-csp-admx-printing2.md#admx-printing2-verifypublishedstate)
-- [ADMX_Programs/NoDefaultPrograms](./policy-csp-admx-programs.md#admx-programs-nodefaultprograms)
-- [ADMX_Programs/NoGetPrograms](./policy-csp-admx-programs.md#admx-programs-nogetprograms)
-- [ADMX_Programs/NoInstalledUpdates](./policy-csp-admx-programs.md#admx-programs-noinstalledupdates)
-- [ADMX_Programs/NoProgramsAndFeatures](./policy-csp-admx-programs.md#admx-programs-noprogramsandfeatures)
-- [ADMX_Programs/NoProgramsCPL](./policy-csp-admx-programs.md#admx-programs-noprogramscpl)
-- [ADMX_Programs/NoWindowsFeatures](./policy-csp-admx-programs.md#admx-programs-nowindowsfeatures)
-- [ADMX_Programs/NoWindowsMarketplace](./policy-csp-admx-programs.md#admx-programs-nowindowsmarketplace)
-- [ADMX_Reliability/EE_EnablePersistentTimeStamp](./policy-csp-admx-reliability.md#admx-reliability-ee-enablepersistenttimestamp)
-- [ADMX_Reliability/PCH_ReportShutdownEvents](./policy-csp-admx-reliability.md#admx-reliability-pch-reportshutdownevents)
-- [ADMX_Reliability/ShutdownEventTrackerStateFile](./policy-csp-admx-reliability.md#admx-reliability-shutdowneventtrackerstatefile)
-- [ADMX_Reliability/ShutdownReason](./policy-csp-admx-reliability.md#admx-reliability-shutdownreason)
-- [ADMX_RemoteAssistance/RA_EncryptedTicketOnly](./policy-csp-admx-remoteassistance.md#admx-remoteassistance-ra-encryptedticketonly)
-- [ADMX_RemoteAssistance/RA_Optimize_Bandwidth](./policy-csp-admx-remoteassistance.md#admx-remoteassistance-ra-optimize-bandwidth)
-- [ADMX_RemovableStorage/AccessRights_RebootTime_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-1)
-- [ADMX_RemovableStorage/AccessRights_RebootTime_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-accessrights-reboottime-2)
-- [ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyexecute-access-2)
-- [ADMX_RemovableStorage/CDandDVD_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyread-access-1)
-- [ADMX_RemovableStorage/CDandDVD_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denyread-access-2)
-- [ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denywrite-access-1)
-- [ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-cdanddvd-denywrite-access-2)
-- [ADMX_RemovableStorage/CustomClasses_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denyread-access-1)
-- [ADMX_RemovableStorage/CustomClasses_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denyread-access-2)
-- [ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denywrite-access-1)
-- [ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-customclasses-denywrite-access-2)
-- [ADMX_RemovableStorage/FloppyDrives_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyexecute-access-2)
-- [ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyread-access-1)
-- [ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denyread-access-2)
-- [ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denywrite-access-1)
-- [ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-floppydrives-denywrite-access-2)
-- [ADMX_RemovableStorage/RemovableDisks_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyexecute-access-2)
-- [ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyread-access-1)
-- [ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denyread-access-2)
-- [ADMX_RemovableStorage/RemovableDisks_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-removabledisks-denywrite-access-1)
-- [ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-removablestorageclasses-denyall-access-1)
-- [ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-removablestorageclasses-denyall-access-2)
-- [ADMX_RemovableStorage/Removable_Remote_Allow_Access](./policy-csp-admx-removablestorage.md#admx-removablestorage-removable-remote-allow-access)
-- [ADMX_RemovableStorage/TapeDrives_DenyExecute_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyexecute-access-2)
-- [ADMX_RemovableStorage/TapeDrives_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyread-access-1)
-- [ADMX_RemovableStorage/TapeDrives_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denyread-access-2)
-- [ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denywrite-access-1)
-- [ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-tapedrives-denywrite-access-2)
-- [ADMX_RemovableStorage/WPDDevices_DenyRead_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denyread-access-1)
-- [ADMX_RemovableStorage/WPDDevices_DenyRead_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denyread-access-2)
-- [ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_1](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denywrite-access-1)
-- [ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_2](./policy-csp-admx-removablestorage.md#admx-removablestorage-wpddevices-denywrite-access-2)
-- [ADMX_RPC/RpcExtendedErrorInformation](./policy-csp-admx-rpc.md#admx-rpc-rpcextendederrorinformation)
-- [ADMX_RPC/RpcIgnoreDelegationFailure](./policy-csp-admx-rpc.md#admx-rpc-rpcignoredelegationfailure)
-- [ADMX_RPC/RpcMinimumHttpConnectionTimeout](./policy-csp-admx-rpc.md#admx-rpc-rpcminimumhttpconnectiontimeout)
-- [ADMX_RPC/RpcStateInformation](./policy-csp-admx-rpc.md#admx-rpc-rpcstateinformation)
-- [ADMX_Scripts/Allow_Logon_Script_NetbiosDisabled](./policy-csp-admx-scripts.md#admx-scripts-allow-logon-script-netbiosdisabled)
-- [ADMX_Scripts/MaxGPOScriptWaitPolicy](./policy-csp-admx-scripts.md#admx-scripts-maxgposcriptwaitpolicy)
-- [ADMX_Scripts/Run_Computer_PS_Scripts_First](./policy-csp-admx-scripts.md#admx-scripts-run-computer-ps-scripts-first)
-- [ADMX_Scripts/Run_Legacy_Logon_Script_Hidden](./policy-csp-admx-scripts.md#admx-scripts-run-legacy-logon-script-hidden)
-- [ADMX_Scripts/Run_Logoff_Script_Visible](./policy-csp-admx-scripts.md#admx-scripts-run-logoff-script-visible)
-- [ADMX_Scripts/Run_Logon_Script_Sync_1](./policy-csp-admx-scripts.md#admx-scripts-run-logon-script-sync-1)
-- [ADMX_Scripts/Run_Logon_Script_Sync_2](./policy-csp-admx-scripts.md#admx-scripts-run-logon-script-sync-2)
-- [ADMX_Scripts/Run_Logon_Script_Visible](./policy-csp-admx-scripts.md#admx-scripts-run-logon-script-visible)
-- [ADMX_Scripts/Run_Shutdown_Script_Visible](./policy-csp-admx-scripts.md#admx-scripts-run-shutdown-script-visible)
-- [ADMX_Scripts/Run_Startup_Script_Sync](./policy-csp-admx-scripts.md#admx-scripts-run-startup-script-sync)
-- [ADMX_Scripts/Run_Startup_Script_Visible](./policy-csp-admx-scripts.md#admx-scripts-run-startup-script-visible)
-- [ADMX_Scripts/Run_User_PS_Scripts_First](./policy-csp-admx-scripts.md#admx-scripts-run-user-ps-scripts-first)
-- [ADMX_sdiageng/BetterWhenConnected](./policy-csp-admx-sdiageng.md#admx-sdiageng-betterwhenconnected)
-- [ADMX_sdiageng/ScriptedDiagnosticsExecutionPolicy](./policy-csp-admx-sdiageng.md#admx-sdiageng-scripteddiagnosticsexecutionpolicy)
-- [ADMX_sdiageng/ScriptedDiagnosticsSecurityPolicy](./policy-csp-admx-sdiageng.md#admx-sdiageng-scripteddiagnosticssecuritypolicy)
-- [ADMX_sdiagschd/ScheduledDiagnosticsExecutionPolicy](./policy-csp-admx-sdiagschd.md#admx-sdiagschd-scheduleddiagnosticsexecutionpolicy)
-- [ADMX_Securitycenter/SecurityCenter_SecurityCenterInDomain](./policy-csp-admx-securitycenter.md#admx-securitycenter-securitycenter-securitycenterindomain)
-- [ADMX_Sensors/DisableLocationScripting_1](./policy-csp-admx-sensors.md#admx-sensors-disablelocationscripting-1)
-- [ADMX_Sensors/DisableLocationScripting_2](./policy-csp-admx-sensors.md#admx-sensors-disablelocationscripting-2)
-- [ADMX_Sensors/DisableLocation_1](./policy-csp-admx-sensors.md#admx-sensors-disablelocation-1)
-- [ADMX_Sensors/DisableSensors_1](./policy-csp-admx-sensors.md#admx-sensors-disablesensors-1)
-- [ADMX_Sensors/DisableSensors_2](./policy-csp-admx-sensors.md#admx-sensors-disablesensors-2)
-- [ADMX_ServerManager/Do_not_display_Manage_Your_Server_page](./policy-csp-admx-servermanager.md#admx-servermanager-do_not_display_manage_your_server_page)
-- [ADMX_ServerManager/ServerManagerAutoRefreshRate](./policy-csp-admx-servermanager.md#admx-servermanager-servermanagerautorefreshrate)
-- [ADMX_ServerManager/DoNotLaunchInitialConfigurationTasks](./policy-csp-admx-servermanager.md#admx-servermanager-donotlaunchinitialconfigurationtasks)
-- [ADMX_ServerManager/DoNotLaunchServerManager](./policy-csp-admx-servermanager.md#admx-servermanager-donotlaunchservermanager)
-- [ADMX_Servicing/Servicing](./policy-csp-admx-servicing.md#admx-servicing-servicing)
-- [ADMX_SettingSync/DisableAppSyncSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disableappsyncsettingsync)
-- [ADMX_SettingSync/DisableApplicationSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disableapplicationsettingsync)
-- [ADMX_SettingSync/DisableCredentialsSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disablecredentialssettingsync)
-- [ADMX_SettingSync/DisableDesktopThemeSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disabledesktopthemesettingsync)
-- [ADMX_SettingSync/DisablePersonalizationSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disablepersonalizationsettingsync)
-- [ADMX_SettingSync/DisableSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disablesettingsync)
-- [ADMX_SettingSync/DisableStartLayoutSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disablestartlayoutsettingsync)
-- [ADMX_SettingSync/DisableSyncOnPaidNetwork](./policy-csp-admx-settingsync.md#admx-settingsync-disablesynconpaidnetwork)
-- [ADMX_SettingSync/DisableWindowsSettingSync](./policy-csp-admx-settingsync.md#admx-settingsync-disablewindowssettingsync)
-- [ADMX_SharedFolders/PublishDfsRoots](./policy-csp-admx-sharedfolders.md#admx-sharedfolders-publishdfsroots)
-- [ADMX_SharedFolders/PublishSharedFolders](./policy-csp-admx-sharedfolders.md#admx-sharedfolders-publishsharedfolders)
-- [ADMX_Sharing/NoInplaceSharing](./policy-csp-admx-sharing.md#admx-sharing-noinplacesharing)
-- [ADMX_ShellCommandPromptRegEditTools/DisallowApps](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-disallowapps)
-- [ADMX_ShellCommandPromptRegEditTools/DisableRegedit](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-disableregedit)
-- [ADMX_ShellCommandPromptRegEditTools/DisableCMD](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-disablecmd)
-- [ADMX_ShellCommandPromptRegEditTools/RestrictApps](./policy-csp-admx-shellcommandpromptregedittools.md#admx-shellcommandpromptregedittools-restrictapps)
-- [ADMX_Smartcard/AllowCertificatesWithNoEKU](./policy-csp-admx-smartcard.md#admx-smartcard-allowcertificateswithnoeku)
-- [ADMX_Smartcard/AllowIntegratedUnblock](./policy-csp-admx-smartcard.md#admx-smartcard-allowintegratedunblock)
-- [ADMX_Smartcard/AllowSignatureOnlyKeys](./policy-csp-admx-smartcard.md#admx-smartcard-allowsignatureonlykeys)
-- [ADMX_Smartcard/AllowTimeInvalidCertificates](./policy-csp-admx-smartcard.md#admx-smartcard-allowtimeinvalidcertificates)
-- [ADMX_Smartcard/CertPropEnabledString](./policy-csp-admx-smartcard.md#admx-smartcard-certpropenabledstring)
-- [ADMX_Smartcard/CertPropRootCleanupString](./policy-csp-admx-smartcard.md#admx-smartcard-certproprootcleanupstring)
-- [ADMX_Smartcard/CertPropRootEnabledString](./policy-csp-admx-smartcard.md#admx-smartcard-certproprootenabledstring)
-- [ADMX_Smartcard/DisallowPlaintextPin](./policy-csp-admx-smartcard.md#admx-smartcard-disallowplaintextpin)
-- [ADMX_Smartcard/EnumerateECCCerts](./policy-csp-admx-smartcard.md#admx-smartcard-enumerateecccerts)
-- [ADMX_Smartcard/FilterDuplicateCerts](./policy-csp-admx-smartcard.md#admx-smartcard-filterduplicatecerts)
-- [ADMX_Smartcard/ForceReadingAllCertificates](./policy-csp-admx-smartcard.md#admx-smartcard-forcereadingallcertificates)
-- [ADMX_Smartcard/IntegratedUnblockPromptString](./policy-csp-admx-smartcard.md#admx-smartcard-integratedunblockpromptstring)
-- [ADMX_Smartcard/ReverseSubject](./policy-csp-admx-smartcard.md#admx-smartcard-reversesubject)
-- [ADMX_Smartcard/SCPnPEnabled](./policy-csp-admx-smartcard.md#admx-smartcard-scpnpenabled)
-- [ADMX_Smartcard/SCPnPNotification](./policy-csp-admx-smartcard.md#admx-smartcard-scpnpnotification)
-- [ADMX_Smartcard/X509HintsNeeded](./policy-csp-admx-smartcard.md#admx-smartcard-x509hintsneeded)
-- [ADMX_Snmp/SNMP_Communities](./policy-csp-admx-snmp.md#admx-snmp-snmp-communities)
-- [ADMX_Snmp/SNMP_PermittedManagers](./policy-csp-admx-snmp.md#admx-snmp-snmp-permittedmanagers)
-- [ADMX_Snmp/SNMP_Traps_Public](./policy-csp-admx-snmp.md#admx-snmp-snmp-traps-public)
-- [ADMX_StartMenu/AddSearchInternetLinkInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-addsearchinternetlinkinstartmenu)
-- [ADMX_StartMenu/ClearRecentDocsOnExit](./policy-csp-admx-startmenu.md#admx-startmenu-clearrecentdocsonexit)
-- [ADMX_StartMenu/ClearRecentProgForNewUserInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-clearrecentprogfornewuserinstartmenu)
-- [ADMX_StartMenu/ClearTilesOnExit](./policy-csp-admx-startmenu.md#admx-startmenu-cleartilesonexit)
-- [ADMX_StartMenu/DesktopAppsFirstInAppsView](./policy-csp-admx-startmenu.md#admx-startmenu-desktopappsfirstinappsview)
-- [ADMX_StartMenu/DisableGlobalSearchOnAppsView](./policy-csp-admx-startmenu.md#admx-startmenu-disableglobalsearchonappsview)
-- [ADMX_StartMenu/ForceStartMenuLogOff](./policy-csp-admx-startmenu.md#admx-startmenu-forcestartmenulogoff)
-- [ADMX_StartMenu/GoToDesktopOnSignIn](./policy-csp-admx-startmenu.md#admx-startmenu-gotodesktoponsignin)
-- [ADMX_StartMenu/GreyMSIAds](./policy-csp-admx-startmenu.md#admx-startmenu-greymsiads)
-- [ADMX_StartMenu/HidePowerOptions](./policy-csp-admx-startmenu.md#admx-startmenu-hidepoweroptions)
-- [ADMX_StartMenu/Intellimenus](./policy-csp-admx-startmenu.md#admx-startmenu-intellimenus)
-- [ADMX_StartMenu/LockTaskbar](./policy-csp-admx-startmenu.md#admx-startmenu-locktaskbar)
-- [ADMX_StartMenu/MemCheckBoxInRunDlg](./policy-csp-admx-startmenu.md#admx-startmenu-memcheckboxinrundlg)
-- [ADMX_StartMenu/NoAutoTrayNotify](./policy-csp-admx-startmenu.md#admx-startmenu-noautotraynotify)
-- [ADMX_StartMenu/NoBalloonTip](./policy-csp-admx-startmenu.md#admx-startmenu-noballoontip)
-- [ADMX_StartMenu/NoChangeStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nochangestartmenu)
-- [ADMX_StartMenu/NoClose](./policy-csp-admx-startmenu.md#admx-startmenu-noclose)
-- [ADMX_StartMenu/NoCommonGroups](./policy-csp-admx-startmenu.md#admx-startmenu-nocommongroups)
-- [ADMX_StartMenu/NoFavoritesMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nofavoritesmenu)
-- [ADMX_StartMenu/NoFind](./policy-csp-admx-startmenu.md#admx-startmenu-nofind)
-- [ADMX_StartMenu/NoGamesFolderOnStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nogamesfolderonstartmenu)
-- [ADMX_StartMenu/NoHelp](./policy-csp-admx-startmenu.md#admx-startmenu-nohelp)
-- [ADMX_StartMenu/NoInstrumentation](./policy-csp-admx-startmenu.md#admx-startmenu-noinstrumentation)
-- [ADMX_StartMenu/NoMoreProgramsList](./policy-csp-admx-startmenu.md#admx-startmenu-nomoreprogramslist)
-- [ADMX_StartMenu/NoNetAndDialupConnect](./policy-csp-admx-startmenu.md#admx-startmenu-nonetanddialupconnect)
-- [ADMX_StartMenu/NoPinnedPrograms](./policy-csp-admx-startmenu.md#admx-startmenu-nopinnedprograms)
-- [ADMX_StartMenu/NoRecentDocsMenu](./policy-csp-admx-startmenu.md#admx-startmenu-norecentdocsmenu)
-- [ADMX_StartMenu/NoResolveSearch](./policy-csp-admx-startmenu.md#admx-startmenu-noresolvesearch)
-- [ADMX_StartMenu/NoResolveTrack](./policy-csp-admx-startmenu.md#admx-startmenu-noresolvetrack)
-- [ADMX_StartMenu/NoRun](./policy-csp-admx-startmenu.md#admx-startmenu-norun)
-- [ADMX_StartMenu/NoSMConfigurePrograms](./policy-csp-admx-startmenu.md#admx-startmenu-nosmconfigureprograms)
-- [ADMX_StartMenu/NoSMMyDocuments](./policy-csp-admx-startmenu.md#admx-startmenu-nosmmydocuments)
-- [ADMX_StartMenu/NoSMMyMusic](./policy-csp-admx-startmenu.md#admx-startmenu-nosmmymusic)
-- [ADMX_StartMenu/NoSMMyNetworkPlaces](./policy-csp-admx-startmenu.md#admx-startmenu-nosmmynetworkplaces)
-- [ADMX_StartMenu/NoSMMyPictures](./policy-csp-admx-startmenu.md#admx-startmenu-nosmmypictures)
-- [ADMX_StartMenu/NoSearchCommInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nosearchcomminstartmenu)
-- [ADMX_StartMenu/NoSearchComputerLinkInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nosearchcomputerlinkinstartmenu)
-- [ADMX_StartMenu/NoSearchEverywhereLinkInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nosearcheverywherelinkinstartmenu)
-- [ADMX_StartMenu/NoSearchFilesInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nosearchfilesinstartmenu)
-- [ADMX_StartMenu/NoSearchInternetInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nosearchinternetinstartmenu)
-- [ADMX_StartMenu/NoSearchProgramsInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nosearchprogramsinstartmenu)
-- [ADMX_StartMenu/NoSetFolders](./policy-csp-admx-startmenu.md#admx-startmenu-nosetfolders)
-- [ADMX_StartMenu/NoSetTaskbar](./policy-csp-admx-startmenu.md#admx-startmenu-nosettaskbar)
-- [ADMX_StartMenu/NoStartMenuDownload](./policy-csp-admx-startmenu.md#admx-startmenu-nostartmenudownload)
-- [ADMX_StartMenu/NoStartMenuHomegroup](./policy-csp-admx-startmenu.md#admx-startmenu-nostartmenuhomegroup)
-- [ADMX_StartMenu/NoStartMenuRecordedTV](./policy-csp-admx-startmenu.md#admx-startmenu-nostartmenurecordedtv)
-- [ADMX_StartMenu/NoStartMenuSubFolders](./policy-csp-admx-startmenu.md#admx-startmenu-nostartmenusubfolders)
-- [ADMX_StartMenu/NoStartMenuVideos](./policy-csp-admx-startmenu.md#admx-startmenu-nostartmenuvideos)
-- [ADMX_StartMenu/NoStartPage](./policy-csp-admx-startmenu.md#admx-startmenu-nostartpage)
-- [ADMX_StartMenu/NoTaskBarClock](./policy-csp-admx-startmenu.md#admx-startmenu-notaskbarclock)
-- [ADMX_StartMenu/NoTaskGrouping](./policy-csp-admx-startmenu.md#admx-startmenu-notaskgrouping)
-- [ADMX_StartMenu/NoToolbarsOnTaskbar](./policy-csp-admx-startmenu.md#admx-startmenu-notoolbarsontaskbar)
-- [ADMX_StartMenu/NoTrayContextMenu](./policy-csp-admx-startmenu.md#admx-startmenu-notraycontextmenu)
-- [ADMX_StartMenu/NoTrayItemsDisplay](./policy-csp-admx-startmenu.md#admx-startmenu-notrayitemsdisplay)
-- [ADMX_StartMenu/NoUninstallFromStart](./policy-csp-admx-startmenu.md#admx-startmenu-nouninstallfromstart)
-- [ADMX_StartMenu/NoUserFolderOnStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nouserfolderonstartmenu)
-- [ADMX_StartMenu/NoUserNameOnStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-nousernameonstartmenu)
-- [ADMX_StartMenu/NoWindowsUpdate](./policy-csp-admx-startmenu.md#admx-startmenu-nowindowsupdate)
-- [ADMX_StartMenu/PowerButtonAction](./policy-csp-admx-startmenu.md#admx-startmenu-powerbuttonaction)
-- [ADMX_StartMenu/QuickLaunchEnabled](./policy-csp-admx-startmenu.md#admx-startmenu-quicklaunchenabled)
-- [ADMX_StartMenu/RemoveUnDockPCButton](./policy-csp-admx-startmenu.md#admx-startmenu-removeundockpcbutton)
-- [ADMX_StartMenu/ShowAppsViewOnStart](./policy-csp-admx-startmenu.md#admx-startmenu-showappsviewonstart)
-- [ADMX_StartMenu/ShowRunAsDifferentUserInStart](./policy-csp-admx-startmenu.md#admx-startmenu-showrunasdifferentuserinstart)
-- [ADMX_StartMenu/ShowRunInStartMenu](./policy-csp-admx-startmenu.md#admx-startmenu-showruninstartmenu)
-- [ADMX_StartMenu/ShowStartOnDisplayWithForegroundOnWinKey](./policy-csp-admx-startmenu.md#admx-startmenu-showstartondisplaywithforegroundonwinkey)
-- [ADMX_StartMenu/StartMenuLogOff](./policy-csp-admx-startmenu.md#admx-startmenu-startmenulogoff)
-- [ADMX_StartMenu/StartPinAppsWhenInstalled](./policy-csp-admx-startmenu.md#admx-startmenu-startpinappswheninstalled)
-- [ADMX_SystemRestore/SR_DisableConfig](./policy-csp-admx-systemrestore.md#admx-systemrestore-sr-disableconfig)
-- [ADMX_TabletShell/DisableInkball_1](./policy-csp-admx-tabletshell.md#admx-tabletshell-disableinkball_1)
-- [ADMX_TabletShell/DisableNoteWriterPrinting_1](./policy-csp-admx-tabletshell.md#admx-tabletshell-disablenotewriterprinting_1)
-- [ADMX_Taskbar/DisableNotificationCenter](./policy-csp-admx-taskbar.md#admx-taskbar-disablenotificationcenter)
-- [ADMX_Taskbar/EnableLegacyBalloonNotifications](./policy-csp-admx-taskbar.md#admx-taskbar-enablelegacyballoonnotifications)
-- [ADMX_Taskbar/HideSCAHealth](./policy-csp-admx-taskbar.md#admx-taskbar-hidescahealth)
-- [ADMX_Taskbar/HideSCANetwork](./policy-csp-admx-taskbar.md#admx-taskbar-hidescanetwork)
-- [ADMX_Taskbar/HideSCAPower](./policy-csp-admx-taskbar.md#admx-taskbar-hidescapower)
-- [ADMX_Taskbar/HideSCAVolume](./policy-csp-admx-taskbar.md#admx-taskbar-hidescavolume)
-- [ADMX_Taskbar/NoBalloonFeatureAdvertisements](./policy-csp-admx-taskbar.md#admx-taskbar-noballoonfeatureadvertisements)
-- [ADMX_Taskbar/NoPinningStoreToTaskbar](./policy-csp-admx-taskbar.md#admx-taskbar-nopinningstoretotaskbar)
-- [ADMX_Taskbar/NoPinningToDestinations](./policy-csp-admx-taskbar.md#admx-taskbar-nopinningtodestinations)
-- [ADMX_Taskbar/NoPinningToTaskbar](./policy-csp-admx-taskbar.md#admx-taskbar-nopinningtotaskbar)
-- [ADMX_Taskbar/NoRemoteDestinations](./policy-csp-admx-taskbar.md#admx-taskbar-noremotedestinations)
-- [ADMX_Taskbar/NoSystraySystemPromotion](./policy-csp-admx-taskbar.md#admx-taskbar-nosystraysystempromotion)
-- [ADMX_Taskbar/ShowWindowsStoreAppsOnTaskbar](./policy-csp-admx-taskbar.md#admx-taskbar-showwindowsstoreappsontaskbar)
-- [ADMX_Taskbar/TaskbarLockAll](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarlockall)
-- [ADMX_Taskbar/TaskbarNoAddRemoveToolbar](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnoaddremovetoolbar)
-- [ADMX_Taskbar/TaskbarNoDragToolbar](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnodragtoolbar)
-- [ADMX_Taskbar/TaskbarNoMultimon](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnomultimon)
-- [ADMX_Taskbar/TaskbarNoNotification](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnonotification)
-- [ADMX_Taskbar/TaskbarNoPinnedList](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnopinnedlist)
-- [ADMX_Taskbar/TaskbarNoRedock](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnoredock)
-- [ADMX_Taskbar/TaskbarNoResize](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnoresize)
-- [ADMX_Taskbar/TaskbarNoThumbnail](./policy-csp-admx-taskbar.md#admx-taskbar-taskbarnothumbnail)
-- [ADMX_tcpip/6to4_Router_Name](./policy-csp-admx-tcpip.md#admx-tcpip-6to4-router-name)
-- [ADMX_tcpip/6to4_Router_Name_Resolution_Interval](./policy-csp-admx-tcpip.md#admx-tcpip-6to4-router-name-resolution-interval)
-- [ADMX_tcpip/6to4_State](./policy-csp-admx-tcpip.md#admx-tcpip-6to4-state)
-- [ADMX_tcpip/IPHTTPS_ClientState](./policy-csp-admx-tcpip.md#admx-tcpip-iphttps-clientstate)
-- [ADMX_tcpip/IP_Stateless_Autoconfiguration_Limits_State](./policy-csp-admx-tcpip.md#admx-tcpip-ip-stateless-autoconfiguration-limits-state)
-- [ADMX_tcpip/ISATAP_Router_Name](./policy-csp-admx-tcpip.md#admx-tcpip-isatap-router-name)
-- [ADMX_tcpip/ISATAP_State](./policy-csp-admx-tcpip.md#admx-tcpip-isatap-state)
-- [ADMX_tcpip/Teredo_Client_Port](./policy-csp-admx-tcpip.md#admx-tcpip-teredo-client-port)
-- [ADMX_tcpip/Teredo_Default_Qualified](./policy-csp-admx-tcpip.md#admx-tcpip-teredo-default-qualified)
-- [ADMX_tcpip/Teredo_Refresh_Rate](./policy-csp-admx-tcpip.md#admx-tcpip-teredo-refresh-rate)
-- [ADMX_tcpip/Teredo_Server_Name](./policy-csp-admx-tcpip.md#admx-tcpip-teredo-server-name)
-- [ADMX_tcpip/Teredo_State](./policy-csp-admx-tcpip.md#admx-tcpip-teredo-state)
-- [ADMX_tcpip/Windows_Scaling_Heuristics_State](./policy-csp-admx-tcpip.md#admx-tcpip-windows-scaling-heuristics-state)
-- [ADMX_TerminalServer/TS_AUTO_RECONNECT](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_auto_reconnect)
-- [ADMX_TerminalServer/TS_CAMERA_REDIRECTION](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_camera_redirection)
-- [ADMX_TerminalServer/TS_CERTIFICATE_TEMPLATE_POLICY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_certificate_template_policy)
-- [ADMX_TerminalServer/TS_CLIENT_ALLOW_SIGNED_FILES_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_allow_signed_files_1)
-- [ADMX_TerminalServer/TS_CLIENT_ALLOW_SIGNED_FILES_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_allow_signed_files_2)
-- [ADMX_TerminalServer/TS_CLIENT_ALLOW_UNSIGNED_FILES_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_allow_unsigned_files_1)
-- [ADMX_TerminalServer/TS_CLIENT_ALLOW_UNSIGNED_FILES_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_allow_unsigned_files_2)
-- [ADMX_TerminalServer/TS_CLIENT_AUDIO](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_audio)
-- [ADMX_TerminalServer/TS_CLIENT_AUDIO_CAPTURE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_audio_capture)
-- [ADMX_TerminalServer/TS_CLIENT_AUDIO_QUALITY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_audio_quality)
-- [ADMX_TerminalServer/TS_CLIENT_CLIPBOARD](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_clipboard)
-- [ADMX_TerminalServer/TS_CLIENT_COM](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_com)
-- [ADMX_TerminalServer/TS_CLIENT_DEFAULT_M](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_default_m)
-- [ADMX_TerminalServer/TS_CLIENT_DISABLE_HARDWARE_MODE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_disable_hardware_mode)
-- [ADMX_TerminalServer/TS_CLIENT_DISABLE_PASSWORD_SAVING_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_disable_password_saving_1)
-- [ADMX_TerminalServer/TS_CLIENT_LPT](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_lpt)
-- [ADMX_TerminalServer/TS_CLIENT_PNP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_pnp)
-- [ADMX_TerminalServer/TS_CLIENT_PRINTER](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_printer)
-- [ADMX_TerminalServer/TS_CLIENT_TRUSTED_CERTIFICATE_THUMBPRINTS_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_trusted_certificate_thumbprints_1)
-- [ADMX_TerminalServer/TS_CLIENT_TRUSTED_CERTIFICATE_THUMBPRINTS_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_trusted_certificate_thumbprints_2)
-- [ADMX_TerminalServer/TS_CLIENT_TURN_OFF_UDP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_client_turn_off_udp)
-- [ADMX_TerminalServer/TS_COLORDEPTH](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_colordepth)
-- [ADMX_TerminalServer/TS_DELETE_ROAMING_USER_PROFILES](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_delete_roaming_user_profiles)
-- [ADMX_TerminalServer/TS_DISABLE_REMOTE_DESKTOP_WALLPAPER](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_disable_remote_desktop_wallpaper)
-- [ADMX_TerminalServer/TS_DX_USE_FULL_HWGPU](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_dx_use_full_hwgpu)
-- [ADMX_TerminalServer/TS_EASY_PRINT](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_easy_print)
-- [ADMX_TerminalServer/TS_EASY_PRINT_User](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_easy_print_user)
-- [ADMX_TerminalServer/TS_EnableVirtualGraphics](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_enablevirtualgraphics)
-- [ADMX_TerminalServer/TS_FALLBACKPRINTDRIVERTYPE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_fallbackprintdrivertype)
-- [ADMX_TerminalServer/TS_FORCIBLE_LOGOFF](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_forcible_logoff)
-- [ADMX_TerminalServer/TS_GATEWAY_POLICY_ENABLE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_gateway_policy_enable)
-- [ADMX_TerminalServer/TS_GATEWAY_POLICY_AUTH_METHOD](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_gateway_policy_auth_method)
-- [ADMX_TerminalServer/TS_GATEWAY_POLICY_SERVER](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_gateway_policy_server)
-- [ADMX_TerminalServer/TS_JOIN_SESSION_DIRECTORY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_join_session_directory)
-- [ADMX_TerminalServer/TS_KEEP_ALIVE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_keep_alive)
-- [ADMX_TerminalServer/TS_LICENSE_SECGROUP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_license_secgroup)
-- [ADMX_TerminalServer/TS_LICENSE_SERVERS](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_license_servers)
-- [ADMX_TerminalServer/TS_LICENSE_TOOLTIP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_license_tooltip)
-- [ADMX_TerminalServer/TS_LICENSING_MODE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_licensing_mode)
-- [ADMX_TerminalServer/TS_MAX_CON_POLICY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_max_con_policy)
-- [ADMX_TerminalServer/TS_MAXDISPLAYRES](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_maxdisplayres)
-- [ADMX_TerminalServer/TS_MAXMONITOR](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_maxmonitor)
-- [ADMX_TerminalServer/TS_NoDisconnectMenu](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_nodisconnectmenu)
-- [ADMX_TerminalServer/TS_NoSecurityMenu](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_nosecuritymenu)
-- [ADMX_TerminalServer/TS_PreventLicenseUpgrade](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_preventlicenseupgrade)
-- [ADMX_TerminalServer/TS_PROMT_CREDS_CLIENT_COMP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_promt_creds_client_comp)
-- [ADMX_TerminalServer/TS_RADC_DefaultConnection](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_radc_defaultconnection)
-- [ADMX_TerminalServer/TS_RDSAppX_WaitForRegistration](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_rdsappx_waitforregistration)
-- [ADMX_TerminalServer/TS_RemoteControl_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_remotecontrol_1)
-- [ADMX_TerminalServer/TS_RemoteControl_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_remotecontrol_2)
-- [ADMX_TerminalServer/TS_RemoteDesktopVirtualGraphics](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_remotedesktopvirtualgraphics)
-- [ADMX_TerminalServer/TS_SD_ClustName](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sd_clustname)
-- [ADMX_TerminalServer/TS_SD_EXPOSE_ADDRESS](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sd_expose_address)
-- [ADMX_TerminalServer/TS_SD_Loc](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sd_loc)
-- [ADMX_TerminalServer/TS_SECURITY_LAYER_POLICY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_security_layer_policy)
-- [ADMX_TerminalServer/TS_SELECT_NETWORK_DETECT](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_select_network_detect)
-- [ADMX_TerminalServer/TS_SELECT_TRANSPORT](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_select_transport)
-- [ADMX_TerminalServer/TS_SERVER_ADVANCED_REMOTEFX_REMOTEAPP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_advanced_remotefx_remoteapp)
-- [ADMX_TerminalServer/TS_SERVER_AUTH](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_auth)
-- [ADMX_TerminalServer/TS_SERVER_AVC_HW_ENCODE_PREFERRED](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_avc_hw_encode_preferred)
-- [ADMX_TerminalServer/TS_SERVER_AVC444_MODE_PREFERRED](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_avc444_mode_preferred)
-- [ADMX_TerminalServer/TS_SERVER_COMPRESSOR](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_compressor)
-- [ADMX_TerminalServer/TS_SERVER_IMAGE_QUALITY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_image_quality)
-- [ADMX_TerminalServer/TS_SERVER_LEGACY_RFX](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_legacy_rfx)
-- [ADMX_TerminalServer/TS_SERVER_PROFILE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_profile)
-- [ADMX_TerminalServer/TS_SERVER_VISEXP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_visexp)
-- [ADMX_TerminalServer/TS_SERVER_WDDM_GRAPHICS_DRIVER](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_server_wddm_graphics_driver)
-- [ADMX_TerminalServer/TS_Session_End_On_Limit_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_session_end_on_limit_1)
-- [ADMX_TerminalServer/TS_Session_End_On_Limit_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_session_end_on_limit_2)
-- [ADMX_TerminalServer/TS_SESSIONS_Disconnected_Timeout_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sessions_disconnected_timeout_1)
-- [ADMX_TerminalServer/TS_SESSIONS_Disconnected_Timeout_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sessions_disconnected_timeout_2)
-- [ADMX_TerminalServer/TS_SESSIONS_Idle_Limit_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sessions_idle_limit_1)
-- [ADMX_TerminalServer/TS_SESSIONS_Idle_Limit_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sessions_idle_limit_2)
-- [ADMX_TerminalServer/TS_SESSIONS_Limits_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sessions_limits_1)
-- [ADMX_TerminalServer/TS_SESSIONS_Limits_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_sessions_limits_2)
-- [ADMX_TerminalServer/TS_SINGLE_SESSION](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_single_session)
-- [ADMX_TerminalServer/TS_SMART_CARD](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_smart_card)
-- [ADMX_TerminalServer/TS_START_PROGRAM_1](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_start_program_1)
-- [ADMX_TerminalServer/TS_START_PROGRAM_2](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_start_program_2)
-- [ADMX_TerminalServer/TS_TEMP_DELETE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_temp_delete)
-- [ADMX_TerminalServer/TS_TEMP_PER_SESSION](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_temp_per_session)
-- [ADMX_TerminalServer/TS_TIME_ZONE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_time_zone)
-- [ADMX_TerminalServer/TS_TSCC_PERMISSIONS_POLICY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_tscc_permissions_policy)
-- [ADMX_TerminalServer/TS_TURNOFF_SINGLEAPP](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_turnoff_singleapp)
-- [ADMX_TerminalServer/TS_UIA](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_uia)
-- [ADMX_TerminalServer/TS_USB_REDIRECTION_DISABLE](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_usb_redirection_disable)
-- [ADMX_TerminalServer/TS_USER_AUTHENTICATION_POLICY](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_user_authentication_policy)
-- [ADMX_TerminalServer/TS_USER_HOME](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_user_home)
-- [ADMX_TerminalServer/TS_USER_MANDATORY_PROFILES](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_user_mandatory_profiles)
-- [ADMX_TerminalServer/TS_USER_PROFILES](./policy-csp-admx-terminalserver.md#admx-terminalserver-ts_user_profiles)
-- [ADMX_Thumbnails/DisableThumbnails](./policy-csp-admx-thumbnails.md#admx-thumbnails-disablethumbnails)
-- [ADMX_Thumbnails/DisableThumbnailsOnNetworkFolders](./policy-csp-admx-thumbnails.md#admx-thumbnails-disablethumbnailsonnetworkfolders)
-- [ADMX_Thumbnails/DisableThumbsDBOnNetworkFolders](./policy-csp-admx-thumbnails.md#admx-thumbnails-disablethumbsdbonnetworkfolders)
-- [ADMX_TouchInput/TouchInputOff_1](./policy-csp-admx-touchinput.md#admx-touchinput-touchinputoff_1)
-- [ADMX_TouchInput/TouchInputOff_2](./policy-csp-admx-touchinput.md#admx-touchinput-touchinputoff_2)
-- [ADMX_TouchInput/PanningEverywhereOff_1](./policy-csp-admx-touchinput.md#admx-touchinput-panningeverywhereoff_1)
-- [ADMX_TouchInput/PanningEverywhereOff_2](./policy-csp-admx-touchinput.md#admx-touchinput-panningeverywhereoff_2)
-- [ADMX_TPM/BlockedCommandsList_Name](./policy-csp-admx-tpm.md#admx-tpm-blockedcommandslist-name)
-- [ADMX_TPM/ClearTPMIfNotReady_Name](./policy-csp-admx-tpm.md#admx-tpm-cleartpmifnotready-name)
-- [ADMX_TPM/IgnoreDefaultList_Name](./policy-csp-admx-tpm.md#admx-tpm-ignoredefaultlist-name)
-- [ADMX_TPM/IgnoreLocalList_Name](./policy-csp-admx-tpm.md#admx-tpm-ignorelocallist-name)
-- [ADMX_TPM/OSManagedAuth_Name](./policy-csp-admx-tpm.md#admx-tpm-osmanagedauth-name)
-- [ADMX_TPM/OptIntoDSHA_Name](./policy-csp-admx-tpm.md#admx-tpm-optintodsha-name)
-- [ADMX_TPM/StandardUserAuthorizationFailureDuration_Name](./policy-csp-admx-tpm.md#admx-tpm-standarduserauthorizationfailureduration-name)
-- [ADMX_TPM/StandardUserAuthorizationFailureIndividualThreshold_Name](./policy-csp-admx-tpm.md#admx-tpm-standarduserauthorizationfailureindividualthreshold-name)
-- [ADMX_TPM/StandardUserAuthorizationFailureTotalThreshold_Name](./policy-csp-admx-tpm.md#admx-tpm-standarduserauthorizationfailuretotalthreshold-name)
-- [ADMX_TPM/UseLegacyDAP_Name](./policy-csp-admx-tpm.md#admx-tpm-uselegacydap-name)
-- [ADMX_UserExperienceVirtualization/Calculator](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-calculator)
-- [ADMX_UserExperienceVirtualization/ConfigureSyncMethod](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-configuresyncmethod)
-- [ADMX_UserExperienceVirtualization/ConfigureVdi](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-configurevdi)
-- [ADMX_UserExperienceVirtualization/ContactITDescription](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-contactitdescription)
-- [ADMX_UserExperienceVirtualization/ContactITUrl](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-contactiturl)
-- [ADMX_UserExperienceVirtualization/DisableWin8Sync](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-disablewin8sync)
-- [ADMX_UserExperienceVirtualization/DisableWindowsOSSettings](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-disablewindowsossettings)
-- [ADMX_UserExperienceVirtualization/EnableUEV](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-enableuev)
-- [ADMX_UserExperienceVirtualization/Finance](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-finance)
-- [ADMX_UserExperienceVirtualization/FirstUseNotificationEnabled](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-firstusenotificationenabled)
-- [ADMX_UserExperienceVirtualization/Games](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-games)
-- [ADMX_UserExperienceVirtualization/InternetExplorer8](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-internetexplorer8)
-- [ADMX_UserExperienceVirtualization/InternetExplorer9](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-internetexplorer9)
-- [ADMX_UserExperienceVirtualization/InternetExplorer10](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-internetexplorer10)
-- [ADMX_UserExperienceVirtualization/InternetExplorer11](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-internetexplorer11)
-- [ADMX_UserExperienceVirtualization/InternetExplorerCommon](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-internetexplorercommon)
-- [ADMX_UserExperienceVirtualization/Maps](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-maps)
-- [ADMX_UserExperienceVirtualization/MaxPackageSizeInBytes](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-maxpackagesizeinbytes)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Access](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010access)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Common](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010common)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Excel](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010excel)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010InfoPath](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010infopath)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Lync](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010lync)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010OneNote](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010onenote)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Outlook](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010outlook)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010PowerPoint](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010powerpoint)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Project](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010project)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Publisher](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010publisher)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010SharePointDesigner](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010sharepointdesigner)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010SharePointWorkspace](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010sharepointworkspace)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Visio](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010visio)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2010Word](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2010word)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Access](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013access)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013AccessBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013accessbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Common](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013common)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013CommonBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013commonbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Excel](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013excel)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013ExcelBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013excelbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013InfoPath](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013infopath)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013InfoPathBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013infopathbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Lync](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013lync)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013LyncBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013lyncbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013OneDriveForBusiness](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013onedriveforbusiness)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013OneNote](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013onenote)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013OneNoteBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013onenotebackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Outlook](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013outlook)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013OutlookBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013outlookbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013PowerPoint](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013powerpoint)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013PowerPointBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013powerpointbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Project](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013project)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013ProjectBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013projectbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Publisher](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013publisher)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013PublisherBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013publisherbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013SharePointDesigner](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013sharepointdesigner)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013SharePointDesignerBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013sharepointdesignerbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013UploadCenter](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013uploadcenter)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Visio](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013visio)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013VisioBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013visiobackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013Word](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013word)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2013WordBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2013wordbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Access](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016access)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016AccessBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016accessbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Common](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016common)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016CommonBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016commonbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Excel](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016excel)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016ExcelBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016excelbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Lync](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016lync)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016LyncBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016lyncbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016OneDriveForBusiness](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016onedriveforbusiness)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016OneNote](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016onenote)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016OneNoteBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016onenotebackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Outlook](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016outlook)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016OutlookBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016outlookbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016PowerPoint](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016powerpoint)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016PowerPointBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016powerpointbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Project](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016project)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016ProjectBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016projectbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Publisher](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016publisher)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016PublisherBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016publisherbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016UploadCenter](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016uploadcenter)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Visio](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016visio)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016VisioBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016visiobackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016Word](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016word)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice2016WordBackup](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice2016wordbackup)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Access2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365access2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Access2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365access2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Common2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365common2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Common2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365common2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Excel2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365excel2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Excel2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365excel2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365InfoPath2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365infopath2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Lync2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365lync2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Lync2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365lync2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365OneNote2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365onenote2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365OneNote2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365onenote2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Outlook2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365outlook2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Outlook2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365outlook2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365PowerPoint2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365powerpoint2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365PowerPoint2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365powerpoint2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Project2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365project2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Project2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365project2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Publisher2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365publisher2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Publisher2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365publisher2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365SharePointDesigner2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365sharepointdesigner2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Visio2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365visio2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Visio2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365visio2016)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Word2013](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365word2013)
-- [ADMX_UserExperienceVirtualization/MicrosoftOffice365Word2016](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-microsoftoffice365word2016)
-- [ADMX_UserExperienceVirtualization/Music](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-music)
-- [ADMX_UserExperienceVirtualization/News](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-news)
-- [ADMX_UserExperienceVirtualization/Notepad](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-notepad)
-- [ADMX_UserExperienceVirtualization/Reader](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-reader)
-- [ADMX_UserExperienceVirtualization/RepositoryTimeout](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-repositorytimeout)
-- [ADMX_UserExperienceVirtualization/SettingsStoragePath](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-settingsstoragepath)
-- [ADMX_UserExperienceVirtualization/SettingsTemplateCatalogPath](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-settingstemplatecatalogpath)
-- [ADMX_UserExperienceVirtualization/Sports](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-sports)
-- [ADMX_UserExperienceVirtualization/SyncEnabled](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-syncenabled)
-- [ADMX_UserExperienceVirtualization/SyncOverMeteredNetwork](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-syncovermeterednetwork)
-- [ADMX_UserExperienceVirtualization/SyncOverMeteredNetworkWhenRoaming](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-syncovermeterednetworkwhenroaming)
-- [ADMX_UserExperienceVirtualization/SyncProviderPingEnabled](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-syncproviderpingenabled)
-- [ADMX_UserExperienceVirtualization/SyncUnlistedWindows8Apps](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-syncunlistedwindows8apps)
-- [ADMX_UserExperienceVirtualization/Travel](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-travel)
-- [ADMX_UserExperienceVirtualization/TrayIconEnabled](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-trayiconenabled)
-- [ADMX_UserExperienceVirtualization/Video](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-video)
-- [ADMX_UserExperienceVirtualization/Weather](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-weather)
-- [ADMX_UserExperienceVirtualization/Wordpad](./policy-csp-admx-userexperiencevirtualization.md#admx-userexperiencevirtualization-wordpad)
-- [ADMX_UserProfiles/CleanupProfiles](./policy-csp-admx-userprofiles.md#admx-userprofiles-cleanupprofiles)
-- [ADMX_UserProfiles/DontForceUnloadHive](./policy-csp-admx-userprofiles.md#admx-userprofiles-dontforceunloadhive)
-- [ADMX_UserProfiles/LeaveAppMgmtData](./policy-csp-admx-userprofiles.md#admx-userprofiles-leaveappmgmtdata)
-- [ADMX_UserProfiles/LimitSize](./policy-csp-admx-userprofiles.md#admx-userprofiles-limitsize)
-- [ADMX_UserProfiles/ProfileErrorAction](./policy-csp-admx-userprofiles.md#admx-userprofiles-profileerroraction)
-- [ADMX_UserProfiles/SlowLinkTimeOut](./policy-csp-admx-userprofiles.md#admx-userprofiles-slowlinktimeout)
-- [ADMX_UserProfiles/USER_HOME](./policy-csp-admx-userprofiles.md#admx-userprofiles-user-home)
-- [ADMX_UserProfiles/UserInfoAccessAction](./policy-csp-admx-userprofiles.md#admx-userprofiles-userinfoaccessaction)
-- [ADMX_W32Time/W32TIME_POLICY_CONFIG](./policy-csp-admx-w32time.md#admx-w32time-policy-config)
-- [ADMX_W32Time/W32TIME_POLICY_CONFIGURE_NTPCLIENT](./policy-csp-admx-w32time.md#admx-w32time-policy-configure-ntpclient)
-- [ADMX_W32Time/W32TIME_POLICY_ENABLE_NTPCLIENT](./policy-csp-admx-w32time.md#admx-w32time-policy-enable-ntpclient)
-- [ADMX_W32Time/W32TIME_POLICY_ENABLE_NTPSERVER](./policy-csp-admx-w32time.md#admx-w32time-policy-enable-ntpserver)
-- [ADMX_WCM/WCM_DisablePowerManagement](./policy-csp-admx-wcm.md#admx-wcm-wcm-disablepowermanagement)
-- [ADMX_WCM/WCM_EnableSoftDisconnect](./policy-csp-admx-wcm.md#admx-wcm-wcm-enablesoftdisconnect)
-- [ADMX_WCM/WCM_MinimizeConnections](./policy-csp-admx-wcm.md#admx-wcm-wcm-minimizeconnections)
-- [ADMX_WDI/WdiDpsScenarioExecutionPolicy](./policy-csp-admx-wdi.md#admx-wdi-wdidpsscenarioexecutionpolicy)
-- [ADMX_WDI/WdiDpsScenarioDataSizeLimitPolicy](./policy-csp-admx-wdi.md#admx-wdi-wdidpsscenariodatasizelimitpolicy)
-- [ADMX_WinCal/TurnOffWinCal_1](./policy-csp-admx-wincal.md#admx-wincal-turnoffwincal-1)
-- [ADMX_WinCal/TurnOffWinCal_2](./policy-csp-admx-wincal.md#admx-wincal-turnoffwincal-2)
-- [ADMX_WindowsConnectNow/WCN_DisableWcnUi_1](./policy-csp-admx-windowsconnectnow.md#admx-windowsconnectnow-wcn-disablewcnui-1)
-- [ADMX_WindowsConnectNow/WCN_DisableWcnUi_2](./policy-csp-admx-windowsconnectnow.md#admx-windowsconnectnow-wcn-disablewcnui-2)
-- [ADMX_WindowsConnectNow/WCN_EnableRegistrar](./policy-csp-admx-windowsconnectnow.md#admx-windowsconnectnow-wcn-enableregistrar)
-- [ADMX_WindowsExplorer/CheckSameSourceAndTargetForFRAndDFS](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-checksamesourceandtargetforfranddfs)
-- [ADMX_WindowsExplorer/ClassicShell](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-classicshell)
-- [ADMX_WindowsExplorer/ConfirmFileDelete](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-confirmfiledelete)
-- [ADMX_WindowsExplorer/DefaultLibrariesLocation](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-defaultlibrarieslocation)
-- [ADMX_WindowsExplorer/DisableBindDirectlyToPropertySetStorage](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-disablebinddirectlytopropertysetstorage)
-- [ADMX_WindowsExplorer/DisableIndexedLibraryExperience](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-disableindexedlibraryexperience)
-- [ADMX_WindowsExplorer/DisableKnownFolders](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-disableknownfolders)
-- [ADMX_WindowsExplorer/DisableSearchBoxSuggestions](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-disablesearchboxsuggestions)
-- [ADMX_WindowsExplorer/EnableShellShortcutIconRemotePath](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-enableshellshortcuticonremotepath)
-- [ADMX_WindowsExplorer/EnableSmartScreen](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-enablesmartscreen)
-- [ADMX_WindowsExplorer/EnforceShellExtensionSecurity](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-enforceshellextensionsecurity)
-- [ADMX_WindowsExplorer/ExplorerRibbonStartsMinimized](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-explorerribbonstartsminimized)
-- [ADMX_WindowsExplorer/HideContentViewModeSnippets](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-hidecontentviewmodesnippets)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Internet](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-internet)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_InternetLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-internetlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Intranet](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-intranet)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_IntranetLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-intranetlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_LocalMachine](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-localmachine)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_LocalMachineLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-localmachinelockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Restricted](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-restricted)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_RestrictedLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-restrictedlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Trusted](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-trusted)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_TrustedLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchpreview-trustedlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Internet](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-internet)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_InternetLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-internetlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Intranet](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-intranet)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_IntranetLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-intranetlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_LocalMachine](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-localmachine)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_LocalMachineLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-localmachinelockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Restricted](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-restricted)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_RestrictedLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-restrictedlockdown)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Trusted](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-trusted)
-- [ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_TrustedLockdown](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-iz-policy-opensearchquery-trustedlockdown)
-- [ADMX_WindowsExplorer/LinkResolveIgnoreLinkInfo](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-linkresolveignorelinkinfo)
-- [ADMX_WindowsExplorer/MaxRecentDocs](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-maxrecentdocs)
-- [ADMX_WindowsExplorer/NoBackButton](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nobackbutton)
-- [ADMX_WindowsExplorer/NoCDBurning](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nocdburning)
-- [ADMX_WindowsExplorer/NoCacheThumbNailPictures](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nocachethumbnailpictures)
-- [ADMX_WindowsExplorer/NoChangeAnimation](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nochangeanimation)
-- [ADMX_WindowsExplorer/NoChangeKeyboardNavigationIndicators](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nochangekeyboardnavigationindicators)
-- [ADMX_WindowsExplorer/NoDFSTab](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nodfstab)
-- [ADMX_WindowsExplorer/NoDrives](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nodrives)
-- [ADMX_WindowsExplorer/NoEntireNetwork](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-noentirenetwork)
-- [ADMX_WindowsExplorer/NoFileMRU](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nofilemru)
-- [ADMX_WindowsExplorer/NoFileMenu](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nofilemenu)
-- [ADMX_WindowsExplorer/NoFolderOptions](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nofolderoptions)
-- [ADMX_WindowsExplorer/NoHardwareTab](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nohardwaretab)
-- [ADMX_WindowsExplorer/NoManageMyComputerVerb](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nomanagemycomputerverb)
-- [ADMX_WindowsExplorer/NoMyComputerSharedDocuments](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nomycomputershareddocuments)
-- [ADMX_WindowsExplorer/NoNetConnectDisconnect](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nonetconnectdisconnect)
-- [ADMX_WindowsExplorer/NoNewAppAlert](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nonewappalert)
-- [ADMX_WindowsExplorer/NoPlacesBar](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-noplacesbar)
-- [ADMX_WindowsExplorer/NoRecycleFiles](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-norecyclefiles)
-- [ADMX_WindowsExplorer/NoRunAsInstallPrompt](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-norunasinstallprompt)
-- [ADMX_WindowsExplorer/NoSearchInternetTryHarderButton](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nosearchinternettryharderbutton)
-- [ADMX_WindowsExplorer/NoSecurityTab](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nosecuritytab)
-- [ADMX_WindowsExplorer/NoShellSearchButton](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-noshellsearchbutton)
-- [ADMX_WindowsExplorer/NoStrCmpLogical](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nostrcmplogical)
-- [ADMX_WindowsExplorer/NoViewContextMenu](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-noviewcontextmenu)
-- [ADMX_WindowsExplorer/NoViewOnDrive](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-noviewondrive)
-- [ADMX_WindowsExplorer/NoWindowsHotKeys](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-nowindowshotkeys)
-- [ADMX_WindowsExplorer/NoWorkgroupContents](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-noworkgroupcontents)
-- [ADMX_WindowsExplorer/PlacesBar](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-placesbar)
-- [ADMX_WindowsExplorer/PromptRunasInstallNetPath](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-promptrunasinstallnetpath)
-- [ADMX_WindowsExplorer/RecycleBinSize](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-recyclebinsize)
-- [ADMX_WindowsExplorer/ShellProtocolProtectedModeTitle_1](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-shellprotocolprotectedmodetitle-1)
-- [ADMX_WindowsExplorer/ShellProtocolProtectedModeTitle_2](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-shellprotocolprotectedmodetitle-2)
-- [ADMX_WindowsExplorer/ShowHibernateOption](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-showhibernateoption)
-- [ADMX_WindowsExplorer/ShowSleepOption](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-showsleepoption)
-- [ADMX_WindowsExplorer/TryHarderPinnedLibrary](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-tryharderpinnedlibrary)
-- [ADMX_WindowsExplorer/TryHarderPinnedOpenSearch](./policy-csp-admx-windowsexplorer.md#admx-windowsexplorer-tryharderpinnedopensearch)
-- [ADMX_WindowsMediaDRM/DisableOnline](./policy-csp-admx-windowsmediadrm.md#admx-windowsmediadrm-disableonline)
-- [ADMX_WindowsMediaPlayer/ConfigureHTTPProxySettings](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-configurehttpproxysettings)
-- [ADMX_WindowsMediaPlayer/ConfigureMMSProxySettings](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-configuremmsproxysettings)
-- [ADMX_WindowsMediaPlayer/ConfigureRTSPProxySettings](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-configurertspproxysettings)
-- [ADMX_WindowsMediaPlayer/DisableAutoUpdate](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-disableautoupdate)
-- [ADMX_WindowsMediaPlayer/DisableNetworkSettings](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-disablenetworksettings)
-- [ADMX_WindowsMediaPlayer/DisableSetupFirstUseConfiguration](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-disablesetupfirstuseconfiguration)
-- [ADMX_WindowsMediaPlayer/DoNotShowAnchor](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-donotshowanchor)
-- [ADMX_WindowsMediaPlayer/DontUseFrameInterpolation](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-dontuseframeinterpolation)
-- [ADMX_WindowsMediaPlayer/EnableScreenSaver](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-enablescreensaver)
-- [ADMX_WindowsMediaPlayer/HidePrivacyTab](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-hideprivacytab)
-- [ADMX_WindowsMediaPlayer/HideSecurityTab](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-hidesecuritytab)
-- [ADMX_WindowsMediaPlayer/NetworkBuffering](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-networkbuffering)
-- [ADMX_WindowsMediaPlayer/PolicyCodecUpdate](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-policycodecupdate)
-- [ADMX_WindowsMediaPlayer/PreventCDDVDMetadataRetrieval](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventcddvdmetadataretrieval)
-- [ADMX_WindowsMediaPlayer/PreventLibrarySharing](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventlibrarysharing)
-- [ADMX_WindowsMediaPlayer/PreventMusicFileMetadataRetrieval](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventmusicfilemetadataretrieval)
-- [ADMX_WindowsMediaPlayer/PreventQuickLaunchShortcut](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventquicklaunchshortcut)
-- [ADMX_WindowsMediaPlayer/PreventRadioPresetsRetrieval](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventradiopresetsretrieval)
-- [ADMX_WindowsMediaPlayer/PreventWMPDeskTopShortcut](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-preventwmpdesktopshortcut)
-- [ADMX_WindowsMediaPlayer/SkinLockDown](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-skinlockdown)
-- [ADMX_WindowsMediaPlayer/WindowsStreamingMediaProtocols](./policy-csp-admx-windowsmediaplayer.md#admx-windowsmediaplayer-windowsstreamingmediaprotocols)
-- [ADMX_WindowsRemoteManagement/DisallowKerberos_1](./policy-csp-admx-windowsremotemanagement.md#admx-windowsremotemanagement-disallowkerberos-1)
-- [ADMX_WindowsRemoteManagement/DisallowKerberos_2](./policy-csp-admx-windowsremotemanagement.md#admx-windowsremotemanagement-disallowkerberos-2)
-- [ADMX_WindowsStore/DisableAutoDownloadWin8](./policy-csp-admx-windowsstore.md#admx-windowsstore-disableautodownloadwin8)
-- [ADMX_WindowsStore/DisableOSUpgrade_1](./policy-csp-admx-windowsstore.md#admx-windowsstore-disableosupgrade-1)
-- [ADMX_WindowsStore/DisableOSUpgrade_2](./policy-csp-admx-windowsstore.md#admx-windowsstore-disableosupgrade-2)
-- [ADMX_WindowsStore/RemoveWindowsStore_1](./policy-csp-admx-windowsstore.md#admx-windowsstore-removewindowsstore-1)
-- [ADMX_WindowsStore/RemoveWindowsStore_2](./policy-csp-admx-windowsstore.md#admx-windowsstore-removewindowsstore-2)
-- [ADMX_WinInit/DisableNamedPipeShutdownPolicyDescription](./policy-csp-admx-wininit.md#admx-wininit-disablenamedpipeshutdownpolicydescription)
-- [ADMX_WinInit/Hiberboot](./policy-csp-admx-wininit.md#admx-wininit-hiberboot)
-- [ADMX_WinInit/ShutdownTimeoutHungSessionsDescription](./policy-csp-admx-wininit.md#admx-wininit-shutdowntimeouthungsessionsdescription)
-- [ADMX_WinLogon/CustomShell](./policy-csp-admx-winlogon.md#admx-winlogon-customshell)
-- [ADMX_WinLogon/DisplayLastLogonInfoDescription](./policy-csp-admx-winlogon.md#admx-winlogon-displaylastlogoninfodescription)
-- [ADMX_WinLogon/LogonHoursNotificationPolicyDescription](./policy-csp-admx-winlogon.md#admx-winlogon-logonhoursnotificationpolicydescription)
-- [ADMX_WinLogon/LogonHoursPolicyDescription](./policy-csp-admx-winlogon.md#admx-winlogon-logonhourspolicydescription)
-- [ADMX_WinLogon/ReportCachedLogonPolicyDescription](./policy-csp-admx-winlogon.md#admx-winlogon-reportcachedlogonpolicydescription)
-- [ADMX_WinLogon/SoftwareSASGeneration](./policy-csp-admx-winlogon.md#admx-winlogon-softwaresasgeneration)
-- [ADMX_Winsrv/AllowBlockingAppsAtShutdown](./policy-csp-admx-winsrv.md#admx-winsrv-allowblockingappsatshutdown)
-- [ADMX_wlansvc/SetCost](./policy-csp-admx-wlansvc.md#admx-wlansvc-setcost)
-- [ADMX_wlansvc/SetPINEnforced](./policy-csp-admx-wlansvc.md#admx-wlansvc-setpinenforced)
-- [ADMX_wlansvc/SetPINPreferred](./policy-csp-admx-wlansvc.md#admx-wlansvc-setpinpreferred)
-- [ADMX_WordWheel/CustomSearch](./policy-csp-admx-wordwheel.md#admx-wordwheel-customsearch)
-- [ADMX_WorkFoldersClient/Pol_UserEnableTokenBroker](./policy-csp-admx-workfoldersclient.md#admx-workfoldersclient-pol_userenabletokenbroker)
-- [ADMX_WorkFoldersClient/Pol_UserEnableWorkFolders](./policy-csp-admx-workfoldersclient.md#admx-workfoldersclient-pol_userenableworkfolders)
-- [ADMX_WorkFoldersClient/Pol_MachineEnableWorkFolders](./policy-csp-admx-workfoldersclient.md#admx-workfoldersclient-pol_machineenableworkfolders)
-- [ADMX_WPN/NoCallsDuringQuietHours](./policy-csp-admx-wpn.md#admx-wpn-nocallsduringquiethours)
-- [ADMX_WPN/NoLockScreenToastNotification](./policy-csp-admx-wpn.md#admx-wpn-nolockscreentoastnotification)
-- [ADMX_WPN/NoQuietHours](./policy-csp-admx-wpn.md#admx-wpn-noquiethours)
-- [ADMX_WPN/NoToastNotification](./policy-csp-admx-wpn.md#admx-wpn-notoastnotification)
-- [ADMX_WPN/QuietHoursDailyBeginMinute](./policy-csp-admx-wpn.md#admx-wpn-quiethoursdailybeginminute)
-- [ADMX_WPN/QuietHoursDailyEndMinute](./policy-csp-admx-wpn.md#admx-wpn-quiethoursdailyendminute)
-- [AppRuntime/AllowMicrosoftAccountsToBeOptional](./policy-csp-appruntime.md#appruntime-allowmicrosoftaccountstobeoptional)
-- [AppVirtualization/AllowAppVClient](./policy-csp-appvirtualization.md#appvirtualization-allowappvclient)
-- [AppVirtualization/AllowDynamicVirtualization](./policy-csp-appvirtualization.md#appvirtualization-allowdynamicvirtualization)
-- [AppVirtualization/AllowPackageCleanup](./policy-csp-appvirtualization.md#appvirtualization-allowpackagecleanup)
-- [AppVirtualization/AllowPackageScripts](./policy-csp-appvirtualization.md#appvirtualization-allowpackagescripts)
-- [AppVirtualization/AllowPublishingRefreshUX](./policy-csp-appvirtualization.md#appvirtualization-allowpublishingrefreshux)
-- [AppVirtualization/AllowReportingServer](./policy-csp-appvirtualization.md#appvirtualization-allowreportingserver)
-- [AppVirtualization/AllowRoamingFileExclusions](./policy-csp-appvirtualization.md#appvirtualization-allowroamingfileexclusions)
-- [AppVirtualization/AllowRoamingRegistryExclusions](./policy-csp-appvirtualization.md#appvirtualization-allowroamingregistryexclusions)
-- [AppVirtualization/AllowStreamingAutoload](./policy-csp-appvirtualization.md#appvirtualization-allowstreamingautoload)
-- [AppVirtualization/ClientCoexistenceAllowMigrationmode](./policy-csp-appvirtualization.md#appvirtualization-clientcoexistenceallowmigrationmode)
-- [AppVirtualization/IntegrationAllowRootGlobal](./policy-csp-appvirtualization.md#appvirtualization-integrationallowrootglobal)
-- [AppVirtualization/IntegrationAllowRootUser](./policy-csp-appvirtualization.md#appvirtualization-integrationallowrootuser)
-- [AppVirtualization/PublishingAllowServer1](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver1)
-- [AppVirtualization/PublishingAllowServer2](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver2)
-- [AppVirtualization/PublishingAllowServer3](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver3)
-- [AppVirtualization/PublishingAllowServer4](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver4)
-- [AppVirtualization/PublishingAllowServer5](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver5)
-- [AppVirtualization/StreamingAllowCertificateFilterForClient_SSL](./policy-csp-appvirtualization.md#appvirtualization-streamingallowcertificatefilterforclient-ssl)
-- [AppVirtualization/StreamingAllowHighCostLaunch](./policy-csp-appvirtualization.md#appvirtualization-streamingallowhighcostlaunch)
-- [AppVirtualization/StreamingAllowLocationProvider](./policy-csp-appvirtualization.md#appvirtualization-streamingallowlocationprovider)
-- [AppVirtualization/StreamingAllowPackageInstallationRoot](./policy-csp-appvirtualization.md#appvirtualization-streamingallowpackageinstallationroot)
-- [AppVirtualization/StreamingAllowPackageSourceRoot](./policy-csp-appvirtualization.md#appvirtualization-streamingallowpackagesourceroot)
-- [AppVirtualization/StreamingAllowReestablishmentInterval](./policy-csp-appvirtualization.md#appvirtualization-streamingallowreestablishmentinterval)
-- [AppVirtualization/StreamingAllowReestablishmentRetries](./policy-csp-appvirtualization.md#appvirtualization-streamingallowreestablishmentretries)
-- [AppVirtualization/StreamingSharedContentStoreMode](./policy-csp-appvirtualization.md#appvirtualization-streamingsharedcontentstoremode)
-- [AppVirtualization/StreamingSupportBranchCache](./policy-csp-appvirtualization.md#appvirtualization-streamingsupportbranchcache)
-- [AppVirtualization/StreamingVerifyCertificateRevocationList](./policy-csp-appvirtualization.md#appvirtualization-streamingverifycertificaterevocationlist)
-- [AppVirtualization/VirtualComponentsAllowList](./policy-csp-appvirtualization.md#appvirtualization-virtualcomponentsallowlist)
-- [AttachmentManager/DoNotPreserveZoneInformation](./policy-csp-attachmentmanager.md#attachmentmanager-donotpreservezoneinformation)
-- [AttachmentManager/HideZoneInfoMechanism](./policy-csp-attachmentmanager.md#attachmentmanager-hidezoneinfomechanism)
-- [AttachmentManager/NotifyAntivirusPrograms](./policy-csp-attachmentmanager.md#attachmentmanager-notifyantivirusprograms)
-- [Autoplay/DisallowAutoplayForNonVolumeDevices](./policy-csp-autoplay.md#autoplay-disallowautoplayfornonvolumedevices)
-- [Autoplay/SetDefaultAutoRunBehavior](./policy-csp-autoplay.md#autoplay-setdefaultautorunbehavior)
-- [Autoplay/TurnOffAutoPlay](./policy-csp-autoplay.md#autoplay-turnoffautoplay)
-- [Cellular/ShowAppCellularAccessUI](./policy-csp-cellular.md#cellular-showappcellularaccessui)
-- [Connectivity/DiablePrintingOverHTTP](./policy-csp-connectivity.md#connectivity-disableprintingoverhttp)
-- [Connectivity/DisableDownloadingOfPrintDriversOverHTTP](./policy-csp-connectivity.md#connectivity-disabledownloadingofprintdriversoverhttp)
-- [Connectivity/DisableInternetDownloadForWebPublishingAndOnlineOrderingWizards](./policy-csp-connectivity.md#connectivity-disableinternetdownloadforwebpublishingandonlineorderingwizards)
-- [Connectivity/HardenedUNCPaths](./policy-csp-connectivity.md#connectivity-hardeneduncpaths)
-- [Connectivity/ProhibitInstallationAndConfigurationOfNetworkBridge](./policy-csp-connectivity.md#connectivity-prohibitinstallationandconfigurationofnetworkbridge)
-- [CredentialProviders/AllowPINLogon](./policy-csp-credentialproviders.md#credentialproviders-allowpinlogon)
-- [CredentialProviders/BlockPicturePassword](./policy-csp-credentialproviders.md#credentialproviders-blockpicturepassword)
-- [CredentialsDelegation/RemoteHostAllowsDelegationOfNonExportableCredentials](./policy-csp-credentialsdelegation.md#credentialsdelegation-remotehostallowsdelegationofnonexportablecredentials)
-- [CredentialsUI/DisablePasswordReveal](./policy-csp-credentialsui.md#credentialsui-disablepasswordreveal)
-- [CredentialsUI/EnumerateAdministrators](./policy-csp-credentialsui.md#credentialsui-enumerateadministrators)
-- [DataUsage/SetCost4G](./policy-csp-datausage.md#datausage-setcost4g)
-- [DeliveryOptimization/DOSetHoursToLimitBackgroundDownloadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dosethourstolimitbackgrounddownloadbandwidth)
-- [DeliveryOptimization/DOSetHoursToLimitForegroundDownloadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dosethourstolimitforegrounddownloadbandwidth)
-- [Desktop/PreventUserRedirectionOfProfileFolders](./policy-csp-desktop.md#desktop-preventuserredirectionofprofilefolders)
-- [DesktopAppInstaller/EnableAdditionalSources](./policy-csp-desktopappinstaller.md#desktopappinstaller-enableadditionalsources)
-- [DesktopAppInstaller/EnableAppInstaller](./policy-csp-desktopappinstaller.md#desktopappinstaller-enableappinstaller)
-- [DesktopAppInstaller/EnableLocalManifestFiles](./policy-csp-desktopappinstaller.md#desktopappinstaller-enablelocalmanifestfiles)
-- [DesktopAppInstaller/EnableHashOverride](./policy-csp-desktopappinstaller.md#desktopappinstaller-enablehashoverride)
-- [DesktopAppInstaller/EnableMicrosoftStoreSource](./policy-csp-desktopappinstaller.md#desktopappinstaller-enablemicrosoftstoresource)
-- [DesktopAppInstaller/EnableMSAppInstallerProtocol](./policy-csp-desktopappinstaller.md#desktopappinstaller-enablemsappinstallerprotocol)
-- [DesktopAppInstaller/EnableSettings](./policy-csp-desktopappinstaller.md#desktopappinstaller-enablesettings)
-- [DesktopAppInstaller/EnableAllowedSources](./policy-csp-desktopappinstaller.md#desktopappinstaller-enableallowedsources)
-- [DesktopAppInstaller/EnableExperimentalFeatures](./policy-csp-desktopappinstaller.md#desktopappinstaller-enableexperimentalfeatures)
-- [DesktopAppInstaller/SourceAutoUpdateInterval](./policy-csp-desktopappinstaller.md#desktopappinstaller-sourceautoupdateinterval)
-- [DeviceInstallation/AllowInstallationOfMatchingDeviceIDs](./policy-csp-deviceinstallation.md#deviceinstallationallowinstallationofmatchingdeviceids)
-- [DeviceInstallation/AllowInstallationOfMatchingDeviceSetupClasses](./policy-csp-deviceinstallation.md#deviceinstallationallowinstallationofmatchingdevicesetupclasses)
-- [DeviceInstallation/PreventDeviceMetadataFromNetwork](./policy-csp-deviceinstallation.md#deviceinstallationpreventdevicemetadatafromnetwork)
-- [DeviceInstallation/PreventInstallationOfDevicesNotDescribedByOtherPolicySettings](./policy-csp-deviceinstallation.md#deviceinstallationpreventinstallationofdevicesnotdescribedbyotherpolicysettings)
-- [DeviceInstallation/PreventInstallationOfMatchingDeviceIDs](./policy-csp-deviceinstallation.md#deviceinstallationpreventinstallationofmatchingdeviceids)
-- [DeviceInstallation/PreventInstallationOfMatchingDeviceSetupClasses](./policy-csp-deviceinstallation.md#deviceinstallationpreventinstallationofmatchingdevicesetupclasses)
-- [DeviceLock/PreventEnablingLockScreenCamera](./policy-csp-devicelock.md#devicelock-preventenablinglockscreencamera)
-- [DeviceLock/PreventLockScreenSlideShow](./policy-csp-devicelock.md#devicelock-preventlockscreenslideshow)
-- [ErrorReporting/CustomizeConsentSettings](./policy-csp-errorreporting.md#errorreporting-customizeconsentsettings)
-- [ErrorReporting/DisableWindowsErrorReporting](./policy-csp-errorreporting.md#errorreporting-disablewindowserrorreporting)
-- [ErrorReporting/DisplayErrorNotification](./policy-csp-errorreporting.md#errorreporting-displayerrornotification)
-- [ErrorReporting/DoNotSendAdditionalData](./policy-csp-errorreporting.md#errorreporting-donotsendadditionaldata)
-- [ErrorReporting/PreventCriticalErrorDisplay](./policy-csp-errorreporting.md#errorreporting-preventcriticalerrordisplay)
-- [EventLogService/ControlEventLogBehavior](./policy-csp-eventlogservice.md#eventlogservice-controleventlogbehavior)
-- [EventLogService/SpecifyMaximumFileSizeApplicationLog](./policy-csp-eventlogservice.md#eventlogservice-specifymaximumfilesizeapplicationlog)
-- [EventLogService/SpecifyMaximumFileSizeSecurityLog](./policy-csp-eventlogservice.md#eventlogservice-specifymaximumfilesizesecuritylog)
-- [EventLogService/SpecifyMaximumFileSizeSystemLog](./policy-csp-eventlogservice.md#eventlogservice-specifymaximumfilesizesystemlog)
-- [FileExplorer/TurnOffDataExecutionPreventionForExplorer](./policy-csp-fileexplorer.md#fileexplorer-turnoffdataexecutionpreventionforexplorer)
-- [FileExplorer/TurnOffHeapTerminationOnCorruption](./policy-csp-fileexplorer.md#fileexplorer-turnoffheapterminationoncorruption)
-- [InternetExplorer/AddSearchProvider](./policy-csp-internetexplorer.md#internetexplorer-addsearchprovider)
-- [InternetExplorer/AllowActiveXFiltering](./policy-csp-internetexplorer.md#internetexplorer-allowactivexfiltering)
-- [InternetExplorer/AllowAddOnList](./policy-csp-internetexplorer.md#internetexplorer-allowaddonlist)
-- [InternetExplorer/AllowAutoComplete](./policy-csp-internetexplorer.md#internetexplorer-allowautocomplete)
-- [InternetExplorer/AllowCertificateAddressMismatchWarning](./policy-csp-internetexplorer.md#internetexplorer-allowcertificateaddressmismatchwarning)
-- [InternetExplorer/AllowDeletingBrowsingHistoryOnExit](./policy-csp-internetexplorer.md#internetexplorer-allowdeletingbrowsinghistoryonexit)
-- [InternetExplorer/AllowEnhancedProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-allowenhancedprotectedmode)
-- [InternetExplorer/AllowEnhancedSuggestionsInAddressBar](./policy-csp-internetexplorer.md#internetexplorer-allowenhancedsuggestionsinaddressbar)
-- [InternetExplorer/AllowEnterpriseModeFromToolsMenu](./policy-csp-internetexplorer.md#internetexplorer-allowenterprisemodefromtoolsmenu)
-- [InternetExplorer/AllowEnterpriseModeSiteList](./policy-csp-internetexplorer.md#internetexplorer-allowenterprisemodesitelist)
-- [InternetExplorer/AllowFallbackToSSL3](./policy-csp-internetexplorer.md#internetexplorer-allowfallbacktossl3)
-- [InternetExplorer/AllowInternetExplorer7PolicyList](./policy-csp-internetexplorer.md#internetexplorer-allowinternetexplorer7policylist)
-- [InternetExplorer/AllowInternetExplorerStandardsMode](./policy-csp-internetexplorer.md#internetexplorer-allowinternetexplorerstandardsmode)
-- [InternetExplorer/AllowInternetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowinternetzonetemplate)
-- [InternetExplorer/AllowIntranetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowintranetzonetemplate)
-- [InternetExplorer/AllowLocalMachineZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlocalmachinezonetemplate)
-- [InternetExplorer/AllowLockedDownInternetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddowninternetzonetemplate)
-- [InternetExplorer/AllowLockedDownIntranetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddownintranetzonetemplate)
-- [InternetExplorer/AllowLockedDownLocalMachineZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddownlocalmachinezonetemplate)
-- [InternetExplorer/AllowLockedDownRestrictedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddownrestrictedsiteszonetemplate)
-- [InternetExplorer/AllowOneWordEntry](./policy-csp-internetexplorer.md#internetexplorer-allowonewordentry)
-- [InternetExplorer/AllowSiteToZoneAssignmentList](./policy-csp-internetexplorer.md#internetexplorer-allowsitetozoneassignmentlist)
-- [InternetExplorer/AllowSoftwareWhenSignatureIsInvalid](./policy-csp-internetexplorer.md#internetexplorer-allowsoftwarewhensignatureisinvalid)
-- [InternetExplorer/AllowSuggestedSites](./policy-csp-internetexplorer.md#internetexplorer-allowsuggestedsites)
-- [InternetExplorer/AllowTrustedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowtrustedsiteszonetemplate)
-- [InternetExplorer/AllowsLockedDownTrustedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowslockeddowntrustedsiteszonetemplate)
-- [InternetExplorer/AllowsRestrictedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowsrestrictedsiteszonetemplate)
-- [InternetExplorer/CheckServerCertificateRevocation](./policy-csp-internetexplorer.md#internetexplorer-checkservercertificaterevocation)
-- [InternetExplorer/CheckSignaturesOnDownloadedPrograms](./policy-csp-internetexplorer.md#internetexplorer-checksignaturesondownloadedprograms)
-- [InternetExplorer/ConsistentMimeHandlingInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-consistentmimehandlinginternetexplorerprocesses)
-- [InternetExplorer/DisableActiveXVersionListAutoDownload](./policy-csp-internetexplorer.md#internetexplorer-disableactivexversionlistautodownload)
-- [InternetExplorer/DisableAdobeFlash](./policy-csp-internetexplorer.md#internetexplorer-disableadobeflash)
-- [InternetExplorer/DisableBypassOfSmartScreenWarnings](./policy-csp-internetexplorer.md#internetexplorer-disablebypassofsmartscreenwarnings)
-- [InternetExplorer/DisableBypassOfSmartScreenWarningsAboutUncommonFiles](./policy-csp-internetexplorer.md#internetexplorer-disablebypassofsmartscreenwarningsaboutuncommonfiles)
-- [InternetExplorer/DisableCompatView](./policy-csp-internetexplorer.md#internetexplorer-disablecompatview)
-- [InternetExplorer/DisableConfiguringHistory](./policy-csp-internetexplorer.md#internetexplorer-disableconfiguringhistory)
-- [InternetExplorer/DisableCrashDetection](./policy-csp-internetexplorer.md#internetexplorer-disablecrashdetection)
-- [InternetExplorer/DisableCustomerExperienceImprovementProgramParticipation](./policy-csp-internetexplorer.md#internetexplorer-disablecustomerexperienceimprovementprogramparticipation)
-- [InternetExplorer/DisableDeletingUserVisitedWebsites](./policy-csp-internetexplorer.md#internetexplorer-disabledeletinguservisitedwebsites)
-- [InternetExplorer/DisableEnclosureDownloading](./policy-csp-internetexplorer.md#internetexplorer-disableenclosuredownloading)
-- [InternetExplorer/DisableEncryptionSupport](./policy-csp-internetexplorer.md#internetexplorer-disableencryptionsupport)
-- [InternetExplorer/DisableFeedsBackgroundSync](./policy-csp-internetexplorer.md#internetexplorer-disablefeedsbackgroundsync)
-- [InternetExplorer/DisableFirstRunWizard](./policy-csp-internetexplorer.md#internetexplorer-disablefirstrunwizard)
-- [InternetExplorer/DisableFlipAheadFeature](./policy-csp-internetexplorer.md#internetexplorer-disableflipaheadfeature)
-- [InternetExplorer/DisableGeolocation](./policy-csp-internetexplorer.md#internetexplorer-disablegeolocation)
-- [InternetExplorer/DisableHomePageChange](./policy-csp-internetexplorer.md#internetexplorer-disablehomepagechange)
-- [InternetExplorer/DisableIgnoringCertificateErrors](./policy-csp-internetexplorer.md#internetexplorer-disableignoringcertificateerrors)
-- [InternetExplorer/DisableInPrivateBrowsing](./policy-csp-internetexplorer.md#internetexplorer-disableinprivatebrowsing)
-- [InternetExplorer/DisableProcessesInEnhancedProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-disableprocessesinenhancedprotectedmode)
-- [InternetExplorer/DisableProxyChange](./policy-csp-internetexplorer.md#internetexplorer-disableproxychange)
-- [InternetExplorer/DisableSearchProviderChange](./policy-csp-internetexplorer.md#internetexplorer-disablesearchproviderchange)
-- [InternetExplorer/DisableSecondaryHomePageChange](./policy-csp-internetexplorer.md#internetexplorer-disablesecondaryhomepagechange)
-- [InternetExplorer/DisableSecuritySettingsCheck](./policy-csp-internetexplorer.md#internetexplorer-disablesecuritysettingscheck)
-- [InternetExplorer/DisableUpdateCheck](./policy-csp-internetexplorer.md#internetexplorer-disableupdatecheck)
-- [InternetExplorer/DisableWebAddressAutoComplete](./policy-csp-internetexplorer.md#internetexplorer-disablewebaddressautocomplete)
-- [InternetExplorer/DoNotAllowActiveXControlsInProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-donotallowactivexcontrolsinprotectedmode)
-- [InternetExplorer/DoNotAllowUsersToAddSites](./policy-csp-internetexplorer.md#internetexplorer-donotallowuserstoaddsites)
-- [InternetExplorer/DoNotAllowUsersToChangePolicies](./policy-csp-internetexplorer.md#internetexplorer-donotallowuserstochangepolicies)
-- [InternetExplorer/DoNotBlockOutdatedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-donotblockoutdatedactivexcontrols)
-- [InternetExplorer/DoNotBlockOutdatedActiveXControlsOnSpecificDomains](./policy-csp-internetexplorer.md#internetexplorer-donotblockoutdatedactivexcontrolsonspecificdomains)
-- [InternetExplorer/IncludeAllLocalSites](./policy-csp-internetexplorer.md#internetexplorer-includealllocalsites)
-- [InternetExplorer/IncludeAllNetworkPaths](./policy-csp-internetexplorer.md#internetexplorer-includeallnetworkpaths)
-- [InternetExplorer/InternetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowaccesstodatasources)
-- [InternetExplorer/InternetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/InternetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/InternetZoneAllowCopyPasteViaScript](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowcopypasteviascript)
-- [InternetExplorer/InternetZoneAllowDragAndDropCopyAndPasteFiles](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowdraganddropcopyandpastefiles)
-- [InternetExplorer/InternetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowfontdownloads)
-- [InternetExplorer/InternetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowlessprivilegedsites)
-- [InternetExplorer/InternetZoneAllowLoadingOfXAMLFiles](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowloadingofxamlfiles)
-- [InternetExplorer/InternetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/InternetZoneAllowOnlyApprovedDomainsToUseActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowonlyapproveddomainstouseactivexcontrols)
-- [InternetExplorer/InternetZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowonlyapproveddomainstousetdcactivexcontrol)
-- [InternetExplorer/InternetZoneAllowScriptInitiatedWindows](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowscriptinitiatedwindows)
-- [InternetExplorer/InternetZoneAllowScriptingOfInternetExplorerWebBrowserControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowscriptingofinternetexplorerwebbrowsercontrols)
-- [InternetExplorer/InternetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowscriptlets)
-- [InternetExplorer/InternetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowsmartscreenie)
-- [InternetExplorer/InternetZoneAllowUpdatesToStatusBarViaScript](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowupdatestostatusbarviascript)
-- [InternetExplorer/InternetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowuserdatapersistence)
-- [InternetExplorer/InternetZoneAllowVBScriptToRunInInternetExplorer](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowvbscripttorunininternetexplorer)
-- [InternetExplorer/InternetZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/InternetZoneDownloadSignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzonedownloadsignedactivexcontrols)
-- [InternetExplorer/InternetZoneDownloadUnsignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzonedownloadunsignedactivexcontrols)
-- [InternetExplorer/InternetZoneEnableCrossSiteScriptingFilter](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenablecrosssitescriptingfilter)
-- [InternetExplorer/InternetZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenabledraggingofcontentfromdifferentdomainsacrosswindows)
-- [InternetExplorer/InternetZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenabledraggingofcontentfromdifferentdomainswithinwindows)
-- [InternetExplorer/InternetZoneEnableMIMESniffing](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenablemimesniffing)
-- [InternetExplorer/InternetZoneEnableProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenableprotectedmode)
-- [InternetExplorer/InternetZoneIncludeLocalPathWhenUploadingFilesToServer](./policy-csp-internetexplorer.md#internetexplorer-internetzoneincludelocalpathwhenuploadingfilestoserver)
-- [InternetExplorer/InternetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/InternetZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-internetzonejavapermissions)
-- [InternetExplorer/InternetZoneLaunchingApplicationsAndFilesInIFRAME](./policy-csp-internetexplorer.md#internetexplorer-internetzonelaunchingapplicationsandfilesiniframe)
-- [InternetExplorer/InternetZoneLogonOptions](./policy-csp-internetexplorer.md#internetexplorer-internetzonelogonoptions)
-- [InternetExplorer/InternetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-internetzonenavigatewindowsandframes)
-- [InternetExplorer/InternetZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](./policy-csp-internetexplorer.md#internetexplorer-internetzonerunnetframeworkreliantcomponentssignedwithauthenticode)
-- [InternetExplorer/InternetZoneShowSecurityWarningForPotentiallyUnsafeFiles](./policy-csp-internetexplorer.md#internetexplorer-internetzoneshowsecuritywarningforpotentiallyunsafefiles)
-- [InternetExplorer/InternetZoneUsePopupBlocker](./policy-csp-internetexplorer.md#internetexplorer-internetzoneusepopupblocker)
-- [InternetExplorer/IntranetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowaccesstodatasources)
-- [InternetExplorer/IntranetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/IntranetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/IntranetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowfontdownloads)
-- [InternetExplorer/IntranetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowlessprivilegedsites)
-- [InternetExplorer/IntranetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/IntranetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowscriptlets)
-- [InternetExplorer/IntranetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowsmartscreenie)
-- [InternetExplorer/IntranetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowuserdatapersistence)
-- [InternetExplorer/IntranetZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-intranetzonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/IntranetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/IntranetZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-intranetzonejavapermissions)
-- [InternetExplorer/IntranetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-intranetzonenavigatewindowsandframes)
-- [InternetExplorer/LocalMachineZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowaccesstodatasources)
-- [InternetExplorer/LocalMachineZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LocalMachineZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LocalMachineZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowfontdownloads)
-- [InternetExplorer/LocalMachineZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowlessprivilegedsites)
-- [InternetExplorer/LocalMachineZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LocalMachineZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowscriptlets)
-- [InternetExplorer/LocalMachineZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowsmartscreenie)
-- [InternetExplorer/LocalMachineZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowuserdatapersistence)
-- [InternetExplorer/LocalMachineZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-localmachinezonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/LocalMachineZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LocalMachineZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-localmachinezonejavapermissions)
-- [InternetExplorer/LocalMachineZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-localmachinezonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownInternetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownInternetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownInternetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownInternetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowfontdownloads)
-- [InternetExplorer/LockedDownInternetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownInternetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownInternetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowscriptlets)
-- [InternetExplorer/LockedDownInternetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowsmartscreenie)
-- [InternetExplorer/LockedDownInternetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownInternetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownInternetZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzonejavapermissions)
-- [InternetExplorer/LockedDownInternetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownIntranetJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetjavapermissions)
-- [InternetExplorer/LockedDownIntranetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownIntranetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownIntranetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownIntranetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowfontdownloads)
-- [InternetExplorer/LockedDownIntranetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownIntranetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownIntranetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowscriptlets)
-- [InternetExplorer/LockedDownIntranetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowsmartscreenie)
-- [InternetExplorer/LockedDownIntranetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownIntranetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownIntranetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowfontdownloads)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowscriptlets)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowsmartscreenie)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownLocalMachineZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownLocalMachineZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezonejavapermissions)
-- [InternetExplorer/LockedDownLocalMachineZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowfontdownloads)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowscriptlets)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowsmartscreenie)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownRestrictedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownRestrictedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszonejavapermissions)
-- [InternetExplorer/LockedDownRestrictedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowfontdownloads)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowscriptlets)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowsmartscreenie)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownTrustedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownTrustedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszonejavapermissions)
-- [InternetExplorer/LockedDownTrustedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszonenavigatewindowsandframes)
-- [InternetExplorer/MKProtocolSecurityRestrictionInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-mkprotocolsecurityrestrictioninternetexplorerprocesses)
-- [InternetExplorer/MimeSniffingSafetyFeatureInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-mimesniffingsafetyfeatureinternetexplorerprocesses)
-- [InternetExplorer/NewTabDefaultPage](./policy-csp-internetexplorer.md#internetexplorer-newtabdefaultpage)
-- [InternetExplorer/NotificationBarInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-notificationbarinternetexplorerprocesses)
-- [InternetExplorer/PreventManagingSmartScreenFilter](./policy-csp-internetexplorer.md#internetexplorer-preventmanagingsmartscreenfilter)
-- [InternetExplorer/PreventPerUserInstallationOfActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-preventperuserinstallationofactivexcontrols)
-- [InternetExplorer/ProtectionFromZoneElevationInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-protectionfromzoneelevationinternetexplorerprocesses)
-- [InternetExplorer/RemoveRunThisTimeButtonForOutdatedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-removerunthistimebuttonforoutdatedactivexcontrols)
-- [InternetExplorer/RestrictActiveXInstallInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-restrictactivexinstallinternetexplorerprocesses)
-- [InternetExplorer/RestrictFileDownloadInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-restrictfiledownloadinternetexplorerprocesses)
-- [InternetExplorer/RestrictedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/RestrictedSitesZoneAllowActiveScripting](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowactivescripting)
-- [InternetExplorer/RestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/RestrictedSitesZoneAllowBinaryAndScriptBehaviors](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowbinaryandscriptbehaviors)
-- [InternetExplorer/RestrictedSitesZoneAllowCopyPasteViaScript](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowcopypasteviascript)
-- [InternetExplorer/RestrictedSitesZoneAllowDragAndDropCopyAndPasteFiles](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowdraganddropcopyandpastefiles)
-- [InternetExplorer/RestrictedSitesZoneAllowFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowfiledownloads)
-- [InternetExplorer/RestrictedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowfontdownloads)
-- [InternetExplorer/RestrictedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/RestrictedSitesZoneAllowLoadingOfXAMLFiles](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowloadingofxamlfiles)
-- [InternetExplorer/RestrictedSitesZoneAllowMETAREFRESH](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowmetarefresh)
-- [InternetExplorer/RestrictedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/RestrictedSitesZoneAllowOnlyApprovedDomainsToUseActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowonlyapproveddomainstouseactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowonlyapproveddomainstousetdcactivexcontrol)
-- [InternetExplorer/RestrictedSitesZoneAllowScriptInitiatedWindows](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowscriptinitiatedwindows)
-- [InternetExplorer/RestrictedSitesZoneAllowScriptingOfInternetExplorerWebBrowserControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowscriptingofinternetexplorerwebbrowsercontrols)
-- [InternetExplorer/RestrictedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowscriptlets)
-- [InternetExplorer/RestrictedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowsmartscreenie)
-- [InternetExplorer/RestrictedSitesZoneAllowUpdatesToStatusBarViaScript](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowupdatestostatusbarviascript)
-- [InternetExplorer/RestrictedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/RestrictedSitesZoneAllowVBScriptToRunInInternetExplorer](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowvbscripttorunininternetexplorer)
-- [InternetExplorer/RestrictedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneDownloadSignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonedownloadsignedactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneDownloadUnsignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonedownloadunsignedactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneEnableCrossSiteScriptingFilter](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenablecrosssitescriptingfilter)
-- [InternetExplorer/RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenabledraggingofcontentfromdifferentdomainsacrosswindows)
-- [InternetExplorer/RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenabledraggingofcontentfromdifferentdomainswithinwindows)
-- [InternetExplorer/RestrictedSitesZoneEnableMIMESniffing](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenablemimesniffing)
-- [InternetExplorer/RestrictedSitesZoneIncludeLocalPathWhenUploadingFilesToServer](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneincludelocalpathwhenuploadingfilestoserver)
-- [InternetExplorer/RestrictedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonejavapermissions)
-- [InternetExplorer/RestrictedSitesZoneLaunchingApplicationsAndFilesInIFRAME](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonelaunchingapplicationsandfilesiniframe)
-- [InternetExplorer/RestrictedSitesZoneLogonOptions](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonelogonoptions)
-- [InternetExplorer/RestrictedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonenavigatewindowsandframes)
-- [InternetExplorer/RestrictedSitesZoneRunActiveXControlsAndPlugins](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonerunactivexcontrolsandplugins)
-- [InternetExplorer/RestrictedSitesZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonerunnetframeworkreliantcomponentssignedwithauthenticode)
-- [InternetExplorer/RestrictedSitesZoneScriptActiveXControlsMarkedSafeForScripting](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonescriptactivexcontrolsmarkedsafeforscripting)
-- [InternetExplorer/RestrictedSitesZoneScriptingOfJavaApplets](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonescriptingofjavaapplets)
-- [InternetExplorer/RestrictedSitesZoneShowSecurityWarningForPotentiallyUnsafeFiles](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneshowsecuritywarningforpotentiallyunsafefiles)
-- [InternetExplorer/RestrictedSitesZoneTurnOnProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneturnonprotectedmode)
-- [InternetExplorer/RestrictedSitesZoneUsePopupBlocker](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneusepopupblocker)
-- [InternetExplorer/ScriptedWindowSecurityRestrictionsInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-scriptedwindowsecurityrestrictionsinternetexplorerprocesses)
-- [InternetExplorer/SearchProviderList](./policy-csp-internetexplorer.md#internetexplorer-searchproviderlist)
-- [InternetExplorer/SecurityZonesUseOnlyMachineSettings](./policy-csp-internetexplorer.md#internetexplorer-securityzonesuseonlymachinesettings)
-- [InternetExplorer/SpecifyUseOfActiveXInstallerService](./policy-csp-internetexplorer.md#internetexplorer-specifyuseofactivexinstallerservice)
-- [InternetExplorer/TrustedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/TrustedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/TrustedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/TrustedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowfontdownloads)
-- [InternetExplorer/TrustedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/TrustedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/TrustedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowscriptlets)
-- [InternetExplorer/TrustedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowsmartscreenie)
-- [InternetExplorer/TrustedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/TrustedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/TrustedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/TrustedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszonejavapermissions)
-- [InternetExplorer/TrustedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszonenavigatewindowsandframes)
-- [Kerberos/AllowForestSearchOrder](./policy-csp-kerberos.md#kerberos-allowforestsearchorder)
-- [Kerberos/KerberosClientSupportsClaimsCompoundArmor](./policy-csp-kerberos.md#kerberos-kerberosclientsupportsclaimscompoundarmor)
-- [Kerberos/RequireKerberosArmoring](./policy-csp-kerberos.md#kerberos-requirekerberosarmoring)
-- [Kerberos/RequireStrictKDCValidation](./policy-csp-kerberos.md#kerberos-requirestrictkdcvalidation)
-- [Kerberos/SetMaximumContextTokenSize](./policy-csp-kerberos.md#kerberos-setmaximumcontexttokensize)
-- [MSSLegacy/AllowICMPRedirectsToOverrideOSPFGeneratedRoutes](./policy-csp-msslegacy.md#msslegacy-allowicmpredirectstooverrideospfgeneratedroutes)
-- [MSSLegacy/AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers](./policy-csp-msslegacy.md#msslegacy-allowthecomputertoignorenetbiosnamereleaserequestsexceptfromwinsservers)
-- [MSSLegacy/IPSourceRoutingProtectionLevel](./policy-csp-msslegacy.md#msslegacy-ipsourceroutingprotectionlevel)
-- [MSSLegacy/IPv6SourceRoutingProtectionLevel](./policy-csp-msslegacy.md#msslegacy-ipv6sourceroutingprotectionlevel)
-- [MSSecurityGuide/ApplyUACRestrictionsToLocalAccountsOnNetworkLogon](./policy-csp-mssecurityguide.md#mssecurityguide-applyuacrestrictionstolocalaccountsonnetworklogon)
-- [MSSecurityGuide/ConfigureSMBV1ClientDriver](./policy-csp-mssecurityguide.md#mssecurityguide-configuresmbv1clientdriver)
-- [MSSecurityGuide/ConfigureSMBV1Server](./policy-csp-mssecurityguide.md#mssecurityguide-configuresmbv1server)
-- [MSSecurityGuide/EnableStructuredExceptionHandlingOverwriteProtection](./policy-csp-mssecurityguide.md#mssecurityguide-enablestructuredexceptionhandlingoverwriteprotection)
-- [MSSecurityGuide/TurnOnWindowsDefenderProtectionAgainstPotentiallyUnwantedApplications](./policy-csp-mssecurityguide.md#mssecurityguide-turnonwindowsdefenderprotectionagainstpotentiallyunwantedapplications)
-- [MSSecurityGuide/WDigestAuthentication](./policy-csp-mssecurityguide.md#mssecurityguide-wdigestauthentication)
-- [Power/AllowStandbyStatesWhenSleepingOnBattery](./policy-csp-power.md#power-allowstandbystateswhensleepingonbattery)
-- [Power/AllowStandbyWhenSleepingPluggedIn](./policy-csp-power.md#power-allowstandbywhensleepingpluggedin)
-- [Power/DisplayOffTimeoutOnBattery](./policy-csp-power.md#power-displayofftimeoutonbattery)
-- [Power/DisplayOffTimeoutPluggedIn](./policy-csp-power.md#power-displayofftimeoutpluggedin)
-- [Power/HibernateTimeoutOnBattery](./policy-csp-power.md#power-hibernatetimeoutonbattery)
-- [Power/HibernateTimeoutPluggedIn](./policy-csp-power.md#power-hibernatetimeoutpluggedin)
-- [Power/RequirePasswordWhenComputerWakesOnBattery](./policy-csp-power.md#power-requirepasswordwhencomputerwakesonbattery)
-- [Power/RequirePasswordWhenComputerWakesPluggedIn](./policy-csp-power.md#power-requirepasswordwhencomputerwakespluggedin)
-- [Power/StandbyTimeoutOnBattery](./policy-csp-power.md#power-standbytimeoutonbattery)
-- [Power/StandbyTimeoutPluggedIn](./policy-csp-power.md#power-standbytimeoutpluggedin)
-- [Printers/PointAndPrintRestrictions](./policy-csp-printers.md#printers-pointandprintrestrictions)
-- [Printers/PointAndPrintRestrictions_User](./policy-csp-printers.md#printers-pointandprintrestrictions-user)
-- [Printers/PublishPrinters](./policy-csp-printers.md#printers-publishprinters)
-- [RemoteAssistance/CustomizeWarningMessages](./policy-csp-remoteassistance.md#remoteassistance-customizewarningmessages)
-- [RemoteAssistance/SessionLogging](./policy-csp-remoteassistance.md#remoteassistance-sessionlogging)
-- [RemoteAssistance/SolicitedRemoteAssistance](./policy-csp-remoteassistance.md#remoteassistance-solicitedremoteassistance)
-- [RemoteAssistance/UnsolicitedRemoteAssistance](./policy-csp-remoteassistance.md#remoteassistance-unsolicitedremoteassistance)
-- [RemoteDesktopServices/AllowUsersToConnectRemotely](./policy-csp-remotedesktopservices.md#remotedesktopservices-allowuserstoconnectremotely)
-- [RemoteDesktopServices/ClientConnectionEncryptionLevel](./policy-csp-remotedesktopservices.md#remotedesktopservices-clientconnectionencryptionlevel)
-- [RemoteDesktopServices/DoNotAllowDriveRedirection](./policy-csp-remotedesktopservices.md#remotedesktopservices-donotallowdriveredirection)
-- [RemoteDesktopServices/DoNotAllowPasswordSaving](./policy-csp-remotedesktopservices.md#remotedesktopservices-donotallowpasswordsaving)
-- [RemoteDesktopServices/PromptForPasswordUponConnection](./policy-csp-remotedesktopservices.md#remotedesktopservices-promptforpassworduponconnection)
-- [RemoteDesktopServices/RequireSecureRPCCommunication](./policy-csp-remotedesktopservices.md#remotedesktopservices-requiresecurerpccommunication)
-- [RemoteManagement/AllowBasicAuthentication_Client](./policy-csp-remotemanagement.md#remotemanagement-allowbasicauthentication-client)
-- [RemoteManagement/AllowBasicAuthentication_Service](./policy-csp-remotemanagement.md#remotemanagement-allowbasicauthentication-service)
-- [RemoteManagement/AllowCredSSPAuthenticationClient](./policy-csp-remotemanagement.md#remotemanagement-allowcredsspauthenticationclient)
-- [RemoteManagement/AllowCredSSPAuthenticationService](./policy-csp-remotemanagement.md#remotemanagement-allowcredsspauthenticationservice)
-- [RemoteManagement/AllowRemoteServerManagement](./policy-csp-remotemanagement.md#remotemanagement-allowremoteservermanagement)
-- [RemoteManagement/AllowUnencryptedTraffic_Client](./policy-csp-remotemanagement.md#remotemanagement-allowunencryptedtraffic-client)
-- [RemoteManagement/AllowUnencryptedTraffic_Service](./policy-csp-remotemanagement.md#remotemanagement-allowunencryptedtraffic-service)
-- [RemoteManagement/DisallowDigestAuthentication](./policy-csp-remotemanagement.md#remotemanagement-disallowdigestauthentication)
-- [RemoteManagement/DisallowNegotiateAuthenticationClient](./policy-csp-remotemanagement.md#remotemanagement-disallownegotiateauthenticationclient)
-- [RemoteManagement/DisallowNegotiateAuthenticationService](./policy-csp-remotemanagement.md#remotemanagement-disallownegotiateauthenticationservice)
-- [RemoteManagement/DisallowStoringOfRunAsCredentials](./policy-csp-remotemanagement.md#remotemanagement-disallowstoringofrunascredentials)
-- [RemoteManagement/SpecifyChannelBindingTokenHardeningLevel](./policy-csp-remotemanagement.md#remotemanagement-specifychannelbindingtokenhardeninglevel)
-- [RemoteManagement/TrustedHosts](./policy-csp-remotemanagement.md#remotemanagement-trustedhosts)
-- [RemoteManagement/TurnOnCompatibilityHTTPListener](./policy-csp-remotemanagement.md#remotemanagement-turnoncompatibilityhttplistener)
-- [RemoteManagement/TurnOnCompatibilityHTTPSListener](./policy-csp-remotemanagement.md#remotemanagement-turnoncompatibilityhttpslistener)
-- [RemoteProcedureCall/RPCEndpointMapperClientAuthentication](./policy-csp-remoteprocedurecall.md#remoteprocedurecall-rpcendpointmapperclientauthentication)
-- [RemoteProcedureCall/RestrictUnauthenticatedRPCClients](./policy-csp-remoteprocedurecall.md#remoteprocedurecall-restrictunauthenticatedrpcclients)
-- [RemoteShell/AllowRemoteShellAccess](./policy-csp-remoteshell.md#remoteshell-allowremoteshellaccess)
-- [RemoteShell/MaxConcurrentUsers](./policy-csp-remoteshell.md#remoteshell-maxconcurrentusers)
-- [RemoteShell/SpecifyIdleTimeout](./policy-csp-remoteshell.md#remoteshell-specifyidletimeout)
-- [RemoteShell/SpecifyMaxMemory](./policy-csp-remoteshell.md#remoteshell-specifymaxmemory)
-- [RemoteShell/SpecifyMaxProcesses](./policy-csp-remoteshell.md#remoteshell-specifymaxprocesses)
-- [RemoteShell/SpecifyMaxRemoteShells](./policy-csp-remoteshell.md#remoteshell-specifymaxremoteshells)
-- [RemoteShell/SpecifyShellTimeout](./policy-csp-remoteshell.md#remoteshell-specifyshelltimeout)
-- [ServiceControlManager/SvchostProcessMitigation](./policy-csp-servicecontrolmanager.md#servicecontrolmanager-svchostprocessmitigation)
-- [Storage/EnhancedStorageDevices](./policy-csp-storage.md#storage-enhancedstoragedevices)
-- [System/BootStartDriverInitialization](./policy-csp-system.md#system-bootstartdriverinitialization)
-- [System/DisableSystemRestore](./policy-csp-system.md#system-disablesystemrestore)
-- [WindowsConnectionManager/ProhitConnectionToNonDomainNetworksWhenConnectedToDomainAuthenticatedNetwork](./policy-csp-windowsconnectionmanager.md#windowsconnectionmanager-prohitconnectiontonondomainnetworkswhenconnectedtodomainauthenticatednetwork)
-- [WindowsLogon/AllowAutomaticRestartSignOn](./policy-csp-windowslogon.md#windowslogon-allowautomaticrestartsignon)
-- [WindowsLogon/ConfigAutomaticRestartSignOn](./policy-csp-windowslogon.md#windowslogon-configautomaticrestartsignon)
-- [WindowsLogon/DisableLockScreenAppNotifications](./policy-csp-windowslogon.md#windowslogon-disablelockscreenappnotifications)
-- [WindowsLogon/DontDisplayNetworkSelectionUI](./policy-csp-windowslogon.md#windowslogon-dontdisplaynetworkselectionui)
-- [WindowsLogon/EnumerateLocalUsersOnDomainJoinedComputers](./policy-csp-windowslogon.md#windowslogon-enumeratelocalusersondomainjoinedcomputers)
-- [WindowsPowerShell/TurnOnPowerShellScriptBlockLogging](./policy-csp-windowspowershell.md#windowspowershell-turnonpowershellscriptblocklogging)
+This article lists the ADMX-backed policies in Policy CSP.
-## Related topics
+## ActiveXControls
-[Policy CSP](policy-configuration-service-provider.md)
+- [ApprovedInstallationSites](policy-csp-activexcontrols.md)
+
+## ADMX_ActiveXInstallService
+
+- [AxISURLZonePolicies](policy-csp-admx-activexinstallservice.md)
+
+## ADMX_AddRemovePrograms
+
+- [NoServices](policy-csp-admx-addremoveprograms.md)
+- [NoAddPage](policy-csp-admx-addremoveprograms.md)
+- [NoWindowsSetupPage](policy-csp-admx-addremoveprograms.md)
+- [NoRemovePage](policy-csp-admx-addremoveprograms.md)
+- [NoAddFromCDorFloppy](policy-csp-admx-addremoveprograms.md)
+- [NoAddFromInternet](policy-csp-admx-addremoveprograms.md)
+- [NoAddFromNetwork](policy-csp-admx-addremoveprograms.md)
+- [NoChooseProgramsPage](policy-csp-admx-addremoveprograms.md)
+- [NoAddRemovePrograms](policy-csp-admx-addremoveprograms.md)
+- [NoSupportInfo](policy-csp-admx-addremoveprograms.md)
+- [DefaultCategory](policy-csp-admx-addremoveprograms.md)
+
+## ADMX_AdmPwd
+
+- [POL_AdmPwd_DontAllowPwdExpirationBehindPolicy](policy-csp-admx-admpwd.md)
+- [POL_AdmPwd_Enabled](policy-csp-admx-admpwd.md)
+- [POL_AdmPwd_AdminName](policy-csp-admx-admpwd.md)
+- [POL_AdmPwd](policy-csp-admx-admpwd.md)
+
+## ADMX_AppCompat
+
+- [AppCompatTurnOffProgramCompatibilityAssistant_1](policy-csp-admx-appcompat.md)
+- [AppCompatPrevent16BitMach](policy-csp-admx-appcompat.md)
+- [AppCompatRemoveProgramCompatPropPage](policy-csp-admx-appcompat.md)
+- [AppCompatTurnOffEngine](policy-csp-admx-appcompat.md)
+- [AppCompatTurnOffApplicationImpactTelemetry](policy-csp-admx-appcompat.md)
+- [AppCompatTurnOffProgramInventory](policy-csp-admx-appcompat.md)
+- [AppCompatTurnOffProgramCompatibilityAssistant_2](policy-csp-admx-appcompat.md)
+- [AppCompatTurnOffUserActionRecord](policy-csp-admx-appcompat.md)
+- [AppCompatTurnOffSwitchBack](policy-csp-admx-appcompat.md)
+
+## ADMX_AppxPackageManager
+
+- [AllowDeploymentInSpecialProfiles](policy-csp-admx-appxpackagemanager.md)
+
+## ADMX_AppXRuntime
+
+- [AppxRuntimeBlockFileElevation](policy-csp-admx-appxruntime.md)
+- [AppxRuntimeBlockProtocolElevation](policy-csp-admx-appxruntime.md)
+- [AppxRuntimeBlockFileElevation](policy-csp-admx-appxruntime.md)
+- [AppxRuntimeBlockProtocolElevation](policy-csp-admx-appxruntime.md)
+- [AppxRuntimeBlockHostedAppAccessWinRT](policy-csp-admx-appxruntime.md)
+- [AppxRuntimeApplicationContentUriRules](policy-csp-admx-appxruntime.md)
+
+## ADMX_AttachmentManager
+
+- [AM_SetFileRiskLevel](policy-csp-admx-attachmentmanager.md)
+- [AM_SetHighRiskInclusion](policy-csp-admx-attachmentmanager.md)
+- [AM_SetLowRiskInclusion](policy-csp-admx-attachmentmanager.md)
+- [AM_SetModRiskInclusion](policy-csp-admx-attachmentmanager.md)
+- [AM_EstimateFileHandlerRisk](policy-csp-admx-attachmentmanager.md)
+
+## ADMX_AuditSettings
+
+- [IncludeCmdLine](policy-csp-admx-auditsettings.md)
+
+## ADMX_Bits
+
+- [BITS_EnablePeercaching](policy-csp-admx-bits.md)
+- [BITS_DisableBranchCache](policy-csp-admx-bits.md)
+- [BITS_DisablePeercachingClient](policy-csp-admx-bits.md)
+- [BITS_DisablePeercachingServer](policy-csp-admx-bits.md)
+- [BITS_MaxContentAge](policy-csp-admx-bits.md)
+- [BITS_MaxCacheSize](policy-csp-admx-bits.md)
+- [BITS_MaxDownloadTime](policy-csp-admx-bits.md)
+- [BITS_MaxBandwidthServedForPeers](policy-csp-admx-bits.md)
+- [BITS_MaxJobsPerUser](policy-csp-admx-bits.md)
+- [BITS_MaxJobsPerMachine](policy-csp-admx-bits.md)
+- [BITS_MaxFilesPerJob](policy-csp-admx-bits.md)
+- [BITS_MaxRangesPerFile](policy-csp-admx-bits.md)
+- [BITS_MaxBandwidthV2_Maintenance](policy-csp-admx-bits.md)
+- [BITS_MaxBandwidthV2_Work](policy-csp-admx-bits.md)
+
+## ADMX_CipherSuiteOrder
+
+- [SSLCurveOrder](policy-csp-admx-ciphersuiteorder.md)
+- [SSLCipherSuiteOrder](policy-csp-admx-ciphersuiteorder.md)
+
+## ADMX_COM
+
+- [AppMgmt_COM_SearchForCLSID_1](policy-csp-admx-com.md)
+- [AppMgmt_COM_SearchForCLSID_2](policy-csp-admx-com.md)
+
+## ADMX_ControlPanel
+
+- [ForceClassicControlPanel](policy-csp-admx-controlpanel.md)
+- [DisallowCpls](policy-csp-admx-controlpanel.md)
+- [NoControlPanel](policy-csp-admx-controlpanel.md)
+- [RestrictCpls](policy-csp-admx-controlpanel.md)
+
+## ADMX_ControlPanelDisplay
+
+- [CPL_Display_Disable](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Display_HideSettings](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_EnableScreenSaver](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_SetVisualStyle](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_SetScreenSaver](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_SetTheme](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_ScreenSaverIsSecure](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoColorAppearanceUI](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_DisableColorSchemeChoice](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoDesktopBackgroundUI](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoDesktopIconsUI](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoMousePointersUI](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoScreenSaverUI](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoSoundSchemeUI](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_DisableThemeChange](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_DisableVisualStyle](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_LockFontSize](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_ScreenSaverTimeOut](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoLockScreen](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_PersonalColors](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_ForceDefaultLockScreen](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_StartBackground](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_SetTheme](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoChangingLockScreen](policy-csp-admx-controlpaneldisplay.md)
+- [CPL_Personalization_NoChangingStartMenuBackground](policy-csp-admx-controlpaneldisplay.md)
+
+## ADMX_Cpls
+
+- [UseDefaultTile](policy-csp-admx-cpls.md)
+
+## ADMX_CredentialProviders
+
+- [AllowDomainDelayLock](policy-csp-admx-credentialproviders.md)
+- [DefaultCredentialProvider](policy-csp-admx-credentialproviders.md)
+- [ExcludedCredentialProviders](policy-csp-admx-credentialproviders.md)
+
+## ADMX_CredSsp
+
+- [AllowDefaultCredentials](policy-csp-admx-credssp.md)
+- [AllowDefCredentialsWhenNTLMOnly](policy-csp-admx-credssp.md)
+- [AllowFreshCredentials](policy-csp-admx-credssp.md)
+- [AllowFreshCredentialsWhenNTLMOnly](policy-csp-admx-credssp.md)
+- [AllowSavedCredentials](policy-csp-admx-credssp.md)
+- [AllowSavedCredentialsWhenNTLMOnly](policy-csp-admx-credssp.md)
+- [DenyDefaultCredentials](policy-csp-admx-credssp.md)
+- [DenyFreshCredentials](policy-csp-admx-credssp.md)
+- [DenySavedCredentials](policy-csp-admx-credssp.md)
+- [AllowEncryptionOracle](policy-csp-admx-credssp.md)
+- [RestrictedRemoteAdministration](policy-csp-admx-credssp.md)
+
+## ADMX_CredUI
+
+- [NoLocalPasswordResetQuestions](policy-csp-admx-credui.md)
+- [EnableSecureCredentialPrompting](policy-csp-admx-credui.md)
+
+## ADMX_CtrlAltDel
+
+- [DisableChangePassword](policy-csp-admx-ctrlaltdel.md)
+- [DisableLockComputer](policy-csp-admx-ctrlaltdel.md)
+- [NoLogoff](policy-csp-admx-ctrlaltdel.md)
+- [DisableTaskMgr](policy-csp-admx-ctrlaltdel.md)
+
+## ADMX_DataCollection
+
+- [CommercialIdPolicy](policy-csp-admx-datacollection.md)
+
+## ADMX_DCOM
+
+- [DCOMActivationSecurityCheckAllowLocalList](policy-csp-admx-dcom.md)
+- [DCOMActivationSecurityCheckExemptionList](policy-csp-admx-dcom.md)
+
+## ADMX_Desktop
+
+- [AD_EnableFilter](policy-csp-admx-desktop.md)
+- [AD_HideDirectoryFolder](policy-csp-admx-desktop.md)
+- [AD_QueryLimit](policy-csp-admx-desktop.md)
+- [sz_AdminComponents_Title](policy-csp-admx-desktop.md)
+- [sz_DWP_NoHTMLPaper](policy-csp-admx-desktop.md)
+- [Wallpaper](policy-csp-admx-desktop.md)
+- [NoActiveDesktop](policy-csp-admx-desktop.md)
+- [sz_ATC_NoComponents](policy-csp-admx-desktop.md)
+- [ForceActiveDesktopOn](policy-csp-admx-desktop.md)
+- [sz_ATC_DisableAdd](policy-csp-admx-desktop.md)
+- [NoActiveDesktopChanges](policy-csp-admx-desktop.md)
+- [sz_ATC_DisableClose](policy-csp-admx-desktop.md)
+- [sz_ATC_DisableDel](policy-csp-admx-desktop.md)
+- [sz_ATC_DisableEdit](policy-csp-admx-desktop.md)
+- [NoRecentDocsNetHood](policy-csp-admx-desktop.md)
+- [NoSaveSettings](policy-csp-admx-desktop.md)
+- [NoDesktop](policy-csp-admx-desktop.md)
+- [NoInternetIcon](policy-csp-admx-desktop.md)
+- [NoNetHood](policy-csp-admx-desktop.md)
+- [sz_DB_DragDropClose](policy-csp-admx-desktop.md)
+- [sz_DB_Moving](policy-csp-admx-desktop.md)
+- [NoMyComputerIcon](policy-csp-admx-desktop.md)
+- [NoMyDocumentsIcon](policy-csp-admx-desktop.md)
+- [NoPropertiesMyComputer](policy-csp-admx-desktop.md)
+- [NoPropertiesMyDocuments](policy-csp-admx-desktop.md)
+- [NoRecycleBinProperties](policy-csp-admx-desktop.md)
+- [NoRecycleBinIcon](policy-csp-admx-desktop.md)
+- [NoDesktopCleanupWizard](policy-csp-admx-desktop.md)
+- [NoWindowMinimizingShortcuts](policy-csp-admx-desktop.md)
+- [NoDesktop](policy-csp-admx-desktop.md)
+
+## ADMX_DeviceCompat
+
+- [DeviceFlags](policy-csp-admx-devicecompat.md)
+- [DriverShims](policy-csp-admx-devicecompat.md)
+
+## ADMX_DeviceGuard
+
+- [ConfigCIPolicy](policy-csp-admx-deviceguard.md)
+
+## ADMX_DeviceInstallation
+
+- [DeviceInstall_InstallTimeout](policy-csp-admx-deviceinstallation.md)
+- [DeviceInstall_AllowAdminInstall](policy-csp-admx-deviceinstallation.md)
+- [DeviceInstall_DeniedPolicy_SimpleText](policy-csp-admx-deviceinstallation.md)
+- [DeviceInstall_DeniedPolicy_DetailText](policy-csp-admx-deviceinstallation.md)
+- [DeviceInstall_Removable_Deny](policy-csp-admx-deviceinstallation.md)
+- [DeviceInstall_Policy_RebootTime](policy-csp-admx-deviceinstallation.md)
+- [DeviceInstall_SystemRestore](policy-csp-admx-deviceinstallation.md)
+- [DriverInstall_Classes_AllowUser](policy-csp-admx-deviceinstallation.md)
+
+## ADMX_DeviceSetup
+
+- [DriverSearchPlaces_SearchOrderConfiguration](policy-csp-admx-devicesetup.md)
+- [DeviceInstall_BalloonTips](policy-csp-admx-devicesetup.md)
+
+## ADMX_DFS
+
+- [DFSDiscoverDC](policy-csp-admx-dfs.md)
+
+## ADMX_DigitalLocker
+
+- [Digitalx_DiableApplication_TitleText_1](policy-csp-admx-digitallocker.md)
+- [Digitalx_DiableApplication_TitleText_2](policy-csp-admx-digitallocker.md)
+
+## ADMX_DiskDiagnostic
+
+- [DfdAlertPolicy](policy-csp-admx-diskdiagnostic.md)
+- [WdiScenarioExecutionPolicy](policy-csp-admx-diskdiagnostic.md)
+
+## ADMX_DiskNVCache
+
+- [BootResumePolicy](policy-csp-admx-disknvcache.md)
+- [CachePowerModePolicy](policy-csp-admx-disknvcache.md)
+- [FeatureOffPolicy](policy-csp-admx-disknvcache.md)
+- [SolidStatePolicy](policy-csp-admx-disknvcache.md)
+
+## ADMX_DiskQuota
+
+- [DQ_RemovableMedia](policy-csp-admx-diskquota.md)
+- [DQ_Enable](policy-csp-admx-diskquota.md)
+- [DQ_Enforce](policy-csp-admx-diskquota.md)
+- [DQ_LogEventOverLimit](policy-csp-admx-diskquota.md)
+- [DQ_LogEventOverThreshold](policy-csp-admx-diskquota.md)
+- [DQ_Limit](policy-csp-admx-diskquota.md)
+
+## ADMX_DistributedLinkTracking
+
+- [DLT_AllowDomainMode](policy-csp-admx-distributedlinktracking.md)
+
+## ADMX_DnsClient
+
+- [DNS_AppendToMultiLabelName](policy-csp-admx-dnsclient.md)
+- [DNS_AllowFQDNNetBiosQueries](policy-csp-admx-dnsclient.md)
+- [DNS_Domain](policy-csp-admx-dnsclient.md)
+- [DNS_NameServer](policy-csp-admx-dnsclient.md)
+- [DNS_SearchList](policy-csp-admx-dnsclient.md)
+- [DNS_RegistrationEnabled](policy-csp-admx-dnsclient.md)
+- [DNS_IdnMapping](policy-csp-admx-dnsclient.md)
+- [DNS_PreferLocalResponsesOverLowerOrderDns](policy-csp-admx-dnsclient.md)
+- [DNS_PrimaryDnsSuffix](policy-csp-admx-dnsclient.md)
+- [DNS_UseDomainNameDevolution](policy-csp-admx-dnsclient.md)
+- [DNS_DomainNameDevolutionLevel](policy-csp-admx-dnsclient.md)
+- [DNS_RegisterAdapterName](policy-csp-admx-dnsclient.md)
+- [DNS_RegisterReverseLookup](policy-csp-admx-dnsclient.md)
+- [DNS_RegistrationRefreshInterval](policy-csp-admx-dnsclient.md)
+- [DNS_RegistrationOverwritesInConflict](policy-csp-admx-dnsclient.md)
+- [DNS_RegistrationTtl](policy-csp-admx-dnsclient.md)
+- [DNS_IdnEncoding](policy-csp-admx-dnsclient.md)
+- [Turn_Off_Multicast](policy-csp-admx-dnsclient.md)
+- [DNS_SmartMultiHomedNameResolution](policy-csp-admx-dnsclient.md)
+- [DNS_SmartProtocolReorder](policy-csp-admx-dnsclient.md)
+- [DNS_UpdateSecurityLevel](policy-csp-admx-dnsclient.md)
+- [DNS_UpdateTopLevelDomainZones](policy-csp-admx-dnsclient.md)
+
+## ADMX_DWM
+
+- [DwmDisallowAnimations_1](policy-csp-admx-dwm.md)
+- [DwmDisallowColorizationColorChanges_1](policy-csp-admx-dwm.md)
+- [DwmDefaultColorizationColor_1](policy-csp-admx-dwm.md)
+- [DwmDisallowAnimations_2](policy-csp-admx-dwm.md)
+- [DwmDisallowColorizationColorChanges_2](policy-csp-admx-dwm.md)
+- [DwmDefaultColorizationColor_2](policy-csp-admx-dwm.md)
+
+## ADMX_EAIME
+
+- [L_DoNotIncludeNonPublishingStandardGlyphInTheCandidateList](policy-csp-admx-eaime.md)
+- [L_RestrictCharacterCodeRangeOfConversion](policy-csp-admx-eaime.md)
+- [L_TurnOffCustomDictionary](policy-csp-admx-eaime.md)
+- [L_TurnOffHistorybasedPredictiveInput](policy-csp-admx-eaime.md)
+- [L_TurnOffInternetSearchIntegration](policy-csp-admx-eaime.md)
+- [L_TurnOffOpenExtendedDictionary](policy-csp-admx-eaime.md)
+- [L_TurnOffSavingAutoTuningDataToFile](policy-csp-admx-eaime.md)
+- [L_TurnOnCloudCandidate](policy-csp-admx-eaime.md)
+- [L_TurnOnCloudCandidateCHS](policy-csp-admx-eaime.md)
+- [L_TurnOnLexiconUpdate](policy-csp-admx-eaime.md)
+- [L_TurnOnLiveStickers](policy-csp-admx-eaime.md)
+- [L_TurnOnMisconversionLoggingForMisconversionReport](policy-csp-admx-eaime.md)
+
+## ADMX_EncryptFilesonMove
+
+- [NoEncryptOnMove](policy-csp-admx-encryptfilesonmove.md)
+
+## ADMX_EnhancedStorage
+
+- [RootHubConnectedEnStorDevices](policy-csp-admx-enhancedstorage.md)
+- [ApprovedEnStorDevices](policy-csp-admx-enhancedstorage.md)
+- [ApprovedSilos](policy-csp-admx-enhancedstorage.md)
+- [DisallowLegacyDiskDevices](policy-csp-admx-enhancedstorage.md)
+- [DisablePasswordAuthentication](policy-csp-admx-enhancedstorage.md)
+- [LockDeviceOnMachineLock](policy-csp-admx-enhancedstorage.md)
+
+## ADMX_ErrorReporting
+
+- [WerArchive_1](policy-csp-admx-errorreporting.md)
+- [WerQueue_1](policy-csp-admx-errorreporting.md)
+- [WerExlusion_1](policy-csp-admx-errorreporting.md)
+- [WerAutoApproveOSDumps_1](policy-csp-admx-errorreporting.md)
+- [WerDefaultConsent_1](policy-csp-admx-errorreporting.md)
+- [WerConsentCustomize_1](policy-csp-admx-errorreporting.md)
+- [WerConsentOverride_1](policy-csp-admx-errorreporting.md)
+- [WerNoLogging_1](policy-csp-admx-errorreporting.md)
+- [WerDisable_1](policy-csp-admx-errorreporting.md)
+- [WerNoSecondLevelData_1](policy-csp-admx-errorreporting.md)
+- [WerBypassDataThrottling_1](policy-csp-admx-errorreporting.md)
+- [WerBypassPowerThrottling_1](policy-csp-admx-errorreporting.md)
+- [WerBypassNetworkCostThrottling_1](policy-csp-admx-errorreporting.md)
+- [WerCER](policy-csp-admx-errorreporting.md)
+- [WerArchive_2](policy-csp-admx-errorreporting.md)
+- [WerQueue_2](policy-csp-admx-errorreporting.md)
+- [PCH_AllOrNoneDef](policy-csp-admx-errorreporting.md)
+- [PCH_AllOrNoneInc](policy-csp-admx-errorreporting.md)
+- [WerExlusion_2](policy-csp-admx-errorreporting.md)
+- [PCH_AllOrNoneEx](policy-csp-admx-errorreporting.md)
+- [PCH_ReportOperatingSystemFaults](policy-csp-admx-errorreporting.md)
+- [WerAutoApproveOSDumps_2](policy-csp-admx-errorreporting.md)
+- [PCH_ConfigureReport](policy-csp-admx-errorreporting.md)
+- [WerDefaultConsent_2](policy-csp-admx-errorreporting.md)
+- [WerConsentOverride_2](policy-csp-admx-errorreporting.md)
+- [WerNoLogging_2](policy-csp-admx-errorreporting.md)
+- [WerBypassDataThrottling_2](policy-csp-admx-errorreporting.md)
+- [WerBypassPowerThrottling_2](policy-csp-admx-errorreporting.md)
+- [WerBypassNetworkCostThrottling_2](policy-csp-admx-errorreporting.md)
+
+## ADMX_EventForwarding
+
+- [ForwarderResourceUsage](policy-csp-admx-eventforwarding.md)
+- [SubscriptionManager](policy-csp-admx-eventforwarding.md)
+
+## ADMX_EventLog
+
+- [Channel_Log_AutoBackup_1](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_1](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_5](policy-csp-admx-eventlog.md)
+- [Channel_LogFilePath_1](policy-csp-admx-eventlog.md)
+- [Channel_Log_AutoBackup_2](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_2](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_6](policy-csp-admx-eventlog.md)
+- [Channel_Log_Retention_2](policy-csp-admx-eventlog.md)
+- [Channel_LogFilePath_2](policy-csp-admx-eventlog.md)
+- [Channel_Log_AutoBackup_3](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_3](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_7](policy-csp-admx-eventlog.md)
+- [Channel_Log_Retention_3](policy-csp-admx-eventlog.md)
+- [Channel_LogFilePath_3](policy-csp-admx-eventlog.md)
+- [Channel_LogMaxSize_3](policy-csp-admx-eventlog.md)
+- [Channel_LogEnabled](policy-csp-admx-eventlog.md)
+- [Channel_Log_AutoBackup_4](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_4](policy-csp-admx-eventlog.md)
+- [Channel_Log_FileLogAccess_8](policy-csp-admx-eventlog.md)
+- [Channel_Log_Retention_4](policy-csp-admx-eventlog.md)
+- [Channel_LogFilePath_4](policy-csp-admx-eventlog.md)
+
+## ADMX_EventLogging
+
+- [EnableProtectedEventLogging](policy-csp-admx-eventlogging.md)
+
+## ADMX_EventViewer
+
+- [EventViewer_RedirectionProgram](policy-csp-admx-eventviewer.md)
+- [EventViewer_RedirectionProgramCommandLineParameters](policy-csp-admx-eventviewer.md)
+- [EventViewer_RedirectionURL](policy-csp-admx-eventviewer.md)
+
+## ADMX_Explorer
+
+- [AlwaysShowClassicMenu](policy-csp-admx-explorer.md)
+- [PreventItemCreationInUsersFilesFolder](policy-csp-admx-explorer.md)
+- [TurnOffSPIAnimations](policy-csp-admx-explorer.md)
+- [DisableRoamedProfileInit](policy-csp-admx-explorer.md)
+- [AdminInfoUrl](policy-csp-admx-explorer.md)
+
+## ADMX_ExternalBoot
+
+- [PortableOperatingSystem_Hibernate](policy-csp-admx-externalboot.md)
+- [PortableOperatingSystem_Sleep](policy-csp-admx-externalboot.md)
+- [PortableOperatingSystem_Launcher](policy-csp-admx-externalboot.md)
+
+## ADMX_FileRecovery
+
+- [WdiScenarioExecutionPolicy](policy-csp-admx-filerecovery.md)
+
+## ADMX_FileRevocation
+
+- [DelegatedPackageFamilyNames](policy-csp-admx-filerevocation.md)
+
+## ADMX_FileServerVSSProvider
+
+- [Pol_EncryptProtocol](policy-csp-admx-fileservervssprovider.md)
+
+## ADMX_FileSys
+
+- [DisableDeleteNotification](policy-csp-admx-filesys.md)
+- [LongPathsEnabled](policy-csp-admx-filesys.md)
+- [DisableCompression](policy-csp-admx-filesys.md)
+- [DisableEncryption](policy-csp-admx-filesys.md)
+- [TxfDeprecatedFunctionality](policy-csp-admx-filesys.md)
+- [EnablePagefileEncryption](policy-csp-admx-filesys.md)
+- [ShortNameCreationSettings](policy-csp-admx-filesys.md)
+- [SymlinkEvaluation](policy-csp-admx-filesys.md)
+
+## ADMX_FolderRedirection
+
+- [DisableFRAdminPin](policy-csp-admx-folderredirection.md)
+- [DisableFRAdminPinByFolder](policy-csp-admx-folderredirection.md)
+- [FolderRedirectionEnableCacheRename](policy-csp-admx-folderredirection.md)
+- [PrimaryComputer_FR_1](policy-csp-admx-folderredirection.md)
+- [LocalizeXPRelativePaths_1](policy-csp-admx-folderredirection.md)
+- [PrimaryComputer_FR_2](policy-csp-admx-folderredirection.md)
+- [LocalizeXPRelativePaths_2](policy-csp-admx-folderredirection.md)
+
+## ADMX_FramePanes
+
+- [NoReadingPane](policy-csp-admx-framepanes.md)
+- [NoPreviewPane](policy-csp-admx-framepanes.md)
+
+## ADMX_fthsvc
+
+- [WdiScenarioExecutionPolicy](policy-csp-admx-fthsvc.md)
+
+## ADMX_Globalization
+
+- [ImplicitDataCollectionOff_1](policy-csp-admx-globalization.md)
+- [HideAdminOptions](policy-csp-admx-globalization.md)
+- [HideCurrentLocation](policy-csp-admx-globalization.md)
+- [HideLanguageSelection](policy-csp-admx-globalization.md)
+- [HideLocaleSelectAndCustomize](policy-csp-admx-globalization.md)
+- [RestrictUILangSelect](policy-csp-admx-globalization.md)
+- [LockUserUILanguage](policy-csp-admx-globalization.md)
+- [TurnOffAutocorrectMisspelledWords](policy-csp-admx-globalization.md)
+- [TurnOffHighlightMisspelledWords](policy-csp-admx-globalization.md)
+- [TurnOffInsertSpace](policy-csp-admx-globalization.md)
+- [TurnOffOfferTextPredictions](policy-csp-admx-globalization.md)
+- [Y2K](policy-csp-admx-globalization.md)
+- [PreventGeoIdChange_1](policy-csp-admx-globalization.md)
+- [CustomLocalesNoSelect_1](policy-csp-admx-globalization.md)
+- [PreventUserOverrides_1](policy-csp-admx-globalization.md)
+- [LocaleUserRestrict_1](policy-csp-admx-globalization.md)
+- [ImplicitDataCollectionOff_2](policy-csp-admx-globalization.md)
+- [LockMachineUILanguage](policy-csp-admx-globalization.md)
+- [PreventGeoIdChange_2](policy-csp-admx-globalization.md)
+- [BlockUserInputMethodsForSignIn](policy-csp-admx-globalization.md)
+- [CustomLocalesNoSelect_2](policy-csp-admx-globalization.md)
+- [PreventUserOverrides_2](policy-csp-admx-globalization.md)
+- [LocaleSystemRestrict](policy-csp-admx-globalization.md)
+- [LocaleUserRestrict_2](policy-csp-admx-globalization.md)
+
+## ADMX_GroupPolicy
+
+- [GPDCOptions](policy-csp-admx-grouppolicy.md)
+- [GPTransferRate_1](policy-csp-admx-grouppolicy.md)
+- [NewGPOLinksDisabled](policy-csp-admx-grouppolicy.md)
+- [DenyRsopToInteractiveUser_1](policy-csp-admx-grouppolicy.md)
+- [EnforcePoliciesOnly](policy-csp-admx-grouppolicy.md)
+- [NewGPODisplayName](policy-csp-admx-grouppolicy.md)
+- [GroupPolicyRefreshRateUser](policy-csp-admx-grouppolicy.md)
+- [DisableAutoADMUpdate](policy-csp-admx-grouppolicy.md)
+- [ProcessMitigationOptions](policy-csp-admx-grouppolicy.md)
+- [AllowX-ForestPolicy-and-RUP](policy-csp-admx-grouppolicy.md)
+- [OnlyUseLocalAdminFiles](policy-csp-admx-grouppolicy.md)
+- [SlowlinkDefaultToAsync](policy-csp-admx-grouppolicy.md)
+- [SlowLinkDefaultForDirectAccess](policy-csp-admx-grouppolicy.md)
+- [CSE_DiskQuota](policy-csp-admx-grouppolicy.md)
+- [CSE_EFSRecovery](policy-csp-admx-grouppolicy.md)
+- [CSE_FolderRedirection](policy-csp-admx-grouppolicy.md)
+- [EnableLogonOptimization](policy-csp-admx-grouppolicy.md)
+- [GPTransferRate_2](policy-csp-admx-grouppolicy.md)
+- [CSE_IEM](policy-csp-admx-grouppolicy.md)
+- [CSE_IPSecurity](policy-csp-admx-grouppolicy.md)
+- [LogonScriptDelay](policy-csp-admx-grouppolicy.md)
+- [CSE_Registry](policy-csp-admx-grouppolicy.md)
+- [CSE_Scripts](policy-csp-admx-grouppolicy.md)
+- [CSE_Security](policy-csp-admx-grouppolicy.md)
+- [CSE_AppMgmt](policy-csp-admx-grouppolicy.md)
+- [UserPolicyMode](policy-csp-admx-grouppolicy.md)
+- [CSE_Wired](policy-csp-admx-grouppolicy.md)
+- [CSE_Wireless](policy-csp-admx-grouppolicy.md)
+- [EnableCDP](policy-csp-admx-grouppolicy.md)
+- [DenyRsopToInteractiveUser_2](policy-csp-admx-grouppolicy.md)
+- [ResetDfsClientInfoDuringRefreshPolicy](policy-csp-admx-grouppolicy.md)
+- [EnableLogonOptimizationOnServerSKU](policy-csp-admx-grouppolicy.md)
+- [EnableMMX](policy-csp-admx-grouppolicy.md)
+- [DisableUsersFromMachGP](policy-csp-admx-grouppolicy.md)
+- [GroupPolicyRefreshRate](policy-csp-admx-grouppolicy.md)
+- [GroupPolicyRefreshRateDC](policy-csp-admx-grouppolicy.md)
+- [SyncWaitTime](policy-csp-admx-grouppolicy.md)
+- [CorpConnSyncWaitTime](policy-csp-admx-grouppolicy.md)
+- [DisableBackgroundPolicy](policy-csp-admx-grouppolicy.md)
+- [DisableAOACProcessing](policy-csp-admx-grouppolicy.md)
+- [DisableLGPOProcessing](policy-csp-admx-grouppolicy.md)
+- [RSoPLogging](policy-csp-admx-grouppolicy.md)
+- [ProcessMitigationOptions](policy-csp-admx-grouppolicy.md)
+- [FontMitigation](policy-csp-admx-grouppolicy.md)
+
+## ADMX_Help
+
+- [RestrictRunFromHelp](policy-csp-admx-help.md)
+- [HelpQualifiedRootDir_Comp](policy-csp-admx-help.md)
+- [RestrictRunFromHelp_Comp](policy-csp-admx-help.md)
+- [DisableHHDEP](policy-csp-admx-help.md)
+
+## ADMX_HelpAndSupport
+
+- [HPImplicitFeedback](policy-csp-admx-helpandsupport.md)
+- [HPExplicitFeedback](policy-csp-admx-helpandsupport.md)
+- [HPOnlineAssistance](policy-csp-admx-helpandsupport.md)
+- [ActiveHelp](policy-csp-admx-helpandsupport.md)
+
+## ADMX_hotspotauth
+
+- [HotspotAuth_Enable](policy-csp-admx-hotspotauth.md)
+
+## ADMX_ICM
+
+- [ShellNoUseStoreOpenWith_1](policy-csp-admx-icm.md)
+- [DisableWebPnPDownload_1](policy-csp-admx-icm.md)
+- [ShellPreventWPWDownload_1](policy-csp-admx-icm.md)
+- [ShellNoUseInternetOpenWith_1](policy-csp-admx-icm.md)
+- [DisableHTTPPrinting_1](policy-csp-admx-icm.md)
+- [ShellRemoveOrderPrints_1](policy-csp-admx-icm.md)
+- [ShellRemovePublishToWeb_1](policy-csp-admx-icm.md)
+- [WinMSG_NoInstrumentation_1](policy-csp-admx-icm.md)
+- [InternetManagement_RestrictCommunication_1](policy-csp-admx-icm.md)
+- [RemoveWindowsUpdate_ICM](policy-csp-admx-icm.md)
+- [ShellNoUseStoreOpenWith_2](policy-csp-admx-icm.md)
+- [CertMgr_DisableAutoRootUpdates](policy-csp-admx-icm.md)
+- [EventViewer_DisableLinks](policy-csp-admx-icm.md)
+- [HSS_HeadlinesPolicy](policy-csp-admx-icm.md)
+- [HSS_KBSearchPolicy](policy-csp-admx-icm.md)
+- [NC_ExitOnISP](policy-csp-admx-icm.md)
+- [ShellNoUseInternetOpenWith_2](policy-csp-admx-icm.md)
+- [NC_NoRegistration](policy-csp-admx-icm.md)
+- [SearchCompanion_DisableFileUpdates](policy-csp-admx-icm.md)
+- [ShellRemoveOrderPrints_2](policy-csp-admx-icm.md)
+- [ShellRemovePublishToWeb_2](policy-csp-admx-icm.md)
+- [WinMSG_NoInstrumentation_2](policy-csp-admx-icm.md)
+- [CEIPEnable](policy-csp-admx-icm.md)
+- [PCH_DoNotReport](policy-csp-admx-icm.md)
+- [DriverSearchPlaces_DontSearchWindowsUpdate](policy-csp-admx-icm.md)
+- [InternetManagement_RestrictCommunication_2](policy-csp-admx-icm.md)
+
+## ADMX_IIS
+
+- [PreventIISInstall](policy-csp-admx-iis.md)
+
+## ADMX_iSCSI
+
+- [iSCSIGeneral_RestrictAdditionalLogins](policy-csp-admx-iscsi.md)
+- [iSCSIGeneral_ChangeIQNName](policy-csp-admx-iscsi.md)
+- [iSCSISecurity_ChangeCHAPSecret](policy-csp-admx-iscsi.md)
+- [iSCSISecurity_RequireIPSec](policy-csp-admx-iscsi.md)
+- [iSCSISecurity_RequireMutualCHAP](policy-csp-admx-iscsi.md)
+- [iSCSISecurity_RequireOneWayCHAP](policy-csp-admx-iscsi.md)
+- [iSCSIDiscovery_NewStaticTargets](policy-csp-admx-iscsi.md)
+- [iSCSIDiscovery_ConfigureTargets](policy-csp-admx-iscsi.md)
+- [iSCSIDiscovery_ConfigureiSNSServers](policy-csp-admx-iscsi.md)
+- [iSCSIDiscovery_ConfigureTargetPortals](policy-csp-admx-iscsi.md)
+
+## ADMX_kdc
+
+- [CbacAndArmor](policy-csp-admx-kdc.md)
+- [PKINITFreshness](policy-csp-admx-kdc.md)
+- [emitlili](policy-csp-admx-kdc.md)
+- [RequestCompoundId](policy-csp-admx-kdc.md)
+- [ForestSearch](policy-csp-admx-kdc.md)
+- [TicketSizeThreshold](policy-csp-admx-kdc.md)
+
+## ADMX_Kerberos
+
+- [AlwaysSendCompoundId](policy-csp-admx-kerberos.md)
+- [HostToRealm](policy-csp-admx-kerberos.md)
+- [MitRealms](policy-csp-admx-kerberos.md)
+- [KdcProxyDisableServerRevocationCheck](policy-csp-admx-kerberos.md)
+- [StrictTarget](policy-csp-admx-kerberos.md)
+- [KdcProxyServer](policy-csp-admx-kerberos.md)
+- [ServerAcceptsCompound](policy-csp-admx-kerberos.md)
+- [DevicePKInitEnabled](policy-csp-admx-kerberos.md)
+
+## ADMX_LanmanServer
+
+- [Pol_CipherSuiteOrder](policy-csp-admx-lanmanserver.md)
+- [Pol_HashPublication](policy-csp-admx-lanmanserver.md)
+- [Pol_HashSupportVersion](policy-csp-admx-lanmanserver.md)
+- [Pol_HonorCipherSuiteOrder](policy-csp-admx-lanmanserver.md)
+
+## ADMX_LanmanWorkstation
+
+- [Pol_CipherSuiteOrder](policy-csp-admx-lanmanworkstation.md)
+- [Pol_EnableHandleCachingForCAFiles](policy-csp-admx-lanmanworkstation.md)
+- [Pol_EnableOfflineFilesforCAShares](policy-csp-admx-lanmanworkstation.md)
+
+## ADMX_LeakDiagnostic
+
+- [WdiScenarioExecutionPolicy](policy-csp-admx-leakdiagnostic.md)
+
+## ADMX_LinkLayerTopologyDiscovery
+
+- [LLTD_EnableLLTDIO](policy-csp-admx-linklayertopologydiscovery.md)
+- [LLTD_EnableRspndr](policy-csp-admx-linklayertopologydiscovery.md)
+
+## ADMX_LocationProviderAdm
+
+- [DisableWindowsLocationProvider_1](policy-csp-admx-locationprovideradm.md)
+
+## ADMX_Logon
+
+- [NoWelcomeTips_1](policy-csp-admx-logon.md)
+- [DisableExplorerRunLegacy_1](policy-csp-admx-logon.md)
+- [DisableExplorerRunOnceLegacy_1](policy-csp-admx-logon.md)
+- [Run_1](policy-csp-admx-logon.md)
+- [VerboseStatus](policy-csp-admx-logon.md)
+- [UseOEMBackground](policy-csp-admx-logon.md)
+- [SyncForegroundPolicy](policy-csp-admx-logon.md)
+- [BlockUserFromShowingAccountDetailsOnSignin](policy-csp-admx-logon.md)
+- [NoWelcomeTips_2](policy-csp-admx-logon.md)
+- [DontEnumerateConnectedUsers](policy-csp-admx-logon.md)
+- [DisableExplorerRunLegacy_2](policy-csp-admx-logon.md)
+- [DisableExplorerRunOnceLegacy_2](policy-csp-admx-logon.md)
+- [Run_2](policy-csp-admx-logon.md)
+- [DisableAcrylicBackgroundOnLogon](policy-csp-admx-logon.md)
+- [DisableStatusMessages](policy-csp-admx-logon.md)
+
+## ADMX_MicrosoftDefenderAntivirus
+
+- [ServiceKeepAlive](policy-csp-admx-microsoftdefenderantivirus.md)
+- [AllowFastServiceStartup](policy-csp-admx-microsoftdefenderantivirus.md)
+- [UX_Configuration_CustomDefaultActionToastString](policy-csp-admx-microsoftdefenderantivirus.md)
+- [UX_Configuration_UILockdown](policy-csp-admx-microsoftdefenderantivirus.md)
+- [UX_Configuration_Notification_Suppress](policy-csp-admx-microsoftdefenderantivirus.md)
+- [UX_Configuration_SuppressRebootNotification](policy-csp-admx-microsoftdefenderantivirus.md)
+- [DisableLocalAdminMerge](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ProxyBypass](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ProxyPacUrl](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ProxyServer](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Exclusions_Extensions](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Exclusions_Paths](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Exclusions_Processes](policy-csp-admx-microsoftdefenderantivirus.md)
+- [DisableAutoExclusions](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Spynet_LocalSettingOverrideSpynetReporting](policy-csp-admx-microsoftdefenderantivirus.md)
+- [DisableBlockAtFirstSeen](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SpynetReporting](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ExploitGuard_ASR_Rules](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ExploitGuard_ASR_ASROnlyExclusions](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ExploitGuard_ControlledFolderAccess_AllowedApplications](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ExploitGuard_ControlledFolderAccess_ProtectedFolders](policy-csp-admx-microsoftdefenderantivirus.md)
+- [MpEngine_EnableFileHashComputation](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Nis_Consumers_IPS_sku_differentiation_Signature_Set_Guid](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Nis_Consumers_IPS_DisableSignatureRetirement](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Nis_DisableProtocolRecognition](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Quarantine_LocalSettingOverridePurgeItemsAfterDelay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Quarantine_PurgeItemsAfterDelay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RandomizeScheduleTaskTimes](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_LocalSettingOverrideDisableOnAccessProtection](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_LocalSettingOverrideRealtimeScanDirection](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_LocalSettingOverrideDisableIOAVProtection](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_LocalSettingOverrideDisableBehaviorMonitoring](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_LocalSettingOverrideDisableRealtimeMonitoring](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_IOAVMaxSize](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_DisableOnAccessProtection](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_DisableIOAVProtection](policy-csp-admx-microsoftdefenderantivirus.md)
+- [DisableRealtimeMonitoring](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_DisableBehaviorMonitoring](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_DisableScanOnRealtimeEnable](policy-csp-admx-microsoftdefenderantivirus.md)
+- [RealtimeProtection_DisableRawWriteNotification](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Remediation_LocalSettingOverrideScan_ScheduleTime](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Remediation_Scan_ScheduleDay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Remediation_Scan_ScheduleTime](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_CriticalFailureTimeout](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_NonCriticalTimeout](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_RecentlyCleanedTimeout](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_AdditionalActionTimeout](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_DisablegenericrePorts](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_WppTracingComponents](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_WppTracingLevel](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Reporting_DisableEnhancedNotifications](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_AllowPause](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_LocalSettingOverrideAvgCPULoadFactor](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_LocalSettingOverrideScheduleDay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_LocalSettingOverrideScheduleQuickScantime](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_LocalSettingOverrideScheduleTime](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_LocalSettingOverrideScanParameters](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_LowCpuPriority](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableRestorePoint](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_MissedScheduledScanCountBeforeCatchup](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableScanningMappedNetworkDrivesForFullScan](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableArchiveScanning](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableScanningNetworkFiles](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisablePackedExeScanning](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableRemovableDriveScanning](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_ScheduleDay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_QuickScanInterval](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_ArchiveMaxDepth](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_ArchiveMaxSize](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_ScheduleTime](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_ScanOnlyIfIdle](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableEmailScanning](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableHeuristics](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_PurgeItemsAfterDelay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Scan_DisableReparsePointScanning](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_SignatureDisableNotification](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_RealtimeSignatureDelivery](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_ForceUpdateFromMU](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_DisableScheduledSignatureUpdateonBattery](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_UpdateOnStartup](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_DefinitionUpdateFileSharesSources](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_SharedSignaturesLocation](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_SignatureUpdateCatchupInterval](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_ASSignatureDue](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_AVSignatureDue](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_FallbackOrder](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_DisableUpdateOnStartupWithoutEngine](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_ScheduleDay](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_ScheduleTime](policy-csp-admx-microsoftdefenderantivirus.md)
+- [SignatureUpdate_DisableScanOnUpdate](policy-csp-admx-microsoftdefenderantivirus.md)
+- [Threats_ThreatIdDefaultAction](policy-csp-admx-microsoftdefenderantivirus.md)
+- [DisableAntiSpywareDefender](policy-csp-admx-microsoftdefenderantivirus.md)
+- [DisableRoutinelyTakingAction](policy-csp-admx-microsoftdefenderantivirus.md)
+
+## ADMX_MMC
+
+- [MMC_Restrict_Author](policy-csp-admx-mmc.md)
+- [MMC_Restrict_To_Permitted_Snapins](policy-csp-admx-mmc.md)
+- [MMC_ActiveXControl](policy-csp-admx-mmc.md)
+- [MMC_ExtendView](policy-csp-admx-mmc.md)
+- [MMC_LinkToWeb](policy-csp-admx-mmc.md)
+
+## ADMX_MMCSnapins
+
+- [MMC_Net_Framework](policy-csp-admx-mmcsnapins.md)
+- [MMC_ActiveDirDomTrusts](policy-csp-admx-mmcsnapins.md)
+- [MMC_ActiveDirSitesServices](policy-csp-admx-mmcsnapins.md)
+- [MMC_ActiveDirUsersComp](policy-csp-admx-mmcsnapins.md)
+- [MMC_ADSI](policy-csp-admx-mmcsnapins.md)
+- [MMC_CertsTemplate](policy-csp-admx-mmcsnapins.md)
+- [MMC_Certs](policy-csp-admx-mmcsnapins.md)
+- [MMC_CertAuth](policy-csp-admx-mmcsnapins.md)
+- [MMC_ComponentServices](policy-csp-admx-mmcsnapins.md)
+- [MMC_ComputerManagement](policy-csp-admx-mmcsnapins.md)
+- [MMC_DeviceManager_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_DiskDefrag](policy-csp-admx-mmcsnapins.md)
+- [MMC_DiskMgmt](policy-csp-admx-mmcsnapins.md)
+- [MMC_DFS](policy-csp-admx-mmcsnapins.md)
+- [MMC_EnterprisePKI](policy-csp-admx-mmcsnapins.md)
+- [MMC_EventViewer_3](policy-csp-admx-mmcsnapins.md)
+- [MMC_EventViewer_4](policy-csp-admx-mmcsnapins.md)
+- [MMC_AppleTalkRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_AuthMan](policy-csp-admx-mmcsnapins.md)
+- [MMC_CertAuthPolSet](policy-csp-admx-mmcsnapins.md)
+- [MMC_ConnectionSharingNAT](policy-csp-admx-mmcsnapins.md)
+- [MMC_DCOMCFG](policy-csp-admx-mmcsnapins.md)
+- [MMC_DeviceManager_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_DHCPRelayMgmt](policy-csp-admx-mmcsnapins.md)
+- [MMC_EventViewer_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_EventViewer_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_IASLogging](policy-csp-admx-mmcsnapins.md)
+- [MMC_IGMPRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_IPRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_IPXRIPRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_IPXRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_IPXSAPRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_LogicalMappedDrives](policy-csp-admx-mmcsnapins.md)
+- [MMC_OSPFRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_PublicKey](policy-csp-admx-mmcsnapins.md)
+- [MMC_RAS_DialinUser](policy-csp-admx-mmcsnapins.md)
+- [MMC_RemoteAccess](policy-csp-admx-mmcsnapins.md)
+- [MMC_RemStore](policy-csp-admx-mmcsnapins.md)
+- [MMC_RIPRouting](policy-csp-admx-mmcsnapins.md)
+- [MMC_Routing](policy-csp-admx-mmcsnapins.md)
+- [MMC_SendConsoleMessage](policy-csp-admx-mmcsnapins.md)
+- [MMC_ServiceDependencies](policy-csp-admx-mmcsnapins.md)
+- [MMC_SharedFolders_Ext](policy-csp-admx-mmcsnapins.md)
+- [MMC_SMTPProtocol](policy-csp-admx-mmcsnapins.md)
+- [MMC_SNMP](policy-csp-admx-mmcsnapins.md)
+- [MMC_SysProp](policy-csp-admx-mmcsnapins.md)
+- [MMC_FailoverClusters](policy-csp-admx-mmcsnapins.md)
+- [MMC_FAXService](policy-csp-admx-mmcsnapins.md)
+- [MMC_FrontPageExt](policy-csp-admx-mmcsnapins.md)
+- [MMC_GroupPolicyManagementSnapIn](policy-csp-admx-mmcsnapins.md)
+- [MMC_GroupPolicySnapIn](policy-csp-admx-mmcsnapins.md)
+- [MMC_ADMComputers_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_ADMUsers_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_FolderRedirection_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_IEMaintenance_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_IPSecManage_GP](policy-csp-admx-mmcsnapins.md)
+- [MMC_NapSnap_GP](policy-csp-admx-mmcsnapins.md)
+- [MMC_RIS](policy-csp-admx-mmcsnapins.md)
+- [MMC_ScriptsUser_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_ScriptsMachine_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_SecuritySettings_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_SoftwareInstalationComputers_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_SoftwareInstallationUsers_1](policy-csp-admx-mmcsnapins.md)
+- [MMC_WindowsFirewall_GP](policy-csp-admx-mmcsnapins.md)
+- [MMC_WiredNetworkPolicy](policy-csp-admx-mmcsnapins.md)
+- [MMC_WirelessNetworkPolicy](policy-csp-admx-mmcsnapins.md)
+- [MMC_GroupPolicyTab](policy-csp-admx-mmcsnapins.md)
+- [MMC_ResultantSetOfPolicySnapIn](policy-csp-admx-mmcsnapins.md)
+- [MMC_ADMComputers_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_ADMUsers_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_FolderRedirection_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_IEMaintenance_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_ScriptsUser_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_ScriptsMachine_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_SecuritySettings_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_SoftwareInstalationComputers_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_SoftwareInstallationUsers_2](policy-csp-admx-mmcsnapins.md)
+- [MMC_HRA](policy-csp-admx-mmcsnapins.md)
+- [MMC_IndexingService](policy-csp-admx-mmcsnapins.md)
+- [MMC_IAS](policy-csp-admx-mmcsnapins.md)
+- [MMC_IIS](policy-csp-admx-mmcsnapins.md)
+- [MMC_IpSecMonitor](policy-csp-admx-mmcsnapins.md)
+- [MMC_IpSecManage](policy-csp-admx-mmcsnapins.md)
+- [MMC_LocalUsersGroups](policy-csp-admx-mmcsnapins.md)
+- [MMC_NapSnap](policy-csp-admx-mmcsnapins.md)
+- [MMC_NPSUI](policy-csp-admx-mmcsnapins.md)
+- [MMC_OCSP](policy-csp-admx-mmcsnapins.md)
+- [MMC_PerfLogsAlerts](policy-csp-admx-mmcsnapins.md)
+- [MMC_QoSAdmission](policy-csp-admx-mmcsnapins.md)
+- [MMC_TerminalServices](policy-csp-admx-mmcsnapins.md)
+- [MMC_RemoteDesktop](policy-csp-admx-mmcsnapins.md)
+- [MMC_RSM](policy-csp-admx-mmcsnapins.md)
+- [MMC_RRA](policy-csp-admx-mmcsnapins.md)
+- [MMC_SCA](policy-csp-admx-mmcsnapins.md)
+- [MMC_SecurityTemplates](policy-csp-admx-mmcsnapins.md)
+- [MMC_ServerManager](policy-csp-admx-mmcsnapins.md)
+- [MMC_Services](policy-csp-admx-mmcsnapins.md)
+- [MMC_SharedFolders](policy-csp-admx-mmcsnapins.md)
+- [MMC_SysInfo](policy-csp-admx-mmcsnapins.md)
+- [MMC_Telephony](policy-csp-admx-mmcsnapins.md)
+- [MMC_TPMManagement](policy-csp-admx-mmcsnapins.md)
+- [MMC_WindowsFirewall](policy-csp-admx-mmcsnapins.md)
+- [MMC_WirelessMon](policy-csp-admx-mmcsnapins.md)
+- [MMC_WMI](policy-csp-admx-mmcsnapins.md)
+
+## ADMX_MobilePCMobilityCenter
+
+- [MobilityCenterEnable_1](policy-csp-admx-mobilepcmobilitycenter.md)
+- [MobilityCenterEnable_2](policy-csp-admx-mobilepcmobilitycenter.md)
+
+## ADMX_MobilePCPresentationSettings
+
+- [PresentationSettingsEnable_1](policy-csp-admx-mobilepcpresentationsettings.md)
+- [PresentationSettingsEnable_2](policy-csp-admx-mobilepcpresentationsettings.md)
+
+## ADMX_MSAPolicy
+
+- [MicrosoftAccount_DisableUserAuth](policy-csp-admx-msapolicy.md)
+
+## ADMX_msched
+
+- [ActivationBoundaryPolicy](policy-csp-admx-msched.md)
+- [RandomDelayPolicy](policy-csp-admx-msched.md)
+
+## ADMX_MSDT
+
+- [WdiScenarioExecutionPolicy](policy-csp-admx-msdt.md)
+- [MsdtToolDownloadPolicy](policy-csp-admx-msdt.md)
+- [MsdtSupportProvider](policy-csp-admx-msdt.md)
+
+## ADMX_MSI
+
+- [DisableMedia](policy-csp-admx-msi.md)
+- [DisableRollback_1](policy-csp-admx-msi.md)
+- [SearchOrder](policy-csp-admx-msi.md)
+- [AllowLockdownBrowse](policy-csp-admx-msi.md)
+- [AllowLockdownPatch](policy-csp-admx-msi.md)
+- [AllowLockdownMedia](policy-csp-admx-msi.md)
+- [MSI_MaxPatchCacheSize](policy-csp-admx-msi.md)
+- [MSI_EnforceUpgradeComponentRules](policy-csp-admx-msi.md)
+- [MsiDisableEmbeddedUI](policy-csp-admx-msi.md)
+- [SafeForScripting](policy-csp-admx-msi.md)
+- [DisablePatch](policy-csp-admx-msi.md)
+- [DisableFlyweightPatching](policy-csp-admx-msi.md)
+- [MSI_DisableLUAPatching](policy-csp-admx-msi.md)
+- [MSI_DisablePatchUninstall](policy-csp-admx-msi.md)
+- [DisableRollback_2](policy-csp-admx-msi.md)
+- [DisableAutomaticApplicationShutdown](policy-csp-admx-msi.md)
+- [MSI_DisableUserInstalls](policy-csp-admx-msi.md)
+- [DisableBrowse](policy-csp-admx-msi.md)
+- [TransformsSecure](policy-csp-admx-msi.md)
+- [MSILogging](policy-csp-admx-msi.md)
+- [MSI_DisableSRCheckPoints](policy-csp-admx-msi.md)
+- [DisableLoggingFromPackage](policy-csp-admx-msi.md)
+- [DisableSharedComponent](policy-csp-admx-msi.md)
+- [DisableMSI](policy-csp-admx-msi.md)
+
+## ADMX_MsiFileRecovery
+
+- [WdiScenarioExecutionPolicy](policy-csp-admx-msifilerecovery.md)
+
+## ADMX_MSS-legacy
+
+- [Pol_MSS_AutoAdminLogon](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_AutoReboot](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_AutoShareServer](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_AutoShareWks](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_DisableSavePassword](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_EnableDeadGWDetect](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_HideFromBrowseList](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_KeepAliveTime](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_NoDefaultExempt](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_NtfsDisable8dot3NameCreation](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_PerformRouterDiscovery](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_SafeDllSearchMode](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_ScreenSaverGracePeriod](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_SynAttackProtect](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_TcpMaxConnectResponseRetransmissions](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_TcpMaxDataRetransmissionsIPv6](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_TcpMaxDataRetransmissions](policy-csp-admx-mss-legacy.md)
+- [Pol_MSS_WarningLevel](policy-csp-admx-mss-legacy.md)
+
+## ADMX_nca
+
+- [CorporateResources](policy-csp-admx-nca.md)
+- [CustomCommands](policy-csp-admx-nca.md)
+- [PassiveMode](policy-csp-admx-nca.md)
+- [FriendlyName](policy-csp-admx-nca.md)
+- [DTEs](policy-csp-admx-nca.md)
+- [LocalNamesOn](policy-csp-admx-nca.md)
+- [SupportEmail](policy-csp-admx-nca.md)
+- [ShowUI](policy-csp-admx-nca.md)
+
+## ADMX_NCSI
+
+- [NCSI_CorpDnsProbeContent](policy-csp-admx-ncsi.md)
+- [NCSI_CorpDnsProbeHost](policy-csp-admx-ncsi.md)
+- [NCSI_CorpSitePrefixes](policy-csp-admx-ncsi.md)
+- [NCSI_CorpWebProbeUrl](policy-csp-admx-ncsi.md)
+- [NCSI_DomainLocationDeterminationUrl](policy-csp-admx-ncsi.md)
+- [NCSI_GlobalDns](policy-csp-admx-ncsi.md)
+- [NCSI_PassivePolling](policy-csp-admx-ncsi.md)
+
+## ADMX_Netlogon
+
+- [Netlogon_AllowNT4Crypto](policy-csp-admx-netlogon.md)
+- [Netlogon_AvoidPdcOnWan](policy-csp-admx-netlogon.md)
+- [Netlogon_IgnoreIncomingMailslotMessages](policy-csp-admx-netlogon.md)
+- [Netlogon_AvoidFallbackNetbiosDiscovery](policy-csp-admx-netlogon.md)
+- [Netlogon_ForceRediscoveryInterval](policy-csp-admx-netlogon.md)
+- [Netlogon_AddressTypeReturned](policy-csp-admx-netlogon.md)
+- [Netlogon_LdapSrvPriority](policy-csp-admx-netlogon.md)
+- [Netlogon_DnsTtl](policy-csp-admx-netlogon.md)
+- [Netlogon_LdapSrvWeight](policy-csp-admx-netlogon.md)
+- [Netlogon_AddressLookupOnPingBehavior](policy-csp-admx-netlogon.md)
+- [Netlogon_DnsAvoidRegisterRecords](policy-csp-admx-netlogon.md)
+- [Netlogon_UseDynamicDns](policy-csp-admx-netlogon.md)
+- [Netlogon_DnsRefreshInterval](policy-csp-admx-netlogon.md)
+- [Netlogon_NdncSiteCoverage](policy-csp-admx-netlogon.md)
+- [Netlogon_SiteCoverage](policy-csp-admx-netlogon.md)
+- [Netlogon_GcSiteCoverage](policy-csp-admx-netlogon.md)
+- [Netlogon_TryNextClosestSite](policy-csp-admx-netlogon.md)
+- [Netlogon_AutoSiteCoverage](policy-csp-admx-netlogon.md)
+- [Netlogon_AllowDnsSuffixSearch](policy-csp-admx-netlogon.md)
+- [Netlogon_AllowSingleLabelDnsDomain](policy-csp-admx-netlogon.md)
+- [Netlogon_DnsSrvRecordUseLowerCaseHostNames](policy-csp-admx-netlogon.md)
+- [Netlogon_NetlogonShareCompatibilityMode](policy-csp-admx-netlogon.md)
+- [Netlogon_ScavengeInterval](policy-csp-admx-netlogon.md)
+- [Netlogon_SysvolShareCompatibilityMode](policy-csp-admx-netlogon.md)
+- [Netlogon_ExpectedDialupDelay](policy-csp-admx-netlogon.md)
+- [Netlogon_DebugFlag](policy-csp-admx-netlogon.md)
+- [Netlogon_MaximumLogFileSize](policy-csp-admx-netlogon.md)
+- [Netlogon_NegativeCachePeriod](policy-csp-admx-netlogon.md)
+- [Netlogon_NonBackgroundSuccessfulRefreshPeriod](policy-csp-admx-netlogon.md)
+- [Netlogon_SiteName](policy-csp-admx-netlogon.md)
+- [Netlogon_BackgroundRetryQuitTime](policy-csp-admx-netlogon.md)
+- [Netlogon_BackgroundRetryInitialPeriod](policy-csp-admx-netlogon.md)
+- [Netlogon_BackgroundRetryMaximumPeriod](policy-csp-admx-netlogon.md)
+- [Netlogon_BackgroundSuccessfulRefreshPeriod](policy-csp-admx-netlogon.md)
+- [Netlogon_PingUrgencyMode](policy-csp-admx-netlogon.md)
+
+## ADMX_NetworkConnections
+
+- [NC_RasAllUserProperties](policy-csp-admx-networkconnections.md)
+- [NC_DeleteAllUserConnection](policy-csp-admx-networkconnections.md)
+- [NC_LanConnect](policy-csp-admx-networkconnections.md)
+- [NC_RenameAllUserRasConnection](policy-csp-admx-networkconnections.md)
+- [NC_RenameLanConnection](policy-csp-admx-networkconnections.md)
+- [NC_RenameConnection](policy-csp-admx-networkconnections.md)
+- [NC_EnableAdminProhibits](policy-csp-admx-networkconnections.md)
+- [NC_LanProperties](policy-csp-admx-networkconnections.md)
+- [NC_LanChangeProperties](policy-csp-admx-networkconnections.md)
+- [NC_RasChangeProperties](policy-csp-admx-networkconnections.md)
+- [NC_AdvancedSettings](policy-csp-admx-networkconnections.md)
+- [NC_NewConnectionWizard](policy-csp-admx-networkconnections.md)
+- [NC_DialupPrefs](policy-csp-admx-networkconnections.md)
+- [NC_AddRemoveComponents](policy-csp-admx-networkconnections.md)
+- [NC_RasMyProperties](policy-csp-admx-networkconnections.md)
+- [NC_RasConnect](policy-csp-admx-networkconnections.md)
+- [NC_DeleteConnection](policy-csp-admx-networkconnections.md)
+- [NC_ChangeBindState](policy-csp-admx-networkconnections.md)
+- [NC_RenameMyRasConnection](policy-csp-admx-networkconnections.md)
+- [NC_AllowAdvancedTCPIPConfig](policy-csp-admx-networkconnections.md)
+- [NC_Statistics](policy-csp-admx-networkconnections.md)
+- [NC_IpStateChecking](policy-csp-admx-networkconnections.md)
+- [NC_DoNotShowLocalOnlyIcon](policy-csp-admx-networkconnections.md)
+- [NC_PersonalFirewallConfig](policy-csp-admx-networkconnections.md)
+- [NC_ShowSharedAccessUI](policy-csp-admx-networkconnections.md)
+- [NC_StdDomainUserSetLocation](policy-csp-admx-networkconnections.md)
+- [NC_ForceTunneling](policy-csp-admx-networkconnections.md)
+
+## ADMX_OfflineFiles
+
+- [Pol_GoOfflineAction_1](policy-csp-admx-offlinefiles.md)
+- [Pol_EventLoggingLevel_1](policy-csp-admx-offlinefiles.md)
+- [Pol_ReminderInitTimeout_1](policy-csp-admx-offlinefiles.md)
+- [Pol_CustomGoOfflineActions_1](policy-csp-admx-offlinefiles.md)
+- [Pol_NoCacheViewer_1](policy-csp-admx-offlinefiles.md)
+- [Pol_NoConfigCache_1](policy-csp-admx-offlinefiles.md)
+- [Pol_ReminderFreq_1](policy-csp-admx-offlinefiles.md)
+- [Pol_ReminderTimeout_1](policy-csp-admx-offlinefiles.md)
+- [Pol_NoMakeAvailableOffline_1](policy-csp-admx-offlinefiles.md)
+- [Pol_NoPinFiles_1](policy-csp-admx-offlinefiles.md)
+- [Pol_WorkOfflineDisabled_1](policy-csp-admx-offlinefiles.md)
+- [Pol_AssignedOfflineFiles_1](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncAtLogoff_1](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncAtLogon_1](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncAtSuspend_1](policy-csp-admx-offlinefiles.md)
+- [Pol_NoReminders_1](policy-csp-admx-offlinefiles.md)
+- [Pol_GoOfflineAction_2](policy-csp-admx-offlinefiles.md)
+- [Pol_Enabled](policy-csp-admx-offlinefiles.md)
+- [Pol_PurgeAtLogoff](policy-csp-admx-offlinefiles.md)
+- [Pol_BackgroundSyncSettings](policy-csp-admx-offlinefiles.md)
+- [Pol_SlowLinkSpeed](policy-csp-admx-offlinefiles.md)
+- [Pol_SlowLinkSettings](policy-csp-admx-offlinefiles.md)
+- [Pol_DefCacheSize](policy-csp-admx-offlinefiles.md)
+- [Pol_ExclusionListSettings](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncOnCostedNetwork](policy-csp-admx-offlinefiles.md)
+- [Pol_OnlineCachingSettings](policy-csp-admx-offlinefiles.md)
+- [Pol_EncryptOfflineFiles](policy-csp-admx-offlinefiles.md)
+- [Pol_EventLoggingLevel_2](policy-csp-admx-offlinefiles.md)
+- [Pol_ExtExclusionList](policy-csp-admx-offlinefiles.md)
+- [Pol_ReminderInitTimeout_2](policy-csp-admx-offlinefiles.md)
+- [Pol_CacheSize](policy-csp-admx-offlinefiles.md)
+- [Pol_CustomGoOfflineActions_2](policy-csp-admx-offlinefiles.md)
+- [Pol_NoCacheViewer_2](policy-csp-admx-offlinefiles.md)
+- [Pol_NoConfigCache_2](policy-csp-admx-offlinefiles.md)
+- [Pol_ReminderFreq_2](policy-csp-admx-offlinefiles.md)
+- [Pol_ReminderTimeout_2](policy-csp-admx-offlinefiles.md)
+- [Pol_NoMakeAvailableOffline_2](policy-csp-admx-offlinefiles.md)
+- [Pol_NoPinFiles_2](policy-csp-admx-offlinefiles.md)
+- [Pol_WorkOfflineDisabled_2](policy-csp-admx-offlinefiles.md)
+- [Pol_AssignedOfflineFiles_2](policy-csp-admx-offlinefiles.md)
+- [Pol_AlwaysPinSubFolders](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncAtLogoff_2](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncAtLogon_2](policy-csp-admx-offlinefiles.md)
+- [Pol_SyncAtSuspend_2](policy-csp-admx-offlinefiles.md)
+- [Pol_NoReminders_2](policy-csp-admx-offlinefiles.md)
+- [Pol_QuickAdimPin](policy-csp-admx-offlinefiles.md)
+
+## ADMX_pca
+
+- [DetectDeprecatedCOMComponentFailuresPolicy](policy-csp-admx-pca.md)
+- [DetectDeprecatedComponentFailuresPolicy](policy-csp-admx-pca.md)
+- [DetectInstallFailuresPolicy](policy-csp-admx-pca.md)
+- [DetectUndetectedInstallersPolicy](policy-csp-admx-pca.md)
+- [DetectUpdateFailuresPolicy](policy-csp-admx-pca.md)
+- [DisablePcaUIPolicy](policy-csp-admx-pca.md)
+- [DetectBlockedDriversPolicy](policy-csp-admx-pca.md)
+
+## ADMX_PeerToPeerCaching
+
+- [EnableWindowsBranchCache_SMB](policy-csp-admx-peertopeercaching.md)
+- [SetDowngrading](policy-csp-admx-peertopeercaching.md)
+- [EnableWindowsBranchCache_HostedMultipleServers](policy-csp-admx-peertopeercaching.md)
+- [EnableWindowsBranchCache_HostedCacheDiscovery](policy-csp-admx-peertopeercaching.md)
+- [SetDataCacheEntryMaxAge](policy-csp-admx-peertopeercaching.md)
+- [EnableWindowsBranchCache_Distributed](policy-csp-admx-peertopeercaching.md)
+- [EnableWindowsBranchCache_Hosted](policy-csp-admx-peertopeercaching.md)
+- [SetCachePercent](policy-csp-admx-peertopeercaching.md)
+- [EnableWindowsBranchCache](policy-csp-admx-peertopeercaching.md)
+
+## ADMX_PenTraining
+
+- [PenTrainingOff_1](policy-csp-admx-pentraining.md)
+- [PenTrainingOff_2](policy-csp-admx-pentraining.md)
+
+## ADMX_PerformanceDiagnostics
+
+- [WdiScenarioExecutionPolicy_1](policy-csp-admx-performancediagnostics.md)
+- [WdiScenarioExecutionPolicy_3](policy-csp-admx-performancediagnostics.md)
+- [WdiScenarioExecutionPolicy_4](policy-csp-admx-performancediagnostics.md)
+- [WdiScenarioExecutionPolicy_2](policy-csp-admx-performancediagnostics.md)
+
+## ADMX_Power
+
+- [PW_PromptPasswordOnResume](policy-csp-admx-power.md)
+- [Dont_PowerOff_AfterShutdown](policy-csp-admx-power.md)
+- [DCStartMenuButtonAction_2](policy-csp-admx-power.md)
+- [ACStartMenuButtonAction_2](policy-csp-admx-power.md)
+- [DiskDCPowerDownTimeOut_2](policy-csp-admx-power.md)
+- [DiskACPowerDownTimeOut_2](policy-csp-admx-power.md)
+- [DCBatteryDischargeAction0_2](policy-csp-admx-power.md)
+- [DCBatteryDischargeLevel0_2](policy-csp-admx-power.md)
+- [DCBatteryDischargeAction1_2](policy-csp-admx-power.md)
+- [DCBatteryDischargeLevel1_2](policy-csp-admx-power.md)
+- [ReserveBatteryNotificationLevel](policy-csp-admx-power.md)
+- [DCBatteryDischargeLevel1UINotification_2](policy-csp-admx-power.md)
+- [PowerThrottlingTurnOff](policy-csp-admx-power.md)
+- [InboxActiveSchemeOverride_2](policy-csp-admx-power.md)
+- [AllowSystemPowerRequestDC](policy-csp-admx-power.md)
+- [AllowSystemPowerRequestAC](policy-csp-admx-power.md)
+- [AllowSystemSleepWithRemoteFilesOpenDC](policy-csp-admx-power.md)
+- [AllowSystemSleepWithRemoteFilesOpenAC](policy-csp-admx-power.md)
+- [DCConnectivityInStandby_2](policy-csp-admx-power.md)
+- [ACConnectivityInStandby_2](policy-csp-admx-power.md)
+- [DCCriticalSleepTransitionsDisable_2](policy-csp-admx-power.md)
+- [ACCriticalSleepTransitionsDisable_2](policy-csp-admx-power.md)
+- [CustomActiveSchemeOverride_2](policy-csp-admx-power.md)
+- [EnableDesktopSlideShowDC](policy-csp-admx-power.md)
+- [EnableDesktopSlideShowAC](policy-csp-admx-power.md)
+
+## ADMX_PowerShellExecutionPolicy
+
+- [EnableUpdateHelpDefaultSourcePath](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableModuleLogging](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableTranscripting](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableScripts](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableUpdateHelpDefaultSourcePath](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableModuleLogging](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableTranscripting](policy-csp-admx-powershellexecutionpolicy.md)
+- [EnableScripts](policy-csp-admx-powershellexecutionpolicy.md)
+
+## ADMX_PreviousVersions
+
+- [DisableLocalPage_1](policy-csp-admx-previousversions.md)
+- [DisableRemotePage_1](policy-csp-admx-previousversions.md)
+- [HideBackupEntries_1](policy-csp-admx-previousversions.md)
+- [DisableLocalRestore_1](policy-csp-admx-previousversions.md)
+- [DisableBackupRestore_1](policy-csp-admx-previousversions.md)
+- [DisableRemoteRestore_1](policy-csp-admx-previousversions.md)
+- [DisableLocalPage_2](policy-csp-admx-previousversions.md)
+- [DisableRemotePage_2](policy-csp-admx-previousversions.md)
+- [HideBackupEntries_2](policy-csp-admx-previousversions.md)
+- [DisableLocalRestore_2](policy-csp-admx-previousversions.md)
+- [DisableBackupRestore_2](policy-csp-admx-previousversions.md)
+- [DisableRemoteRestore_2](policy-csp-admx-previousversions.md)
+
+## ADMX_Printing
+
+- [IntranetPrintersUrl](policy-csp-admx-printing.md)
+- [DownlevelBrowse](policy-csp-admx-printing.md)
+- [PrinterDirectorySearchScope](policy-csp-admx-printing.md)
+- [PackagePointAndPrintOnly](policy-csp-admx-printing.md)
+- [PackagePointAndPrintServerList](policy-csp-admx-printing.md)
+- [NoDeletePrinter](policy-csp-admx-printing.md)
+- [LegacyDefaultPrinterMode](policy-csp-admx-printing.md)
+- [AllowWebPrinting](policy-csp-admx-printing.md)
+- [DomainPrinters](policy-csp-admx-printing.md)
+- [NonDomainPrinters](policy-csp-admx-printing.md)
+- [ShowJobTitleInEventLogs](policy-csp-admx-printing.md)
+- [ForceSoftwareRasterization](policy-csp-admx-printing.md)
+- [EMFDespooling](policy-csp-admx-printing.md)
+- [MXDWUseLegacyOutputFormatMSXPS](policy-csp-admx-printing.md)
+- [PhysicalLocation](policy-csp-admx-printing.md)
+- [CustomizedSupportUrl](policy-csp-admx-printing.md)
+- [KMPrintersAreBlocked](policy-csp-admx-printing.md)
+- [V4DriverDisallowPrinterExtension](policy-csp-admx-printing.md)
+- [PrintDriverIsolationExecutionPolicy](policy-csp-admx-printing.md)
+- [DoNotInstallCompatibleDriverFromWindowsUpdate](policy-csp-admx-printing.md)
+- [ApplicationDriverIsolation](policy-csp-admx-printing.md)
+- [PackagePointAndPrintOnly_Win7](policy-csp-admx-printing.md)
+- [PrintDriverIsolationOverrideCompat](policy-csp-admx-printing.md)
+- [PackagePointAndPrintServerList_Win7](policy-csp-admx-printing.md)
+- [PhysicalLocationSupport](policy-csp-admx-printing.md)
+- [PrinterServerThread](policy-csp-admx-printing.md)
+
+## ADMX_Printing2
+
+- [RegisterSpoolerRemoteRpcEndPoint](policy-csp-admx-printing2.md)
+- [ImmortalPrintQueue](policy-csp-admx-printing2.md)
+- [AutoPublishing](policy-csp-admx-printing2.md)
+- [VerifyPublishedState](policy-csp-admx-printing2.md)
+- [PruningInterval](policy-csp-admx-printing2.md)
+- [PruningPriority](policy-csp-admx-printing2.md)
+- [PruningRetries](policy-csp-admx-printing2.md)
+- [PruningRetryLog](policy-csp-admx-printing2.md)
+- [PruneDownlevel](policy-csp-admx-printing2.md)
+
+## ADMX_Programs
+
+- [NoGetPrograms](policy-csp-admx-programs.md)
+- [NoInstalledUpdates](policy-csp-admx-programs.md)
+- [NoProgramsAndFeatures](policy-csp-admx-programs.md)
+- [NoDefaultPrograms](policy-csp-admx-programs.md)
+- [NoWindowsFeatures](policy-csp-admx-programs.md)
+- [NoWindowsMarketplace](policy-csp-admx-programs.md)
+- [NoProgramsCPL](policy-csp-admx-programs.md)
+
+## ADMX_PushToInstall
+
+- [DisablePushToInstall](policy-csp-admx-pushtoinstall.md)
+
+## ADMX_QOS
+
+- [QosServiceTypeBestEffort_C](policy-csp-admx-qos.md)
+- [QosServiceTypeControlledLoad_C](policy-csp-admx-qos.md)
+- [QosServiceTypeGuaranteed_C](policy-csp-admx-qos.md)
+- [QosServiceTypeNetworkControl_C](policy-csp-admx-qos.md)
+- [QosServiceTypeQualitative_C](policy-csp-admx-qos.md)
+- [QosServiceTypeBestEffort_NC](policy-csp-admx-qos.md)
+- [QosServiceTypeControlledLoad_NC](policy-csp-admx-qos.md)
+- [QosServiceTypeGuaranteed_NC](policy-csp-admx-qos.md)
+- [QosServiceTypeNetworkControl_NC](policy-csp-admx-qos.md)
+- [QosServiceTypeQualitative_NC](policy-csp-admx-qos.md)
+- [QosServiceTypeBestEffort_PV](policy-csp-admx-qos.md)
+- [QosServiceTypeControlledLoad_PV](policy-csp-admx-qos.md)
+- [QosServiceTypeGuaranteed_PV](policy-csp-admx-qos.md)
+- [QosServiceTypeNetworkControl_PV](policy-csp-admx-qos.md)
+- [QosServiceTypeNonConforming](policy-csp-admx-qos.md)
+- [QosServiceTypeQualitative_PV](policy-csp-admx-qos.md)
+- [QosMaxOutstandingSends](policy-csp-admx-qos.md)
+- [QosNonBestEffortLimit](policy-csp-admx-qos.md)
+- [QosTimerResolution](policy-csp-admx-qos.md)
+
+## ADMX_Radar
+
+- [WdiScenarioExecutionPolicy](policy-csp-admx-radar.md)
+
+## ADMX_Reliability
+
+- [ShutdownEventTrackerStateFile](policy-csp-admx-reliability.md)
+- [ShutdownReason](policy-csp-admx-reliability.md)
+- [EE_EnablePersistentTimeStamp](policy-csp-admx-reliability.md)
+- [PCH_ReportShutdownEvents](policy-csp-admx-reliability.md)
+
+## ADMX_RemoteAssistance
+
+- [RA_EncryptedTicketOnly](policy-csp-admx-remoteassistance.md)
+- [RA_Optimize_Bandwidth](policy-csp-admx-remoteassistance.md)
+
+## ADMX_RemovableStorage
+
+- [RemovableStorageClasses_DenyAll_Access_1](policy-csp-admx-removablestorage.md)
+- [CDandDVD_DenyRead_Access_1](policy-csp-admx-removablestorage.md)
+- [CDandDVD_DenyWrite_Access_1](policy-csp-admx-removablestorage.md)
+- [CustomClasses_DenyRead_Access_1](policy-csp-admx-removablestorage.md)
+- [CustomClasses_DenyWrite_Access_1](policy-csp-admx-removablestorage.md)
+- [FloppyDrives_DenyRead_Access_1](policy-csp-admx-removablestorage.md)
+- [FloppyDrives_DenyWrite_Access_1](policy-csp-admx-removablestorage.md)
+- [RemovableDisks_DenyRead_Access_1](policy-csp-admx-removablestorage.md)
+- [RemovableDisks_DenyWrite_Access_1](policy-csp-admx-removablestorage.md)
+- [AccessRights_RebootTime_1](policy-csp-admx-removablestorage.md)
+- [TapeDrives_DenyRead_Access_1](policy-csp-admx-removablestorage.md)
+- [TapeDrives_DenyWrite_Access_1](policy-csp-admx-removablestorage.md)
+- [WPDDevices_DenyRead_Access_1](policy-csp-admx-removablestorage.md)
+- [WPDDevices_DenyWrite_Access_1](policy-csp-admx-removablestorage.md)
+- [RemovableStorageClasses_DenyAll_Access_2](policy-csp-admx-removablestorage.md)
+- [Removable_Remote_Allow_Access](policy-csp-admx-removablestorage.md)
+- [CDandDVD_DenyExecute_Access_2](policy-csp-admx-removablestorage.md)
+- [CDandDVD_DenyRead_Access_2](policy-csp-admx-removablestorage.md)
+- [CDandDVD_DenyWrite_Access_2](policy-csp-admx-removablestorage.md)
+- [CustomClasses_DenyRead_Access_2](policy-csp-admx-removablestorage.md)
+- [CustomClasses_DenyWrite_Access_2](policy-csp-admx-removablestorage.md)
+- [FloppyDrives_DenyExecute_Access_2](policy-csp-admx-removablestorage.md)
+- [FloppyDrives_DenyRead_Access_2](policy-csp-admx-removablestorage.md)
+- [FloppyDrives_DenyWrite_Access_2](policy-csp-admx-removablestorage.md)
+- [RemovableDisks_DenyExecute_Access_2](policy-csp-admx-removablestorage.md)
+- [RemovableDisks_DenyRead_Access_2](policy-csp-admx-removablestorage.md)
+- [AccessRights_RebootTime_2](policy-csp-admx-removablestorage.md)
+- [TapeDrives_DenyExecute_Access_2](policy-csp-admx-removablestorage.md)
+- [TapeDrives_DenyRead_Access_2](policy-csp-admx-removablestorage.md)
+- [TapeDrives_DenyWrite_Access_2](policy-csp-admx-removablestorage.md)
+- [WPDDevices_DenyRead_Access_2](policy-csp-admx-removablestorage.md)
+- [WPDDevices_DenyWrite_Access_2](policy-csp-admx-removablestorage.md)
+
+## ADMX_RPC
+
+- [RpcIgnoreDelegationFailure](policy-csp-admx-rpc.md)
+- [RpcStateInformation](policy-csp-admx-rpc.md)
+- [RpcExtendedErrorInformation](policy-csp-admx-rpc.md)
+- [RpcMinimumHttpConnectionTimeout](policy-csp-admx-rpc.md)
+
+## ADMX_sam
+
+- [SamNGCKeyROCAValidation](policy-csp-admx-sam.md)
+
+## ADMX_Scripts
+
+- [Run_Logoff_Script_Visible](policy-csp-admx-scripts.md)
+- [Run_Logon_Script_Visible](policy-csp-admx-scripts.md)
+- [Run_Legacy_Logon_Script_Hidden](policy-csp-admx-scripts.md)
+- [Run_Logon_Script_Sync_1](policy-csp-admx-scripts.md)
+- [Run_User_PS_Scripts_First](policy-csp-admx-scripts.md)
+- [Allow_Logon_Script_NetbiosDisabled](policy-csp-admx-scripts.md)
+- [Run_Shutdown_Script_Visible](policy-csp-admx-scripts.md)
+- [Run_Startup_Script_Visible](policy-csp-admx-scripts.md)
+- [Run_Logon_Script_Sync_2](policy-csp-admx-scripts.md)
+- [Run_Startup_Script_Sync](policy-csp-admx-scripts.md)
+- [Run_Computer_PS_Scripts_First](policy-csp-admx-scripts.md)
+- [Run_User_PS_Scripts_First](policy-csp-admx-scripts.md)
+- [MaxGPOScriptWaitPolicy](policy-csp-admx-scripts.md)
+
+## ADMX_sdiageng
+
+- [ScriptedDiagnosticsSecurityPolicy](policy-csp-admx-sdiageng.md)
+- [ScriptedDiagnosticsExecutionPolicy](policy-csp-admx-sdiageng.md)
+- [BetterWhenConnected](policy-csp-admx-sdiageng.md)
+
+## ADMX_sdiagschd
+
+- [ScheduledDiagnosticsExecutionPolicy](policy-csp-admx-sdiagschd.md)
+
+## ADMX_Securitycenter
+
+- [SecurityCenter_SecurityCenterInDomain](policy-csp-admx-securitycenter.md)
+
+## ADMX_Sensors
+
+- [DisableLocation_1](policy-csp-admx-sensors.md)
+- [DisableLocationScripting_1](policy-csp-admx-sensors.md)
+- [DisableSensors_1](policy-csp-admx-sensors.md)
+- [DisableLocationScripting_2](policy-csp-admx-sensors.md)
+- [DisableSensors_2](policy-csp-admx-sensors.md)
+
+## ADMX_ServerManager
+
+- [Do_not_display_Manage_Your_Server_page](policy-csp-admx-servermanager.md)
+- [ServerManagerAutoRefreshRate](policy-csp-admx-servermanager.md)
+- [DoNotLaunchInitialConfigurationTasks](policy-csp-admx-servermanager.md)
+- [DoNotLaunchServerManager](policy-csp-admx-servermanager.md)
+
+## ADMX_Servicing
+
+- [Servicing](policy-csp-admx-servicing.md)
+
+## ADMX_SettingSync
+
+- [DisableSettingSync](policy-csp-admx-settingsync.md)
+- [DisableApplicationSettingSync](policy-csp-admx-settingsync.md)
+- [DisableAppSyncSettingSync](policy-csp-admx-settingsync.md)
+- [DisableDesktopThemeSettingSync](policy-csp-admx-settingsync.md)
+- [DisableSyncOnPaidNetwork](policy-csp-admx-settingsync.md)
+- [DisableWindowsSettingSync](policy-csp-admx-settingsync.md)
+- [DisableCredentialsSettingSync](policy-csp-admx-settingsync.md)
+- [DisablePersonalizationSettingSync](policy-csp-admx-settingsync.md)
+- [DisableStartLayoutSettingSync](policy-csp-admx-settingsync.md)
+
+## ADMX_SharedFolders
+
+- [PublishDfsRoots](policy-csp-admx-sharedfolders.md)
+- [PublishSharedFolders](policy-csp-admx-sharedfolders.md)
+
+## ADMX_Sharing
+
+- [NoInplaceSharing](policy-csp-admx-sharing.md)
+- [DisableHomeGroup](policy-csp-admx-sharing.md)
+
+## ADMX_ShellCommandPromptRegEditTools
+
+- [DisallowApps](policy-csp-admx-shellcommandpromptregedittools.md)
+- [DisableRegedit](policy-csp-admx-shellcommandpromptregedittools.md)
+- [DisableCMD](policy-csp-admx-shellcommandpromptregedittools.md)
+- [RestrictApps](policy-csp-admx-shellcommandpromptregedittools.md)
+
+## ADMX_Smartcard
+
+- [AllowCertificatesWithNoEKU](policy-csp-admx-smartcard.md)
+- [EnumerateECCCerts](policy-csp-admx-smartcard.md)
+- [AllowIntegratedUnblock](policy-csp-admx-smartcard.md)
+- [AllowSignatureOnlyKeys](policy-csp-admx-smartcard.md)
+- [AllowTimeInvalidCertificates](policy-csp-admx-smartcard.md)
+- [X509HintsNeeded](policy-csp-admx-smartcard.md)
+- [CertPropRootCleanupString](policy-csp-admx-smartcard.md)
+- [IntegratedUnblockPromptString](policy-csp-admx-smartcard.md)
+- [FilterDuplicateCerts](policy-csp-admx-smartcard.md)
+- [ForceReadingAllCertificates](policy-csp-admx-smartcard.md)
+- [SCPnPNotification](policy-csp-admx-smartcard.md)
+- [DisallowPlaintextPin](policy-csp-admx-smartcard.md)
+- [ReverseSubject](policy-csp-admx-smartcard.md)
+- [CertPropEnabledString](policy-csp-admx-smartcard.md)
+- [CertPropRootEnabledString](policy-csp-admx-smartcard.md)
+- [SCPnPEnabled](policy-csp-admx-smartcard.md)
+
+## ADMX_Snmp
+
+- [SNMP_Communities](policy-csp-admx-snmp.md)
+- [SNMP_PermittedManagers](policy-csp-admx-snmp.md)
+- [SNMP_Traps_Public](policy-csp-admx-snmp.md)
+
+## ADMX_SoundRec
+
+- [Soundrec_DiableApplication_TitleText_1](policy-csp-admx-soundrec.md)
+- [Soundrec_DiableApplication_TitleText_2](policy-csp-admx-soundrec.md)
+
+## ADMX_srmfci
+
+- [AccessDeniedConfiguration](policy-csp-admx-srmfci.md)
+- [EnableShellAccessCheck](policy-csp-admx-srmfci.md)
+- [EnableManualUX](policy-csp-admx-srmfci.md)
+- [CentralClassificationList](policy-csp-admx-srmfci.md)
+
+## ADMX_StartMenu
+
+- [MemCheckBoxInRunDlg](policy-csp-admx-startmenu.md)
+- [ForceStartMenuLogOff](policy-csp-admx-startmenu.md)
+- [AddSearchInternetLinkInStartMenu](policy-csp-admx-startmenu.md)
+- [ShowRunInStartMenu](policy-csp-admx-startmenu.md)
+- [PowerButtonAction](policy-csp-admx-startmenu.md)
+- [ClearRecentDocsOnExit](policy-csp-admx-startmenu.md)
+- [ClearRecentProgForNewUserInStartMenu](policy-csp-admx-startmenu.md)
+- [ClearTilesOnExit](policy-csp-admx-startmenu.md)
+- [NoToolbarsOnTaskbar](policy-csp-admx-startmenu.md)
+- [NoSearchCommInStartMenu](policy-csp-admx-startmenu.md)
+- [NoSearchFilesInStartMenu](policy-csp-admx-startmenu.md)
+- [NoSearchInternetInStartMenu](policy-csp-admx-startmenu.md)
+- [NoSearchProgramsInStartMenu](policy-csp-admx-startmenu.md)
+- [NoResolveSearch](policy-csp-admx-startmenu.md)
+- [NoResolveTrack](policy-csp-admx-startmenu.md)
+- [NoStartPage](policy-csp-admx-startmenu.md)
+- [GoToDesktopOnSignIn](policy-csp-admx-startmenu.md)
+- [GreyMSIAds](policy-csp-admx-startmenu.md)
+- [NoTrayItemsDisplay](policy-csp-admx-startmenu.md)
+- [DesktopAppsFirstInAppsView](policy-csp-admx-startmenu.md)
+- [LockTaskbar](policy-csp-admx-startmenu.md)
+- [StartPinAppsWhenInstalled](policy-csp-admx-startmenu.md)
+- [NoSetTaskbar](policy-csp-admx-startmenu.md)
+- [NoTaskGrouping](policy-csp-admx-startmenu.md)
+- [NoChangeStartMenu](policy-csp-admx-startmenu.md)
+- [NoUninstallFromStart](policy-csp-admx-startmenu.md)
+- [NoTrayContextMenu](policy-csp-admx-startmenu.md)
+- [NoMoreProgramsList](policy-csp-admx-startmenu.md)
+- [NoClose](policy-csp-admx-startmenu.md)
+- [NoBalloonTip](policy-csp-admx-startmenu.md)
+- [NoTaskBarClock](policy-csp-admx-startmenu.md)
+- [NoCommonGroups](policy-csp-admx-startmenu.md)
+- [NoSMConfigurePrograms](policy-csp-admx-startmenu.md)
+- [NoSMMyDocuments](policy-csp-admx-startmenu.md)
+- [NoStartMenuDownload](policy-csp-admx-startmenu.md)
+- [NoFavoritesMenu](policy-csp-admx-startmenu.md)
+- [NoGamesFolderOnStartMenu](policy-csp-admx-startmenu.md)
+- [NoHelp](policy-csp-admx-startmenu.md)
+- [NoStartMenuHomegroup](policy-csp-admx-startmenu.md)
+- [NoWindowsUpdate](policy-csp-admx-startmenu.md)
+- [StartMenuLogOff](policy-csp-admx-startmenu.md)
+- [NoSMMyMusic](policy-csp-admx-startmenu.md)
+- [NoNetAndDialupConnect](policy-csp-admx-startmenu.md)
+- [NoSMMyNetworkPlaces](policy-csp-admx-startmenu.md)
+- [NoSMMyPictures](policy-csp-admx-startmenu.md)
+- [NoPinnedPrograms](policy-csp-admx-startmenu.md)
+- [NoSetFolders](policy-csp-admx-startmenu.md)
+- [NoRecentDocsMenu](policy-csp-admx-startmenu.md)
+- [NoStartMenuRecordedTV](policy-csp-admx-startmenu.md)
+- [NoRun](policy-csp-admx-startmenu.md)
+- [NoSearchComputerLinkInStartMenu](policy-csp-admx-startmenu.md)
+- [NoFind](policy-csp-admx-startmenu.md)
+- [NoSearchEverywhereLinkInStartMenu](policy-csp-admx-startmenu.md)
+- [RemoveUnDockPCButton](policy-csp-admx-startmenu.md)
+- [NoUserFolderOnStartMenu](policy-csp-admx-startmenu.md)
+- [NoUserNameOnStartMenu](policy-csp-admx-startmenu.md)
+- [NoStartMenuSubFolders](policy-csp-admx-startmenu.md)
+- [NoStartMenuVideos](policy-csp-admx-startmenu.md)
+- [DisableGlobalSearchOnAppsView](policy-csp-admx-startmenu.md)
+- [ShowRunAsDifferentUserInStart](policy-csp-admx-startmenu.md)
+- [QuickLaunchEnabled](policy-csp-admx-startmenu.md)
+- [ShowStartOnDisplayWithForegroundOnWinKey](policy-csp-admx-startmenu.md)
+- [ShowAppsViewOnStart](policy-csp-admx-startmenu.md)
+- [NoAutoTrayNotify](policy-csp-admx-startmenu.md)
+- [Intellimenus](policy-csp-admx-startmenu.md)
+- [NoInstrumentation](policy-csp-admx-startmenu.md)
+- [StartPinAppsWhenInstalled](policy-csp-admx-startmenu.md)
+- [NoSetTaskbar](policy-csp-admx-startmenu.md)
+- [NoChangeStartMenu](policy-csp-admx-startmenu.md)
+- [NoUninstallFromStart](policy-csp-admx-startmenu.md)
+- [NoTrayContextMenu](policy-csp-admx-startmenu.md)
+- [NoMoreProgramsList](policy-csp-admx-startmenu.md)
+- [HidePowerOptions](policy-csp-admx-startmenu.md)
+- [NoRun](policy-csp-admx-startmenu.md)
+
+## ADMX_SystemRestore
+
+- [SR_DisableConfig](policy-csp-admx-systemrestore.md)
+
+## ADMX_TabletPCInputPanel
+
+- [Prediction_1](policy-csp-admx-tabletpcinputpanel.md)
+- [IPTIPTarget_1](policy-csp-admx-tabletpcinputpanel.md)
+- [IPTIPTouchTarget_1](policy-csp-admx-tabletpcinputpanel.md)
+- [RareChar_1](policy-csp-admx-tabletpcinputpanel.md)
+- [EdgeTarget_1](policy-csp-admx-tabletpcinputpanel.md)
+- [AutoComplete_1](policy-csp-admx-tabletpcinputpanel.md)
+- [PasswordSecurity_1](policy-csp-admx-tabletpcinputpanel.md)
+- [ScratchOut_1](policy-csp-admx-tabletpcinputpanel.md)
+- [Prediction_2](policy-csp-admx-tabletpcinputpanel.md)
+- [IPTIPTarget_2](policy-csp-admx-tabletpcinputpanel.md)
+- [IPTIPTouchTarget_2](policy-csp-admx-tabletpcinputpanel.md)
+- [RareChar_2](policy-csp-admx-tabletpcinputpanel.md)
+- [EdgeTarget_2](policy-csp-admx-tabletpcinputpanel.md)
+- [AutoComplete_2](policy-csp-admx-tabletpcinputpanel.md)
+- [PasswordSecurity_2](policy-csp-admx-tabletpcinputpanel.md)
+- [ScratchOut_2](policy-csp-admx-tabletpcinputpanel.md)
+
+## ADMX_TabletShell
+
+- [DisableInkball_1](policy-csp-admx-tabletshell.md)
+- [DisableNoteWriterPrinting_1](policy-csp-admx-tabletshell.md)
+- [DisableSnippingTool_1](policy-csp-admx-tabletshell.md)
+- [DisableJournal_1](policy-csp-admx-tabletshell.md)
+- [TurnOffFeedback_1](policy-csp-admx-tabletshell.md)
+- [PreventBackEscMapping_1](policy-csp-admx-tabletshell.md)
+- [PreventLaunchApp_1](policy-csp-admx-tabletshell.md)
+- [PreventPressAndHold_1](policy-csp-admx-tabletshell.md)
+- [TurnOffButtons_1](policy-csp-admx-tabletshell.md)
+- [PreventFlicksLearningMode_1](policy-csp-admx-tabletshell.md)
+- [PreventFlicks_1](policy-csp-admx-tabletshell.md)
+- [DisableInkball_2](policy-csp-admx-tabletshell.md)
+- [DisableNoteWriterPrinting_2](policy-csp-admx-tabletshell.md)
+- [DisableSnippingTool_2](policy-csp-admx-tabletshell.md)
+- [DisableJournal_2](policy-csp-admx-tabletshell.md)
+- [TurnOffFeedback_2](policy-csp-admx-tabletshell.md)
+- [PreventBackEscMapping_2](policy-csp-admx-tabletshell.md)
+- [PreventLaunchApp_2](policy-csp-admx-tabletshell.md)
+- [PreventPressAndHold_2](policy-csp-admx-tabletshell.md)
+- [TurnOffButtons_2](policy-csp-admx-tabletshell.md)
+- [PreventFlicksLearningMode_2](policy-csp-admx-tabletshell.md)
+- [PreventFlicks_2](policy-csp-admx-tabletshell.md)
+
+## ADMX_Taskbar
+
+- [EnableLegacyBalloonNotifications](policy-csp-admx-taskbar.md)
+- [NoPinningToDestinations](policy-csp-admx-taskbar.md)
+- [NoPinningToTaskbar](policy-csp-admx-taskbar.md)
+- [NoPinningStoreToTaskbar](policy-csp-admx-taskbar.md)
+- [TaskbarNoMultimon](policy-csp-admx-taskbar.md)
+- [NoRemoteDestinations](policy-csp-admx-taskbar.md)
+- [TaskbarLockAll](policy-csp-admx-taskbar.md)
+- [TaskbarNoAddRemoveToolbar](policy-csp-admx-taskbar.md)
+- [TaskbarNoRedock](policy-csp-admx-taskbar.md)
+- [TaskbarNoDragToolbar](policy-csp-admx-taskbar.md)
+- [TaskbarNoResize](policy-csp-admx-taskbar.md)
+- [DisableNotificationCenter](policy-csp-admx-taskbar.md)
+- [TaskbarNoPinnedList](policy-csp-admx-taskbar.md)
+- [HideSCAPower](policy-csp-admx-taskbar.md)
+- [HideSCANetwork](policy-csp-admx-taskbar.md)
+- [HideSCAHealth](policy-csp-admx-taskbar.md)
+- [HideSCAVolume](policy-csp-admx-taskbar.md)
+- [ShowWindowsStoreAppsOnTaskbar](policy-csp-admx-taskbar.md)
+- [TaskbarNoNotification](policy-csp-admx-taskbar.md)
+- [NoSystraySystemPromotion](policy-csp-admx-taskbar.md)
+- [NoBalloonFeatureAdvertisements](policy-csp-admx-taskbar.md)
+- [TaskbarNoThumbnail](policy-csp-admx-taskbar.md)
+- [DisableNotificationCenter](policy-csp-admx-taskbar.md)
+- [TaskbarNoPinnedList](policy-csp-admx-taskbar.md)
+
+## ADMX_tcpip
+
+- [6to4_Router_Name](policy-csp-admx-tcpip.md)
+- [6to4_Router_Name_Resolution_Interval](policy-csp-admx-tcpip.md)
+- [6to4_State](policy-csp-admx-tcpip.md)
+- [IPHTTPS_ClientState](policy-csp-admx-tcpip.md)
+- [ISATAP_Router_Name](policy-csp-admx-tcpip.md)
+- [ISATAP_State](policy-csp-admx-tcpip.md)
+- [Teredo_Client_Port](policy-csp-admx-tcpip.md)
+- [Teredo_Default_Qualified](policy-csp-admx-tcpip.md)
+- [Teredo_Refresh_Rate](policy-csp-admx-tcpip.md)
+- [Teredo_Server_Name](policy-csp-admx-tcpip.md)
+- [Teredo_State](policy-csp-admx-tcpip.md)
+- [IP_Stateless_Autoconfiguration_Limits_State](policy-csp-admx-tcpip.md)
+- [Windows_Scaling_Heuristics_State](policy-csp-admx-tcpip.md)
+
+## ADMX_TerminalServer
+
+- [TS_GATEWAY_POLICY_ENABLE](policy-csp-admx-terminalserver.md)
+- [TS_GATEWAY_POLICY_AUTH_METHOD](policy-csp-admx-terminalserver.md)
+- [TS_GATEWAY_POLICY_SERVER](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_ALLOW_UNSIGNED_FILES_1](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_ALLOW_SIGNED_FILES_1](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_DISABLE_PASSWORD_SAVING_1](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_TRUSTED_CERTIFICATE_THUMBPRINTS_2](policy-csp-admx-terminalserver.md)
+- [TS_RemoteControl_1](policy-csp-admx-terminalserver.md)
+- [TS_EASY_PRINT_User](policy-csp-admx-terminalserver.md)
+- [TS_START_PROGRAM_1](policy-csp-admx-terminalserver.md)
+- [TS_Session_End_On_Limit_1](policy-csp-admx-terminalserver.md)
+- [TS_SESSIONS_Idle_Limit_1](policy-csp-admx-terminalserver.md)
+- [TS_SESSIONS_Limits_1](policy-csp-admx-terminalserver.md)
+- [TS_SESSIONS_Disconnected_Timeout_1](policy-csp-admx-terminalserver.md)
+- [TS_RADC_DefaultConnection](policy-csp-admx-terminalserver.md)
+- [TS_LICENSE_SECGROUP](policy-csp-admx-terminalserver.md)
+- [TS_PreventLicenseUpgrade](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_ALLOW_UNSIGNED_FILES_2](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_ALLOW_SIGNED_FILES_2](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_AUTH](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_DISABLE_HARDWARE_MODE](policy-csp-admx-terminalserver.md)
+- [TS_PROMT_CREDS_CLIENT_COMP](policy-csp-admx-terminalserver.md)
+- [TS_USB_REDIRECTION_DISABLE](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_TRUSTED_CERTIFICATE_THUMBPRINTS_1](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_TURN_OFF_UDP](policy-csp-admx-terminalserver.md)
+- [TS_AUTO_RECONNECT](policy-csp-admx-terminalserver.md)
+- [TS_KEEP_ALIVE](policy-csp-admx-terminalserver.md)
+- [TS_FORCIBLE_LOGOFF](policy-csp-admx-terminalserver.md)
+- [TS_MAX_CON_POLICY](policy-csp-admx-terminalserver.md)
+- [TS_SINGLE_SESSION](policy-csp-admx-terminalserver.md)
+- [TS_SELECT_NETWORK_DETECT](policy-csp-admx-terminalserver.md)
+- [TS_SELECT_TRANSPORT](policy-csp-admx-terminalserver.md)
+- [TS_RemoteControl_2](policy-csp-admx-terminalserver.md)
+- [TS_RDSAppX_WaitForRegistration](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_AUDIO](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_AUDIO_CAPTURE](policy-csp-admx-terminalserver.md)
+- [TS_TIME_ZONE](policy-csp-admx-terminalserver.md)
+- [TS_UIA](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_CLIPBOARD](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_COM](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_LPT](policy-csp-admx-terminalserver.md)
+- [TS_SMART_CARD](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_PNP](policy-csp-admx-terminalserver.md)
+- [TS_CAMERA_REDIRECTION](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_AUDIO_QUALITY](policy-csp-admx-terminalserver.md)
+- [TS_LICENSE_TOOLTIP](policy-csp-admx-terminalserver.md)
+- [TS_LICENSING_MODE](policy-csp-admx-terminalserver.md)
+- [TS_LICENSE_SERVERS](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_PRINTER](policy-csp-admx-terminalserver.md)
+- [TS_CLIENT_DEFAULT_M](policy-csp-admx-terminalserver.md)
+- [TS_FALLBACKPRINTDRIVERTYPE](policy-csp-admx-terminalserver.md)
+- [TS_EASY_PRINT](policy-csp-admx-terminalserver.md)
+- [TS_DELETE_ROAMING_USER_PROFILES](policy-csp-admx-terminalserver.md)
+- [TS_USER_PROFILES](policy-csp-admx-terminalserver.md)
+- [TS_USER_HOME](policy-csp-admx-terminalserver.md)
+- [TS_USER_MANDATORY_PROFILES](policy-csp-admx-terminalserver.md)
+- [TS_SD_ClustName](policy-csp-admx-terminalserver.md)
+- [TS_SD_Loc](policy-csp-admx-terminalserver.md)
+- [TS_JOIN_SESSION_DIRECTORY](policy-csp-admx-terminalserver.md)
+- [TS_SD_EXPOSE_ADDRESS](policy-csp-admx-terminalserver.md)
+- [TS_TURNOFF_SINGLEAPP](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_COMPRESSOR](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_AVC_HW_ENCODE_PREFERRED](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_IMAGE_QUALITY](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_PROFILE](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_LEGACY_RFX](policy-csp-admx-terminalserver.md)
+- [TS_DISABLE_REMOTE_DESKTOP_WALLPAPER](policy-csp-admx-terminalserver.md)
+- [TS_COLORDEPTH](policy-csp-admx-terminalserver.md)
+- [TS_MAXDISPLAYRES](policy-csp-admx-terminalserver.md)
+- [TS_MAXMONITOR](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_AVC444_MODE_PREFERRED](policy-csp-admx-terminalserver.md)
+- [TS_EnableVirtualGraphics](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_VISEXP](policy-csp-admx-terminalserver.md)
+- [TS_RemoteDesktopVirtualGraphics](policy-csp-admx-terminalserver.md)
+- [TS_NoDisconnectMenu](policy-csp-admx-terminalserver.md)
+- [TS_NoSecurityMenu](policy-csp-admx-terminalserver.md)
+- [TS_START_PROGRAM_2](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_ADVANCED_REMOTEFX_REMOTEAPP](policy-csp-admx-terminalserver.md)
+- [TS_DX_USE_FULL_HWGPU](policy-csp-admx-terminalserver.md)
+- [TS_SERVER_WDDM_GRAPHICS_DRIVER](policy-csp-admx-terminalserver.md)
+- [TS_TSCC_PERMISSIONS_POLICY](policy-csp-admx-terminalserver.md)
+- [TS_SECURITY_LAYER_POLICY](policy-csp-admx-terminalserver.md)
+- [TS_USER_AUTHENTICATION_POLICY](policy-csp-admx-terminalserver.md)
+- [TS_CERTIFICATE_TEMPLATE_POLICY](policy-csp-admx-terminalserver.md)
+- [TS_Session_End_On_Limit_2](policy-csp-admx-terminalserver.md)
+- [TS_SESSIONS_Idle_Limit_2](policy-csp-admx-terminalserver.md)
+- [TS_SESSIONS_Limits_2](policy-csp-admx-terminalserver.md)
+- [TS_SESSIONS_Disconnected_Timeout_2](policy-csp-admx-terminalserver.md)
+- [TS_TEMP_DELETE](policy-csp-admx-terminalserver.md)
+- [TS_TEMP_PER_SESSION](policy-csp-admx-terminalserver.md)
+
+## ADMX_Thumbnails
+
+- [DisableThumbsDBOnNetworkFolders](policy-csp-admx-thumbnails.md)
+- [DisableThumbnailsOnNetworkFolders](policy-csp-admx-thumbnails.md)
+- [DisableThumbnails](policy-csp-admx-thumbnails.md)
+
+## ADMX_TouchInput
+
+- [TouchInputOff_1](policy-csp-admx-touchinput.md)
+- [PanningEverywhereOff_1](policy-csp-admx-touchinput.md)
+- [TouchInputOff_2](policy-csp-admx-touchinput.md)
+- [PanningEverywhereOff_2](policy-csp-admx-touchinput.md)
+
+## ADMX_TPM
+
+- [OptIntoDSHA_Name](policy-csp-admx-tpm.md)
+- [OSManagedAuth_Name](policy-csp-admx-tpm.md)
+- [BlockedCommandsList_Name](policy-csp-admx-tpm.md)
+- [ClearTPMIfNotReady_Name](policy-csp-admx-tpm.md)
+- [UseLegacyDAP_Name](policy-csp-admx-tpm.md)
+- [IgnoreDefaultList_Name](policy-csp-admx-tpm.md)
+- [IgnoreLocalList_Name](policy-csp-admx-tpm.md)
+- [StandardUserAuthorizationFailureIndividualThreshold_Name](policy-csp-admx-tpm.md)
+- [StandardUserAuthorizationFailureDuration_Name](policy-csp-admx-tpm.md)
+- [StandardUserAuthorizationFailureTotalThreshold_Name](policy-csp-admx-tpm.md)
+
+## ADMX_UserExperienceVirtualization
+
+- [MicrosoftOffice2013AccessBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016AccessBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [Calculator](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013CommonBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016CommonBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013ExcelBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016ExcelBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013InfoPathBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer10](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer11](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer8](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer9](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorerCommon](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013LyncBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016LyncBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Access](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Access](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Access](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Excel](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Excel](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Excel](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010InfoPath](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013InfoPath](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Lync](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Lync](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Lync](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Common](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Common](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013UploadCenter](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Common](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016UploadCenter](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Access2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Access2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Common2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Common2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Excel2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Excel2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365InfoPath2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Lync2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Lync2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365OneNote2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365OneNote2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Outlook2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Outlook2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365PowerPoint2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365PowerPoint2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Project2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Project2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Publisher2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Publisher2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365SharePointDesigner2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Visio2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Visio2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Word2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Word2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OneDriveForBusiness](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OneDriveForBusiness](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010OneNote](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OneNote](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OneNote](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Outlook](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Outlook](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Outlook](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010PowerPoint](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013PowerPoint](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016PowerPoint](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Project](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Project](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Project](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Publisher](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Publisher](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Publisher](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010SharePointDesigner](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013SharePointDesigner](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010SharePointWorkspace](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Visio](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Visio](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Visio](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Word](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Word](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Word](policy-csp-admx-userexperiencevirtualization.md)
+- [Notepad](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OneNoteBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OneNoteBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OutlookBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OutlookBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013PowerPointBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016PowerPointBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013ProjectBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016ProjectBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013PublisherBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016PublisherBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013SharePointDesignerBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013VisioBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016VisioBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013WordBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016WordBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [Wordpad](policy-csp-admx-userexperiencevirtualization.md)
+- [ConfigureSyncMethod](policy-csp-admx-userexperiencevirtualization.md)
+- [DisableWin8Sync](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncProviderPingEnabled](policy-csp-admx-userexperiencevirtualization.md)
+- [MaxPackageSizeInBytes](policy-csp-admx-userexperiencevirtualization.md)
+- [SettingsStoragePath](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncOverMeteredNetwork](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncOverMeteredNetworkWhenRoaming](policy-csp-admx-userexperiencevirtualization.md)
+- [RepositoryTimeout](policy-csp-admx-userexperiencevirtualization.md)
+- [DisableWindowsOSSettings](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncEnabled](policy-csp-admx-userexperiencevirtualization.md)
+- [ConfigureVdi](policy-csp-admx-userexperiencevirtualization.md)
+- [Finance](policy-csp-admx-userexperiencevirtualization.md)
+- [Games](policy-csp-admx-userexperiencevirtualization.md)
+- [Maps](policy-csp-admx-userexperiencevirtualization.md)
+- [Music](policy-csp-admx-userexperiencevirtualization.md)
+- [News](policy-csp-admx-userexperiencevirtualization.md)
+- [Reader](policy-csp-admx-userexperiencevirtualization.md)
+- [Sports](policy-csp-admx-userexperiencevirtualization.md)
+- [Travel](policy-csp-admx-userexperiencevirtualization.md)
+- [Video](policy-csp-admx-userexperiencevirtualization.md)
+- [Weather](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013AccessBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016AccessBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [Calculator](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013CommonBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016CommonBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013ExcelBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016ExcelBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013InfoPathBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer10](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer11](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer8](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorer9](policy-csp-admx-userexperiencevirtualization.md)
+- [InternetExplorerCommon](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013LyncBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016LyncBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Access](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Access](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Access](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Excel](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Excel](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Excel](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010InfoPath](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013InfoPath](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Lync](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Lync](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Lync](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Common](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Common](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013UploadCenter](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Common](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016UploadCenter](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Access2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Access2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Common2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Common2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Excel2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Excel2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365InfoPath2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Lync2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Lync2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365OneNote2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365OneNote2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Outlook2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Outlook2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365PowerPoint2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365PowerPoint2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Project2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Project2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Publisher2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Publisher2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365SharePointDesigner2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Visio2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Visio2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Word2013](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice365Word2016](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OneDriveForBusiness](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OneDriveForBusiness](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010OneNote](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OneNote](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OneNote](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Outlook](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Outlook](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Outlook](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010PowerPoint](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013PowerPoint](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016PowerPoint](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Project](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Project](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Project](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Publisher](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Publisher](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Publisher](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010SharePointDesigner](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013SharePointDesigner](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010SharePointWorkspace](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Visio](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Visio](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Visio](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2010Word](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013Word](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016Word](policy-csp-admx-userexperiencevirtualization.md)
+- [Notepad](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OneNoteBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OneNoteBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013OutlookBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016OutlookBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013PowerPointBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016PowerPointBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013ProjectBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016ProjectBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013PublisherBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016PublisherBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013SharePointDesignerBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013VisioBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016VisioBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2013WordBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [MicrosoftOffice2016WordBackup](policy-csp-admx-userexperiencevirtualization.md)
+- [Wordpad](policy-csp-admx-userexperiencevirtualization.md)
+- [ConfigureSyncMethod](policy-csp-admx-userexperiencevirtualization.md)
+- [ContactITDescription](policy-csp-admx-userexperiencevirtualization.md)
+- [ContactITUrl](policy-csp-admx-userexperiencevirtualization.md)
+- [DisableWin8Sync](policy-csp-admx-userexperiencevirtualization.md)
+- [EnableUEV](policy-csp-admx-userexperiencevirtualization.md)
+- [FirstUseNotificationEnabled](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncProviderPingEnabled](policy-csp-admx-userexperiencevirtualization.md)
+- [MaxPackageSizeInBytes](policy-csp-admx-userexperiencevirtualization.md)
+- [SettingsStoragePath](policy-csp-admx-userexperiencevirtualization.md)
+- [SettingsTemplateCatalogPath](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncOverMeteredNetwork](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncOverMeteredNetworkWhenRoaming](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncUnlistedWindows8Apps](policy-csp-admx-userexperiencevirtualization.md)
+- [RepositoryTimeout](policy-csp-admx-userexperiencevirtualization.md)
+- [DisableWindowsOSSettings](policy-csp-admx-userexperiencevirtualization.md)
+- [TrayIconEnabled](policy-csp-admx-userexperiencevirtualization.md)
+- [SyncEnabled](policy-csp-admx-userexperiencevirtualization.md)
+- [ConfigureVdi](policy-csp-admx-userexperiencevirtualization.md)
+- [Finance](policy-csp-admx-userexperiencevirtualization.md)
+- [Games](policy-csp-admx-userexperiencevirtualization.md)
+- [Maps](policy-csp-admx-userexperiencevirtualization.md)
+- [Music](policy-csp-admx-userexperiencevirtualization.md)
+- [News](policy-csp-admx-userexperiencevirtualization.md)
+- [Reader](policy-csp-admx-userexperiencevirtualization.md)
+- [Sports](policy-csp-admx-userexperiencevirtualization.md)
+- [Travel](policy-csp-admx-userexperiencevirtualization.md)
+- [Video](policy-csp-admx-userexperiencevirtualization.md)
+- [Weather](policy-csp-admx-userexperiencevirtualization.md)
+
+## ADMX_UserProfiles
+
+- [LimitSize](policy-csp-admx-userprofiles.md)
+- [SlowLinkTimeOut](policy-csp-admx-userprofiles.md)
+- [CleanupProfiles](policy-csp-admx-userprofiles.md)
+- [DontForceUnloadHive](policy-csp-admx-userprofiles.md)
+- [ProfileErrorAction](policy-csp-admx-userprofiles.md)
+- [LeaveAppMgmtData](policy-csp-admx-userprofiles.md)
+- [USER_HOME](policy-csp-admx-userprofiles.md)
+- [UserInfoAccessAction](policy-csp-admx-userprofiles.md)
+
+## ADMX_W32Time
+
+- [W32TIME_POLICY_CONFIG](policy-csp-admx-w32time.md)
+- [W32TIME_POLICY_CONFIGURE_NTPCLIENT](policy-csp-admx-w32time.md)
+- [W32TIME_POLICY_ENABLE_NTPCLIENT](policy-csp-admx-w32time.md)
+- [W32TIME_POLICY_ENABLE_NTPSERVER](policy-csp-admx-w32time.md)
+
+## ADMX_WCM
+
+- [WCM_DisablePowerManagement](policy-csp-admx-wcm.md)
+- [WCM_EnableSoftDisconnect](policy-csp-admx-wcm.md)
+- [WCM_MinimizeConnections](policy-csp-admx-wcm.md)
+
+## ADMX_WDI
+
+- [WdiDpsScenarioExecutionPolicy](policy-csp-admx-wdi.md)
+- [WdiDpsScenarioDataSizeLimitPolicy](policy-csp-admx-wdi.md)
+
+## ADMX_WinCal
+
+- [TurnOffWinCal_1](policy-csp-admx-wincal.md)
+- [TurnOffWinCal_2](policy-csp-admx-wincal.md)
+
+## ADMX_WindowsColorSystem
+
+- [ProhibitChangingInstalledProfileList_1](policy-csp-admx-windowscolorsystem.md)
+- [ProhibitChangingInstalledProfileList_2](policy-csp-admx-windowscolorsystem.md)
+
+## ADMX_WindowsConnectNow
+
+- [WCN_DisableWcnUi_1](policy-csp-admx-windowsconnectnow.md)
+- [WCN_EnableRegistrar](policy-csp-admx-windowsconnectnow.md)
+- [WCN_DisableWcnUi_2](policy-csp-admx-windowsconnectnow.md)
+
+## ADMX_WindowsExplorer
+
+- [EnforceShellExtensionSecurity](policy-csp-admx-windowsexplorer.md)
+- [NoBackButton](policy-csp-admx-windowsexplorer.md)
+- [NoPlacesBar](policy-csp-admx-windowsexplorer.md)
+- [NoFileMRU](policy-csp-admx-windowsexplorer.md)
+- [PlacesBar](policy-csp-admx-windowsexplorer.md)
+- [DisableBindDirectlyToPropertySetStorage](policy-csp-admx-windowsexplorer.md)
+- [DisableKnownFolders](policy-csp-admx-windowsexplorer.md)
+- [ConfirmFileDelete](policy-csp-admx-windowsexplorer.md)
+- [NoFolderOptions](policy-csp-admx-windowsexplorer.md)
+- [NoRecycleFiles](policy-csp-admx-windowsexplorer.md)
+- [NoRunAsInstallPrompt](policy-csp-admx-windowsexplorer.md)
+- [LinkResolveIgnoreLinkInfo](policy-csp-admx-windowsexplorer.md)
+- [NoDrives](policy-csp-admx-windowsexplorer.md)
+- [NoManageMyComputerVerb](policy-csp-admx-windowsexplorer.md)
+- [DefaultLibrariesLocation](policy-csp-admx-windowsexplorer.md)
+- [RecycleBinSize](policy-csp-admx-windowsexplorer.md)
+- [MaxRecentDocs](policy-csp-admx-windowsexplorer.md)
+- [NoWorkgroupContents](policy-csp-admx-windowsexplorer.md)
+- [NoEntireNetwork](policy-csp-admx-windowsexplorer.md)
+- [TryHarderPinnedOpenSearch](policy-csp-admx-windowsexplorer.md)
+- [TryHarderPinnedLibrary](policy-csp-admx-windowsexplorer.md)
+- [NoViewOnDrive](policy-csp-admx-windowsexplorer.md)
+- [NoNetConnectDisconnect](policy-csp-admx-windowsexplorer.md)
+- [NoCDBurning](policy-csp-admx-windowsexplorer.md)
+- [NoDFSTab](policy-csp-admx-windowsexplorer.md)
+- [NoViewContextMenu](policy-csp-admx-windowsexplorer.md)
+- [NoFileMenu](policy-csp-admx-windowsexplorer.md)
+- [NoHardwareTab](policy-csp-admx-windowsexplorer.md)
+- [NoShellSearchButton](policy-csp-admx-windowsexplorer.md)
+- [NoSecurityTab](policy-csp-admx-windowsexplorer.md)
+- [NoMyComputerSharedDocuments](policy-csp-admx-windowsexplorer.md)
+- [NoSearchInternetTryHarderButton](policy-csp-admx-windowsexplorer.md)
+- [NoChangeKeyboardNavigationIndicators](policy-csp-admx-windowsexplorer.md)
+- [NoChangeAnimation](policy-csp-admx-windowsexplorer.md)
+- [PromptRunasInstallNetPath](policy-csp-admx-windowsexplorer.md)
+- [ExplorerRibbonStartsMinimized](policy-csp-admx-windowsexplorer.md)
+- [NoCacheThumbNailPictures](policy-csp-admx-windowsexplorer.md)
+- [DisableSearchBoxSuggestions](policy-csp-admx-windowsexplorer.md)
+- [NoStrCmpLogical](policy-csp-admx-windowsexplorer.md)
+- [ShellProtocolProtectedModeTitle_1](policy-csp-admx-windowsexplorer.md)
+- [HideContentViewModeSnippets](policy-csp-admx-windowsexplorer.md)
+- [NoWindowsHotKeys](policy-csp-admx-windowsexplorer.md)
+- [DisableIndexedLibraryExperience](policy-csp-admx-windowsexplorer.md)
+- [ClassicShell](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Internet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Internet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Intranet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Intranet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_LocalMachine](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_LocalMachine](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_InternetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_InternetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_IntranetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_IntranetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_LocalMachineLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_LocalMachineLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_RestrictedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_RestrictedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_TrustedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_TrustedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Restricted](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Restricted](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Trusted](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Trusted](policy-csp-admx-windowsexplorer.md)
+- [EnableShellShortcutIconRemotePath](policy-csp-admx-windowsexplorer.md)
+- [EnableSmartScreen](policy-csp-admx-windowsexplorer.md)
+- [DisableBindDirectlyToPropertySetStorage](policy-csp-admx-windowsexplorer.md)
+- [NoNewAppAlert](policy-csp-admx-windowsexplorer.md)
+- [DefaultLibrariesLocation](policy-csp-admx-windowsexplorer.md)
+- [ShowHibernateOption](policy-csp-admx-windowsexplorer.md)
+- [ShowSleepOption](policy-csp-admx-windowsexplorer.md)
+- [ExplorerRibbonStartsMinimized](policy-csp-admx-windowsexplorer.md)
+- [NoStrCmpLogical](policy-csp-admx-windowsexplorer.md)
+- [ShellProtocolProtectedModeTitle_2](policy-csp-admx-windowsexplorer.md)
+- [CheckSameSourceAndTargetForFRAndDFS](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Internet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Internet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Intranet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Intranet](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_LocalMachine](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_LocalMachine](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_InternetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_InternetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_IntranetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_IntranetLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_LocalMachineLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_LocalMachineLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_RestrictedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_RestrictedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_TrustedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_TrustedLockdown](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Restricted](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Restricted](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchQuery_Trusted](policy-csp-admx-windowsexplorer.md)
+- [IZ_Policy_OpenSearchPreview_Trusted](policy-csp-admx-windowsexplorer.md)
+
+## ADMX_WindowsMediaDRM
+
+- [DisableOnline](policy-csp-admx-windowsmediadrm.md)
+
+## ADMX_WindowsMediaPlayer
+
+- [ConfigureHTTPProxySettings](policy-csp-admx-windowsmediaplayer.md)
+- [ConfigureMMSProxySettings](policy-csp-admx-windowsmediaplayer.md)
+- [NetworkBuffering](policy-csp-admx-windowsmediaplayer.md)
+- [ConfigureRTSPProxySettings](policy-csp-admx-windowsmediaplayer.md)
+- [DisableNetworkSettings](policy-csp-admx-windowsmediaplayer.md)
+- [WindowsStreamingMediaProtocols](policy-csp-admx-windowsmediaplayer.md)
+- [EnableScreenSaver](policy-csp-admx-windowsmediaplayer.md)
+- [PolicyCodecUpdate](policy-csp-admx-windowsmediaplayer.md)
+- [PreventCDDVDMetadataRetrieval](policy-csp-admx-windowsmediaplayer.md)
+- [PreventMusicFileMetadataRetrieval](policy-csp-admx-windowsmediaplayer.md)
+- [PreventRadioPresetsRetrieval](policy-csp-admx-windowsmediaplayer.md)
+- [DoNotShowAnchor](policy-csp-admx-windowsmediaplayer.md)
+- [HidePrivacyTab](policy-csp-admx-windowsmediaplayer.md)
+- [HideSecurityTab](policy-csp-admx-windowsmediaplayer.md)
+- [SkinLockDown](policy-csp-admx-windowsmediaplayer.md)
+- [DisableSetupFirstUseConfiguration](policy-csp-admx-windowsmediaplayer.md)
+- [DisableAutoUpdate](policy-csp-admx-windowsmediaplayer.md)
+- [PreventWMPDeskTopShortcut](policy-csp-admx-windowsmediaplayer.md)
+- [PreventLibrarySharing](policy-csp-admx-windowsmediaplayer.md)
+- [PreventQuickLaunchShortcut](policy-csp-admx-windowsmediaplayer.md)
+- [DontUseFrameInterpolation](policy-csp-admx-windowsmediaplayer.md)
+
+## ADMX_WindowsRemoteManagement
+
+- [DisallowKerberos_2](policy-csp-admx-windowsremotemanagement.md)
+- [DisallowKerberos_1](policy-csp-admx-windowsremotemanagement.md)
+
+## ADMX_WindowsStore
+
+- [DisableOSUpgrade_1](policy-csp-admx-windowsstore.md)
+- [RemoveWindowsStore_1](policy-csp-admx-windowsstore.md)
+- [DisableAutoDownloadWin8](policy-csp-admx-windowsstore.md)
+- [DisableOSUpgrade_2](policy-csp-admx-windowsstore.md)
+- [RemoveWindowsStore_2](policy-csp-admx-windowsstore.md)
+
+## ADMX_WinInit
+
+- [Hiberboot](policy-csp-admx-wininit.md)
+- [ShutdownTimeoutHungSessionsDescription](policy-csp-admx-wininit.md)
+- [DisableNamedPipeShutdownPolicyDescription](policy-csp-admx-wininit.md)
+
+## ADMX_WinLogon
+
+- [CustomShell](policy-csp-admx-winlogon.md)
+- [LogonHoursNotificationPolicyDescription](policy-csp-admx-winlogon.md)
+- [ReportCachedLogonPolicyDescription](policy-csp-admx-winlogon.md)
+- [LogonHoursPolicyDescription](policy-csp-admx-winlogon.md)
+- [SoftwareSASGeneration](policy-csp-admx-winlogon.md)
+- [DisplayLastLogonInfoDescription](policy-csp-admx-winlogon.md)
+- [ReportCachedLogonPolicyDescription](policy-csp-admx-winlogon.md)
+
+## ADMX_Winsrv
+
+- [AllowBlockingAppsAtShutdown](policy-csp-admx-winsrv.md)
+
+## ADMX_wlansvc
+
+- [SetPINPreferred](policy-csp-admx-wlansvc.md)
+- [SetPINEnforced](policy-csp-admx-wlansvc.md)
+- [SetCost](policy-csp-admx-wlansvc.md)
+
+## ADMX_WordWheel
+
+- [CustomSearch](policy-csp-admx-wordwheel.md)
+
+## ADMX_WorkFoldersClient
+
+- [Pol_UserEnableTokenBroker](policy-csp-admx-workfoldersclient.md)
+- [Pol_UserEnableWorkFolders](policy-csp-admx-workfoldersclient.md)
+- [Pol_MachineEnableWorkFolders](policy-csp-admx-workfoldersclient.md)
+
+## ADMX_WPN
+
+- [QuietHoursDailyBeginMinute](policy-csp-admx-wpn.md)
+- [QuietHoursDailyEndMinute](policy-csp-admx-wpn.md)
+- [NoCallsDuringQuietHours](policy-csp-admx-wpn.md)
+- [NoQuietHours](policy-csp-admx-wpn.md)
+- [NoToastNotification](policy-csp-admx-wpn.md)
+- [NoLockScreenToastNotification](policy-csp-admx-wpn.md)
+- [NoToastNotification](policy-csp-admx-wpn.md)
+
+## AppRuntime
+
+- [AllowMicrosoftAccountsToBeOptional](policy-csp-appruntime.md)
+
+## AppVirtualization
+
+- [AllowAppVClient](policy-csp-appvirtualization.md)
+- [ClientCoexistenceAllowMigrationmode](policy-csp-appvirtualization.md)
+- [IntegrationAllowRootUser](policy-csp-appvirtualization.md)
+- [IntegrationAllowRootGlobal](policy-csp-appvirtualization.md)
+- [AllowRoamingFileExclusions](policy-csp-appvirtualization.md)
+- [AllowRoamingRegistryExclusions](policy-csp-appvirtualization.md)
+- [AllowPackageCleanup](policy-csp-appvirtualization.md)
+- [AllowPublishingRefreshUX](policy-csp-appvirtualization.md)
+- [PublishingAllowServer1](policy-csp-appvirtualization.md)
+- [PublishingAllowServer2](policy-csp-appvirtualization.md)
+- [PublishingAllowServer3](policy-csp-appvirtualization.md)
+- [PublishingAllowServer4](policy-csp-appvirtualization.md)
+- [PublishingAllowServer5](policy-csp-appvirtualization.md)
+- [AllowReportingServer](policy-csp-appvirtualization.md)
+- [AllowPackageScripts](policy-csp-appvirtualization.md)
+- [StreamingAllowHighCostLaunch](policy-csp-appvirtualization.md)
+- [StreamingAllowCertificateFilterForClient_SSL](policy-csp-appvirtualization.md)
+- [StreamingSupportBranchCache](policy-csp-appvirtualization.md)
+- [StreamingAllowLocationProvider](policy-csp-appvirtualization.md)
+- [StreamingAllowPackageInstallationRoot](policy-csp-appvirtualization.md)
+- [StreamingAllowPackageSourceRoot](policy-csp-appvirtualization.md)
+- [StreamingAllowReestablishmentInterval](policy-csp-appvirtualization.md)
+- [StreamingAllowReestablishmentRetries](policy-csp-appvirtualization.md)
+- [StreamingSharedContentStoreMode](policy-csp-appvirtualization.md)
+- [AllowStreamingAutoload](policy-csp-appvirtualization.md)
+- [StreamingVerifyCertificateRevocationList](policy-csp-appvirtualization.md)
+- [AllowDynamicVirtualization](policy-csp-appvirtualization.md)
+- [VirtualComponentsAllowList](policy-csp-appvirtualization.md)
+
+## AttachmentManager
+
+- [DoNotPreserveZoneInformation](policy-csp-attachmentmanager.md)
+- [HideZoneInfoMechanism](policy-csp-attachmentmanager.md)
+- [NotifyAntivirusPrograms](policy-csp-attachmentmanager.md)
+
+## Autoplay
+
+- [DisallowAutoplayForNonVolumeDevices](policy-csp-autoplay.md)
+- [SetDefaultAutoRunBehavior](policy-csp-autoplay.md)
+- [TurnOffAutoPlay](policy-csp-autoplay.md)
+- [DisallowAutoplayForNonVolumeDevices](policy-csp-autoplay.md)
+- [SetDefaultAutoRunBehavior](policy-csp-autoplay.md)
+- [TurnOffAutoPlay](policy-csp-autoplay.md)
+
+## Cellular
+
+- [ShowAppCellularAccessUI](policy-csp-cellular.md)
+
+## Connectivity
+
+- [HardenedUNCPaths](policy-csp-connectivity.md)
+- [ProhibitInstallationAndConfigurationOfNetworkBridge](policy-csp-connectivity.md)
+- [DisableDownloadingOfPrintDriversOverHTTP](policy-csp-connectivity.md)
+- [DisableInternetDownloadForWebPublishingAndOnlineOrderingWizards](policy-csp-connectivity.md)
+- [DiablePrintingOverHTTP](policy-csp-connectivity.md)
+
+## CredentialProviders
+
+- [BlockPicturePassword](policy-csp-credentialproviders.md)
+- [AllowPINLogon](policy-csp-credentialproviders.md)
+
+## CredentialsDelegation
+
+- [RemoteHostAllowsDelegationOfNonExportableCredentials](policy-csp-credentialsdelegation.md)
+
+## CredentialsUI
+
+- [DisablePasswordReveal](policy-csp-credentialsui.md)
+- [DisablePasswordReveal](policy-csp-credentialsui.md)
+- [EnumerateAdministrators](policy-csp-credentialsui.md)
+
+## DataUsage
+
+- [SetCost3G](policy-csp-datausage.md)
+- [SetCost4G](policy-csp-datausage.md)
+
+## DeliveryOptimization
+
+- [DOSetHoursToLimitBackgroundDownloadBandwidth](policy-csp-deliveryoptimization.md)
+- [DOSetHoursToLimitForegroundDownloadBandwidth](policy-csp-deliveryoptimization.md)
+
+## Desktop
+
+- [PreventUserRedirectionOfProfileFolders](policy-csp-desktop.md)
+
+## DesktopAppInstaller
+
+- [EnableAppInstaller](policy-csp-desktopappinstaller.md)
+- [EnableSettings](policy-csp-desktopappinstaller.md)
+- [EnableExperimentalFeatures](policy-csp-desktopappinstaller.md)
+- [EnableLocalManifestFiles](policy-csp-desktopappinstaller.md)
+- [EnableHashOverride](policy-csp-desktopappinstaller.md)
+- [EnableDefaultSource](policy-csp-desktopappinstaller.md)
+- [EnableMicrosoftStoreSource](policy-csp-desktopappinstaller.md)
+- [SourceAutoUpdateInterval](policy-csp-desktopappinstaller.md)
+- [EnableAdditionalSources](policy-csp-desktopappinstaller.md)
+- [EnableAllowedSources](policy-csp-desktopappinstaller.md)
+- [EnableMSAppInstallerProtocol](policy-csp-desktopappinstaller.md)
+
+## DeviceInstallation
+
+- [PreventInstallationOfMatchingDeviceIDs](policy-csp-deviceinstallation.md)
+- [PreventInstallationOfMatchingDeviceInstanceIDs](policy-csp-deviceinstallation.md)
+- [PreventInstallationOfMatchingDeviceSetupClasses](policy-csp-deviceinstallation.md)
+- [PreventInstallationOfDevicesNotDescribedByOtherPolicySettings](policy-csp-deviceinstallation.md)
+- [EnableInstallationPolicyLayering](policy-csp-deviceinstallation.md)
+- [AllowInstallationOfMatchingDeviceSetupClasses](policy-csp-deviceinstallation.md)
+- [AllowInstallationOfMatchingDeviceIDs](policy-csp-deviceinstallation.md)
+- [AllowInstallationOfMatchingDeviceInstanceIDs](policy-csp-deviceinstallation.md)
+- [PreventDeviceMetadataFromNetwork](policy-csp-deviceinstallation.md)
+
+## DeviceLock
+
+- [PreventLockScreenSlideShow](policy-csp-devicelock.md)
+- [PreventEnablingLockScreenCamera](policy-csp-devicelock.md)
+
+## ErrorReporting
+
+- [DisableWindowsErrorReporting](policy-csp-errorreporting.md)
+- [DisplayErrorNotification](policy-csp-errorreporting.md)
+- [DoNotSendAdditionalData](policy-csp-errorreporting.md)
+- [PreventCriticalErrorDisplay](policy-csp-errorreporting.md)
+- [CustomizeConsentSettings](policy-csp-errorreporting.md)
+
+## EventLogService
+
+- [ControlEventLogBehavior](policy-csp-eventlogservice.md)
+- [SpecifyMaximumFileSizeApplicationLog](policy-csp-eventlogservice.md)
+- [SpecifyMaximumFileSizeSecurityLog](policy-csp-eventlogservice.md)
+- [SpecifyMaximumFileSizeSystemLog](policy-csp-eventlogservice.md)
+
+## FileExplorer
+
+- [TurnOffDataExecutionPreventionForExplorer](policy-csp-fileexplorer.md)
+- [TurnOffHeapTerminationOnCorruption](policy-csp-fileexplorer.md)
+
+## InternetExplorer
+
+- [AddSearchProvider](policy-csp-internetexplorer.md)
+- [DisableSecondaryHomePageChange](policy-csp-internetexplorer.md)
+- [DisableProxyChange](policy-csp-internetexplorer.md)
+- [DisableSearchProviderChange](policy-csp-internetexplorer.md)
+- [DisableCustomerExperienceImprovementProgramParticipation](policy-csp-internetexplorer.md)
+- [AllowEnhancedSuggestionsInAddressBar](policy-csp-internetexplorer.md)
+- [AllowSuggestedSites](policy-csp-internetexplorer.md)
+- [DisableActiveXVersionListAutoDownload](policy-csp-internetexplorer.md)
+- [DisableCompatView](policy-csp-internetexplorer.md)
+- [DisableFeedsBackgroundSync](policy-csp-internetexplorer.md)
+- [DisableFirstRunWizard](policy-csp-internetexplorer.md)
+- [DisableFlipAheadFeature](policy-csp-internetexplorer.md)
+- [DisableGeolocation](policy-csp-internetexplorer.md)
+- [DisableHomePageChange](policy-csp-internetexplorer.md)
+- [DisableWebAddressAutoComplete](policy-csp-internetexplorer.md)
+- [NewTabDefaultPage](policy-csp-internetexplorer.md)
+- [PreventManagingSmartScreenFilter](policy-csp-internetexplorer.md)
+- [SearchProviderList](policy-csp-internetexplorer.md)
+- [AllowActiveXFiltering](policy-csp-internetexplorer.md)
+- [AllowEnterpriseModeSiteList](policy-csp-internetexplorer.md)
+- [SendSitesNotInEnterpriseSiteListToEdge](policy-csp-internetexplorer.md)
+- [ConfigureEdgeRedirectChannel](policy-csp-internetexplorer.md)
+- [KeepIntranetSitesInInternetExplorer](policy-csp-internetexplorer.md)
+- [AllowSaveTargetAsInIEMode](policy-csp-internetexplorer.md)
+- [DisableInternetExplorerApp](policy-csp-internetexplorer.md)
+- [EnableExtendedIEModeHotkeys](policy-csp-internetexplorer.md)
+- [ResetZoomForDialogInIEMode](policy-csp-internetexplorer.md)
+- [EnableGlobalWindowListInIEMode](policy-csp-internetexplorer.md)
+- [JScriptReplacement](policy-csp-internetexplorer.md)
+- [AllowInternetExplorerStandardsMode](policy-csp-internetexplorer.md)
+- [AllowInternetExplorer7PolicyList](policy-csp-internetexplorer.md)
+- [DisableEncryptionSupport](policy-csp-internetexplorer.md)
+- [AllowEnhancedProtectedMode](policy-csp-internetexplorer.md)
+- [AllowInternetZoneTemplate](policy-csp-internetexplorer.md)
+- [IncludeAllLocalSites](policy-csp-internetexplorer.md)
+- [IncludeAllNetworkPaths](policy-csp-internetexplorer.md)
+- [AllowIntranetZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLocalMachineZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownInternetZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownIntranetZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownLocalMachineZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownRestrictedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowsLockedDownTrustedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowsRestrictedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowSiteToZoneAssignmentList](policy-csp-internetexplorer.md)
+- [AllowTrustedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [InternetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [InternetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [InternetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [InternetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [InternetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [IntranetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LocalMachineZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [IntranetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LocalMachineZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [InternetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [InternetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [InternetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [InternetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [AllowAddOnList](policy-csp-internetexplorer.md)
+- [DoNotBlockOutdatedActiveXControls](policy-csp-internetexplorer.md)
+- [DoNotBlockOutdatedActiveXControlsOnSpecificDomains](policy-csp-internetexplorer.md)
+- [DisableEnclosureDownloading](policy-csp-internetexplorer.md)
+- [DisableBypassOfSmartScreenWarnings](policy-csp-internetexplorer.md)
+- [DisableBypassOfSmartScreenWarningsAboutUncommonFiles](policy-csp-internetexplorer.md)
+- [AllowOneWordEntry](policy-csp-internetexplorer.md)
+- [AllowEnterpriseModeFromToolsMenu](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowActiveScripting](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowBinaryAndScriptBehaviors](policy-csp-internetexplorer.md)
+- [InternetZoneAllowCopyPasteViaScript](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowCopyPasteViaScript](policy-csp-internetexplorer.md)
+- [AllowDeletingBrowsingHistoryOnExit](policy-csp-internetexplorer.md)
+- [InternetZoneAllowDragAndDropCopyAndPasteFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowDragAndDropCopyAndPasteFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowFileDownloads](policy-csp-internetexplorer.md)
+- [InternetZoneAllowLoadingOfXAMLFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowLoadingOfXAMLFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowMETAREFRESH](policy-csp-internetexplorer.md)
+- [InternetZoneAllowOnlyApprovedDomainsToUseActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowOnlyApprovedDomainsToUseActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](policy-csp-internetexplorer.md)
+- [InternetZoneAllowScriptingOfInternetExplorerWebBrowserControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowScriptingOfInternetExplorerWebBrowserControls](policy-csp-internetexplorer.md)
+- [InternetZoneAllowScriptInitiatedWindows](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowScriptInitiatedWindows](policy-csp-internetexplorer.md)
+- [AllowSoftwareWhenSignatureIsInvalid](policy-csp-internetexplorer.md)
+- [InternetZoneAllowUpdatesToStatusBarViaScript](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowUpdatesToStatusBarViaScript](policy-csp-internetexplorer.md)
+- [CheckServerCertificateRevocation](policy-csp-internetexplorer.md)
+- [CheckSignaturesOnDownloadedPrograms](policy-csp-internetexplorer.md)
+- [DisableConfiguringHistory](policy-csp-internetexplorer.md)
+- [DoNotAllowActiveXControlsInProtectedMode](policy-csp-internetexplorer.md)
+- [InternetZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [IntranetZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [LocalMachineZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneDownloadSignedActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneDownloadSignedActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneDownloadUnsignedActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneDownloadUnsignedActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](policy-csp-internetexplorer.md)
+- [InternetZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](policy-csp-internetexplorer.md)
+- [InternetZoneEnableMIMESniffing](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableMIMESniffing](policy-csp-internetexplorer.md)
+- [InternetZoneIncludeLocalPathWhenUploadingFilesToServer](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneIncludeLocalPathWhenUploadingFilesToServer](policy-csp-internetexplorer.md)
+- [ConsistentMimeHandlingInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [MimeSniffingSafetyFeatureInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [MKProtocolSecurityRestrictionInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [NotificationBarInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [ProtectionFromZoneElevationInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [RestrictActiveXInstallInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [RestrictFileDownloadInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [ScriptedWindowSecurityRestrictionsInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [InternetZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [IntranetZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LocalMachineZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [InternetZoneLaunchingApplicationsAndFilesInIFRAME](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneLaunchingApplicationsAndFilesInIFRAME](policy-csp-internetexplorer.md)
+- [InternetZoneLogonOptions](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneLogonOptions](policy-csp-internetexplorer.md)
+- [DisableDeletingUserVisitedWebsites](policy-csp-internetexplorer.md)
+- [DisableIgnoringCertificateErrors](policy-csp-internetexplorer.md)
+- [PreventPerUserInstallationOfActiveXControls](policy-csp-internetexplorer.md)
+- [RemoveRunThisTimeButtonForOutdatedActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneRunActiveXControlsAndPlugins](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneScriptActiveXControlsMarkedSafeForScripting](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneScriptingOfJavaApplets](policy-csp-internetexplorer.md)
+- [InternetZoneShowSecurityWarningForPotentiallyUnsafeFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneShowSecurityWarningForPotentiallyUnsafeFiles](policy-csp-internetexplorer.md)
+- [SpecifyUseOfActiveXInstallerService](policy-csp-internetexplorer.md)
+- [DisableCrashDetection](policy-csp-internetexplorer.md)
+- [DisableInPrivateBrowsing](policy-csp-internetexplorer.md)
+- [DisableSecuritySettingsCheck](policy-csp-internetexplorer.md)
+- [DisableProcessesInEnhancedProtectedMode](policy-csp-internetexplorer.md)
+- [AllowCertificateAddressMismatchWarning](policy-csp-internetexplorer.md)
+- [InternetZoneEnableCrossSiteScriptingFilter](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableCrossSiteScriptingFilter](policy-csp-internetexplorer.md)
+- [InternetZoneEnableProtectedMode](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneTurnOnProtectedMode](policy-csp-internetexplorer.md)
+- [AllowAutoComplete](policy-csp-internetexplorer.md)
+- [InternetZoneUsePopupBlocker](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneUsePopupBlocker](policy-csp-internetexplorer.md)
+- [InternetZoneAllowVBScriptToRunInInternetExplorer](policy-csp-internetexplorer.md)
+- [LockedDownIntranetJavaPermissions](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowVBScriptToRunInInternetExplorer](policy-csp-internetexplorer.md)
+- [DisableHTMLApplication](policy-csp-internetexplorer.md)
+- [AddSearchProvider](policy-csp-internetexplorer.md)
+- [DisableSecondaryHomePageChange](policy-csp-internetexplorer.md)
+- [DisableUpdateCheck](policy-csp-internetexplorer.md)
+- [DisableProxyChange](policy-csp-internetexplorer.md)
+- [DisableSearchProviderChange](policy-csp-internetexplorer.md)
+- [DisableCustomerExperienceImprovementProgramParticipation](policy-csp-internetexplorer.md)
+- [AllowEnhancedSuggestionsInAddressBar](policy-csp-internetexplorer.md)
+- [AllowSuggestedSites](policy-csp-internetexplorer.md)
+- [DisableCompatView](policy-csp-internetexplorer.md)
+- [DisableFeedsBackgroundSync](policy-csp-internetexplorer.md)
+- [DisableFirstRunWizard](policy-csp-internetexplorer.md)
+- [DisableFlipAheadFeature](policy-csp-internetexplorer.md)
+- [DisableGeolocation](policy-csp-internetexplorer.md)
+- [DisableWebAddressAutoComplete](policy-csp-internetexplorer.md)
+- [NewTabDefaultPage](policy-csp-internetexplorer.md)
+- [PreventManagingSmartScreenFilter](policy-csp-internetexplorer.md)
+- [SearchProviderList](policy-csp-internetexplorer.md)
+- [DoNotAllowUsersToAddSites](policy-csp-internetexplorer.md)
+- [DoNotAllowUsersToChangePolicies](policy-csp-internetexplorer.md)
+- [AllowActiveXFiltering](policy-csp-internetexplorer.md)
+- [AllowEnterpriseModeSiteList](policy-csp-internetexplorer.md)
+- [SendSitesNotInEnterpriseSiteListToEdge](policy-csp-internetexplorer.md)
+- [ConfigureEdgeRedirectChannel](policy-csp-internetexplorer.md)
+- [KeepIntranetSitesInInternetExplorer](policy-csp-internetexplorer.md)
+- [AllowSaveTargetAsInIEMode](policy-csp-internetexplorer.md)
+- [DisableInternetExplorerApp](policy-csp-internetexplorer.md)
+- [EnableExtendedIEModeHotkeys](policy-csp-internetexplorer.md)
+- [ResetZoomForDialogInIEMode](policy-csp-internetexplorer.md)
+- [EnableGlobalWindowListInIEMode](policy-csp-internetexplorer.md)
+- [JScriptReplacement](policy-csp-internetexplorer.md)
+- [AllowInternetExplorerStandardsMode](policy-csp-internetexplorer.md)
+- [AllowInternetExplorer7PolicyList](policy-csp-internetexplorer.md)
+- [DisableEncryptionSupport](policy-csp-internetexplorer.md)
+- [AllowEnhancedProtectedMode](policy-csp-internetexplorer.md)
+- [AllowInternetZoneTemplate](policy-csp-internetexplorer.md)
+- [IncludeAllLocalSites](policy-csp-internetexplorer.md)
+- [IncludeAllNetworkPaths](policy-csp-internetexplorer.md)
+- [AllowIntranetZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLocalMachineZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownInternetZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownIntranetZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownLocalMachineZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowLockedDownRestrictedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowsLockedDownTrustedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowsRestrictedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [AllowSiteToZoneAssignmentList](policy-csp-internetexplorer.md)
+- [AllowTrustedSitesZoneTemplate](policy-csp-internetexplorer.md)
+- [InternetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowAccessToDataSources](policy-csp-internetexplorer.md)
+- [InternetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowFontDownloads](policy-csp-internetexplorer.md)
+- [InternetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowScriptlets](policy-csp-internetexplorer.md)
+- [InternetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowAutomaticPromptingForActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowAutomaticPromptingForFileDownloads](policy-csp-internetexplorer.md)
+- [InternetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [IntranetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LocalMachineZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneInitializeAndScriptActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [IntranetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LocalMachineZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneNavigateWindowsAndFrames](policy-csp-internetexplorer.md)
+- [InternetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowNETFrameworkReliantComponents](policy-csp-internetexplorer.md)
+- [InternetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowSmartScreenIE](policy-csp-internetexplorer.md)
+- [InternetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowUserDataPersistence](policy-csp-internetexplorer.md)
+- [InternetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [IntranetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownIntranetZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LocalMachineZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneAllowLessPrivilegedSites](policy-csp-internetexplorer.md)
+- [AllowAddOnList](policy-csp-internetexplorer.md)
+- [DoNotBlockOutdatedActiveXControls](policy-csp-internetexplorer.md)
+- [DoNotBlockOutdatedActiveXControlsOnSpecificDomains](policy-csp-internetexplorer.md)
+- [DisableEnclosureDownloading](policy-csp-internetexplorer.md)
+- [DisableBypassOfSmartScreenWarnings](policy-csp-internetexplorer.md)
+- [DisableBypassOfSmartScreenWarningsAboutUncommonFiles](policy-csp-internetexplorer.md)
+- [AllowOneWordEntry](policy-csp-internetexplorer.md)
+- [AllowEnterpriseModeFromToolsMenu](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowActiveScripting](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowBinaryAndScriptBehaviors](policy-csp-internetexplorer.md)
+- [InternetZoneAllowCopyPasteViaScript](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowCopyPasteViaScript](policy-csp-internetexplorer.md)
+- [AllowDeletingBrowsingHistoryOnExit](policy-csp-internetexplorer.md)
+- [InternetZoneAllowDragAndDropCopyAndPasteFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowDragAndDropCopyAndPasteFiles](policy-csp-internetexplorer.md)
+- [AllowFallbackToSSL3](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowFileDownloads](policy-csp-internetexplorer.md)
+- [InternetZoneAllowLoadingOfXAMLFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowLoadingOfXAMLFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowMETAREFRESH](policy-csp-internetexplorer.md)
+- [InternetZoneAllowOnlyApprovedDomainsToUseActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowOnlyApprovedDomainsToUseActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](policy-csp-internetexplorer.md)
+- [InternetZoneAllowScriptingOfInternetExplorerWebBrowserControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowScriptingOfInternetExplorerWebBrowserControls](policy-csp-internetexplorer.md)
+- [InternetZoneAllowScriptInitiatedWindows](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowScriptInitiatedWindows](policy-csp-internetexplorer.md)
+- [AllowSoftwareWhenSignatureIsInvalid](policy-csp-internetexplorer.md)
+- [InternetZoneAllowUpdatesToStatusBarViaScript](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowUpdatesToStatusBarViaScript](policy-csp-internetexplorer.md)
+- [CheckServerCertificateRevocation](policy-csp-internetexplorer.md)
+- [CheckSignaturesOnDownloadedPrograms](policy-csp-internetexplorer.md)
+- [DisableConfiguringHistory](policy-csp-internetexplorer.md)
+- [DoNotAllowActiveXControlsInProtectedMode](policy-csp-internetexplorer.md)
+- [InternetZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [IntranetZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [LocalMachineZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneDownloadSignedActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneDownloadSignedActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneDownloadUnsignedActiveXControls](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneDownloadUnsignedActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](policy-csp-internetexplorer.md)
+- [InternetZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](policy-csp-internetexplorer.md)
+- [InternetZoneEnableMIMESniffing](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableMIMESniffing](policy-csp-internetexplorer.md)
+- [InternetZoneIncludeLocalPathWhenUploadingFilesToServer](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneIncludeLocalPathWhenUploadingFilesToServer](policy-csp-internetexplorer.md)
+- [ConsistentMimeHandlingInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [MimeSniffingSafetyFeatureInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [MKProtocolSecurityRestrictionInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [NotificationBarInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [ProtectionFromZoneElevationInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [RestrictActiveXInstallInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [RestrictFileDownloadInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [ScriptedWindowSecurityRestrictionsInternetExplorerProcesses](policy-csp-internetexplorer.md)
+- [InternetZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [IntranetZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LocalMachineZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownInternetZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownLocalMachineZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownRestrictedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [LockedDownTrustedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [TrustedSitesZoneJavaPermissions](policy-csp-internetexplorer.md)
+- [InternetZoneLaunchingApplicationsAndFilesInIFRAME](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneLaunchingApplicationsAndFilesInIFRAME](policy-csp-internetexplorer.md)
+- [InternetZoneLogonOptions](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneLogonOptions](policy-csp-internetexplorer.md)
+- [DisableDeletingUserVisitedWebsites](policy-csp-internetexplorer.md)
+- [DisableIgnoringCertificateErrors](policy-csp-internetexplorer.md)
+- [PreventPerUserInstallationOfActiveXControls](policy-csp-internetexplorer.md)
+- [RemoveRunThisTimeButtonForOutdatedActiveXControls](policy-csp-internetexplorer.md)
+- [InternetZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneRunActiveXControlsAndPlugins](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneScriptActiveXControlsMarkedSafeForScripting](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneScriptingOfJavaApplets](policy-csp-internetexplorer.md)
+- [SecurityZonesUseOnlyMachineSettings](policy-csp-internetexplorer.md)
+- [InternetZoneShowSecurityWarningForPotentiallyUnsafeFiles](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneShowSecurityWarningForPotentiallyUnsafeFiles](policy-csp-internetexplorer.md)
+- [SpecifyUseOfActiveXInstallerService](policy-csp-internetexplorer.md)
+- [DisableCrashDetection](policy-csp-internetexplorer.md)
+- [DisableInPrivateBrowsing](policy-csp-internetexplorer.md)
+- [DisableSecuritySettingsCheck](policy-csp-internetexplorer.md)
+- [DisableProcessesInEnhancedProtectedMode](policy-csp-internetexplorer.md)
+- [AllowCertificateAddressMismatchWarning](policy-csp-internetexplorer.md)
+- [InternetZoneEnableCrossSiteScriptingFilter](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneEnableCrossSiteScriptingFilter](policy-csp-internetexplorer.md)
+- [InternetZoneEnableProtectedMode](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneTurnOnProtectedMode](policy-csp-internetexplorer.md)
+- [InternetZoneUsePopupBlocker](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneUsePopupBlocker](policy-csp-internetexplorer.md)
+- [InternetZoneAllowVBScriptToRunInInternetExplorer](policy-csp-internetexplorer.md)
+- [LockedDownIntranetJavaPermissions](policy-csp-internetexplorer.md)
+- [RestrictedSitesZoneAllowVBScriptToRunInInternetExplorer](policy-csp-internetexplorer.md)
+- [DisableHTMLApplication](policy-csp-internetexplorer.md)
+
+## Kerberos
+
+- [RequireKerberosArmoring](policy-csp-kerberos.md)
+- [KerberosClientSupportsClaimsCompoundArmor](policy-csp-kerberos.md)
+- [RequireStrictKDCValidation](policy-csp-kerberos.md)
+- [SetMaximumContextTokenSize](policy-csp-kerberos.md)
+- [AllowForestSearchOrder](policy-csp-kerberos.md)
+
+## LocalSecurityAuthority
+
+- [AllowCustomSSPsAPs](policy-csp-lsa.md)
+
+## MixedReality
+
+- [ConfigureNtpClient](policy-csp-mixedreality.md)
+- [NtpClientEnabled](policy-csp-mixedreality.md)
+
+## MSSecurityGuide
+
+- [ApplyUACRestrictionsToLocalAccountsOnNetworkLogon](policy-csp-mssecurityguide.md)
+- [ConfigureSMBV1Server](policy-csp-mssecurityguide.md)
+- [ConfigureSMBV1ClientDriver](policy-csp-mssecurityguide.md)
+- [EnableStructuredExceptionHandlingOverwriteProtection](policy-csp-mssecurityguide.md)
+- [WDigestAuthentication](policy-csp-mssecurityguide.md)
+- [TurnOnWindowsDefenderProtectionAgainstPotentiallyUnwantedApplications](policy-csp-mssecurityguide.md)
+
+## MSSLegacy
+
+- [IPv6SourceRoutingProtectionLevel](policy-csp-msslegacy.md)
+- [IPSourceRoutingProtectionLevel](policy-csp-msslegacy.md)
+- [AllowICMPRedirectsToOverrideOSPFGeneratedRoutes](policy-csp-msslegacy.md)
+- [AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers](policy-csp-msslegacy.md)
+
+## Power
+
+- [AllowStandbyWhenSleepingPluggedIn](policy-csp-power.md)
+- [RequirePasswordWhenComputerWakesOnBattery](policy-csp-power.md)
+- [RequirePasswordWhenComputerWakesPluggedIn](policy-csp-power.md)
+- [StandbyTimeoutPluggedIn](policy-csp-power.md)
+- [StandbyTimeoutOnBattery](policy-csp-power.md)
+- [HibernateTimeoutPluggedIn](policy-csp-power.md)
+- [HibernateTimeoutOnBattery](policy-csp-power.md)
+- [DisplayOffTimeoutPluggedIn](policy-csp-power.md)
+- [DisplayOffTimeoutOnBattery](policy-csp-power.md)
+- [AllowStandbyStatesWhenSleepingOnBattery](policy-csp-power.md)
+
+## Printers
+
+- [PointAndPrintRestrictions_User](policy-csp-printers.md)
+- [EnableDeviceControlUser](policy-csp-printers.md)
+- [ApprovedUsbPrintDevicesUser](policy-csp-printers.md)
+- [PointAndPrintRestrictions](policy-csp-printers.md)
+- [PublishPrinters](policy-csp-printers.md)
+- [EnableDeviceControl](policy-csp-printers.md)
+- [ApprovedUsbPrintDevices](policy-csp-printers.md)
+- [RestrictDriverInstallationToAdministrators](policy-csp-printers.md)
+- [ConfigureCopyFilesPolicy](policy-csp-printers.md)
+- [ConfigureDriverValidationLevel](policy-csp-printers.md)
+- [ManageDriverExclusionList](policy-csp-printers.md)
+- [ConfigureRpcListenerPolicy](policy-csp-printers.md)
+- [ConfigureRpcConnectionPolicy](policy-csp-printers.md)
+- [ConfigureRpcTcpPort](policy-csp-printers.md)
+- [ConfigureIppPageCountsPolicy](policy-csp-printers.md)
+- [ConfigureRedirectionGuardPolicy](policy-csp-printers.md)
+
+## RemoteAssistance
+
+- [UnsolicitedRemoteAssistance](policy-csp-remoteassistance.md)
+- [SolicitedRemoteAssistance](policy-csp-remoteassistance.md)
+- [CustomizeWarningMessages](policy-csp-remoteassistance.md)
+- [SessionLogging](policy-csp-remoteassistance.md)
+
+## RemoteDesktopServices
+
+- [DoNotAllowPasswordSaving](policy-csp-remotedesktopservices.md)
+- [AllowUsersToConnectRemotely](policy-csp-remotedesktopservices.md)
+- [DoNotAllowDriveRedirection](policy-csp-remotedesktopservices.md)
+- [PromptForPasswordUponConnection](policy-csp-remotedesktopservices.md)
+- [RequireSecureRPCCommunication](policy-csp-remotedesktopservices.md)
+- [ClientConnectionEncryptionLevel](policy-csp-remotedesktopservices.md)
+- [DoNotAllowWebAuthnRedirection](policy-csp-remotedesktopservices.md)
+
+## RemoteManagement
+
+- [AllowBasicAuthentication_Client](policy-csp-remotemanagement.md)
+- [AllowBasicAuthentication_Service](policy-csp-remotemanagement.md)
+- [AllowUnencryptedTraffic_Client](policy-csp-remotemanagement.md)
+- [AllowUnencryptedTraffic_Service](policy-csp-remotemanagement.md)
+- [DisallowDigestAuthentication](policy-csp-remotemanagement.md)
+- [DisallowStoringOfRunAsCredentials](policy-csp-remotemanagement.md)
+- [AllowCredSSPAuthenticationClient](policy-csp-remotemanagement.md)
+- [AllowCredSSPAuthenticationService](policy-csp-remotemanagement.md)
+- [DisallowNegotiateAuthenticationClient](policy-csp-remotemanagement.md)
+- [DisallowNegotiateAuthenticationService](policy-csp-remotemanagement.md)
+- [TrustedHosts](policy-csp-remotemanagement.md)
+- [AllowRemoteServerManagement](policy-csp-remotemanagement.md)
+- [SpecifyChannelBindingTokenHardeningLevel](policy-csp-remotemanagement.md)
+- [TurnOnCompatibilityHTTPListener](policy-csp-remotemanagement.md)
+- [TurnOnCompatibilityHTTPSListener](policy-csp-remotemanagement.md)
+
+## RemoteProcedureCall
+
+- [RPCEndpointMapperClientAuthentication](policy-csp-remoteprocedurecall.md)
+- [RestrictUnauthenticatedRPCClients](policy-csp-remoteprocedurecall.md)
+
+## RemoteShell
+
+- [AllowRemoteShellAccess](policy-csp-remoteshell.md)
+- [SpecifyIdleTimeout](policy-csp-remoteshell.md)
+- [MaxConcurrentUsers](policy-csp-remoteshell.md)
+- [SpecifyMaxMemory](policy-csp-remoteshell.md)
+- [SpecifyMaxProcesses](policy-csp-remoteshell.md)
+- [SpecifyMaxRemoteShells](policy-csp-remoteshell.md)
+- [SpecifyShellTimeout](policy-csp-remoteshell.md)
+
+## ServiceControlManager
+
+- [SvchostProcessMitigation](policy-csp-servicecontrolmanager.md)
+
+## SettingsSync
+
+- [DisableAccessibilitySettingSync](policy-csp-settingssync.md)
+
+## Storage
+
+- [WPDDevicesDenyReadAccessPerUser](policy-csp-storage.md)
+- [WPDDevicesDenyWriteAccessPerUser](policy-csp-storage.md)
+- [EnhancedStorageDevices](policy-csp-storage.md)
+- [WPDDevicesDenyReadAccessPerDevice](policy-csp-storage.md)
+- [WPDDevicesDenyWriteAccessPerDevice](policy-csp-storage.md)
+
+## System
+
+- [BootStartDriverInitialization](policy-csp-system.md)
+- [DisableSystemRestore](policy-csp-system.md)
+
+## TenantRestrictions
+
+- [ConfigureTenantRestrictions](policy-csp-tenantrestrictions.md)
+
+## WindowsConnectionManager
+
+- [ProhitConnectionToNonDomainNetworksWhenConnectedToDomainAuthenticatedNetwork](policy-csp-windowsconnectionmanager.md)
+
+## WindowsLogon
+
+- [DontDisplayNetworkSelectionUI](policy-csp-windowslogon.md)
+- [DisableLockScreenAppNotifications](policy-csp-windowslogon.md)
+- [EnumerateLocalUsersOnDomainJoinedComputers](policy-csp-windowslogon.md)
+- [AllowAutomaticRestartSignOn](policy-csp-windowslogon.md)
+- [ConfigAutomaticRestartSignOn](policy-csp-windowslogon.md)
+- [EnableMPRNotifications](policy-csp-windowslogon.md)
+
+## WindowsPowerShell
+
+- [TurnOnPowerShellScriptBlockLogging](policy-csp-windowspowershell.md)
+- [TurnOnPowerShellScriptBlockLogging](policy-csp-windowspowershell.md)
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-group-policy.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-group-policy.md
index a3a69669c7..df5363e3dd 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-group-policy.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-group-policy.md
@@ -1,903 +1,937 @@
---
title: Policies in Policy CSP supported by Group Policy
description: Learn about the policies in Policy CSP supported by Group Policy.
-ms.reviewer:
+author: vinaypamnani-msft
manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/29/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 07/18/2019
+ms.topic: reference
---
-# Policies in Policy CSP supported by Group Policy
+
-- [AboveLock/AllowCortanaAboveLock](./policy-csp-abovelock.md#abovelock-allowcortanaabovelock)
-- [ActiveXControls/ApprovedInstallationSites](./policy-csp-activexcontrols.md#activexcontrols-approvedinstallationsites)
-- [AppRuntime/AllowMicrosoftAccountsToBeOptional](./policy-csp-appruntime.md#appruntime-allowmicrosoftaccountstobeoptional)
-- [AppVirtualization/AllowAppVClient](./policy-csp-appvirtualization.md#appvirtualization-allowappvclient)
-- [AppVirtualization/AllowDynamicVirtualization](./policy-csp-appvirtualization.md#appvirtualization-allowdynamicvirtualization)
-- [AppVirtualization/AllowPackageCleanup](./policy-csp-appvirtualization.md#appvirtualization-allowpackagecleanup)
-- [AppVirtualization/AllowPackageScripts](./policy-csp-appvirtualization.md#appvirtualization-allowpackagescripts)
-- [AppVirtualization/AllowPublishingRefreshUX](./policy-csp-appvirtualization.md#appvirtualization-allowpublishingrefreshux)
-- [AppVirtualization/AllowReportingServer](./policy-csp-appvirtualization.md#appvirtualization-allowreportingserver)
-- [AppVirtualization/AllowRoamingFileExclusions](./policy-csp-appvirtualization.md#appvirtualization-allowroamingfileexclusions)
-- [AppVirtualization/AllowRoamingRegistryExclusions](./policy-csp-appvirtualization.md#appvirtualization-allowroamingregistryexclusions)
-- [AppVirtualization/AllowStreamingAutoload](./policy-csp-appvirtualization.md#appvirtualization-allowstreamingautoload)
-- [AppVirtualization/ClientCoexistenceAllowMigrationmode](./policy-csp-appvirtualization.md#appvirtualization-clientcoexistenceallowmigrationmode)
-- [AppVirtualization/IntegrationAllowRootGlobal](./policy-csp-appvirtualization.md#appvirtualization-integrationallowrootglobal)
-- [AppVirtualization/IntegrationAllowRootUser](./policy-csp-appvirtualization.md#appvirtualization-integrationallowrootuser)
-- [AppVirtualization/PublishingAllowServer1](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver1)
-- [AppVirtualization/PublishingAllowServer2](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver2)
-- [AppVirtualization/PublishingAllowServer3](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver3)
-- [AppVirtualization/PublishingAllowServer4](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver4)
-- [AppVirtualization/PublishingAllowServer5](./policy-csp-appvirtualization.md#appvirtualization-publishingallowserver5)
-- [AppVirtualization/StreamingAllowCertificateFilterForClient_SSL](./policy-csp-appvirtualization.md#appvirtualization-streamingallowcertificatefilterforclient-ssl)
-- [AppVirtualization/StreamingAllowHighCostLaunch](./policy-csp-appvirtualization.md#appvirtualization-streamingallowhighcostlaunch)
-- [AppVirtualization/StreamingAllowLocationProvider](./policy-csp-appvirtualization.md#appvirtualization-streamingallowlocationprovider)
-- [AppVirtualization/StreamingAllowPackageInstallationRoot](./policy-csp-appvirtualization.md#appvirtualization-streamingallowpackageinstallationroot)
-- [AppVirtualization/StreamingAllowPackageSourceRoot](./policy-csp-appvirtualization.md#appvirtualization-streamingallowpackagesourceroot)
-- [AppVirtualization/StreamingAllowReestablishmentInterval](./policy-csp-appvirtualization.md#appvirtualization-streamingallowreestablishmentinterval)
-- [AppVirtualization/StreamingAllowReestablishmentRetries](./policy-csp-appvirtualization.md#appvirtualization-streamingallowreestablishmentretries)
-- [AppVirtualization/StreamingSharedContentStoreMode](./policy-csp-appvirtualization.md#appvirtualization-streamingsharedcontentstoremode)
-- [AppVirtualization/StreamingSupportBranchCache](./policy-csp-appvirtualization.md#appvirtualization-streamingsupportbranchcache)
-- [AppVirtualization/StreamingVerifyCertificateRevocationList](./policy-csp-appvirtualization.md#appvirtualization-streamingverifycertificaterevocationlist)
-- [AppVirtualization/VirtualComponentsAllowList](./policy-csp-appvirtualization.md#appvirtualization-virtualcomponentsallowlist)
-- [ApplicationDefaults/DefaultAssociationsConfiguration](./policy-csp-applicationdefaults.md#applicationdefaults-defaultassociationsconfiguration)
-- [ApplicationDefaults/EnableAppUriHandlers](./policy-csp-applicationdefaults.md#applicationdefaults-enableappurihandlers)
-- [ApplicationManagement/AllowAllTrustedApps](./policy-csp-applicationmanagement.md#applicationmanagement-allowalltrustedapps)
-- [ApplicationManagement/AllowAppStoreAutoUpdate](./policy-csp-applicationmanagement.md#applicationmanagement-allowappstoreautoupdate)
-- [ApplicationManagement/AllowDeveloperUnlock](./policy-csp-applicationmanagement.md#applicationmanagement-allowdeveloperunlock)
-- [ApplicationManagement/AllowGameDVR](./policy-csp-applicationmanagement.md#applicationmanagement-allowgamedvr)
-- [ApplicationManagement/AllowSharedUserAppData](./policy-csp-applicationmanagement.md#applicationmanagement-allowshareduserappdata)
-- [ApplicationManagement/DisableStoreOriginatedApps](./policy-csp-applicationmanagement.md#applicationmanagement-disablestoreoriginatedapps)
-- [ApplicationManagement/MSIAllowUserControlOverInstall](./policy-csp-applicationmanagement.md#applicationmanagement-msiallowusercontroloverinstall)
-- [ApplicationManagement/MSIAlwaysInstallWithElevatedPrivileges](./policy-csp-applicationmanagement.md#applicationmanagement-msialwaysinstallwithelevatedprivileges)
-- [ApplicationManagement/RequirePrivateStoreOnly](./policy-csp-applicationmanagement.md#applicationmanagement-requireprivatestoreonly)
-- [ApplicationManagement/RestrictAppDataToSystemVolume](./policy-csp-applicationmanagement.md#applicationmanagement-restrictappdatatosystemvolume)
-- [ApplicationManagement/RestrictAppToSystemVolume](./policy-csp-applicationmanagement.md#applicationmanagement-restrictapptosystemvolume)
-- [AttachmentManager/DoNotPreserveZoneInformation](./policy-csp-attachmentmanager.md#attachmentmanager-donotpreservezoneinformation)
-- [AttachmentManager/HideZoneInfoMechanism](./policy-csp-attachmentmanager.md#attachmentmanager-hidezoneinfomechanism)
-- [AttachmentManager/NotifyAntivirusPrograms](./policy-csp-attachmentmanager.md#attachmentmanager-notifyantivirusprograms)
-- [Authentication/AllowSecondaryAuthenticationDevice](./policy-csp-authentication.md#authentication-allowsecondaryauthenticationdevice)
-- [Autoplay/DisallowAutoplayForNonVolumeDevices](./policy-csp-autoplay.md#autoplay-disallowautoplayfornonvolumedevices)
-- [Autoplay/SetDefaultAutoRunBehavior](./policy-csp-autoplay.md#autoplay-setdefaultautorunbehavior)
-- [Autoplay/TurnOffAutoPlay](./policy-csp-autoplay.md#autoplay-turnoffautoplay)
-- [BITS/BandwidthThrottlingEndTime](./policy-csp-bits.md#bits-bandwidththrottlingendtime)
-- [BITS/BandwidthThrottlingStartTime](./policy-csp-bits.md#bits-bandwidththrottlingstarttime)
-- [BITS/BandwidthThrottlingTransferRate](./policy-csp-bits.md#bits-bandwidththrottlingtransferrate)
-- [BITS/CostedNetworkBehaviorBackgroundPriority](./policy-csp-bits.md#bits-costednetworkbehaviorbackgroundpriority)
-- [BITS/CostedNetworkBehaviorForegroundPriority](./policy-csp-bits.md#bits-costednetworkbehaviorforegroundpriority)
-- [BITS/JobInactivityTimeout](./policy-csp-bits.md#bits-jobinactivitytimeout)
-- [Browser/AllowAddressBarDropdown](./policy-csp-browser.md#browser-allowaddressbardropdown)
-- [Browser/AllowAutofill](./policy-csp-browser.md#browser-allowautofill)
-- [Browser/AllowCookies](./policy-csp-browser.md#browser-allowcookies)
-- [Browser/AllowDeveloperTools](./policy-csp-browser.md#browser-allowdevelopertools)
-- [Browser/AllowDoNotTrack](./policy-csp-browser.md#browser-allowdonottrack)
-- [Browser/AllowExtensions](./policy-csp-browser.md#browser-allowextensions)
-- [Browser/AllowFlash](./policy-csp-browser.md#browser-allowflash)
-- [Browser/AllowFlashClickToRun](./policy-csp-browser.md#browser-allowflashclicktorun)
-- [Browser/AllowFullScreenMode](./policy-csp-browser.md#browser-allowfullscreenmode)
-- [Browser/AllowInPrivate](./policy-csp-browser.md#browser-allowinprivate)
-- [Browser/AllowMicrosoftCompatibilityList](./policy-csp-browser.md#browser-allowmicrosoftcompatibilitylist)
-- [Browser/AllowPasswordManager](./policy-csp-browser.md#browser-allowpasswordmanager)
-- [Browser/AllowPopups](./policy-csp-browser.md#browser-allowpopups)
-- [Browser/AllowPrelaunch](./policy-csp-browser.md#browser-allowprelaunch)
-- [Browser/AllowPrinting](./policy-csp-browser.md#browser-allowprinting)
-- [Browser/AllowSavingHistory](./policy-csp-browser.md#browser-allowsavinghistory)
-- [Browser/AllowSearchEngineCustomization](./policy-csp-browser.md#browser-allowsearchenginecustomization)
-- [Browser/AllowSearchSuggestionsinAddressBar](./policy-csp-browser.md#browser-allowsearchsuggestionsinaddressbar)
-- [Browser/AllowSideloadingOfExtensions](./policy-csp-browser.md#browser-allowsideloadingofextensions)
-- [Browser/AllowSmartScreen](./policy-csp-browser.md#browser-allowsmartscreen)
-- [Browser/AllowTabPreloading](./policy-csp-browser.md#browser-allowtabpreloading)
-- [Browser/AllowWebContentOnNewTabPage](./policy-csp-browser.md#browser-allowwebcontentonnewtabpage)
-- [Browser/AlwaysEnableBooksLibrary](./policy-csp-browser.md#browser-alwaysenablebookslibrary)
-- [Browser/ClearBrowsingDataOnExit](./policy-csp-browser.md#browser-clearbrowsingdataonexit)
-- [Browser/ConfigureAdditionalSearchEngines](./policy-csp-browser.md#browser-configureadditionalsearchengines)
-- [Browser/ConfigureFavoritesBar](./policy-csp-browser.md#browser-configurefavoritesbar)
-- [Browser/ConfigureHomeButton](./policy-csp-browser.md#browser-configurehomebutton)
-- [Browser/ConfigureKioskMode](./policy-csp-browser.md#browser-configurekioskmode)
-- [Browser/ConfigureKioskResetAfterIdleTimeout](./policy-csp-browser.md#browser-configurekioskresetafteridletimeout)
-- [Browser/ConfigureOpenMicrosoftEdgeWith](./policy-csp-browser.md#browser-configureopenmicrosoftedgewith)
-- [Browser/ConfigureTelemetryForMicrosoft365Analytics](./policy-csp-browser.md#browser-configuretelemetryformicrosoft365analytics)
-- [Browser/DisableLockdownOfStartPages](./policy-csp-browser.md#browser-disablelockdownofstartpages)
-- [Browser/EnableExtendedBooksTelemetry](./policy-csp-browser.md#browser-enableextendedbookstelemetry)
-- [Browser/EnterpriseModeSiteList](./policy-csp-browser.md#browser-enterprisemodesitelist)
-- [Browser/HomePages](./policy-csp-browser.md#browser-homepages)
-- [Browser/LockdownFavorites](./policy-csp-browser.md#browser-lockdownfavorites)
-- [Browser/PreventAccessToAboutFlagsInMicrosoftEdge](./policy-csp-browser.md#browser-preventaccesstoaboutflagsinmicrosoftedge)
-- [Browser/PreventCertErrorOverrides](./policy-csp-browser.md#browser-preventcerterroroverrides)
-- [Browser/PreventFirstRunPage](./policy-csp-browser.md#browser-preventfirstrunpage)
-- [Browser/PreventLiveTileDataCollection](./policy-csp-browser.md#browser-preventlivetiledatacollection)
-- [Browser/PreventSmartScreenPromptOverride](./policy-csp-browser.md#browser-preventsmartscreenpromptoverride)
-- [Browser/PreventSmartScreenPromptOverrideForFiles](./policy-csp-browser.md#browser-preventsmartscreenpromptoverrideforfiles)
-- [Browser/PreventUsingLocalHostIPAddressForWebRTC](./policy-csp-browser.md#browser-preventusinglocalhostipaddressforwebrtc)
-- [Browser/ProvisionFavorites](./policy-csp-browser.md#browser-provisionfavorites)
-- [Browser/SendIntranetTraffictoInternetExplorer](./policy-csp-browser.md#browser-sendintranettraffictointernetexplorer)
-- [Browser/SetDefaultSearchEngine](./policy-csp-browser.md#browser-setdefaultsearchengine)
-- [Browser/SetHomeButtonURL](./policy-csp-browser.md#browser-sethomebuttonurl)
-- [Browser/SetNewTabPageURL](./policy-csp-browser.md#browser-setnewtabpageurl)
-- [Browser/ShowMessageWhenOpeningSitesInInternetExplorer](./policy-csp-browser.md#browser-showmessagewhenopeningsitesininternetexplorer)
-- [Browser/SyncFavoritesBetweenIEAndMicrosoftEdge](./policy-csp-browser.md#browser-syncfavoritesbetweenieandmicrosoftedge)
-- [Browser/UnlockHomeButton](./policy-csp-browser.md#browser-unlockhomebutton)
-- [Browser/UseSharedFolderForBooks](./policy-csp-browser.md#browser-usesharedfolderforbooks)
-- [Camera/AllowCamera](./policy-csp-camera.md#camera-allowcamera)
-- [Cellular/LetAppsAccessCellularData](./policy-csp-cellular.md#cellular-letappsaccesscellulardata)
-- [Cellular/LetAppsAccessCellularData_ForceAllowTheseApps](./policy-csp-cellular.md#cellular-letappsaccesscellulardata-forceallowtheseapps)
-- [Cellular/LetAppsAccessCellularData_ForceDenyTheseApps](./policy-csp-cellular.md#cellular-letappsaccesscellulardata-forcedenytheseapps)
-- [Cellular/LetAppsAccessCellularData_UserInControlOfTheseApps](./policy-csp-cellular.md#cellular-letappsaccesscellulardata-userincontroloftheseapps)
-- [Cellular/ShowAppCellularAccessUI](./policy-csp-cellular.md#cellular-showappcellularaccessui)
-- [Connectivity/AllowCellularDataRoaming](./policy-csp-connectivity.md#connectivity-allowcellulardataroaming)
-- [Connectivity/AllowPhonePCLinking](./policy-csp-connectivity.md#connectivity-allowphonepclinking)
-- [Connectivity/DiablePrintingOverHTTP](./policy-csp-connectivity.md#connectivity-disableprintingoverhttp)
-- [Connectivity/DisableDownloadingOfPrintDriversOverHTTP](./policy-csp-connectivity.md#connectivity-disabledownloadingofprintdriversoverhttp)
-- [Connectivity/DisableInternetDownloadForWebPublishingAndOnlineOrderingWizards](./policy-csp-connectivity.md#connectivity-disableinternetdownloadforwebpublishingandonlineorderingwizards)
-- [Connectivity/DisallowNetworkConnectivityActiveTests](./policy-csp-connectivity.md#connectivity-disallownetworkconnectivityactivetests)
-- [Connectivity/HardenedUNCPaths](./policy-csp-connectivity.md#connectivity-hardeneduncpaths)
-- [Connectivity/ProhibitInstallationAndConfigurationOfNetworkBridge](./policy-csp-connectivity.md#connectivity-prohibitinstallationandconfigurationofnetworkbridge)
-- [CredentialProviders/AllowPINLogon](./policy-csp-credentialproviders.md#credentialproviders-allowpinlogon)
-- [CredentialProviders/BlockPicturePassword](./policy-csp-credentialproviders.md#credentialproviders-blockpicturepassword)
-- [CredentialsDelegation/RemoteHostAllowsDelegationOfNonExportableCredentials](./policy-csp-credentialsdelegation.md#credentialsdelegation-remotehostallowsdelegationofnonexportablecredentials)
-- [CredentialsUI/DisablePasswordReveal](./policy-csp-credentialsui.md#credentialsui-disablepasswordreveal)
-- [CredentialsUI/EnumerateAdministrators](./policy-csp-credentialsui.md#credentialsui-enumerateadministrators)
-- [Cryptography/AllowFipsAlgorithmPolicy](./policy-csp-cryptography.md#cryptography-allowfipsalgorithmpolicy)
-- [DataUsage/SetCost4G](./policy-csp-datausage.md#datausage-setcost4g)
-- [Defender/AllowArchiveScanning](./policy-csp-defender.md#defender-allowarchivescanning)
-- [Defender/AllowBehaviorMonitoring](./policy-csp-defender.md#defender-allowbehaviormonitoring)
-- [Defender/AllowCloudProtection](./policy-csp-defender.md#defender-allowcloudprotection)
-- [Defender/AllowEmailScanning](./policy-csp-defender.md#defender-allowemailscanning)
-- [Defender/AllowFullScanOnMappedNetworkDrives](./policy-csp-defender.md#defender-allowfullscanonmappednetworkdrives)
-- [Defender/AllowFullScanRemovableDriveScanning](./policy-csp-defender.md#defender-allowfullscanremovabledrivescanning)
-- [Defender/AllowIOAVProtection](./policy-csp-defender.md#defender-allowioavprotection)
-- [Defender/AllowOnAccessProtection](./policy-csp-defender.md#defender-allowonaccessprotection)
-- [Defender/AllowRealtimeMonitoring](./policy-csp-defender.md#defender-allowrealtimemonitoring)
-- [Defender/AllowScanningNetworkFiles](./policy-csp-defender.md#defender-allowscanningnetworkfiles)
-- [Defender/AllowUserUIAccess](./policy-csp-defender.md#defender-allowuseruiaccess)
-- [Defender/AttackSurfaceReductionOnlyExclusions](./policy-csp-defender.md#defender-attacksurfacereductiononlyexclusions)
-- [Defender/AttackSurfaceReductionRules](./policy-csp-defender.md#defender-attacksurfacereductionrules)
-- [Defender/AvgCPULoadFactor](./policy-csp-defender.md#defender-avgcpuloadfactor)
-- [Defender/CheckForSignaturesBeforeRunningScan](./policy-csp-defender.md#defender-checkforsignaturesbeforerunningscan)
-- [Defender/CloudBlockLevel](./policy-csp-defender.md#defender-cloudblocklevel)
-- [Defender/CloudExtendedTimeout](./policy-csp-defender.md#defender-cloudextendedtimeout)
-- [Defender/ControlledFolderAccessAllowedApplications](./policy-csp-defender.md#defender-controlledfolderaccessallowedapplications)
-- [Defender/ControlledFolderAccessProtectedFolders](./policy-csp-defender.md#defender-controlledfolderaccessprotectedfolders)
-- [Defender/DaysToRetainCleanedMalware](./policy-csp-defender.md#defender-daystoretaincleanedmalware)
-- [Defender/DisableCatchupFullScan](./policy-csp-defender.md#defender-disablecatchupfullscan)
-- [Defender/DisableCatchupQuickScan](./policy-csp-defender.md#defender-disablecatchupquickscan)
-- [Defender/EnableControlledFolderAccess](./policy-csp-defender.md#defender-enablecontrolledfolderaccess)
-- [Defender/EnableLowCPUPriority](./policy-csp-defender.md#defender-enablelowcpupriority)
-- [Defender/EnableNetworkProtection](./policy-csp-defender.md#defender-enablenetworkprotection)
-- [Defender/ExcludedExtensions](./policy-csp-defender.md#defender-excludedextensions)
-- [Defender/ExcludedPaths](./policy-csp-defender.md#defender-excludedpaths)
-- [Defender/ExcludedProcesses](./policy-csp-defender.md#defender-excludedprocesses)
-- [Defender/RealTimeScanDirection](./policy-csp-defender.md#defender-realtimescandirection)
-- [Defender/ScanParameter](./policy-csp-defender.md#defender-scanparameter)
-- [Defender/ScheduleQuickScanTime](./policy-csp-defender.md#defender-schedulequickscantime)
-- [Defender/ScheduleScanDay](./policy-csp-defender.md#defender-schedulescanday)
-- [Defender/ScheduleScanTime](./policy-csp-defender.md#defender-schedulescantime)
-- [Defender/SignatureUpdateFallbackOrder](./policy-csp-defender.md#defender-signatureupdatefallbackorder)
-- [Defender/SignatureUpdateFileSharesSources](./policy-csp-defender.md#defender-signatureupdatefilesharessources)
-- [Defender/SignatureUpdateInterval](./policy-csp-defender.md#defender-signatureupdateinterval)
-- [Defender/SubmitSamplesConsent](./policy-csp-defender.md#defender-submitsamplesconsent)
-- [Defender/ThreatSeverityDefaultAction](./policy-csp-defender.md#defender-threatseveritydefaultaction)
-- [DeliveryOptimization/DOAbsoluteMaxCacheSize](./policy-csp-deliveryoptimization.md#deliveryoptimization-doabsolutemaxcachesize)
-- [DeliveryOptimization/DOAllowVPNPeerCaching](./policy-csp-deliveryoptimization.md#deliveryoptimization-doallowvpnpeercaching)
-- [DeliveryOptimization/DOCacheHost](./policy-csp-deliveryoptimization.md#deliveryoptimization-docachehost)
-- [DeliveryOptimization/DODelayBackgroundDownloadFromHttp](./policy-csp-deliveryoptimization.md#deliveryoptimization-dodelaybackgrounddownloadfromhttp)
-- [DeliveryOptimization/DODelayForegroundDownloadFromHttp](./policy-csp-deliveryoptimization.md#deliveryoptimization-dodelayforegrounddownloadfromhttp)
-- [DeliveryOptimization/DODelayCacheServerFallbackBackground](./policy-csp-deliveryoptimization.md#deliveryoptimization-dodelaycacheserverfallbackbackground)
-- [DeliveryOptimization/DODelayCacheServerFallbackForeground](./policy-csp-deliveryoptimization.md#deliveryoptimization-dodelaycacheserverfallbackforeground)
-- [DeliveryOptimization/DODownloadMode](./policy-csp-deliveryoptimization.md#deliveryoptimization-dodownloadmode)
-- [DeliveryOptimization/DOGroupId](./policy-csp-deliveryoptimization.md#deliveryoptimization-dogroupid)
-- [DeliveryOptimization/DOGroupIdSource](./policy-csp-deliveryoptimization.md#deliveryoptimization-dogroupidsource)
-- [DeliveryOptimization/DOMaxCacheAge](./policy-csp-deliveryoptimization.md#deliveryoptimization-domaxcacheage)
-- [DeliveryOptimization/DOMaxCacheSize](./policy-csp-deliveryoptimization.md#deliveryoptimization-domaxcachesize)
-- [DeliveryOptimization/DOMaxDownloadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-domaxdownloadbandwidth)
-- [DeliveryOptimization/DOMaxUploadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-domaxuploadbandwidth)
-- [DeliveryOptimization/DOMinBackgroundQos](./policy-csp-deliveryoptimization.md#deliveryoptimization-dominbackgroundqos)
-- [DeliveryOptimization/DOMinBatteryPercentageAllowedToUpload](./policy-csp-deliveryoptimization.md#deliveryoptimization-dominbatterypercentageallowedtoupload)
-- [DeliveryOptimization/DOMinDiskSizeAllowedToPeer](./policy-csp-deliveryoptimization.md#deliveryoptimization-domindisksizeallowedtopeer)
-- [DeliveryOptimization/DOMinFileSizeToCache](./policy-csp-deliveryoptimization.md#deliveryoptimization-dominfilesizetocache)
-- [DeliveryOptimization/DOMinRAMAllowedToPeer](./policy-csp-deliveryoptimization.md#deliveryoptimization-dominramallowedtopeer)
-- [DeliveryOptimization/DOModifyCacheDrive](./policy-csp-deliveryoptimization.md#deliveryoptimization-domodifycachedrive)
-- [DeliveryOptimization/DOMonthlyUploadDataCap](./policy-csp-deliveryoptimization.md#deliveryoptimization-domonthlyuploaddatacap)
-- [DeliveryOptimization/DOPercentageMaxBackgroundBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dopercentagemaxbackgroundbandwidth)
-- [DeliveryOptimization/DOPercentageMaxDownloadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dopercentagemaxdownloadbandwidth)
-- [DeliveryOptimization/DOPercentageMaxForegroundBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dopercentagemaxforegroundbandwidth)
-- [DeliveryOptimization/DORestrictPeerSelectionBy](./policy-csp-deliveryoptimization.md#deliveryoptimization-dorestrictpeerselectionby)
-- [DeliveryOptimization/DOSetHoursToLimitBackgroundDownloadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dosethourstolimitbackgrounddownloadbandwidth)
-- [DeliveryOptimization/DOSetHoursToLimitForegroundDownloadBandwidth](./policy-csp-deliveryoptimization.md#deliveryoptimization-dosethourstolimitforegrounddownloadbandwidth)
-- [Desktop/PreventUserRedirectionOfProfileFolders](./policy-csp-desktop.md#desktop-preventuserredirectionofprofilefolders)
-- [DeviceGuard/ConfigureSystemGuardLaunch](./policy-csp-deviceguard.md#deviceguard-configuresystemguardlaunch)
-- [DeviceGuard/EnableVirtualizationBasedSecurity](./policy-csp-deviceguard.md#deviceguard-enablevirtualizationbasedsecurity)
-- [DeviceGuard/LsaCfgFlags](./policy-csp-deviceguard.md#deviceguard-lsacfgflags)
-- [DeviceGuard/RequirePlatformSecurityFeatures](./policy-csp-deviceguard.md#deviceguard-requireplatformsecurityfeatures)
-- [DeviceInstallation/AllowInstallationOfMatchingDeviceIDs](./policy-csp-deviceinstallation.md#deviceinstallationallowinstallationofmatchingdeviceids)
-- [DeviceInstallation/AllowInstallationOfMatchingDeviceSetupClasses](./policy-csp-deviceinstallation.md#deviceinstallationallowinstallationofmatchingdevicesetupclasses)
-- [DeviceInstallation/PreventDeviceMetadataFromNetwork](./policy-csp-deviceinstallation.md#deviceinstallationpreventdevicemetadatafromnetwork)
-- [DeviceInstallation/PreventInstallationOfDevicesNotDescribedByOtherPolicySettings](./policy-csp-deviceinstallation.md#deviceinstallationpreventinstallationofdevicesnotdescribedbyotherpolicysettings)
-- [DeviceInstallation/PreventInstallationOfMatchingDeviceIDs](./policy-csp-deviceinstallation.md#deviceinstallationpreventinstallationofmatchingdeviceids)
-- [DeviceInstallation/PreventInstallationOfMatchingDeviceSetupClasses](./policy-csp-deviceinstallation.md#deviceinstallationpreventinstallationofmatchingdevicesetupclasses)
-- [DeviceLock/MinimumPasswordAge](./policy-csp-devicelock.md#devicelock-minimumpasswordage)
-- [DeviceLock/PreventEnablingLockScreenCamera](./policy-csp-devicelock.md#devicelock-preventenablinglockscreencamera)
-- [DeviceLock/PreventLockScreenSlideShow](./policy-csp-devicelock.md#devicelock-preventlockscreenslideshow)
-- [Display/DisablePerProcessDpiForApps](./policy-csp-display.md#display-disableperprocessdpiforapps)
-- [Display/EnablePerProcessDpi](./policy-csp-display.md#display-enableperprocessdpi)
-- [Display/EnablePerProcessDpiForApps](./policy-csp-display.md#display-enableperprocessdpiforapps)
-- [Display/TurnOffGdiDPIScalingForApps](./policy-csp-display.md#display-turnoffgdidpiscalingforapps)
-- [Display/TurnOnGdiDPIScalingForApps](./policy-csp-display.md#display-turnongdidpiscalingforapps)
-- [DmaGuard/DeviceEnumerationPolicy](./policy-csp-dmaguard.md#dmaguard-deviceenumerationpolicy)
-- [Education/PreventAddingNewPrinters](./policy-csp-education.md#education-preventaddingnewprinters)
-- [ErrorReporting/CustomizeConsentSettings](./policy-csp-errorreporting.md#errorreporting-customizeconsentsettings)
-- [ErrorReporting/DisableWindowsErrorReporting](./policy-csp-errorreporting.md#errorreporting-disablewindowserrorreporting)
-- [ErrorReporting/DisplayErrorNotification](./policy-csp-errorreporting.md#errorreporting-displayerrornotification)
-- [ErrorReporting/DoNotSendAdditionalData](./policy-csp-errorreporting.md#errorreporting-donotsendadditionaldata)
-- [ErrorReporting/PreventCriticalErrorDisplay](./policy-csp-errorreporting.md#errorreporting-preventcriticalerrordisplay)
-- [EventLogService/ControlEventLogBehavior](./policy-csp-eventlogservice.md#eventlogservice-controleventlogbehavior)
-- [EventLogService/SpecifyMaximumFileSizeApplicationLog](./policy-csp-eventlogservice.md#eventlogservice-specifymaximumfilesizeapplicationlog)
-- [EventLogService/SpecifyMaximumFileSizeSecurityLog](./policy-csp-eventlogservice.md#eventlogservice-specifymaximumfilesizesecuritylog)
-- [EventLogService/SpecifyMaximumFileSizeSystemLog](./policy-csp-eventlogservice.md#eventlogservice-specifymaximumfilesizesystemlog)
-- [Experience/AllowClipboardHistory](./policy-csp-experience.md#experience-allowclipboardhistory)
-- [Experience/AllowCortana](./policy-csp-experience.md#experience-allowcortana)
-- [Experience/AllowFindMyDevice](./policy-csp-experience.md#experience-allowfindmydevice)
-- [Experience/AllowTailoredExperiencesWithDiagnosticData](./policy-csp-experience.md#experience-allowtailoredexperienceswithdiagnosticdata)
-- [Experience/AllowThirdPartySuggestionsInWindowsSpotlight](./policy-csp-experience.md#experience-allowthirdpartysuggestionsinwindowsspotlight)
-- [Experience/AllowWindowsConsumerFeatures](./policy-csp-experience.md#experience-allowwindowsconsumerfeatures)
-- [Experience/AllowWindowsSpotlight](./policy-csp-experience.md#experience-allowwindowsspotlight)
-- [Experience/AllowWindowsSpotlightOnActionCenter](./policy-csp-experience.md#experience-allowwindowsspotlightonactioncenter)
-- [Experience/AllowWindowsSpotlightOnSettings](./policy-csp-experience.md#experience-allowwindowsspotlightonsettings)
-- [Experience/AllowWindowsSpotlightWindowsWelcomeExperience](./policy-csp-experience.md#experience-allowwindowsspotlightwindowswelcomeexperience)
-- [Experience/AllowWindowsTips](./policy-csp-experience.md#experience-allowwindowstips)
-- [Experience/ConfigureWindowsSpotlightOnLockScreen](./policy-csp-experience.md#experience-configurewindowsspotlightonlockscreen)
-- [Experience/DoNotShowFeedbackNotifications](./policy-csp-experience.md#experience-donotshowfeedbacknotifications)
-- [Experience/DoNotSyncBrowserSettings](./policy-csp-experience.md#experience-donotsyncbrowsersetting)
-- [Experience/PreventUsersFromTurningOnBrowserSyncing](./policy-csp-experience.md#experience-preventusersfromturningonbrowsersyncing)
-- [Experience/ShowLockOnUserTile](policy-csp-experience.md#experience-showlockonusertile)
-- [ExploitGuard/ExploitProtectionSettings](./policy-csp-exploitguard.md#exploitguard-exploitprotectionsettings)
-- [FileExplorer/TurnOffDataExecutionPreventionForExplorer](./policy-csp-fileexplorer.md#fileexplorer-turnoffdataexecutionpreventionforexplorer)
-- [FileExplorer/TurnOffHeapTerminationOnCorruption](./policy-csp-fileexplorer.md#fileexplorer-turnoffheapterminationoncorruption)
-- [Handwriting/PanelDefaultModeDocked](./policy-csp-handwriting.md#handwriting-paneldefaultmodedocked)
-- [InternetExplorer/AddSearchProvider](./policy-csp-internetexplorer.md#internetexplorer-addsearchprovider)
-- [InternetExplorer/AllowActiveXFiltering](./policy-csp-internetexplorer.md#internetexplorer-allowactivexfiltering)
-- [InternetExplorer/AllowAddOnList](./policy-csp-internetexplorer.md#internetexplorer-allowaddonlist)
-- [InternetExplorer/AllowAutoComplete](./policy-csp-internetexplorer.md#internetexplorer-allowautocomplete)
-- [InternetExplorer/AllowCertificateAddressMismatchWarning](./policy-csp-internetexplorer.md#internetexplorer-allowcertificateaddressmismatchwarning)
-- [InternetExplorer/AllowDeletingBrowsingHistoryOnExit](./policy-csp-internetexplorer.md#internetexplorer-allowdeletingbrowsinghistoryonexit)
-- [InternetExplorer/AllowEnhancedProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-allowenhancedprotectedmode)
-- [InternetExplorer/AllowEnhancedSuggestionsInAddressBar](./policy-csp-internetexplorer.md#internetexplorer-allowenhancedsuggestionsinaddressbar)
-- [InternetExplorer/AllowEnterpriseModeFromToolsMenu](./policy-csp-internetexplorer.md#internetexplorer-allowenterprisemodefromtoolsmenu)
-- [InternetExplorer/AllowEnterpriseModeSiteList](./policy-csp-internetexplorer.md#internetexplorer-allowenterprisemodesitelist)
-- [InternetExplorer/AllowFallbackToSSL3](./policy-csp-internetexplorer.md#internetexplorer-allowfallbacktossl3)
-- [InternetExplorer/AllowInternetExplorer7PolicyList](./policy-csp-internetexplorer.md#internetexplorer-allowinternetexplorer7policylist)
-- [InternetExplorer/AllowInternetExplorerStandardsMode](./policy-csp-internetexplorer.md#internetexplorer-allowinternetexplorerstandardsmode)
-- [InternetExplorer/AllowInternetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowinternetzonetemplate)
-- [InternetExplorer/AllowIntranetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowintranetzonetemplate)
-- [InternetExplorer/AllowLocalMachineZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlocalmachinezonetemplate)
-- [InternetExplorer/AllowLockedDownInternetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddowninternetzonetemplate)
-- [InternetExplorer/AllowLockedDownIntranetZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddownintranetzonetemplate)
-- [InternetExplorer/AllowLockedDownLocalMachineZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddownlocalmachinezonetemplate)
-- [InternetExplorer/AllowLockedDownRestrictedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowlockeddownrestrictedsiteszonetemplate)
-- [InternetExplorer/AllowOneWordEntry](./policy-csp-internetexplorer.md#internetexplorer-allowonewordentry)
-- [InternetExplorer/AllowSiteToZoneAssignmentList](./policy-csp-internetexplorer.md#internetexplorer-allowsitetozoneassignmentlist)
-- [InternetExplorer/AllowSoftwareWhenSignatureIsInvalid](./policy-csp-internetexplorer.md#internetexplorer-allowsoftwarewhensignatureisinvalid)
-- [InternetExplorer/AllowSuggestedSites](./policy-csp-internetexplorer.md#internetexplorer-allowsuggestedsites)
-- [InternetExplorer/AllowTrustedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowtrustedsiteszonetemplate)
-- [InternetExplorer/AllowsLockedDownTrustedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowslockeddowntrustedsiteszonetemplate)
-- [InternetExplorer/AllowsRestrictedSitesZoneTemplate](./policy-csp-internetexplorer.md#internetexplorer-allowsrestrictedsiteszonetemplate)
-- [InternetExplorer/CheckServerCertificateRevocation](./policy-csp-internetexplorer.md#internetexplorer-checkservercertificaterevocation)
-- [InternetExplorer/CheckSignaturesOnDownloadedPrograms](./policy-csp-internetexplorer.md#internetexplorer-checksignaturesondownloadedprograms)
-- [InternetExplorer/ConsistentMimeHandlingInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-consistentmimehandlinginternetexplorerprocesses)
-- [InternetExplorer/DisableActiveXVersionListAutoDownload](./policy-csp-internetexplorer.md#internetexplorer-disableactivexversionlistautodownload)
-- [InternetExplorer/DisableAdobeFlash](./policy-csp-internetexplorer.md#internetexplorer-disableadobeflash)
-- [InternetExplorer/DisableBypassOfSmartScreenWarnings](./policy-csp-internetexplorer.md#internetexplorer-disablebypassofsmartscreenwarnings)
-- [InternetExplorer/DisableBypassOfSmartScreenWarningsAboutUncommonFiles](./policy-csp-internetexplorer.md#internetexplorer-disablebypassofsmartscreenwarningsaboutuncommonfiles)
-- [InternetExplorer/DisableCompatView](./policy-csp-internetexplorer.md#internetexplorer-disablecompatview)
-- [InternetExplorer/DisableConfiguringHistory](./policy-csp-internetexplorer.md#internetexplorer-disableconfiguringhistory)
-- [InternetExplorer/DisableCrashDetection](./policy-csp-internetexplorer.md#internetexplorer-disablecrashdetection)
-- [InternetExplorer/DisableCustomerExperienceImprovementProgramParticipation](./policy-csp-internetexplorer.md#internetexplorer-disablecustomerexperienceimprovementprogramparticipation)
-- [InternetExplorer/DisableDeletingUserVisitedWebsites](./policy-csp-internetexplorer.md#internetexplorer-disabledeletinguservisitedwebsites)
-- [InternetExplorer/DisableEnclosureDownloading](./policy-csp-internetexplorer.md#internetexplorer-disableenclosuredownloading)
-- [InternetExplorer/DisableEncryptionSupport](./policy-csp-internetexplorer.md#internetexplorer-disableencryptionsupport)
-- [InternetExplorer/DisableFeedsBackgroundSync](./policy-csp-internetexplorer.md#internetexplorer-disablefeedsbackgroundsync)
-- [InternetExplorer/DisableFirstRunWizard](./policy-csp-internetexplorer.md#internetexplorer-disablefirstrunwizard)
-- [InternetExplorer/DisableFlipAheadFeature](./policy-csp-internetexplorer.md#internetexplorer-disableflipaheadfeature)
-- [InternetExplorer/DisableGeolocation](./policy-csp-internetexplorer.md#internetexplorer-disablegeolocation)
-- [InternetExplorer/DisableHomePageChange](./policy-csp-internetexplorer.md#internetexplorer-disablehomepagechange)
-- [InternetExplorer/DisableIgnoringCertificateErrors](./policy-csp-internetexplorer.md#internetexplorer-disableignoringcertificateerrors)
-- [InternetExplorer/DisableInPrivateBrowsing](./policy-csp-internetexplorer.md#internetexplorer-disableinprivatebrowsing)
-- [InternetExplorer/DisableProcessesInEnhancedProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-disableprocessesinenhancedprotectedmode)
-- [InternetExplorer/DisableProxyChange](./policy-csp-internetexplorer.md#internetexplorer-disableproxychange)
-- [InternetExplorer/DisableSearchProviderChange](./policy-csp-internetexplorer.md#internetexplorer-disablesearchproviderchange)
-- [InternetExplorer/DisableSecondaryHomePageChange](./policy-csp-internetexplorer.md#internetexplorer-disablesecondaryhomepagechange)
-- [InternetExplorer/DisableSecuritySettingsCheck](./policy-csp-internetexplorer.md#internetexplorer-disablesecuritysettingscheck)
-- [InternetExplorer/DisableUpdateCheck](./policy-csp-internetexplorer.md#internetexplorer-disableupdatecheck)
-- [InternetExplorer/DisableWebAddressAutoComplete](./policy-csp-internetexplorer.md#internetexplorer-disablewebaddressautocomplete)
-- [InternetExplorer/DoNotAllowActiveXControlsInProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-donotallowactivexcontrolsinprotectedmode)
-- [InternetExplorer/DoNotAllowUsersToAddSites](./policy-csp-internetexplorer.md#internetexplorer-donotallowuserstoaddsites)
-- [InternetExplorer/DoNotAllowUsersToChangePolicies](./policy-csp-internetexplorer.md#internetexplorer-donotallowuserstochangepolicies)
-- [InternetExplorer/DoNotBlockOutdatedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-donotblockoutdatedactivexcontrols)
-- [InternetExplorer/DoNotBlockOutdatedActiveXControlsOnSpecificDomains](./policy-csp-internetexplorer.md#internetexplorer-donotblockoutdatedactivexcontrolsonspecificdomains)
-- [InternetExplorer/IncludeAllLocalSites](./policy-csp-internetexplorer.md#internetexplorer-includealllocalsites)
-- [InternetExplorer/IncludeAllNetworkPaths](./policy-csp-internetexplorer.md#internetexplorer-includeallnetworkpaths)
-- [InternetExplorer/InternetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowaccesstodatasources)
-- [InternetExplorer/InternetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/InternetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/InternetZoneAllowCopyPasteViaScript](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowcopypasteviascript)
-- [InternetExplorer/InternetZoneAllowDragAndDropCopyAndPasteFiles](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowdraganddropcopyandpastefiles)
-- [InternetExplorer/InternetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowfontdownloads)
-- [InternetExplorer/InternetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowlessprivilegedsites)
-- [InternetExplorer/InternetZoneAllowLoadingOfXAMLFiles](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowloadingofxamlfiles)
-- [InternetExplorer/InternetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/InternetZoneAllowOnlyApprovedDomainsToUseActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowonlyapproveddomainstouseactivexcontrols)
-- [InternetExplorer/InternetZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowonlyapproveddomainstousetdcactivexcontrol)
-- [InternetExplorer/InternetZoneAllowScriptInitiatedWindows](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowscriptinitiatedwindows)
-- [InternetExplorer/InternetZoneAllowScriptingOfInternetExplorerWebBrowserControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowscriptingofinternetexplorerwebbrowsercontrols)
-- [InternetExplorer/InternetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowscriptlets)
-- [InternetExplorer/InternetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowsmartscreenie)
-- [InternetExplorer/InternetZoneAllowUpdatesToStatusBarViaScript](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowupdatestostatusbarviascript)
-- [InternetExplorer/InternetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowuserdatapersistence)
-- [InternetExplorer/InternetZoneAllowVBScriptToRunInInternetExplorer](./policy-csp-internetexplorer.md#internetexplorer-internetzoneallowvbscripttorunininternetexplorer)
-- [InternetExplorer/InternetZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/InternetZoneDownloadSignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzonedownloadsignedactivexcontrols)
-- [InternetExplorer/InternetZoneDownloadUnsignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzonedownloadunsignedactivexcontrols)
-- [InternetExplorer/InternetZoneEnableCrossSiteScriptingFilter](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenablecrosssitescriptingfilter)
-- [InternetExplorer/InternetZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenabledraggingofcontentfromdifferentdomainsacrosswindows)
-- [InternetExplorer/InternetZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenabledraggingofcontentfromdifferentdomainswithinwindows)
-- [InternetExplorer/InternetZoneEnableMIMESniffing](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenablemimesniffing)
-- [InternetExplorer/InternetZoneEnableProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-internetzoneenableprotectedmode)
-- [InternetExplorer/InternetZoneIncludeLocalPathWhenUploadingFilesToServer](./policy-csp-internetexplorer.md#internetexplorer-internetzoneincludelocalpathwhenuploadingfilestoserver)
-- [InternetExplorer/InternetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-internetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/InternetZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-internetzonejavapermissions)
-- [InternetExplorer/InternetZoneLaunchingApplicationsAndFilesInIFRAME](./policy-csp-internetexplorer.md#internetexplorer-internetzonelaunchingapplicationsandfilesiniframe)
-- [InternetExplorer/InternetZoneLogonOptions](./policy-csp-internetexplorer.md#internetexplorer-internetzonelogonoptions)
-- [InternetExplorer/InternetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-internetzonenavigatewindowsandframes)
-- [InternetExplorer/InternetZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](./policy-csp-internetexplorer.md#internetexplorer-internetzonerunnetframeworkreliantcomponentssignedwithauthenticode)
-- [InternetExplorer/InternetZoneShowSecurityWarningForPotentiallyUnsafeFiles](./policy-csp-internetexplorer.md#internetexplorer-internetzoneshowsecuritywarningforpotentiallyunsafefiles)
-- [InternetExplorer/InternetZoneUsePopupBlocker](./policy-csp-internetexplorer.md#internetexplorer-internetzoneusepopupblocker)
-- [InternetExplorer/IntranetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowaccesstodatasources)
-- [InternetExplorer/IntranetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/IntranetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/IntranetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowfontdownloads)
-- [InternetExplorer/IntranetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowlessprivilegedsites)
-- [InternetExplorer/IntranetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/IntranetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowscriptlets)
-- [InternetExplorer/IntranetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowsmartscreenie)
-- [InternetExplorer/IntranetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneallowuserdatapersistence)
-- [InternetExplorer/IntranetZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-intranetzonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/IntranetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-intranetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/IntranetZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-intranetzonejavapermissions)
-- [InternetExplorer/IntranetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-intranetzonenavigatewindowsandframes)
-- [InternetExplorer/LocalMachineZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowaccesstodatasources)
-- [InternetExplorer/LocalMachineZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LocalMachineZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LocalMachineZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowfontdownloads)
-- [InternetExplorer/LocalMachineZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowlessprivilegedsites)
-- [InternetExplorer/LocalMachineZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LocalMachineZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowscriptlets)
-- [InternetExplorer/LocalMachineZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowsmartscreenie)
-- [InternetExplorer/LocalMachineZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneallowuserdatapersistence)
-- [InternetExplorer/LocalMachineZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-localmachinezonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/LocalMachineZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-localmachinezoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LocalMachineZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-localmachinezonejavapermissions)
-- [InternetExplorer/LocalMachineZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-localmachinezonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownInternetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownInternetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownInternetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownInternetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowfontdownloads)
-- [InternetExplorer/LockedDownInternetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownInternetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownInternetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowscriptlets)
-- [InternetExplorer/LockedDownInternetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowsmartscreenie)
-- [InternetExplorer/LockedDownInternetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownInternetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownInternetZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzonejavapermissions)
-- [InternetExplorer/LockedDownInternetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddowninternetzonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownIntranetJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetjavapermissions)
-- [InternetExplorer/LockedDownIntranetZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownIntranetZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownIntranetZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownIntranetZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowfontdownloads)
-- [InternetExplorer/LockedDownIntranetZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownIntranetZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownIntranetZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowscriptlets)
-- [InternetExplorer/LockedDownIntranetZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowsmartscreenie)
-- [InternetExplorer/LockedDownIntranetZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownIntranetZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownIntranetZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddownintranetzonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowfontdownloads)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowscriptlets)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowsmartscreenie)
-- [InternetExplorer/LockedDownLocalMachineZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownLocalMachineZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownLocalMachineZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezonejavapermissions)
-- [InternetExplorer/LockedDownLocalMachineZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddownlocalmachinezonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowfontdownloads)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowscriptlets)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowsmartscreenie)
-- [InternetExplorer/LockedDownRestrictedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownRestrictedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownRestrictedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszonejavapermissions)
-- [InternetExplorer/LockedDownRestrictedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddownrestrictedsiteszonenavigatewindowsandframes)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowfontdownloads)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowscriptlets)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowsmartscreenie)
-- [InternetExplorer/LockedDownTrustedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/LockedDownTrustedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/LockedDownTrustedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszonejavapermissions)
-- [InternetExplorer/LockedDownTrustedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-lockeddowntrustedsiteszonenavigatewindowsandframes)
-- [InternetExplorer/MKProtocolSecurityRestrictionInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-mkprotocolsecurityrestrictioninternetexplorerprocesses)
-- [InternetExplorer/MimeSniffingSafetyFeatureInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-mimesniffingsafetyfeatureinternetexplorerprocesses)
-- [InternetExplorer/NewTabDefaultPage](./policy-csp-internetexplorer.md#internetexplorer-newtabdefaultpage)
-- [InternetExplorer/NotificationBarInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-notificationbarinternetexplorerprocesses)
-- [InternetExplorer/PreventManagingSmartScreenFilter](./policy-csp-internetexplorer.md#internetexplorer-preventmanagingsmartscreenfilter)
-- [InternetExplorer/PreventPerUserInstallationOfActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-preventperuserinstallationofactivexcontrols)
-- [InternetExplorer/ProtectionFromZoneElevationInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-protectionfromzoneelevationinternetexplorerprocesses)
-- [InternetExplorer/RemoveRunThisTimeButtonForOutdatedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-removerunthistimebuttonforoutdatedactivexcontrols)
-- [InternetExplorer/RestrictActiveXInstallInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-restrictactivexinstallinternetexplorerprocesses)
-- [InternetExplorer/RestrictFileDownloadInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-restrictfiledownloadinternetexplorerprocesses)
-- [InternetExplorer/RestrictedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/RestrictedSitesZoneAllowActiveScripting](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowactivescripting)
-- [InternetExplorer/RestrictedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/RestrictedSitesZoneAllowBinaryAndScriptBehaviors](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowbinaryandscriptbehaviors)
-- [InternetExplorer/RestrictedSitesZoneAllowCopyPasteViaScript](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowcopypasteviascript)
-- [InternetExplorer/RestrictedSitesZoneAllowDragAndDropCopyAndPasteFiles](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowdraganddropcopyandpastefiles)
-- [InternetExplorer/RestrictedSitesZoneAllowFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowfiledownloads)
-- [InternetExplorer/RestrictedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowfontdownloads)
-- [InternetExplorer/RestrictedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/RestrictedSitesZoneAllowLoadingOfXAMLFiles](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowloadingofxamlfiles)
-- [InternetExplorer/RestrictedSitesZoneAllowMETAREFRESH](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowmetarefresh)
-- [InternetExplorer/RestrictedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/RestrictedSitesZoneAllowOnlyApprovedDomainsToUseActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowonlyapproveddomainstouseactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowonlyapproveddomainstousetdcactivexcontrol)
-- [InternetExplorer/RestrictedSitesZoneAllowScriptInitiatedWindows](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowscriptinitiatedwindows)
-- [InternetExplorer/RestrictedSitesZoneAllowScriptingOfInternetExplorerWebBrowserControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowscriptingofinternetexplorerwebbrowsercontrols)
-- [InternetExplorer/RestrictedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowscriptlets)
-- [InternetExplorer/RestrictedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowsmartscreenie)
-- [InternetExplorer/RestrictedSitesZoneAllowUpdatesToStatusBarViaScript](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowupdatestostatusbarviascript)
-- [InternetExplorer/RestrictedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/RestrictedSitesZoneAllowVBScriptToRunInInternetExplorer](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneallowvbscripttorunininternetexplorer)
-- [InternetExplorer/RestrictedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneDownloadSignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonedownloadsignedactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneDownloadUnsignedActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonedownloadunsignedactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneEnableCrossSiteScriptingFilter](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenablecrosssitescriptingfilter)
-- [InternetExplorer/RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenabledraggingofcontentfromdifferentdomainsacrosswindows)
-- [InternetExplorer/RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenabledraggingofcontentfromdifferentdomainswithinwindows)
-- [InternetExplorer/RestrictedSitesZoneEnableMIMESniffing](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneenablemimesniffing)
-- [InternetExplorer/RestrictedSitesZoneIncludeLocalPathWhenUploadingFilesToServer](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneincludelocalpathwhenuploadingfilestoserver)
-- [InternetExplorer/RestrictedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/RestrictedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonejavapermissions)
-- [InternetExplorer/RestrictedSitesZoneLaunchingApplicationsAndFilesInIFRAME](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonelaunchingapplicationsandfilesiniframe)
-- [InternetExplorer/RestrictedSitesZoneLogonOptions](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonelogonoptions)
-- [InternetExplorer/RestrictedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonenavigatewindowsandframes)
-- [InternetExplorer/RestrictedSitesZoneRunActiveXControlsAndPlugins](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonerunactivexcontrolsandplugins)
-- [InternetExplorer/RestrictedSitesZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonerunnetframeworkreliantcomponentssignedwithauthenticode)
-- [InternetExplorer/RestrictedSitesZoneScriptActiveXControlsMarkedSafeForScripting](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonescriptactivexcontrolsmarkedsafeforscripting)
-- [InternetExplorer/RestrictedSitesZoneScriptingOfJavaApplets](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszonescriptingofjavaapplets)
-- [InternetExplorer/RestrictedSitesZoneShowSecurityWarningForPotentiallyUnsafeFiles](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneshowsecuritywarningforpotentiallyunsafefiles)
-- [InternetExplorer/RestrictedSitesZoneTurnOnProtectedMode](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneturnonprotectedmode)
-- [InternetExplorer/RestrictedSitesZoneUsePopupBlocker](./policy-csp-internetexplorer.md#internetexplorer-restrictedsiteszoneusepopupblocker)
-- [InternetExplorer/ScriptedWindowSecurityRestrictionsInternetExplorerProcesses](./policy-csp-internetexplorer.md#internetexplorer-scriptedwindowsecurityrestrictionsinternetexplorerprocesses)
-- [InternetExplorer/SearchProviderList](./policy-csp-internetexplorer.md#internetexplorer-searchproviderlist)
-- [InternetExplorer/SecurityZonesUseOnlyMachineSettings](./policy-csp-internetexplorer.md#internetexplorer-securityzonesuseonlymachinesettings)
-- [InternetExplorer/SpecifyUseOfActiveXInstallerService](./policy-csp-internetexplorer.md#internetexplorer-specifyuseofactivexinstallerservice)
-- [InternetExplorer/TrustedSitesZoneAllowAccessToDataSources](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowaccesstodatasources)
-- [InternetExplorer/TrustedSitesZoneAllowAutomaticPromptingForActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowautomaticpromptingforactivexcontrols)
-- [InternetExplorer/TrustedSitesZoneAllowAutomaticPromptingForFileDownloads](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowautomaticpromptingforfiledownloads)
-- [InternetExplorer/TrustedSitesZoneAllowFontDownloads](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowfontdownloads)
-- [InternetExplorer/TrustedSitesZoneAllowLessPrivilegedSites](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowlessprivilegedsites)
-- [InternetExplorer/TrustedSitesZoneAllowNETFrameworkReliantComponents](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallownetframeworkreliantcomponents)
-- [InternetExplorer/TrustedSitesZoneAllowScriptlets](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowscriptlets)
-- [InternetExplorer/TrustedSitesZoneAllowSmartScreenIE](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowsmartscreenie)
-- [InternetExplorer/TrustedSitesZoneAllowUserDataPersistence](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneallowuserdatapersistence)
-- [InternetExplorer/TrustedSitesZoneDoNotRunAntimalwareAgainstActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszonedonotrunantimalwareagainstactivexcontrols)
-- [InternetExplorer/TrustedSitesZoneInitializeAndScriptActiveXControls](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszoneinitializeandscriptactivexcontrols)
-- [InternetExplorer/TrustedSitesZoneJavaPermissions](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszonejavapermissions)
-- [InternetExplorer/TrustedSitesZoneNavigateWindowsAndFrames](./policy-csp-internetexplorer.md#internetexplorer-trustedsiteszonenavigatewindowsandframes)
-- [Kerberos/AllowForestSearchOrder](./policy-csp-kerberos.md#kerberos-allowforestsearchorder)
-- [Kerberos/KerberosClientSupportsClaimsCompoundArmor](./policy-csp-kerberos.md#kerberos-kerberosclientsupportsclaimscompoundarmor)
-- [Kerberos/RequireKerberosArmoring](./policy-csp-kerberos.md#kerberos-requirekerberosarmoring)
-- [Kerberos/RequireStrictKDCValidation](./policy-csp-kerberos.md#kerberos-requirestrictkdcvalidation)
-- [Kerberos/SetMaximumContextTokenSize](./policy-csp-kerberos.md#kerberos-setmaximumcontexttokensize)
-- [LanmanWorkstation/EnableInsecureGuestLogons](./policy-csp-lanmanworkstation.md#lanmanworkstation-enableinsecureguestlogons)
-- [Licensing/AllowWindowsEntitlementReactivation](./policy-csp-licensing.md#licensing-allowwindowsentitlementreactivation)
-- [Licensing/DisallowKMSClientOnlineAVSValidation](./policy-csp-licensing.md#licensing-disallowkmsclientonlineavsvalidation)
-- [LocalPoliciesSecurityOptions/Accounts_BlockMicrosoftAccounts](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-accounts-blockmicrosoftaccounts)
-- [LocalPoliciesSecurityOptions/Accounts_LimitLocalAccountUseOfBlankPasswordsToConsoleLogonOnly](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-accounts-limitlocalaccountuseofblankpasswordstoconsolelogononly)
-- [LocalPoliciesSecurityOptions/Accounts_RenameAdministratorAccount](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-accounts-renameadministratoraccount)
-- [LocalPoliciesSecurityOptions/Accounts_RenameGuestAccount](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-accounts-renameguestaccount)
-- [LocalPoliciesSecurityOptions/Devices_AllowUndockWithoutHavingToLogon](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-devices-allowundockwithouthavingtologon)
-- [LocalPoliciesSecurityOptions/Devices_AllowedToFormatAndEjectRemovableMedia](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-devices-allowedtoformatandejectremovablemedia)
-- [LocalPoliciesSecurityOptions/Devices_PreventUsersFromInstallingPrinterDriversWhenConnectingToSharedPrinters](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-devices-preventusersfrominstallingprinterdriverswhenconnectingtosharedprinters)
-- [LocalPoliciesSecurityOptions/Devices_RestrictCDROMAccessToLocallyLoggedOnUserOnly](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-devices-restrictcdromaccesstolocallyloggedonuseronly)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_DisplayUserInformationWhenTheSessionIsLocked](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-displayuserinformationwhenthesessionislocked)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_DoNotDisplayLastSignedIn](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-donotdisplaylastsignedin)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_DoNotDisplayUsernameAtSignIn](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-donotdisplayusernameatsignin)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_DoNotRequireCTRLALTDEL](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-donotrequirectrlaltdel)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_MachineInactivityLimit](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-machineinactivitylimit)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_MessageTextForUsersAttemptingToLogOn](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-messagetextforusersattemptingtologon)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_MessageTitleForUsersAttemptingToLogOn](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-messagetitleforusersattemptingtologon)
-- [LocalPoliciesSecurityOptions/InteractiveLogon_SmartCardRemovalBehavior](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-interactivelogon-smartcardremovalbehavior)
-- [LocalPoliciesSecurityOptions/MicrosoftNetworkClient_DigitallySignCommunicationsIfServerAgrees](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-microsoftnetworkclient-digitallysigncommunicationsifserveragrees)
-- [LocalPoliciesSecurityOptions/MicrosoftNetworkClient_SendUnencryptedPasswordToThirdPartySMBServers](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-microsoftnetworkclient-sendunencryptedpasswordtothirdpartysmbservers)
-- [LocalPoliciesSecurityOptions/MicrosoftNetworkServer_DigitallySignCommunicationsAlways](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-microsoftnetworkserver-digitallysigncommunicationsalways)
-- [LocalPoliciesSecurityOptions/MicrosoftNetworkServer_DigitallySignCommunicationsIfClientAgrees](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-microsoftnetworkserver-digitallysigncommunicationsifclientagrees)
-- [LocalPoliciesSecurityOptions/NetworkAccess_DoNotAllowAnonymousEnumerationOfSAMAccounts](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networkaccess-donotallowanonymousenumerationofsamaccounts)
-- [LocalPoliciesSecurityOptions/NetworkAccess_DoNotAllowAnonymousEnumerationOfSamAccountsAndShares](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networkaccess-donotallowanonymousenumerationofsamaccountsandshares)
-- [LocalPoliciesSecurityOptions/NetworkAccess_RestrictAnonymousAccessToNamedPipesAndShares](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networkaccess-restrictanonymousaccesstonamedpipesandshares)
-- [LocalPoliciesSecurityOptions/NetworkAccess_RestrictClientsAllowedToMakeRemoteCallsToSAM](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networkaccess-restrictclientsallowedtomakeremotecallstosam)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_AllowPKU2UAuthenticationRequests](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-allowpku2uauthenticationrequests)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_DoNotStoreLANManagerHashValueOnNextPasswordChange](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-donotstorelanmanagerhashvalueonnextpasswordchange)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_LANManagerAuthenticationLevel](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-lanmanagerauthenticationlevel)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_MinimumSessionSecurityForNTLMSSPBasedServers](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-minimumsessionsecurityforntlmsspbasedservers)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_AddRemoteServerExceptionsForNTLMAuthentication](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-restrictntlm-addremoteserverexceptionsforntlmauthentication)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_AuditIncomingNTLMTraffic](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-restrictntlm-auditincomingntlmtraffic)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_IncomingNTLMTraffic](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-restrictntlm-incomingntlmtraffic)
-- [LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_OutgoingNTLMTrafficToRemoteServers](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-networksecurity-restrictntlm-outgoingntlmtraffictoremoteservers)
-- [LocalPoliciesSecurityOptions/Shutdown_AllowSystemToBeShutDownWithoutHavingToLogOn](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-shutdown-allowsystemtobeshutdownwithouthavingtologon)
-- [LocalPoliciesSecurityOptions/Shutdown_ClearVirtualMemoryPageFile](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-shutdown-clearvirtualmemorypagefile)
-- [LocalPoliciesSecurityOptions/UserAccountControl_AllowUIAccessApplicationsToPromptForElevation](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-allowuiaccessapplicationstopromptforelevation)
-- [LocalPoliciesSecurityOptions/UserAccountControl_BehaviorOfTheElevationPromptForAdministrators](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-behavioroftheelevationpromptforadministrators)
-- [LocalPoliciesSecurityOptions/UserAccountControl_BehaviorOfTheElevationPromptForStandardUsers](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-behavioroftheelevationpromptforstandardusers)
-- [LocalPoliciesSecurityOptions/UserAccountControl_DetectApplicationInstallationsAndPromptForElevation](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-detectapplicationinstallationsandpromptforelevation)
-- [LocalPoliciesSecurityOptions/UserAccountControl_OnlyElevateExecutableFilesThatAreSignedAndValidated](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-onlyelevateexecutablefilesthataresignedandvalidated)
-- [LocalPoliciesSecurityOptions/UserAccountControl_OnlyElevateUIAccessApplicationsThatAreInstalledInSecureLocations](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-onlyelevateuiaccessapplicationsthatareinstalledinsecurelocations)
-- [LocalPoliciesSecurityOptions/UserAccountControl_RunAllAdministratorsInAdminApprovalMode](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-runalladministratorsinadminapprovalmode)
-- [LocalPoliciesSecurityOptions/UserAccountControl_SwitchToTheSecureDesktopWhenPromptingForElevation](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-switchtothesecuredesktopwhenpromptingforelevation)
-- [LocalPoliciesSecurityOptions/UserAccountControl_UseAdminApprovalMode](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-useadminapprovalmode)
-- [LocalPoliciesSecurityOptions/UserAccountControl_VirtualizeFileAndRegistryWriteFailuresToPerUserLocations](./policy-csp-localpoliciessecurityoptions.md#localpoliciessecurityoptions-useraccountcontrol-virtualizefileandregistrywritefailurestoperuserlocations)
-- [LockDown/AllowEdgeSwipe](./policy-csp-lockdown.md#lockdown-allowedgeswipe)
-- [MSSLegacy/AllowICMPRedirectsToOverrideOSPFGeneratedRoutes](./policy-csp-msslegacy.md#msslegacy-allowicmpredirectstooverrideospfgeneratedroutes)
-- [MSSLegacy/AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers](./policy-csp-msslegacy.md#msslegacy-allowthecomputertoignorenetbiosnamereleaserequestsexceptfromwinsservers)
-- [MSSLegacy/IPSourceRoutingProtectionLevel](./policy-csp-msslegacy.md#msslegacy-ipsourceroutingprotectionlevel)
-- [MSSLegacy/IPv6SourceRoutingProtectionLevel](./policy-csp-msslegacy.md#msslegacy-ipv6sourceroutingprotectionlevel)
-- [MSSecurityGuide/ApplyUACRestrictionsToLocalAccountsOnNetworkLogon](./policy-csp-mssecurityguide.md#mssecurityguide-applyuacrestrictionstolocalaccountsonnetworklogon)
-- [MSSecurityGuide/ConfigureSMBV1ClientDriver](./policy-csp-mssecurityguide.md#mssecurityguide-configuresmbv1clientdriver)
-- [MSSecurityGuide/ConfigureSMBV1Server](./policy-csp-mssecurityguide.md#mssecurityguide-configuresmbv1server)
-- [MSSecurityGuide/EnableStructuredExceptionHandlingOverwriteProtection](./policy-csp-mssecurityguide.md#mssecurityguide-enablestructuredexceptionhandlingoverwriteprotection)
-- [MSSecurityGuide/TurnOnWindowsDefenderProtectionAgainstPotentiallyUnwantedApplications](./policy-csp-mssecurityguide.md#mssecurityguide-turnonwindowsdefenderprotectionagainstpotentiallyunwantedapplications)
-- [MSSecurityGuide/WDigestAuthentication](./policy-csp-mssecurityguide.md#mssecurityguide-wdigestauthentication)
-- [Maps/EnableOfflineMapsAutoUpdate](./policy-csp-maps.md#maps-enableofflinemapsautoupdate)
-- [Messaging/AllowMessageSync](./policy-csp-messaging.md#messaging-allowmessagesync)
-- [NetworkIsolation/EnterpriseCloudResources](./policy-csp-networkisolation.md#networkisolation-enterprisecloudresources)
-- [NetworkIsolation/EnterpriseIPRange](./policy-csp-networkisolation.md#networkisolation-enterpriseiprange)
-- [NetworkIsolation/EnterpriseIPRangesAreAuthoritative](./policy-csp-networkisolation.md#networkisolation-enterpriseiprangesareauthoritative)
-- [NetworkIsolation/EnterpriseInternalProxyServers](./policy-csp-networkisolation.md#networkisolation-enterpriseinternalproxyservers)
-- [NetworkIsolation/EnterpriseProxyServers](./policy-csp-networkisolation.md#networkisolation-enterpriseproxyservers)
-- [NetworkIsolation/EnterpriseProxyServersAreAuthoritative](./policy-csp-networkisolation.md#networkisolation-enterpriseproxyserversareauthoritative)
-- [NetworkIsolation/NeutralResources](./policy-csp-networkisolation.md#networkisolation-neutralresources)
-- [Notifications/DisallowCloudNotification](./policy-csp-notifications.md#notifications-disallowcloudnotification)
-- [Notifications/DisallowNotificationMirroring](./policy-csp-notifications.md#notifications-disallownotificationmirroring)
-- [Notifications/DisallowTileNotification](./policy-csp-notifications.md#notifications-disallowtilenotification)
-- [Power/AllowStandbyStatesWhenSleepingOnBattery](./policy-csp-power.md#power-allowstandbystateswhensleepingonbattery)
-- [Power/AllowStandbyWhenSleepingPluggedIn](./policy-csp-power.md#power-allowstandbywhensleepingpluggedin)
-- [Power/DisplayOffTimeoutOnBattery](./policy-csp-power.md#power-displayofftimeoutonbattery)
-- [Power/DisplayOffTimeoutPluggedIn](./policy-csp-power.md#power-displayofftimeoutpluggedin)
-- [Power/EnergySaverBatteryThresholdOnBattery](./policy-csp-power.md#power-energysaverbatterythresholdonbattery)
-- [Power/EnergySaverBatteryThresholdPluggedIn](./policy-csp-power.md#power-energysaverbatterythresholdpluggedin)
-- [Power/HibernateTimeoutOnBattery](./policy-csp-power.md#power-hibernatetimeoutonbattery)
-- [Power/HibernateTimeoutPluggedIn](./policy-csp-power.md#power-hibernatetimeoutpluggedin)
-- [Power/RequirePasswordWhenComputerWakesOnBattery](./policy-csp-power.md#power-requirepasswordwhencomputerwakesonbattery)
-- [Power/RequirePasswordWhenComputerWakesPluggedIn](./policy-csp-power.md#power-requirepasswordwhencomputerwakespluggedin)
-- [Power/SelectLidCloseActionOnBattery](./policy-csp-power.md#power-selectlidcloseactiononbattery)
-- [Power/SelectLidCloseActionPluggedIn](./policy-csp-power.md#power-selectlidcloseactionpluggedin)
-- [Power/SelectPowerButtonActionOnBattery](./policy-csp-power.md#power-selectpowerbuttonactiononbattery)
-- [Power/SelectPowerButtonActionPluggedIn](./policy-csp-power.md#power-selectpowerbuttonactionpluggedin)
-- [Power/SelectSleepButtonActionOnBattery](./policy-csp-power.md#power-selectsleepbuttonactiononbattery)
-- [Power/SelectSleepButtonActionPluggedIn](./policy-csp-power.md#power-selectsleepbuttonactionpluggedin)
-- [Power/StandbyTimeoutOnBattery](./policy-csp-power.md#power-standbytimeoutonbattery)
-- [Power/StandbyTimeoutPluggedIn](./policy-csp-power.md#power-standbytimeoutpluggedin)
-- [Power/TurnOffHybridSleepOnBattery](./policy-csp-power.md#power-turnoffhybridsleeponbattery)
-- [Power/TurnOffHybridSleepPluggedIn](./policy-csp-power.md#power-turnoffhybridsleeppluggedin)
-- [Power/UnattendedSleepTimeoutOnBattery](./policy-csp-power.md#power-unattendedsleeptimeoutonbattery)
-- [Power/UnattendedSleepTimeoutPluggedIn](./policy-csp-power.md#power-unattendedsleeptimeoutpluggedin)
-- [Printers/PointAndPrintRestrictions](./policy-csp-printers.md#printers-pointandprintrestrictions)
-- [Printers/PointAndPrintRestrictions_User](./policy-csp-printers.md#printers-pointandprintrestrictions-user)
-- [Printers/PublishPrinters](./policy-csp-printers.md#printers-publishprinters)
-- [Privacy/AllowCrossDeviceClipboard](./policy-csp-privacy.md#privacy-allowcrossdeviceclipboard)
-- [Privacy/AllowInputPersonalization](./policy-csp-privacy.md#privacy-allowinputpersonalization)
-- [Privacy/DisableAdvertisingId](./policy-csp-privacy.md#privacy-disableadvertisingid)
-- [Privacy/DisablePrivacyExperience](./policy-csp-privacy.md#privacy-disableprivacyexperience)
-- [Privacy/EnableActivityFeed](./policy-csp-privacy.md#privacy-enableactivityfeed)
-- [Privacy/LetAppsAccessAccountInfo](./policy-csp-privacy.md#privacy-letappsaccessaccountinfo)
-- [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessaccountinfo-forceallowtheseapps)
-- [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessaccountinfo-forcedenytheseapps)
-- [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessaccountinfo-userincontroloftheseapps)
-- [Privacy/LetAppsAccessCalendar](./policy-csp-privacy.md#privacy-letappsaccesscalendar)
-- [Privacy/LetAppsAccessCalendar_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscalendar-forceallowtheseapps)
-- [Privacy/LetAppsAccessCalendar_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscalendar-forcedenytheseapps)
-- [Privacy/LetAppsAccessCalendar_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscalendar-userincontroloftheseapps)
-- [Privacy/LetAppsAccessCallHistory](./policy-csp-privacy.md#privacy-letappsaccesscallhistory)
-- [Privacy/LetAppsAccessCallHistory_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscallhistory-forceallowtheseapps)
-- [Privacy/LetAppsAccessCallHistory_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscallhistory-forcedenytheseapps)
-- [Privacy/LetAppsAccessCallHistory_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscallhistory-userincontroloftheseapps)
-- [Privacy/LetAppsAccessCamera](./policy-csp-privacy.md#privacy-letappsaccesscamera)
-- [Privacy/LetAppsAccessCamera_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscamera-forceallowtheseapps)
-- [Privacy/LetAppsAccessCamera_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscamera-forcedenytheseapps)
-- [Privacy/LetAppsAccessCamera_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscamera-userincontroloftheseapps)
-- [Privacy/LetAppsAccessContacts](./policy-csp-privacy.md#privacy-letappsaccesscontacts)
-- [Privacy/LetAppsAccessContacts_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscontacts-forceallowtheseapps)
-- [Privacy/LetAppsAccessContacts_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscontacts-forcedenytheseapps)
-- [Privacy/LetAppsAccessContacts_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesscontacts-userincontroloftheseapps)
-- [Privacy/LetAppsAccessEmail](./policy-csp-privacy.md#privacy-letappsaccessemail)
-- [Privacy/LetAppsAccessEmail_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessemail-forceallowtheseapps)
-- [Privacy/LetAppsAccessEmail_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessemail-forcedenytheseapps)
-- [Privacy/LetAppsAccessEmail_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessemail-userincontroloftheseapps)
-- [Privacy/LetAppsAccessLocation](./policy-csp-privacy.md#privacy-letappsaccesslocation)
-- [Privacy/LetAppsAccessLocation_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesslocation-forceallowtheseapps)
-- [Privacy/LetAppsAccessLocation_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesslocation-forcedenytheseapps)
-- [Privacy/LetAppsAccessLocation_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesslocation-userincontroloftheseapps)
-- [Privacy/LetAppsAccessMessaging](./policy-csp-privacy.md#privacy-letappsaccessmessaging)
-- [Privacy/LetAppsAccessMessaging_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmessaging-forceallowtheseapps)
-- [Privacy/LetAppsAccessMessaging_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmessaging-forcedenytheseapps)
-- [Privacy/LetAppsAccessMessaging_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmessaging-userincontroloftheseapps)
-- [Privacy/LetAppsAccessMicrophone](./policy-csp-privacy.md#privacy-letappsaccessmicrophone)
-- [Privacy/LetAppsAccessMicrophone_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmicrophone-forceallowtheseapps)
-- [Privacy/LetAppsAccessMicrophone_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmicrophone-forcedenytheseapps)
-- [Privacy/LetAppsAccessMicrophone_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmicrophone-userincontroloftheseapps)
-- [Privacy/LetAppsAccessMotion](./policy-csp-privacy.md#privacy-letappsaccessmotion)
-- [Privacy/LetAppsAccessMotion_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmotion-forceallowtheseapps)
-- [Privacy/LetAppsAccessMotion_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmotion-forcedenytheseapps)
-- [Privacy/LetAppsAccessMotion_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessmotion-userincontroloftheseapps)
-- [Privacy/LetAppsAccessNotifications](./policy-csp-privacy.md#privacy-letappsaccessnotifications)
-- [Privacy/LetAppsAccessNotifications_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessnotifications-forceallowtheseapps)
-- [Privacy/LetAppsAccessNotifications_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessnotifications-forcedenytheseapps)
-- [Privacy/LetAppsAccessNotifications_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessnotifications-userincontroloftheseapps)
-- [Privacy/LetAppsAccessPhone](./policy-csp-privacy.md#privacy-letappsaccessphone)
-- [Privacy/LetAppsAccessPhone_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessphone-forceallowtheseapps)
-- [Privacy/LetAppsAccessPhone_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessphone-forcedenytheseapps)
-- [Privacy/LetAppsAccessPhone_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessphone-userincontroloftheseapps)
-- [Privacy/LetAppsAccessRadios](./policy-csp-privacy.md#privacy-letappsaccessradios)
-- [Privacy/LetAppsAccessRadios_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccessradios-forceallowtheseapps)
-- [Privacy/LetAppsAccessRadios_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccessradios-forcedenytheseapps)
-- [Privacy/LetAppsAccessRadios_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccessradios-userincontroloftheseapps)
-- [Privacy/LetAppsAccessTasks](./policy-csp-privacy.md#privacy-letappsaccesstasks)
-- [Privacy/LetAppsAccessTasks_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesstasks-forceallowtheseapps)
-- [Privacy/LetAppsAccessTasks_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesstasks-forcedenytheseapps)
-- [Privacy/LetAppsAccessTasks_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesstasks-userincontroloftheseapps)
-- [Privacy/LetAppsAccessTrustedDevices](./policy-csp-privacy.md#privacy-letappsaccesstrusteddevices)
-- [Privacy/LetAppsAccessTrustedDevices_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsaccesstrusteddevices-forceallowtheseapps)
-- [Privacy/LetAppsAccessTrustedDevices_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsaccesstrusteddevices-forcedenytheseapps)
-- [Privacy/LetAppsAccessTrustedDevices_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsaccesstrusteddevices-userincontroloftheseapps)
-- [Privacy/LetAppsGetDiagnosticInfo](./policy-csp-privacy.md#privacy-letappsgetdiagnosticinfo)
-- [Privacy/LetAppsGetDiagnosticInfo_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsgetdiagnosticinfo-forceallowtheseapps)
-- [Privacy/LetAppsGetDiagnosticInfo_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsgetdiagnosticinfo-forcedenytheseapps)
-- [Privacy/LetAppsGetDiagnosticInfo_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsgetdiagnosticinfo-userincontroloftheseapps)
-- [Privacy/LetAppsRunInBackground](./policy-csp-privacy.md#privacy-letappsruninbackground)
-- [Privacy/LetAppsRunInBackground_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappsruninbackground-forceallowtheseapps)
-- [Privacy/LetAppsRunInBackground_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappsruninbackground-forcedenytheseapps)
-- [Privacy/LetAppsRunInBackground_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappsruninbackground-userincontroloftheseapps)
-- [Privacy/LetAppsSyncWithDevices](./policy-csp-privacy.md#privacy-letappssyncwithdevices)
-- [Privacy/LetAppsSyncWithDevices_ForceAllowTheseApps](./policy-csp-privacy.md#privacy-letappssyncwithdevices-forceallowtheseapps)
-- [Privacy/LetAppsSyncWithDevices_ForceDenyTheseApps](./policy-csp-privacy.md#privacy-letappssyncwithdevices-forcedenytheseapps)
-- [Privacy/LetAppsSyncWithDevices_UserInControlOfTheseApps](./policy-csp-privacy.md#privacy-letappssyncwithdevices-userincontroloftheseapps)
-- [Privacy/PublishUserActivities](./policy-csp-privacy.md#privacy-publishuseractivities)
-- [Privacy/UploadUserActivities](./policy-csp-privacy.md#privacy-uploaduseractivities)
-- [RemoteAssistance/CustomizeWarningMessages](./policy-csp-remoteassistance.md#remoteassistance-customizewarningmessages)
-- [RemoteAssistance/SessionLogging](./policy-csp-remoteassistance.md#remoteassistance-sessionlogging)
-- [RemoteAssistance/SolicitedRemoteAssistance](./policy-csp-remoteassistance.md#remoteassistance-solicitedremoteassistance)
-- [RemoteAssistance/UnsolicitedRemoteAssistance](./policy-csp-remoteassistance.md#remoteassistance-unsolicitedremoteassistance)
-- [RemoteDesktopServices/AllowUsersToConnectRemotely](./policy-csp-remotedesktopservices.md#remotedesktopservices-allowuserstoconnectremotely)
-- [RemoteDesktopServices/ClientConnectionEncryptionLevel](./policy-csp-remotedesktopservices.md#remotedesktopservices-clientconnectionencryptionlevel)
-- [RemoteDesktopServices/DoNotAllowDriveRedirection](./policy-csp-remotedesktopservices.md#remotedesktopservices-donotallowdriveredirection)
-- [RemoteDesktopServices/DoNotAllowPasswordSaving](./policy-csp-remotedesktopservices.md#remotedesktopservices-donotallowpasswordsaving)
-- [RemoteDesktopServices/PromptForPasswordUponConnection](./policy-csp-remotedesktopservices.md#remotedesktopservices-promptforpassworduponconnection)
-- [RemoteDesktopServices/RequireSecureRPCCommunication](./policy-csp-remotedesktopservices.md#remotedesktopservices-requiresecurerpccommunication)
-- [RemoteManagement/AllowBasicAuthentication_Client](./policy-csp-remotemanagement.md#remotemanagement-allowbasicauthentication-client)
-- [RemoteManagement/AllowBasicAuthentication_Service](./policy-csp-remotemanagement.md#remotemanagement-allowbasicauthentication-service)
-- [RemoteManagement/AllowCredSSPAuthenticationClient](./policy-csp-remotemanagement.md#remotemanagement-allowcredsspauthenticationclient)
-- [RemoteManagement/AllowCredSSPAuthenticationService](./policy-csp-remotemanagement.md#remotemanagement-allowcredsspauthenticationservice)
-- [RemoteManagement/AllowRemoteServerManagement](./policy-csp-remotemanagement.md#remotemanagement-allowremoteservermanagement)
-- [RemoteManagement/AllowUnencryptedTraffic_Client](./policy-csp-remotemanagement.md#remotemanagement-allowunencryptedtraffic-client)
-- [RemoteManagement/AllowUnencryptedTraffic_Service](./policy-csp-remotemanagement.md#remotemanagement-allowunencryptedtraffic-service)
-- [RemoteManagement/DisallowDigestAuthentication](./policy-csp-remotemanagement.md#remotemanagement-disallowdigestauthentication)
-- [RemoteManagement/DisallowNegotiateAuthenticationClient](./policy-csp-remotemanagement.md#remotemanagement-disallownegotiateauthenticationclient)
-- [RemoteManagement/DisallowNegotiateAuthenticationService](./policy-csp-remotemanagement.md#remotemanagement-disallownegotiateauthenticationservice)
-- [RemoteManagement/DisallowStoringOfRunAsCredentials](./policy-csp-remotemanagement.md#remotemanagement-disallowstoringofrunascredentials)
-- [RemoteManagement/SpecifyChannelBindingTokenHardeningLevel](./policy-csp-remotemanagement.md#remotemanagement-specifychannelbindingtokenhardeninglevel)
-- [RemoteManagement/TrustedHosts](./policy-csp-remotemanagement.md#remotemanagement-trustedhosts)
-- [RemoteManagement/TurnOnCompatibilityHTTPListener](./policy-csp-remotemanagement.md#remotemanagement-turnoncompatibilityhttplistener)
-- [RemoteManagement/TurnOnCompatibilityHTTPSListener](./policy-csp-remotemanagement.md#remotemanagement-turnoncompatibilityhttpslistener)
-- [RemoteProcedureCall/RPCEndpointMapperClientAuthentication](./policy-csp-remoteprocedurecall.md#remoteprocedurecall-rpcendpointmapperclientauthentication)
-- [RemoteProcedureCall/RestrictUnauthenticatedRPCClients](./policy-csp-remoteprocedurecall.md#remoteprocedurecall-restrictunauthenticatedrpcclients)
-- [RemoteShell/AllowRemoteShellAccess](./policy-csp-remoteshell.md#remoteshell-allowremoteshellaccess)
-- [RemoteShell/MaxConcurrentUsers](./policy-csp-remoteshell.md#remoteshell-maxconcurrentusers)
-- [RemoteShell/SpecifyIdleTimeout](./policy-csp-remoteshell.md#remoteshell-specifyidletimeout)
-- [RemoteShell/SpecifyMaxMemory](./policy-csp-remoteshell.md#remoteshell-specifymaxmemory)
-- [RemoteShell/SpecifyMaxProcesses](./policy-csp-remoteshell.md#remoteshell-specifymaxprocesses)
-- [RemoteShell/SpecifyMaxRemoteShells](./policy-csp-remoteshell.md#remoteshell-specifymaxremoteshells)
-- [RemoteShell/SpecifyShellTimeout](./policy-csp-remoteshell.md#remoteshell-specifyshelltimeout)
-- [Search/AllowCloudSearch](./policy-csp-search.md#search-allowcloudsearch)
-- [Search/AllowFindMyFiles](./policy-csp-search.md#search-allowfindmyfiles)
-- [Search/AllowIndexingEncryptedStoresOrItems](./policy-csp-search.md#search-allowindexingencryptedstoresoritems)
-- [Search/AllowSearchToUseLocation](./policy-csp-search.md#search-allowsearchtouselocation)
-- [Search/AllowUsingDiacritics](./policy-csp-search.md#search-allowusingdiacritics)
-- [Search/AlwaysUseAutoLangDetection](./policy-csp-search.md#search-alwaysuseautolangdetection)
-- [Search/DisableBackoff](./policy-csp-search.md#search-disablebackoff)
-- [Search/DisableRemovableDriveIndexing](./policy-csp-search.md#search-disableremovabledriveindexing)
-- [Search/DoNotUseWebResults](./policy-csp-search.md#search-donotusewebresults)
-- [Search/PreventIndexingLowDiskSpaceMB](./policy-csp-search.md#search-preventindexinglowdiskspacemb)
-- [Search/PreventRemoteQueries](./policy-csp-search.md#search-preventremotequeries)
-- [Security/ClearTPMIfNotReady](./policy-csp-security.md#security-cleartpmifnotready)
-- [ServiceControlManager/SvchostProcessMitigation](./policy-csp-servicecontrolmanager.md#servicecontrolmanager-svchostprocessmitigation)
-- [Settings/AllowOnlineTips](./policy-csp-settings.md#settings-allowonlinetips)
-- [Settings/ConfigureTaskbarCalendar](./policy-csp-settings.md#settings-configuretaskbarcalendar)
-- [Settings/PageVisibilityList](./policy-csp-settings.md#settings-pagevisibilitylist)
-- [SmartScreen/EnableAppInstallControl](./policy-csp-smartscreen.md#smartscreen-enableappinstallcontrol)
-- [SmartScreen/EnableSmartScreenInShell](./policy-csp-smartscreen.md#smartscreen-enablesmartscreeninshell)
-- [SmartScreen/PreventOverrideForFilesInShell](./policy-csp-smartscreen.md#smartscreen-preventoverrideforfilesinshell)
-- [Speech/AllowSpeechModelUpdate](./policy-csp-speech.md#speech-allowspeechmodelupdate)
-- [Start/DisableContextMenus](./policy-csp-start.md#start-disablecontextmenus)
-- [Start/HidePeopleBar](./policy-csp-start.md#start-hidepeoplebar)
-- [Start/HideRecentlyAddedApps](./policy-csp-start.md#start-hiderecentlyaddedapps)
-- [Start/StartLayout](./policy-csp-start.md#start-startlayout)
-- [Storage/AllowDiskHealthModelUpdates](./policy-csp-storage.md#storage-allowdiskhealthmodelupdates)
-- [Storage/EnhancedStorageDevices](./policy-csp-storage.md#storage-enhancedstoragedevices)
-- [System/AllowBuildPreview](./policy-csp-system.md#system-allowbuildpreview)
-- [System/AllowCommercialDataPipeline](./policy-csp-system.md#system-allowcommercialdatapipeline)
-- [System/AllowDeviceNameInDiagnosticData](./policy-csp-system.md#system-allowdevicenameindiagnosticdata)
-- [System/AllowFontProviders](./policy-csp-system.md#system-allowfontproviders)
-- [System/AllowLocation](./policy-csp-system.md#system-allowlocation)
-- [System/AllowTelemetry](./policy-csp-system.md#system-allowtelemetry)
-- [System/BootStartDriverInitialization](./policy-csp-system.md#system-bootstartdriverinitialization)
-- [System/ConfigureMicrosoft365UploadEndpoint](./policy-csp-system.md#system-configuremicrosoft365uploadendpoint)
-- [System/ConfigureTelemetryOptInChangeNotification](./policy-csp-system.md#system-configuretelemetryoptinchangenotification)
-- [System/ConfigureTelemetryOptInSettingsUx](./policy-csp-system.md#system-configuretelemetryoptinsettingsux)
-- [System/DisableDeviceDelete](./policy-csp-system.md#system-disabledevicedelete)
-- [System/DisableDiagnosticDataViewer](./policy-csp-system.md#system-disablediagnosticdataviewer)
-- [System/DisableEnterpriseAuthProxy](./policy-csp-system.md#system-disableenterpriseauthproxy)
-- [System/DisableOneDriveFileSync](./policy-csp-system.md#system-disableonedrivefilesync)
-- [System/DisableSystemRestore](./policy-csp-system.md#system-disablesystemrestore)
-- [System/LimitEnhancedDiagnosticDataWindowsAnalytics](./policy-csp-system.md#system-limitenhanceddiagnosticdatawindowsanalytics)
-- [System/TelemetryProxy](./policy-csp-system.md#system-telemetryproxy)
-- [System/TurnOffFileHistory](./policy-csp-system.md#system-turnofffilehistory)
-- [SystemServices/ConfigureHomeGroupListenerServiceStartupMode](./policy-csp-systemservices.md#systemservices-configurehomegrouplistenerservicestartupmode)
-- [SystemServices/ConfigureHomeGroupProviderServiceStartupMode](./policy-csp-systemservices.md#systemservices-configurehomegroupproviderservicestartupmode)
-- [SystemServices/ConfigureXboxAccessoryManagementServiceStartupMode](./policy-csp-systemservices.md#systemservices-configurexboxaccessorymanagementservicestartupmode)
-- [SystemServices/ConfigureXboxLiveAuthManagerServiceStartupMode](./policy-csp-systemservices.md#systemservices-configurexboxliveauthmanagerservicestartupmode)
-- [SystemServices/ConfigureXboxLiveGameSaveServiceStartupMode](./policy-csp-systemservices.md#systemservices-configurexboxlivegamesaveservicestartupmode)
-- [SystemServices/ConfigureXboxLiveNetworkingServiceStartupMode](./policy-csp-systemservices.md#systemservices-configurexboxlivenetworkingservicestartupmode)
-- [TextInput/AllowLanguageFeaturesUninstall](./policy-csp-textinput.md#textinput-allowlanguagefeaturesuninstall)
-- [TextInput/AllowLinguisticDataCollection](./policy-csp-textinput.md#textinput-allowlinguisticdatacollection)
-- [Troubleshooting/AllowRecommendations](./policy-csp-troubleshooting.md#troubleshooting-allowrecommendations)
-- [Update/ActiveHoursEnd](./policy-csp-update.md#update-activehoursend)
-- [Update/ActiveHoursMaxRange](./policy-csp-update.md#update-activehoursmaxrange)
-- [Update/ActiveHoursStart](./policy-csp-update.md#update-activehoursstart)
-- [Update/AllowAutoUpdate](./policy-csp-update.md#update-allowautoupdate)
-- [Update/AllowAutoWindowsUpdateDownloadOverMeteredNetwork](./policy-csp-update.md#update-allowautowindowsupdatedownloadovermeterednetwork)
-- [Update/AllowMUUpdateService](./policy-csp-update.md#update-allowmuupdateservice)
-- [Update/AllowUpdateService](./policy-csp-update.md#update-allowupdateservice)
-- [Update/AutoRestartDeadlinePeriodInDays](./policy-csp-update.md#update-autorestartdeadlineperiodindays)
-- [Update/AutoRestartDeadlinePeriodInDaysForFeatureUpdates](./policy-csp-update.md#update-autorestartdeadlineperiodindaysforfeatureupdates)
-- [Update/AutoRestartNotificationSchedule](./policy-csp-update.md#update-autorestartnotificationschedule)
-- [Update/AutoRestartRequiredNotificationDismissal](./policy-csp-update.md#update-autorestartrequirednotificationdismissal)
-- [Update/AutomaticMaintenanceWakeUp](./policy-csp-update.md#update-automaticmaintenancewakeup)
-- [Update/BranchReadinessLevel](./policy-csp-update.md#update-branchreadinesslevel)
-- [Update/ConfigureDeadlineForFeatureUpdates](./policy-csp-update.md#update-configuredeadlineforfeatureupdates)
-- [Update/ConfigureDeadlineForQualityUpdates](./policy-csp-update.md#update-configuredeadlineforqualityupdates)
-- [Update/ConfigureDeadlineGracePeriod](./policy-csp-update.md#update-configuredeadlinegraceperiod)
-- [Update/ConfigureDeadlineNoAutoReboot](./policy-csp-update.md#update-configuredeadlinenoautoreboot)
-- [Update/DeferFeatureUpdatesPeriodInDays](./policy-csp-update.md#update-deferfeatureupdatesperiodindays)
-- [Update/DeferQualityUpdatesPeriodInDays](./policy-csp-update.md#update-deferqualityupdatesperiodindays)
-- [Update/DeferUpdatePeriod](./policy-csp-update.md#update-deferupdateperiod)
-- [Update/DeferUpgradePeriod](./policy-csp-update.md#update-deferupgradeperiod)
-- [Update/DetectionFrequency](./policy-csp-update.md#update-detectionfrequency)
-- [Update/DisableDualScan](./policy-csp-update.md#update-disabledualscan)
-- [Update/EngagedRestartDeadline](./policy-csp-update.md#update-engagedrestartdeadline)
-- [Update/EngagedRestartDeadlineForFeatureUpdates](./policy-csp-update.md#update-engagedrestartdeadlineforfeatureupdates)
-- [Update/EngagedRestartSnoozeSchedule](./policy-csp-update.md#update-engagedrestartsnoozeschedule)
-- [Update/EngagedRestartSnoozeScheduleForFeatureUpdates](./policy-csp-update.md#update-engagedrestartsnoozescheduleforfeatureupdates)
-- [Update/EngagedRestartTransitionSchedule](./policy-csp-update.md#update-engagedrestarttransitionschedule)
-- [Update/EngagedRestartTransitionScheduleForFeatureUpdates](./policy-csp-update.md#update-engagedrestarttransitionscheduleforfeatureupdates)
-- [Update/ExcludeWUDriversInQualityUpdate](./policy-csp-update.md#update-excludewudriversinqualityupdate)
-- [Update/FillEmptyContentUrls](./policy-csp-update.md#update-fillemptycontenturls)
-- [Update/ManagePreviewBuilds](./policy-csp-update.md#update-managepreviewbuilds)
-- [Update/PauseDeferrals](./policy-csp-update.md#update-pausedeferrals)
-- [Update/PauseFeatureUpdates](./policy-csp-update.md#update-pausefeatureupdates)
-- [Update/PauseFeatureUpdatesStartTime](./policy-csp-update.md#update-pausefeatureupdatesstarttime)
-- [Update/PauseQualityUpdates](./policy-csp-update.md#update-pausequalityupdates)
-- [Update/PauseQualityUpdatesStartTime](./policy-csp-update.md#update-pausequalityupdatesstarttime)
-- [Update/RequireDeferUpgrade](./policy-csp-update.md#update-requiredeferupgrade)
-- [Update/ScheduleImminentRestartWarning](./policy-csp-update.md#update-scheduleimminentrestartwarning)
-- [Update/ScheduleRestartWarning](./policy-csp-update.md#update-schedulerestartwarning)
-- [Update/ScheduledInstallDay](./policy-csp-update.md#update-scheduledinstallday)
-- [Update/ScheduledInstallEveryWeek](./policy-csp-update.md#update-scheduledinstalleveryweek)
-- [Update/ScheduledInstallFirstWeek](./policy-csp-update.md#update-scheduledinstallfirstweek)
-- [Update/ScheduledInstallFourthWeek](./policy-csp-update.md#update-scheduledinstallfourthweek)
-- [Update/ScheduledInstallSecondWeek](./policy-csp-update.md#update-scheduledinstallsecondweek)
-- [Update/ScheduledInstallThirdWeek](./policy-csp-update.md#update-scheduledinstallthirdweek)
-- [Update/ScheduledInstallTime](./policy-csp-update.md#update-scheduledinstalltime)
-- [Update/SetAutoRestartNotificationDisable](./policy-csp-update.md#update-setautorestartnotificationdisable)
-- [Update/SetDisablePauseUXAccess](./policy-csp-update.md#update-setdisablepauseuxaccess)
-- [Update/SetDisableUXWUAccess](./policy-csp-update.md#update-setdisableuxwuaccess)
-- [Update/SetEDURestart](./policy-csp-update.md#update-setedurestart)
-- [Update/UpdateNotificationLevel](./policy-csp-update.md#update-updatenotificationlevel)
-- [Update/UpdateServiceUrl](./policy-csp-update.md#update-updateserviceurl)
-- [Update/UpdateServiceUrlAlternate](./policy-csp-update.md#update-updateserviceurlalternate)
-- [UserRights/AccessCredentialManagerAsTrustedCaller](./policy-csp-userrights.md#userrights-accesscredentialmanagerastrustedcaller)
-- [UserRights/AccessFromNetwork](./policy-csp-userrights.md#userrights-accessfromnetwork)
-- [UserRights/ActAsPartOfTheOperatingSystem](./policy-csp-userrights.md#userrights-actaspartoftheoperatingsystem)
-- [UserRights/AllowLocalLogOn](./policy-csp-userrights.md#userrights-allowlocallogon)
-- [UserRights/BackupFilesAndDirectories](./policy-csp-userrights.md#userrights-backupfilesanddirectories)
-- [UserRights/ChangeSystemTime](./policy-csp-userrights.md#userrights-changesystemtime)
-- [UserRights/CreateGlobalObjects](./policy-csp-userrights.md#userrights-createglobalobjects)
-- [UserRights/CreatePageFile](./policy-csp-userrights.md#userrights-createpagefile)
-- [UserRights/CreatePermanentSharedObjects](./policy-csp-userrights.md#userrights-createpermanentsharedobjects)
-- [UserRights/CreateSymbolicLinks](./policy-csp-userrights.md#userrights-createsymboliclinks)
-- [UserRights/CreateToken](./policy-csp-userrights.md#userrights-createtoken)
-- [UserRights/DebugPrograms](./policy-csp-userrights.md#userrights-debugprograms)
-- [UserRights/DenyAccessFromNetwork](./policy-csp-userrights.md#userrights-denyaccessfromnetwork)
-- [UserRights/DenyLocalLogOn](./policy-csp-userrights.md#userrights-denylocallogon)
-- [UserRights/DenyRemoteDesktopServicesLogOn](./policy-csp-userrights.md#userrights-denyremotedesktopserviceslogon)
-- [UserRights/EnableDelegation](./policy-csp-userrights.md#userrights-enabledelegation)
-- [UserRights/GenerateSecurityAudits](./policy-csp-userrights.md#userrights-generatesecurityaudits)
-- [UserRights/ImpersonateClient](./policy-csp-userrights.md#userrights-impersonateclient)
-- [UserRights/IncreaseSchedulingPriority](./policy-csp-userrights.md#userrights-increaseschedulingpriority)
-- [UserRights/LoadUnloadDeviceDrivers](./policy-csp-userrights.md#userrights-loadunloaddevicedrivers)
-- [UserRights/LockMemory](./policy-csp-userrights.md#userrights-lockmemory)
-- [UserRights/ManageAuditingAndSecurityLog](./policy-csp-userrights.md#userrights-manageauditingandsecuritylog)
-- [UserRights/ManageVolume](./policy-csp-userrights.md#userrights-managevolume)
-- [UserRights/ModifyFirmwareEnvironment](./policy-csp-userrights.md#userrights-modifyfirmwareenvironment)
-- [UserRights/ModifyObjectLabel](./policy-csp-userrights.md#userrights-modifyobjectlabel)
-- [UserRights/ProfileSingleProcess](./policy-csp-userrights.md#userrights-profilesingleprocess)
-- [UserRights/RemoteShutdown](./policy-csp-userrights.md#userrights-remoteshutdown)
-- [UserRights/RestoreFilesAndDirectories](./policy-csp-userrights.md#userrights-restorefilesanddirectories)
-- [UserRights/TakeOwnership](./policy-csp-userrights.md#userrights-takeownership)
-- [Wifi/AllowAutoConnectToWiFiSenseHotspots](./policy-csp-wifi.md#wifi-allowautoconnecttowifisensehotspots)
-- [Wifi/AllowInternetSharing](./policy-csp-wifi.md#wifi-allowinternetsharing)
-- [WindowsConnectionManager/ProhitConnectionToNonDomainNetworksWhenConnectedToDomainAuthenticatedNetwork](./policy-csp-windowsconnectionmanager.md#windowsconnectionmanager-prohitconnectiontonondomainnetworkswhenconnectedtodomainauthenticatednetwork)
-- [WindowsDefenderSecurityCenter/CompanyName](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-companyname)
-- [WindowsDefenderSecurityCenter/DisableAccountProtectionUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disableaccountprotectionui)
-- [WindowsDefenderSecurityCenter/DisableAppBrowserUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disableappbrowserui)
-- [WindowsDefenderSecurityCenter/DisableClearTpmButton](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disablecleartpmbutton)
-- [WindowsDefenderSecurityCenter/DisableDeviceSecurityUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disabledevicesecurityui)
-- [WindowsDefenderSecurityCenter/DisableEnhancedNotifications](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disableenhancednotifications)
-- [WindowsDefenderSecurityCenter/DisableFamilyUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disablefamilyui)
-- [WindowsDefenderSecurityCenter/DisableHealthUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disablehealthui)
-- [WindowsDefenderSecurityCenter/DisableNetworkUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disablenetworkui)
-- [WindowsDefenderSecurityCenter/DisableNotifications](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disablenotifications)
-- [WindowsDefenderSecurityCenter/DisableTpmFirmwareUpdateWarning](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disabletpmfirmwareupdatewarning)
-- [WindowsDefenderSecurityCenter/DisableVirusUI](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disablevirusui)
-- [WindowsDefenderSecurityCenter/DisallowExploitProtectionOverride](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-disallowexploitprotectionoverride)
-- [WindowsDefenderSecurityCenter/Email](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-email)
-- [WindowsDefenderSecurityCenter/EnableCustomizedToasts](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-enablecustomizedtoasts)
-- [WindowsDefenderSecurityCenter/EnableInAppCustomization](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-enableinappcustomization)
-- [WindowsDefenderSecurityCenter/HideRansomwareDataRecovery](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-hideransomwaredatarecovery)
-- [WindowsDefenderSecurityCenter/HideSecureBoot](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-hidesecureboot)
-- [WindowsDefenderSecurityCenter/HideTPMTroubleshooting](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-hidetpmtroubleshooting)
-- [WindowsDefenderSecurityCenter/HideWindowsSecurityNotificationAreaControl](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-hidewindowssecuritynotificationareacontrol)
-- [WindowsDefenderSecurityCenter/Phone](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-phone)
-- [WindowsDefenderSecurityCenter/URL](./policy-csp-windowsdefendersecuritycenter.md#windowsdefendersecuritycenter-url)
-- [WindowsInkWorkspace/AllowSuggestedAppsInWindowsInkWorkspace](./policy-csp-windowsinkworkspace.md#windowsinkworkspace-allowsuggestedappsinwindowsinkworkspace)
-- [WindowsInkWorkspace/AllowWindowsInkWorkspace](./policy-csp-windowsinkworkspace.md#windowsinkworkspace-allowwindowsinkworkspace)
-- [WindowsLogon/AllowAutomaticRestartSignOn](./policy-csp-windowslogon.md#windowslogon-allowautomaticrestartsignon)
-- [WindowsLogon/ConfigAutomaticRestartSignOn](./policy-csp-windowslogon.md#windowslogon-configautomaticrestartsignon)
-- [WindowsLogon/DisableLockScreenAppNotifications](./policy-csp-windowslogon.md#windowslogon-disablelockscreenappnotifications)
-- [WindowsLogon/DontDisplayNetworkSelectionUI](./policy-csp-windowslogon.md#windowslogon-dontdisplaynetworkselectionui)
-- [WindowsLogon/EnableFirstLogonAnimation](./policy-csp-windowslogon.md#windowslogon-enablefirstlogonanimation)
-- [WindowsLogon/EnumerateLocalUsersOnDomainJoinedComputers](./policy-csp-windowslogon.md#windowslogon-enumeratelocalusersondomainjoinedcomputers)
-- [WindowsLogon/HideFastUserSwitching](./policy-csp-windowslogon.md#windowslogon-hidefastuserswitching)
-- [WindowsPowerShell/TurnOnPowerShellScriptBlockLogging](./policy-csp-windowspowershell.md#windowspowershell-turnonpowershellscriptblocklogging)
-- [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc)
-- [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing)
+# Policies in Policy CSP supported by group policy
-## Related topics
+This article lists the policies in Policy CSP that have a group policy mapping.
-[Policy CSP](policy-configuration-service-provider.md)
\ No newline at end of file
+## AboveLock
+
+- [AllowCortanaAboveLock](policy-csp-abovelock.md)
+
+## Accounts
+
+- [RestrictToEnterpriseDeviceAuthenticationOnly](policy-csp-accounts.md)
+
+## ApplicationDefaults
+
+- [DefaultAssociationsConfiguration](policy-csp-applicationdefaults.md)
+- [EnableAppUriHandlers](policy-csp-applicationdefaults.md)
+
+## ApplicationManagement
+
+- [RequirePrivateStoreOnly](policy-csp-applicationmanagement.md)
+- [MSIAlwaysInstallWithElevatedPrivileges](policy-csp-applicationmanagement.md)
+- [AllowAllTrustedApps](policy-csp-applicationmanagement.md)
+- [AllowAppStoreAutoUpdate](policy-csp-applicationmanagement.md)
+- [AllowAutomaticAppArchiving](policy-csp-applicationmanagement.md)
+- [AllowDeveloperUnlock](policy-csp-applicationmanagement.md)
+- [AllowGameDVR](policy-csp-applicationmanagement.md)
+- [AllowSharedUserAppData](policy-csp-applicationmanagement.md)
+- [RequirePrivateStoreOnly](policy-csp-applicationmanagement.md)
+- [MSIAlwaysInstallWithElevatedPrivileges](policy-csp-applicationmanagement.md)
+- [MSIAllowUserControlOverInstall](policy-csp-applicationmanagement.md)
+- [RestrictAppDataToSystemVolume](policy-csp-applicationmanagement.md)
+- [RestrictAppToSystemVolume](policy-csp-applicationmanagement.md)
+- [DisableStoreOriginatedApps](policy-csp-applicationmanagement.md)
+- [BlockNonAdminUserInstall](policy-csp-applicationmanagement.md)
+
+## Audit
+
+- [AccountLogon_AuditCredentialValidation](policy-csp-audit.md)
+- [AccountLogon_AuditKerberosAuthenticationService](policy-csp-audit.md)
+- [AccountLogon_AuditKerberosServiceTicketOperations](policy-csp-audit.md)
+- [AccountLogon_AuditOtherAccountLogonEvents](policy-csp-audit.md)
+- [AccountManagement_AuditApplicationGroupManagement](policy-csp-audit.md)
+- [AccountManagement_AuditComputerAccountManagement](policy-csp-audit.md)
+- [AccountManagement_AuditDistributionGroupManagement](policy-csp-audit.md)
+- [AccountManagement_AuditOtherAccountManagementEvents](policy-csp-audit.md)
+- [AccountManagement_AuditSecurityGroupManagement](policy-csp-audit.md)
+- [AccountManagement_AuditUserAccountManagement](policy-csp-audit.md)
+- [DetailedTracking_AuditDPAPIActivity](policy-csp-audit.md)
+- [DetailedTracking_AuditPNPActivity](policy-csp-audit.md)
+- [DetailedTracking_AuditProcessCreation](policy-csp-audit.md)
+- [DetailedTracking_AuditProcessTermination](policy-csp-audit.md)
+- [DetailedTracking_AuditRPCEvents](policy-csp-audit.md)
+- [DetailedTracking_AuditTokenRightAdjusted](policy-csp-audit.md)
+- [DSAccess_AuditDetailedDirectoryServiceReplication](policy-csp-audit.md)
+- [DSAccess_AuditDirectoryServiceAccess](policy-csp-audit.md)
+- [DSAccess_AuditDirectoryServiceChanges](policy-csp-audit.md)
+- [DSAccess_AuditDirectoryServiceReplication](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditAccountLockout](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditUserDeviceClaims](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditGroupMembership](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditIPsecExtendedMode](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditIPsecMainMode](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditIPsecQuickMode](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditLogoff](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditLogon](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditNetworkPolicyServer](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditOtherLogonLogoffEvents](policy-csp-audit.md)
+- [AccountLogonLogoff_AuditSpecialLogon](policy-csp-audit.md)
+- [ObjectAccess_AuditApplicationGenerated](policy-csp-audit.md)
+- [ObjectAccess_AuditCertificationServices](policy-csp-audit.md)
+- [ObjectAccess_AuditDetailedFileShare](policy-csp-audit.md)
+- [ObjectAccess_AuditFileShare](policy-csp-audit.md)
+- [ObjectAccess_AuditFileSystem](policy-csp-audit.md)
+- [ObjectAccess_AuditFilteringPlatformConnection](policy-csp-audit.md)
+- [ObjectAccess_AuditFilteringPlatformPacketDrop](policy-csp-audit.md)
+- [ObjectAccess_AuditHandleManipulation](policy-csp-audit.md)
+- [ObjectAccess_AuditKernelObject](policy-csp-audit.md)
+- [ObjectAccess_AuditOtherObjectAccessEvents](policy-csp-audit.md)
+- [ObjectAccess_AuditRegistry](policy-csp-audit.md)
+- [ObjectAccess_AuditRemovableStorage](policy-csp-audit.md)
+- [ObjectAccess_AuditSAM](policy-csp-audit.md)
+- [ObjectAccess_AuditCentralAccessPolicyStaging](policy-csp-audit.md)
+- [PolicyChange_AuditPolicyChange](policy-csp-audit.md)
+- [PolicyChange_AuditAuthenticationPolicyChange](policy-csp-audit.md)
+- [PolicyChange_AuditAuthorizationPolicyChange](policy-csp-audit.md)
+- [PolicyChange_AuditFilteringPlatformPolicyChange](policy-csp-audit.md)
+- [PolicyChange_AuditMPSSVCRuleLevelPolicyChange](policy-csp-audit.md)
+- [PolicyChange_AuditOtherPolicyChangeEvents](policy-csp-audit.md)
+- [PrivilegeUse_AuditNonSensitivePrivilegeUse](policy-csp-audit.md)
+- [PrivilegeUse_AuditOtherPrivilegeUseEvents](policy-csp-audit.md)
+- [PrivilegeUse_AuditSensitivePrivilegeUse](policy-csp-audit.md)
+- [System_AuditIPsecDriver](policy-csp-audit.md)
+- [System_AuditOtherSystemEvents](policy-csp-audit.md)
+- [System_AuditSecurityStateChange](policy-csp-audit.md)
+- [System_AuditSecuritySystemExtension](policy-csp-audit.md)
+- [System_AuditSystemIntegrity](policy-csp-audit.md)
+
+## Authentication
+
+- [AllowSecondaryAuthenticationDevice](policy-csp-authentication.md)
+
+## BITS
+
+- [JobInactivityTimeout](policy-csp-bits.md)
+- [BandwidthThrottlingStartTime](policy-csp-bits.md)
+- [BandwidthThrottlingEndTime](policy-csp-bits.md)
+- [BandwidthThrottlingTransferRate](policy-csp-bits.md)
+- [CostedNetworkBehaviorForegroundPriority](policy-csp-bits.md)
+- [CostedNetworkBehaviorBackgroundPriority](policy-csp-bits.md)
+
+## Browser
+
+- [AllowAddressBarDropdown](policy-csp-browser.md)
+- [AllowAutofill](policy-csp-browser.md)
+- [AllowCookies](policy-csp-browser.md)
+- [AllowDeveloperTools](policy-csp-browser.md)
+- [AllowDoNotTrack](policy-csp-browser.md)
+- [AllowExtensions](policy-csp-browser.md)
+- [AllowFlash](policy-csp-browser.md)
+- [AllowFlashClickToRun](policy-csp-browser.md)
+- [AllowFullScreenMode](policy-csp-browser.md)
+- [AllowInPrivate](policy-csp-browser.md)
+- [AllowMicrosoftCompatibilityList](policy-csp-browser.md)
+- [ConfigureTelemetryForMicrosoft365Analytics](policy-csp-browser.md)
+- [AllowPasswordManager](policy-csp-browser.md)
+- [AllowPopups](policy-csp-browser.md)
+- [AllowPrinting](policy-csp-browser.md)
+- [AllowSavingHistory](policy-csp-browser.md)
+- [AllowSearchEngineCustomization](policy-csp-browser.md)
+- [AllowSearchSuggestionsinAddressBar](policy-csp-browser.md)
+- [AllowSideloadingOfExtensions](policy-csp-browser.md)
+- [AllowSmartScreen](policy-csp-browser.md)
+- [AllowWebContentOnNewTabPage](policy-csp-browser.md)
+- [AlwaysEnableBooksLibrary](policy-csp-browser.md)
+- [ClearBrowsingDataOnExit](policy-csp-browser.md)
+- [ConfigureAdditionalSearchEngines](policy-csp-browser.md)
+- [ConfigureFavoritesBar](policy-csp-browser.md)
+- [ConfigureHomeButton](policy-csp-browser.md)
+- [ConfigureOpenMicrosoftEdgeWith](policy-csp-browser.md)
+- [DisableLockdownOfStartPages](policy-csp-browser.md)
+- [EnableExtendedBooksTelemetry](policy-csp-browser.md)
+- [AllowTabPreloading](policy-csp-browser.md)
+- [AllowPrelaunch](policy-csp-browser.md)
+- [EnterpriseModeSiteList](policy-csp-browser.md)
+- [PreventTurningOffRequiredExtensions](policy-csp-browser.md)
+- [HomePages](policy-csp-browser.md)
+- [LockdownFavorites](policy-csp-browser.md)
+- [ConfigureKioskMode](policy-csp-browser.md)
+- [ConfigureKioskResetAfterIdleTimeout](policy-csp-browser.md)
+- [PreventAccessToAboutFlagsInMicrosoftEdge](policy-csp-browser.md)
+- [PreventFirstRunPage](policy-csp-browser.md)
+- [PreventCertErrorOverrides](policy-csp-browser.md)
+- [PreventSmartScreenPromptOverride](policy-csp-browser.md)
+- [PreventSmartScreenPromptOverrideForFiles](policy-csp-browser.md)
+- [PreventLiveTileDataCollection](policy-csp-browser.md)
+- [PreventUsingLocalHostIPAddressForWebRTC](policy-csp-browser.md)
+- [ProvisionFavorites](policy-csp-browser.md)
+- [SendIntranetTraffictoInternetExplorer](policy-csp-browser.md)
+- [SetDefaultSearchEngine](policy-csp-browser.md)
+- [SetHomeButtonURL](policy-csp-browser.md)
+- [SetNewTabPageURL](policy-csp-browser.md)
+- [ShowMessageWhenOpeningSitesInInternetExplorer](policy-csp-browser.md)
+- [SyncFavoritesBetweenIEAndMicrosoftEdge](policy-csp-browser.md)
+- [UnlockHomeButton](policy-csp-browser.md)
+- [UseSharedFolderForBooks](policy-csp-browser.md)
+- [AllowAddressBarDropdown](policy-csp-browser.md)
+- [AllowAutofill](policy-csp-browser.md)
+- [AllowCookies](policy-csp-browser.md)
+- [AllowDeveloperTools](policy-csp-browser.md)
+- [AllowDoNotTrack](policy-csp-browser.md)
+- [AllowExtensions](policy-csp-browser.md)
+- [AllowFlash](policy-csp-browser.md)
+- [AllowFlashClickToRun](policy-csp-browser.md)
+- [AllowFullScreenMode](policy-csp-browser.md)
+- [AllowInPrivate](policy-csp-browser.md)
+- [AllowMicrosoftCompatibilityList](policy-csp-browser.md)
+- [ConfigureTelemetryForMicrosoft365Analytics](policy-csp-browser.md)
+- [AllowPasswordManager](policy-csp-browser.md)
+- [AllowPopups](policy-csp-browser.md)
+- [AllowPrinting](policy-csp-browser.md)
+- [AllowSavingHistory](policy-csp-browser.md)
+- [AllowSearchEngineCustomization](policy-csp-browser.md)
+- [AllowSearchSuggestionsinAddressBar](policy-csp-browser.md)
+- [AllowSideloadingOfExtensions](policy-csp-browser.md)
+- [AllowSmartScreen](policy-csp-browser.md)
+- [AllowWebContentOnNewTabPage](policy-csp-browser.md)
+- [AlwaysEnableBooksLibrary](policy-csp-browser.md)
+- [ClearBrowsingDataOnExit](policy-csp-browser.md)
+- [ConfigureAdditionalSearchEngines](policy-csp-browser.md)
+- [ConfigureFavoritesBar](policy-csp-browser.md)
+- [ConfigureHomeButton](policy-csp-browser.md)
+- [ConfigureOpenMicrosoftEdgeWith](policy-csp-browser.md)
+- [DisableLockdownOfStartPages](policy-csp-browser.md)
+- [EnableExtendedBooksTelemetry](policy-csp-browser.md)
+- [AllowTabPreloading](policy-csp-browser.md)
+- [AllowPrelaunch](policy-csp-browser.md)
+- [EnterpriseModeSiteList](policy-csp-browser.md)
+- [PreventTurningOffRequiredExtensions](policy-csp-browser.md)
+- [HomePages](policy-csp-browser.md)
+- [LockdownFavorites](policy-csp-browser.md)
+- [ConfigureKioskMode](policy-csp-browser.md)
+- [ConfigureKioskResetAfterIdleTimeout](policy-csp-browser.md)
+- [PreventAccessToAboutFlagsInMicrosoftEdge](policy-csp-browser.md)
+- [PreventFirstRunPage](policy-csp-browser.md)
+- [PreventCertErrorOverrides](policy-csp-browser.md)
+- [PreventSmartScreenPromptOverride](policy-csp-browser.md)
+- [PreventSmartScreenPromptOverrideForFiles](policy-csp-browser.md)
+- [PreventLiveTileDataCollection](policy-csp-browser.md)
+- [PreventUsingLocalHostIPAddressForWebRTC](policy-csp-browser.md)
+- [ProvisionFavorites](policy-csp-browser.md)
+- [SendIntranetTraffictoInternetExplorer](policy-csp-browser.md)
+- [SetDefaultSearchEngine](policy-csp-browser.md)
+- [SetHomeButtonURL](policy-csp-browser.md)
+- [SetNewTabPageURL](policy-csp-browser.md)
+- [ShowMessageWhenOpeningSitesInInternetExplorer](policy-csp-browser.md)
+- [SyncFavoritesBetweenIEAndMicrosoftEdge](policy-csp-browser.md)
+- [UnlockHomeButton](policy-csp-browser.md)
+- [UseSharedFolderForBooks](policy-csp-browser.md)
+
+## Camera
+
+- [AllowCamera](policy-csp-camera.md)
+
+## Cellular
+
+- [LetAppsAccessCellularData](policy-csp-cellular.md)
+- [LetAppsAccessCellularData_ForceAllowTheseApps](policy-csp-cellular.md)
+- [LetAppsAccessCellularData_ForceDenyTheseApps](policy-csp-cellular.md)
+- [LetAppsAccessCellularData_UserInControlOfTheseApps](policy-csp-cellular.md)
+
+## Connectivity
+
+- [AllowCellularDataRoaming](policy-csp-connectivity.md)
+- [AllowPhonePCLinking](policy-csp-connectivity.md)
+- [DisallowNetworkConnectivityActiveTests](policy-csp-connectivity.md)
+
+## Cryptography
+
+- [AllowFipsAlgorithmPolicy](policy-csp-cryptography.md)
+
+## Defender
+
+- [AllowArchiveScanning](policy-csp-defender.md)
+- [AllowBehaviorMonitoring](policy-csp-defender.md)
+- [AllowCloudProtection](policy-csp-defender.md)
+- [AllowEmailScanning](policy-csp-defender.md)
+- [AllowFullScanOnMappedNetworkDrives](policy-csp-defender.md)
+- [AllowFullScanRemovableDriveScanning](policy-csp-defender.md)
+- [AllowIOAVProtection](policy-csp-defender.md)
+- [AllowOnAccessProtection](policy-csp-defender.md)
+- [AllowRealtimeMonitoring](policy-csp-defender.md)
+- [AllowScanningNetworkFiles](policy-csp-defender.md)
+- [AllowUserUIAccess](policy-csp-defender.md)
+- [AttackSurfaceReductionOnlyExclusions](policy-csp-defender.md)
+- [AttackSurfaceReductionRules](policy-csp-defender.md)
+- [AvgCPULoadFactor](policy-csp-defender.md)
+- [CloudBlockLevel](policy-csp-defender.md)
+- [CloudExtendedTimeout](policy-csp-defender.md)
+- [ControlledFolderAccessAllowedApplications](policy-csp-defender.md)
+- [CheckForSignaturesBeforeRunningScan](policy-csp-defender.md)
+- [SecurityIntelligenceLocation](policy-csp-defender.md)
+- [ControlledFolderAccessProtectedFolders](policy-csp-defender.md)
+- [DaysToRetainCleanedMalware](policy-csp-defender.md)
+- [DisableCatchupFullScan](policy-csp-defender.md)
+- [DisableCatchupQuickScan](policy-csp-defender.md)
+- [EnableControlledFolderAccess](policy-csp-defender.md)
+- [EnableLowCPUPriority](policy-csp-defender.md)
+- [EnableNetworkProtection](policy-csp-defender.md)
+- [ExcludedPaths](policy-csp-defender.md)
+- [ExcludedExtensions](policy-csp-defender.md)
+- [ExcludedProcesses](policy-csp-defender.md)
+- [PUAProtection](policy-csp-defender.md)
+- [RealTimeScanDirection](policy-csp-defender.md)
+- [ScanParameter](policy-csp-defender.md)
+- [ScheduleQuickScanTime](policy-csp-defender.md)
+- [ScheduleScanDay](policy-csp-defender.md)
+- [ScheduleScanTime](policy-csp-defender.md)
+- [SignatureUpdateFallbackOrder](policy-csp-defender.md)
+- [SignatureUpdateFileSharesSources](policy-csp-defender.md)
+- [SignatureUpdateInterval](policy-csp-defender.md)
+- [SubmitSamplesConsent](policy-csp-defender.md)
+- [ThreatSeverityDefaultAction](policy-csp-defender.md)
+
+## DeliveryOptimization
+
+- [DODownloadMode](policy-csp-deliveryoptimization.md)
+- [DOGroupId](policy-csp-deliveryoptimization.md)
+- [DOMaxCacheSize](policy-csp-deliveryoptimization.md)
+- [DOAbsoluteMaxCacheSize](policy-csp-deliveryoptimization.md)
+- [DOMaxCacheAge](policy-csp-deliveryoptimization.md)
+- [DOMonthlyUploadDataCap](policy-csp-deliveryoptimization.md)
+- [DOMinBackgroundQos](policy-csp-deliveryoptimization.md)
+- [DOModifyCacheDrive](policy-csp-deliveryoptimization.md)
+- [DOMaxBackgroundDownloadBandwidth](policy-csp-deliveryoptimization.md)
+- [DOMaxForegroundDownloadBandwidth](policy-csp-deliveryoptimization.md)
+- [DOPercentageMaxBackgroundBandwidth](policy-csp-deliveryoptimization.md)
+- [DOPercentageMaxForegroundBandwidth](policy-csp-deliveryoptimization.md)
+- [DOMinFileSizeToCache](policy-csp-deliveryoptimization.md)
+- [DOAllowVPNPeerCaching](policy-csp-deliveryoptimization.md)
+- [DOMinRAMAllowedToPeer](policy-csp-deliveryoptimization.md)
+- [DOMinDiskSizeAllowedToPeer](policy-csp-deliveryoptimization.md)
+- [DOMinBatteryPercentageAllowedToUpload](policy-csp-deliveryoptimization.md)
+- [DOCacheHost](policy-csp-deliveryoptimization.md)
+- [DOCacheHostSource](policy-csp-deliveryoptimization.md)
+- [DOGroupIdSource](policy-csp-deliveryoptimization.md)
+- [DODelayBackgroundDownloadFromHttp](policy-csp-deliveryoptimization.md)
+- [DODelayForegroundDownloadFromHttp](policy-csp-deliveryoptimization.md)
+- [DODelayCacheServerFallbackBackground](policy-csp-deliveryoptimization.md)
+- [DODelayCacheServerFallbackForeground](policy-csp-deliveryoptimization.md)
+- [DORestrictPeerSelectionBy](policy-csp-deliveryoptimization.md)
+
+## DeviceGuard
+
+- [EnableVirtualizationBasedSecurity](policy-csp-deviceguard.md)
+- [RequirePlatformSecurityFeatures](policy-csp-deviceguard.md)
+- [LsaCfgFlags](policy-csp-deviceguard.md)
+- [ConfigureSystemGuardLaunch](policy-csp-deviceguard.md)
+
+## DeviceLock
+
+- [MinimumPasswordAge](policy-csp-devicelock.md)
+- [MaximumPasswordAge](policy-csp-devicelock.md)
+- [ClearTextPassword](policy-csp-devicelock.md)
+- [PasswordComplexity](policy-csp-devicelock.md)
+- [PasswordHistorySize](policy-csp-devicelock.md)
+
+## Display
+
+- [EnablePerProcessDpi](policy-csp-display.md)
+- [TurnOnGdiDPIScalingForApps](policy-csp-display.md)
+- [TurnOffGdiDPIScalingForApps](policy-csp-display.md)
+- [EnablePerProcessDpi](policy-csp-display.md)
+- [EnablePerProcessDpiForApps](policy-csp-display.md)
+- [DisablePerProcessDpiForApps](policy-csp-display.md)
+
+## DmaGuard
+
+- [DeviceEnumerationPolicy](policy-csp-dmaguard.md)
+
+## Education
+
+- [AllowGraphingCalculator](policy-csp-education.md)
+- [PreventAddingNewPrinters](policy-csp-education.md)
+
+## Experience
+
+- [AllowSpotlightCollection](policy-csp-experience.md)
+- [AllowThirdPartySuggestionsInWindowsSpotlight](policy-csp-experience.md)
+- [AllowWindowsSpotlight](policy-csp-experience.md)
+- [AllowWindowsSpotlightOnActionCenter](policy-csp-experience.md)
+- [AllowWindowsSpotlightOnSettings](policy-csp-experience.md)
+- [AllowWindowsSpotlightWindowsWelcomeExperience](policy-csp-experience.md)
+- [AllowTailoredExperiencesWithDiagnosticData](policy-csp-experience.md)
+- [ConfigureWindowsSpotlightOnLockScreen](policy-csp-experience.md)
+- [AllowCortana](policy-csp-experience.md)
+- [AllowWindowsConsumerFeatures](policy-csp-experience.md)
+- [AllowWindowsTips](policy-csp-experience.md)
+- [DoNotShowFeedbackNotifications](policy-csp-experience.md)
+- [AllowFindMyDevice](policy-csp-experience.md)
+- [AllowClipboardHistory](policy-csp-experience.md)
+- [DoNotSyncBrowserSettings](policy-csp-experience.md)
+- [PreventUsersFromTurningOnBrowserSyncing](policy-csp-experience.md)
+- [ShowLockOnUserTile](policy-csp-experience.md)
+- [DisableCloudOptimizedContent](policy-csp-experience.md)
+- [DisableConsumerAccountStateContent](policy-csp-experience.md)
+- [ConfigureChatIcon](policy-csp-experience.md)
+
+## ExploitGuard
+
+- [ExploitProtectionSettings](policy-csp-exploitguard.md)
+
+## FileExplorer
+
+- [DisableGraphRecentItems](policy-csp-fileexplorer.md)
+
+## Handwriting
+
+- [PanelDefaultModeDocked](policy-csp-handwriting.md)
+
+## HumanPresence
+
+- [ForceInstantWake](policy-csp-humanpresence.md)
+- [ForceInstantLock](policy-csp-humanpresence.md)
+- [ForceLockTimeout](policy-csp-humanpresence.md)
+- [ForceInstantDim](policy-csp-humanpresence.md)
+
+## Kerberos
+
+- [PKInitHashAlgorithmConfiguration](policy-csp-kerberos.md)
+- [PKInitHashAlgorithmSHA1](policy-csp-kerberos.md)
+- [PKInitHashAlgorithmSHA256](policy-csp-kerberos.md)
+- [PKInitHashAlgorithmSHA384](policy-csp-kerberos.md)
+- [PKInitHashAlgorithmSHA512](policy-csp-kerberos.md)
+- [CloudKerberosTicketRetrievalEnabled](policy-csp-kerberos.md)
+
+## LanmanWorkstation
+
+- [EnableInsecureGuestLogons](policy-csp-lanmanworkstation.md)
+
+## Licensing
+
+- [AllowWindowsEntitlementReactivation](policy-csp-licensing.md)
+- [DisallowKMSClientOnlineAVSValidation](policy-csp-licensing.md)
+
+## LocalPoliciesSecurityOptions
+
+- [Accounts_EnableAdministratorAccountStatus](policy-csp-localpoliciessecurityoptions.md)
+- [Accounts_BlockMicrosoftAccounts](policy-csp-localpoliciessecurityoptions.md)
+- [Accounts_EnableGuestAccountStatus](policy-csp-localpoliciessecurityoptions.md)
+- [Accounts_LimitLocalAccountUseOfBlankPasswordsToConsoleLogonOnly](policy-csp-localpoliciessecurityoptions.md)
+- [Accounts_RenameAdministratorAccount](policy-csp-localpoliciessecurityoptions.md)
+- [Accounts_RenameGuestAccount](policy-csp-localpoliciessecurityoptions.md)
+- [Devices_AllowUndockWithoutHavingToLogon](policy-csp-localpoliciessecurityoptions.md)
+- [Devices_AllowedToFormatAndEjectRemovableMedia](policy-csp-localpoliciessecurityoptions.md)
+- [Devices_PreventUsersFromInstallingPrinterDriversWhenConnectingToSharedPrinters](policy-csp-localpoliciessecurityoptions.md)
+- [Devices_RestrictCDROMAccessToLocallyLoggedOnUserOnly](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_DisplayUserInformationWhenTheSessionIsLocked](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_DoNotRequireCTRLALTDEL](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_DoNotDisplayLastSignedIn](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_DoNotDisplayUsernameAtSignIn](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_MachineInactivityLimit](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_MessageTextForUsersAttemptingToLogOn](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_MessageTitleForUsersAttemptingToLogOn](policy-csp-localpoliciessecurityoptions.md)
+- [InteractiveLogon_SmartCardRemovalBehavior](policy-csp-localpoliciessecurityoptions.md)
+- [MicrosoftNetworkClient_DigitallySignCommunicationsAlways](policy-csp-localpoliciessecurityoptions.md)
+- [MicrosoftNetworkClient_DigitallySignCommunicationsIfServerAgrees](policy-csp-localpoliciessecurityoptions.md)
+- [MicrosoftNetworkClient_SendUnencryptedPasswordToThirdPartySMBServers](policy-csp-localpoliciessecurityoptions.md)
+- [MicrosoftNetworkServer_DigitallySignCommunicationsAlways](policy-csp-localpoliciessecurityoptions.md)
+- [MicrosoftNetworkServer_DigitallySignCommunicationsIfClientAgrees](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkAccess_AllowAnonymousSIDOrNameTranslation](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkAccess_DoNotAllowAnonymousEnumerationOfSAMAccounts](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkAccess_DoNotAllowAnonymousEnumerationOfSamAccountsAndShares](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkAccess_RestrictAnonymousAccessToNamedPipesAndShares](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkAccess_RestrictClientsAllowedToMakeRemoteCallsToSAM](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_AllowLocalSystemToUseComputerIdentityForNTLM](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_AllowPKU2UAuthenticationRequests](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_DoNotStoreLANManagerHashValueOnNextPasswordChange](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_ForceLogoffWhenLogonHoursExpire](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_LANManagerAuthenticationLevel](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_MinimumSessionSecurityForNTLMSSPBasedClients](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_MinimumSessionSecurityForNTLMSSPBasedServers](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_RestrictNTLM_AddRemoteServerExceptionsForNTLMAuthentication](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_RestrictNTLM_AuditIncomingNTLMTraffic](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_RestrictNTLM_IncomingNTLMTraffic](policy-csp-localpoliciessecurityoptions.md)
+- [NetworkSecurity_RestrictNTLM_OutgoingNTLMTrafficToRemoteServers](policy-csp-localpoliciessecurityoptions.md)
+- [Shutdown_AllowSystemToBeShutDownWithoutHavingToLogOn](policy-csp-localpoliciessecurityoptions.md)
+- [Shutdown_ClearVirtualMemoryPageFile](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_UseAdminApprovalMode](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_AllowUIAccessApplicationsToPromptForElevation](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_BehaviorOfTheElevationPromptForAdministrators](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_BehaviorOfTheElevationPromptForStandardUsers](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_OnlyElevateExecutableFilesThatAreSignedAndValidated](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_OnlyElevateUIAccessApplicationsThatAreInstalledInSecureLocations](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_RunAllAdministratorsInAdminApprovalMode](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_SwitchToTheSecureDesktopWhenPromptingForElevation](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_VirtualizeFileAndRegistryWriteFailuresToPerUserLocations](policy-csp-localpoliciessecurityoptions.md)
+- [UserAccountControl_DetectApplicationInstallationsAndPromptForElevation](policy-csp-localpoliciessecurityoptions.md)
+
+## LocalSecurityAuthority
+
+- [ConfigureLsaProtectedProcess](policy-csp-lsa.md)
+
+## LockDown
+
+- [AllowEdgeSwipe](policy-csp-lockdown.md)
+
+## Maps
+
+- [EnableOfflineMapsAutoUpdate](policy-csp-maps.md)
+
+## Messaging
+
+- [AllowMessageSync](policy-csp-messaging.md)
+
+## Multitasking
+
+- [BrowserAltTabBlowout](policy-csp-multitasking.md)
+
+## NetworkIsolation
+
+- [EnterpriseCloudResources](policy-csp-networkisolation.md)
+- [EnterpriseInternalProxyServers](policy-csp-networkisolation.md)
+- [EnterpriseIPRange](policy-csp-networkisolation.md)
+- [EnterpriseIPRangesAreAuthoritative](policy-csp-networkisolation.md)
+- [EnterpriseProxyServers](policy-csp-networkisolation.md)
+- [EnterpriseProxyServersAreAuthoritative](policy-csp-networkisolation.md)
+- [NeutralResources](policy-csp-networkisolation.md)
+
+## NewsAndInterests
+
+- [AllowNewsAndInterests](policy-csp-newsandinterests.md)
+
+## Notifications
+
+- [DisallowNotificationMirroring](policy-csp-notifications.md)
+- [DisallowTileNotification](policy-csp-notifications.md)
+- [DisallowCloudNotification](policy-csp-notifications.md)
+- [WnsEndpoint](policy-csp-notifications.md)
+
+## Power
+
+- [EnergySaverBatteryThresholdPluggedIn](policy-csp-power.md)
+- [EnergySaverBatteryThresholdOnBattery](policy-csp-power.md)
+- [SelectPowerButtonActionPluggedIn](policy-csp-power.md)
+- [SelectPowerButtonActionOnBattery](policy-csp-power.md)
+- [SelectSleepButtonActionPluggedIn](policy-csp-power.md)
+- [SelectSleepButtonActionOnBattery](policy-csp-power.md)
+- [SelectLidCloseActionPluggedIn](policy-csp-power.md)
+- [SelectLidCloseActionOnBattery](policy-csp-power.md)
+- [TurnOffHybridSleepPluggedIn](policy-csp-power.md)
+- [TurnOffHybridSleepOnBattery](policy-csp-power.md)
+- [UnattendedSleepTimeoutPluggedIn](policy-csp-power.md)
+- [UnattendedSleepTimeoutOnBattery](policy-csp-power.md)
+
+## Privacy
+
+- [DisablePrivacyExperience](policy-csp-privacy.md)
+- [DisableAdvertisingId](policy-csp-privacy.md)
+- [LetAppsGetDiagnosticInfo](policy-csp-privacy.md)
+- [LetAppsGetDiagnosticInfo_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsGetDiagnosticInfo_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsGetDiagnosticInfo_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsRunInBackground](policy-csp-privacy.md)
+- [LetAppsRunInBackground_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsRunInBackground_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsRunInBackground_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [AllowInputPersonalization](policy-csp-privacy.md)
+- [LetAppsAccessAccountInfo](policy-csp-privacy.md)
+- [LetAppsAccessAccountInfo_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessAccountInfo_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessAccountInfo_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCalendar](policy-csp-privacy.md)
+- [LetAppsAccessCalendar_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCalendar_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCalendar_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCallHistory](policy-csp-privacy.md)
+- [LetAppsAccessCallHistory_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCallHistory_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCallHistory_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCamera](policy-csp-privacy.md)
+- [LetAppsAccessCamera_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCamera_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessCamera_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessContacts](policy-csp-privacy.md)
+- [LetAppsAccessContacts_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessContacts_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessContacts_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessEmail](policy-csp-privacy.md)
+- [LetAppsAccessEmail_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessEmail_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessEmail_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureProgrammatic](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureProgrammatic_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureProgrammatic_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureProgrammatic_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureWithoutBorder](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureWithoutBorder_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureWithoutBorder_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessGraphicsCaptureWithoutBorder_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessLocation](policy-csp-privacy.md)
+- [LetAppsAccessLocation_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessLocation_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessLocation_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMessaging](policy-csp-privacy.md)
+- [LetAppsAccessMessaging_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMessaging_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMessaging_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMicrophone](policy-csp-privacy.md)
+- [LetAppsAccessMicrophone_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMicrophone_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMicrophone_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMotion](policy-csp-privacy.md)
+- [LetAppsAccessMotion_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMotion_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessMotion_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessNotifications](policy-csp-privacy.md)
+- [LetAppsAccessNotifications_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessNotifications_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessNotifications_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessPhone](policy-csp-privacy.md)
+- [LetAppsAccessPhone_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessPhone_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessPhone_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessRadios](policy-csp-privacy.md)
+- [LetAppsAccessRadios_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessRadios_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessRadios_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessTasks](policy-csp-privacy.md)
+- [LetAppsAccessTasks_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessTasks_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessTasks_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessTrustedDevices](policy-csp-privacy.md)
+- [LetAppsAccessTrustedDevices_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessTrustedDevices_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsAccessTrustedDevices_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [LetAppsSyncWithDevices](policy-csp-privacy.md)
+- [LetAppsSyncWithDevices_ForceAllowTheseApps](policy-csp-privacy.md)
+- [LetAppsSyncWithDevices_ForceDenyTheseApps](policy-csp-privacy.md)
+- [LetAppsSyncWithDevices_UserInControlOfTheseApps](policy-csp-privacy.md)
+- [EnableActivityFeed](policy-csp-privacy.md)
+- [PublishUserActivities](policy-csp-privacy.md)
+- [UploadUserActivities](policy-csp-privacy.md)
+- [AllowCrossDeviceClipboard](policy-csp-privacy.md)
+- [DisablePrivacyExperience](policy-csp-privacy.md)
+- [LetAppsActivateWithVoice](policy-csp-privacy.md)
+- [LetAppsActivateWithVoiceAboveLock](policy-csp-privacy.md)
+
+## RemoteDesktop
+
+- [AutoSubscription](policy-csp-remotedesktop.md)
+
+## Search
+
+- [AllowIndexingEncryptedStoresOrItems](policy-csp-search.md)
+- [AllowSearchToUseLocation](policy-csp-search.md)
+- [AllowUsingDiacritics](policy-csp-search.md)
+- [AlwaysUseAutoLangDetection](policy-csp-search.md)
+- [DisableBackoff](policy-csp-search.md)
+- [DisableRemovableDriveIndexing](policy-csp-search.md)
+- [DisableSearch](policy-csp-search.md)
+- [PreventIndexingLowDiskSpaceMB](policy-csp-search.md)
+- [PreventRemoteQueries](policy-csp-search.md)
+- [AllowCloudSearch](policy-csp-search.md)
+- [DoNotUseWebResults](policy-csp-search.md)
+- [AllowCortanaInAAD](policy-csp-search.md)
+- [AllowFindMyFiles](policy-csp-search.md)
+- [AllowSearchHighlights](policy-csp-search.md)
+
+## Security
+
+- [ClearTPMIfNotReady](policy-csp-security.md)
+
+## Settings
+
+- [ConfigureTaskbarCalendar](policy-csp-settings.md)
+- [PageVisibilityList](policy-csp-settings.md)
+- [PageVisibilityList](policy-csp-settings.md)
+- [AllowOnlineTips](policy-csp-settings.md)
+
+## SmartScreen
+
+- [EnableSmartScreenInShell](policy-csp-smartscreen.md)
+- [PreventOverrideForFilesInShell](policy-csp-smartscreen.md)
+- [EnableAppInstallControl](policy-csp-smartscreen.md)
+
+## Speech
+
+- [AllowSpeechModelUpdate](policy-csp-speech.md)
+
+## Start
+
+- [ForceStartSize](policy-csp-start.md)
+- [DisableContextMenus](policy-csp-start.md)
+- [ShowOrHideMostUsedApps](policy-csp-start.md)
+- [HideFrequentlyUsedApps](policy-csp-start.md)
+- [HideRecentlyAddedApps](policy-csp-start.md)
+- [HidePeopleBar](policy-csp-start.md)
+- [StartLayout](policy-csp-start.md)
+- [ConfigureStartPins](policy-csp-start.md)
+- [HideRecommendedSection](policy-csp-start.md)
+- [HideTaskViewButton](policy-csp-start.md)
+- [DisableControlCenter](policy-csp-start.md)
+- [ForceStartSize](policy-csp-start.md)
+- [DisableContextMenus](policy-csp-start.md)
+- [ShowOrHideMostUsedApps](policy-csp-start.md)
+- [HideFrequentlyUsedApps](policy-csp-start.md)
+- [HideRecentlyAddedApps](policy-csp-start.md)
+- [StartLayout](policy-csp-start.md)
+- [ConfigureStartPins](policy-csp-start.md)
+- [HideRecommendedSection](policy-csp-start.md)
+- [SimplifyQuickSettings](policy-csp-start.md)
+- [DisableEditingQuickSettings](policy-csp-start.md)
+- [HideTaskViewButton](policy-csp-start.md)
+
+## Storage
+
+- [AllowDiskHealthModelUpdates](policy-csp-storage.md)
+- [RemovableDiskDenyWriteAccess](policy-csp-storage.md)
+- [AllowStorageSenseGlobal](policy-csp-storage.md)
+- [ConfigStorageSenseGlobalCadence](policy-csp-storage.md)
+- [AllowStorageSenseTemporaryFilesCleanup](policy-csp-storage.md)
+- [ConfigStorageSenseRecycleBinCleanupThreshold](policy-csp-storage.md)
+- [ConfigStorageSenseDownloadsCleanupThreshold](policy-csp-storage.md)
+- [ConfigStorageSenseCloudContentDehydrationThreshold](policy-csp-storage.md)
+
+## System
+
+- [AllowTelemetry](policy-csp-system.md)
+- [AllowBuildPreview](policy-csp-system.md)
+- [AllowFontProviders](policy-csp-system.md)
+- [AllowLocation](policy-csp-system.md)
+- [AllowTelemetry](policy-csp-system.md)
+- [TelemetryProxy](policy-csp-system.md)
+- [DisableOneDriveFileSync](policy-csp-system.md)
+- [AllowWUfBCloudProcessing](policy-csp-system.md)
+- [AllowUpdateComplianceProcessing](policy-csp-system.md)
+- [AllowDesktopAnalyticsProcessing](policy-csp-system.md)
+- [DisableEnterpriseAuthProxy](policy-csp-system.md)
+- [LimitEnhancedDiagnosticDataWindowsAnalytics](policy-csp-system.md)
+- [AllowDeviceNameInDiagnosticData](policy-csp-system.md)
+- [ConfigureTelemetryOptInSettingsUx](policy-csp-system.md)
+- [ConfigureTelemetryOptInChangeNotification](policy-csp-system.md)
+- [DisableDeviceDelete](policy-csp-system.md)
+- [DisableDiagnosticDataViewer](policy-csp-system.md)
+- [ConfigureMicrosoft365UploadEndpoint](policy-csp-system.md)
+- [TurnOffFileHistory](policy-csp-system.md)
+- [DisableDirectXDatabaseUpdate](policy-csp-system.md)
+- [AllowCommercialDataPipeline](policy-csp-system.md)
+- [LimitDiagnosticLogCollection](policy-csp-system.md)
+- [LimitDumpCollection](policy-csp-system.md)
+- [EnableOneSettingsAuditing](policy-csp-system.md)
+- [DisableOneSettingsDownloads](policy-csp-system.md)
+- [HideUnsupportedHardwareNotifications](policy-csp-system.md)
+
+## SystemServices
+
+- [ConfigureHomeGroupListenerServiceStartupMode](policy-csp-systemservices.md)
+- [ConfigureHomeGroupProviderServiceStartupMode](policy-csp-systemservices.md)
+- [ConfigureXboxAccessoryManagementServiceStartupMode](policy-csp-systemservices.md)
+- [ConfigureXboxLiveAuthManagerServiceStartupMode](policy-csp-systemservices.md)
+- [ConfigureXboxLiveGameSaveServiceStartupMode](policy-csp-systemservices.md)
+- [ConfigureXboxLiveNetworkingServiceStartupMode](policy-csp-systemservices.md)
+
+## TextInput
+
+- [AllowLanguageFeaturesUninstall](policy-csp-textinput.md)
+- [AllowLinguisticDataCollection](policy-csp-textinput.md)
+- [ConfigureSimplifiedChineseIMEVersion](policy-csp-textinput.md)
+- [ConfigureTraditionalChineseIMEVersion](policy-csp-textinput.md)
+- [ConfigureJapaneseIMEVersion](policy-csp-textinput.md)
+- [ConfigureKoreanIMEVersion](policy-csp-textinput.md)
+
+## TimeLanguageSettings
+
+- [RestrictLanguagePacksAndFeaturesInstall](policy-csp-timelanguagesettings.md)
+- [BlockCleanupOfUnusedPreinstalledLangPacks](policy-csp-timelanguagesettings.md)
+- [MachineUILanguageOverwrite](policy-csp-timelanguagesettings.md)
+- [RestrictLanguagePacksAndFeaturesInstall](policy-csp-timelanguagesettings.md)
+
+## Troubleshooting
+
+- [AllowRecommendations](policy-csp-troubleshooting.md)
+
+## Update
+
+- [ActiveHoursEnd](policy-csp-update.md)
+- [ActiveHoursStart](policy-csp-update.md)
+- [ActiveHoursMaxRange](policy-csp-update.md)
+- [AutoRestartRequiredNotificationDismissal](policy-csp-update.md)
+- [AutoRestartNotificationSchedule](policy-csp-update.md)
+- [SetAutoRestartNotificationDisable](policy-csp-update.md)
+- [ScheduleRestartWarning](policy-csp-update.md)
+- [ScheduleImminentRestartWarning](policy-csp-update.md)
+- [AllowAutoUpdate](policy-csp-update.md)
+- [AutoRestartDeadlinePeriodInDays](policy-csp-update.md)
+- [AutoRestartDeadlinePeriodInDaysForFeatureUpdates](policy-csp-update.md)
+- [EngagedRestartTransitionSchedule](policy-csp-update.md)
+- [EngagedRestartSnoozeSchedule](policy-csp-update.md)
+- [EngagedRestartDeadline](policy-csp-update.md)
+- [EngagedRestartTransitionScheduleForFeatureUpdates](policy-csp-update.md)
+- [EngagedRestartSnoozeScheduleForFeatureUpdates](policy-csp-update.md)
+- [EngagedRestartDeadlineForFeatureUpdates](policy-csp-update.md)
+- [DetectionFrequency](policy-csp-update.md)
+- [ManagePreviewBuilds](policy-csp-update.md)
+- [BranchReadinessLevel](policy-csp-update.md)
+- [ProductVersion](policy-csp-update.md)
+- [TargetReleaseVersion](policy-csp-update.md)
+- [AllowUpdateService](policy-csp-update.md)
+- [DeferFeatureUpdatesPeriodInDays](policy-csp-update.md)
+- [DeferQualityUpdatesPeriodInDays](policy-csp-update.md)
+- [DeferUpdatePeriod](policy-csp-update.md)
+- [DeferUpgradePeriod](policy-csp-update.md)
+- [ExcludeWUDriversInQualityUpdate](policy-csp-update.md)
+- [PauseDeferrals](policy-csp-update.md)
+- [PauseFeatureUpdates](policy-csp-update.md)
+- [PauseQualityUpdates](policy-csp-update.md)
+- [PauseFeatureUpdatesStartTime](policy-csp-update.md)
+- [PauseQualityUpdatesStartTime](policy-csp-update.md)
+- [RequireDeferUpgrade](policy-csp-update.md)
+- [AllowMUUpdateService](policy-csp-update.md)
+- [ScheduledInstallDay](policy-csp-update.md)
+- [ScheduledInstallTime](policy-csp-update.md)
+- [ScheduledInstallEveryWeek](policy-csp-update.md)
+- [ScheduledInstallFirstWeek](policy-csp-update.md)
+- [ScheduledInstallSecondWeek](policy-csp-update.md)
+- [ScheduledInstallThirdWeek](policy-csp-update.md)
+- [ScheduledInstallFourthWeek](policy-csp-update.md)
+- [UpdateServiceUrl](policy-csp-update.md)
+- [UpdateServiceUrlAlternate](policy-csp-update.md)
+- [FillEmptyContentUrls](policy-csp-update.md)
+- [SetProxyBehaviorForUpdateDetection](policy-csp-update.md)
+- [DoNotEnforceEnterpriseTLSCertPinningForUpdateDetection](policy-csp-update.md)
+- [SetPolicyDrivenUpdateSourceForFeatureUpdates](policy-csp-update.md)
+- [SetPolicyDrivenUpdateSourceForQualityUpdates](policy-csp-update.md)
+- [SetPolicyDrivenUpdateSourceForDriverUpdates](policy-csp-update.md)
+- [SetPolicyDrivenUpdateSourceForOtherUpdates](policy-csp-update.md)
+- [SetEDURestart](policy-csp-update.md)
+- [AllowAutoWindowsUpdateDownloadOverMeteredNetwork](policy-csp-update.md)
+- [SetDisableUXWUAccess](policy-csp-update.md)
+- [SetDisablePauseUXAccess](policy-csp-update.md)
+- [UpdateNotificationLevel](policy-csp-update.md)
+- [NoUpdateNotificationsDuringActiveHours](policy-csp-update.md)
+- [DisableDualScan](policy-csp-update.md)
+- [AutomaticMaintenanceWakeUp](policy-csp-update.md)
+- [ConfigureDeadlineForQualityUpdates](policy-csp-update.md)
+- [ConfigureDeadlineForFeatureUpdates](policy-csp-update.md)
+- [ConfigureDeadlineGracePeriod](policy-csp-update.md)
+- [ConfigureDeadlineGracePeriodForFeatureUpdates](policy-csp-update.md)
+- [ConfigureDeadlineNoAutoReboot](policy-csp-update.md)
+- [ConfigureDeadlineNoAutoRebootForFeatureUpdates](policy-csp-update.md)
+- [ConfigureDeadlineNoAutoRebootForQualityUpdates](policy-csp-update.md)
+
+## UserRights
+
+- [AccessCredentialManagerAsTrustedCaller](policy-csp-userrights.md)
+- [AccessFromNetwork](policy-csp-userrights.md)
+- [ActAsPartOfTheOperatingSystem](policy-csp-userrights.md)
+- [AllowLocalLogOn](policy-csp-userrights.md)
+- [BackupFilesAndDirectories](policy-csp-userrights.md)
+- [ChangeSystemTime](policy-csp-userrights.md)
+- [CreatePageFile](policy-csp-userrights.md)
+- [CreateToken](policy-csp-userrights.md)
+- [CreateGlobalObjects](policy-csp-userrights.md)
+- [CreatePermanentSharedObjects](policy-csp-userrights.md)
+- [CreateSymbolicLinks](policy-csp-userrights.md)
+- [DebugPrograms](policy-csp-userrights.md)
+- [DenyAccessFromNetwork](policy-csp-userrights.md)
+- [DenyLocalLogOn](policy-csp-userrights.md)
+- [DenyRemoteDesktopServicesLogOn](policy-csp-userrights.md)
+- [EnableDelegation](policy-csp-userrights.md)
+- [RemoteShutdown](policy-csp-userrights.md)
+- [GenerateSecurityAudits](policy-csp-userrights.md)
+- [ImpersonateClient](policy-csp-userrights.md)
+- [IncreaseSchedulingPriority](policy-csp-userrights.md)
+- [LoadUnloadDeviceDrivers](policy-csp-userrights.md)
+- [LockMemory](policy-csp-userrights.md)
+- [ManageAuditingAndSecurityLog](policy-csp-userrights.md)
+- [ModifyObjectLabel](policy-csp-userrights.md)
+- [ModifyFirmwareEnvironment](policy-csp-userrights.md)
+- [ManageVolume](policy-csp-userrights.md)
+- [ProfileSingleProcess](policy-csp-userrights.md)
+- [RestoreFilesAndDirectories](policy-csp-userrights.md)
+- [TakeOwnership](policy-csp-userrights.md)
+- [BypassTraverseChecking](policy-csp-userrights.md)
+- [ReplaceProcessLevelToken](policy-csp-userrights.md)
+- [ChangeTimeZone](policy-csp-userrights.md)
+- [ShutDownTheSystem](policy-csp-userrights.md)
+- [LogOnAsBatchJob](policy-csp-userrights.md)
+- [ProfileSystemPerformance](policy-csp-userrights.md)
+- [DenyLogOnAsBatchJob](policy-csp-userrights.md)
+- [LogOnAsService](policy-csp-userrights.md)
+- [IncreaseProcessWorkingSet](policy-csp-userrights.md)
+
+## VirtualizationBasedTechnology
+
+- [HypervisorEnforcedCodeIntegrity](policy-csp-virtualizationbasedtechnology.md)
+- [RequireUEFIMemoryAttributesTable](policy-csp-virtualizationbasedtechnology.md)
+
+## WebThreatDefense
+
+- [ServiceEnabled](policy-csp-webthreatdefense.md)
+- [NotifyMalicious](policy-csp-webthreatdefense.md)
+- [NotifyPasswordReuse](policy-csp-webthreatdefense.md)
+- [NotifyUnsafeApp](policy-csp-webthreatdefense.md)
+
+## Wifi
+
+- [AllowAutoConnectToWiFiSenseHotspots](policy-csp-wifi.md)
+- [AllowInternetSharing](policy-csp-wifi.md)
+
+## WindowsDefenderSecurityCenter
+
+- [CompanyName](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableAppBrowserUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableEnhancedNotifications](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableFamilyUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableAccountProtectionUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableClearTpmButton](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableDeviceSecurityUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableHealthUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableNetworkUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableNotifications](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableTpmFirmwareUpdateWarning](policy-csp-windowsdefendersecuritycenter.md)
+- [DisableVirusUI](policy-csp-windowsdefendersecuritycenter.md)
+- [DisallowExploitProtectionOverride](policy-csp-windowsdefendersecuritycenter.md)
+- [Email](policy-csp-windowsdefendersecuritycenter.md)
+- [EnableCustomizedToasts](policy-csp-windowsdefendersecuritycenter.md)
+- [EnableInAppCustomization](policy-csp-windowsdefendersecuritycenter.md)
+- [HideRansomwareDataRecovery](policy-csp-windowsdefendersecuritycenter.md)
+- [HideSecureBoot](policy-csp-windowsdefendersecuritycenter.md)
+- [HideTPMTroubleshooting](policy-csp-windowsdefendersecuritycenter.md)
+- [HideWindowsSecurityNotificationAreaControl](policy-csp-windowsdefendersecuritycenter.md)
+- [Phone](policy-csp-windowsdefendersecuritycenter.md)
+- [URL](policy-csp-windowsdefendersecuritycenter.md)
+
+## WindowsInkWorkspace
+
+- [AllowWindowsInkWorkspace](policy-csp-windowsinkworkspace.md)
+- [AllowSuggestedAppsInWindowsInkWorkspace](policy-csp-windowsinkworkspace.md)
+
+## WindowsLogon
+
+- [HideFastUserSwitching](policy-csp-windowslogon.md)
+- [EnableFirstLogonAnimation](policy-csp-windowslogon.md)
+
+## WindowsSandbox
+
+- [AllowVGPU](policy-csp-windowssandbox.md)
+- [AllowNetworking](policy-csp-windowssandbox.md)
+- [AllowAudioInput](policy-csp-windowssandbox.md)
+- [AllowVideoInput](policy-csp-windowssandbox.md)
+- [AllowPrinterRedirection](policy-csp-windowssandbox.md)
+- [AllowClipboardRedirection](policy-csp-windowssandbox.md)
+
+## WirelessDisplay
+
+- [AllowProjectionToPC](policy-csp-wirelessdisplay.md)
+- [RequirePinForPairing](policy-csp-wirelessdisplay.md)
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
index 94bb7192fa..bcc22cc6cb 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
@@ -1,7 +1,7 @@
---
title: Policies in Policy CSP supported by Microsoft Surface Hub
description: Learn about the policies in Policy CSP supported by Microsoft Surface Hub.
-ms.reviewer:
+ms.reviewer:
manager: aaroncz
ms.author: vinpa
ms.topic: article
@@ -21,32 +21,32 @@ ms.date: 07/22/2020
- [Cellular/ShowAppCellularAccessUI](policy-csp-cellular.md#cellular-showappcellularaccessui)
- [Cryptography/AllowFipsAlgorithmPolicy](policy-csp-cryptography.md#cryptography-allowfipsalgorithmpolicy)
- [Cryptography/TLSCipherSuites](policy-csp-cryptography.md#cryptography-tlsciphersuites)
-- [Defender/AllowArchiveScanning](policy-csp-defender.md#defender-allowarchivescanning)
-- [Defender/AllowBehaviorMonitoring](policy-csp-defender.md#defender-allowbehaviormonitoring)
-- [Defender/AllowCloudProtection](policy-csp-defender.md#defender-allowcloudprotection)
-- [Defender/AllowEmailScanning](policy-csp-defender.md#defender-allowemailscanning)
-- [Defender/AllowFullScanOnMappedNetworkDrives](policy-csp-defender.md#defender-allowfullscanonmappednetworkdrives)
-- [Defender/AllowFullScanRemovableDriveScanning](policy-csp-defender.md#defender-allowfullscanremovabledrivescanning)
-- [Defender/AllowIOAVProtection](policy-csp-defender.md#defender-allowioavprotection)
-- [Defender/AllowOnAccessProtection](policy-csp-defender.md#defender-allowonaccessprotection)
-- [Defender/AllowRealtimeMonitoring](policy-csp-defender.md#defender-allowrealtimemonitoring)
-- [Defender/AllowScanningNetworkFiles](policy-csp-defender.md#defender-allowscanningnetworkfiles)
-- [Defender/AllowScriptScanning](policy-csp-defender.md#defender-allowscriptscanning)
-- [Defender/AllowUserUIAccess](policy-csp-defender.md#defender-allowuseruiaccess)
-- [Defender/AvgCPULoadFactor](policy-csp-defender.md#defender-avgcpuloadfactor)
-- [Defender/DaysToRetainCleanedMalware](policy-csp-defender.md#defender-daystoretaincleanedmalware)
-- [Defender/ExcludedExtensions](policy-csp-defender.md#defender-excludedextensions)
-- [Defender/ExcludedPaths](policy-csp-defender.md#defender-excludedpaths)
-- [Defender/ExcludedProcesses](policy-csp-defender.md#defender-excludedprocesses)
-- [Defender/PUAProtection](policy-csp-defender.md#defender-puaprotection)
-- [Defender/RealTimeScanDirection](policy-csp-defender.md#defender-realtimescandirection)
-- [Defender/ScanParameter](policy-csp-defender.md#defender-scanparameter)
-- [Defender/ScheduleQuickScanTime](policy-csp-defender.md#defender-schedulequickscantime)
-- [Defender/ScheduleScanDay](policy-csp-defender.md#defender-schedulescanday)
-- [Defender/ScheduleScanTime](policy-csp-defender.md#defender-schedulescantime)
-- [Defender/SignatureUpdateInterval](policy-csp-defender.md#defender-signatureupdateinterval)
-- [Defender/SubmitSamplesConsent](policy-csp-defender.md#defender-submitsamplesconsent)
-- [Defender/ThreatSeverityDefaultAction](policy-csp-defender.md#defender-threatseveritydefaultaction)
+- [Defender/AllowArchiveScanning](policy-csp-defender.md#allowarchivescanning)
+- [Defender/AllowBehaviorMonitoring](policy-csp-defender.md#allowbehaviormonitoring)
+- [Defender/AllowCloudProtection](policy-csp-defender.md#allowcloudprotection)
+- [Defender/AllowEmailScanning](policy-csp-defender.md#allowemailscanning)
+- [Defender/AllowFullScanOnMappedNetworkDrives](policy-csp-defender.md#allowfullscanonmappednetworkdrives)
+- [Defender/AllowFullScanRemovableDriveScanning](policy-csp-defender.md#allowfullscanremovabledrivescanning)
+- [Defender/AllowIOAVProtection](policy-csp-defender.md#allowioavprotection)
+- [Defender/AllowOnAccessProtection](policy-csp-defender.md#allowonaccessprotection)
+- [Defender/AllowRealtimeMonitoring](policy-csp-defender.md#allowrealtimemonitoring)
+- [Defender/AllowScanningNetworkFiles](policy-csp-defender.md#allowscanningnetworkfiles)
+- [Defender/AllowScriptScanning](policy-csp-defender.md#allowscriptscanning)
+- [Defender/AllowUserUIAccess](policy-csp-defender.md#allowuseruiaccess)
+- [Defender/AvgCPULoadFactor](policy-csp-defender.md#avgcpuloadfactor)
+- [Defender/DaysToRetainCleanedMalware](policy-csp-defender.md#daystoretaincleanedmalware)
+- [Defender/ExcludedExtensions](policy-csp-defender.md#excludedextensions)
+- [Defender/ExcludedPaths](policy-csp-defender.md#excludedpaths)
+- [Defender/ExcludedProcesses](policy-csp-defender.md#excludedprocesses)
+- [Defender/PUAProtection](policy-csp-defender.md#puaprotection)
+- [Defender/RealTimeScanDirection](policy-csp-defender.md#realtimescandirection)
+- [Defender/ScanParameter](policy-csp-defender.md#scanparameter)
+- [Defender/ScheduleQuickScanTime](policy-csp-defender.md#schedulequickscantime)
+- [Defender/ScheduleScanDay](policy-csp-defender.md#schedulescanday)
+- [Defender/ScheduleScanTime](policy-csp-defender.md#schedulescantime)
+- [Defender/SignatureUpdateInterval](policy-csp-defender.md#signatureupdateinterval)
+- [Defender/SubmitSamplesConsent](policy-csp-defender.md#submitsamplesconsent)
+- [Defender/ThreatSeverityDefaultAction](policy-csp-defender.md#threatseveritydefaultaction)
- [DeliveryOptimization/DOAbsoluteMaxCacheSize](policy-csp-deliveryoptimization.md#deliveryoptimization-doabsolutemaxcachesize)
- [DeliveryOptimization/DOAllowVPNPeerCaching](policy-csp-deliveryoptimization.md#deliveryoptimization-doallowvpnpeercaching)
- [DeliveryOptimization/DODownloadMode](policy-csp-deliveryoptimization.md#deliveryoptimization-dodownloadmode)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index e771422d71..283417da87 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -1,30 +1,33 @@
---
title: Policy CSP
-description: Learn how the Policy configuration service provider (CSP) enables the enterprise to configure policies on Windows 10 and Windows 11.
-ms.reviewer:
+description: Learn more about the Policy CSP
+author: vinaypamnani-msft
manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/22/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 07/18/2019
-ms.collection: highpri
+ms.topic: reference
---
+
+
+
# Policy CSP
+
+
The Policy configuration service provider enables the enterprise to configure policies on Windows 10 and Windows 11. Use this configuration service provider to configure any company policies.
The Policy configuration service provider has the following sub-categories:
-- Policy/Config/*AreaName* – Handles the policy configuration request from the server.
-- Policy/Result/*AreaName* – Provides a read-only path to policies enforced on the device.
+- Policy/Config/**AreaName** - Handles the policy configuration request from the server.
+- Policy/Result/**AreaName** - Provides a read-only path to policies enforced on the device.
-> [!Important]
+> [!IMPORTANT]
> Policy scope is the level at which a policy can be configured. Some policies can only be configured at the device level, meaning the policy will take effect independent of who is logged into the device. Other policies can be configured at the user level, meaning the policy will only take effect for that user.
>
> The allowed scope of a specific policy is represented below its table of supported Windows editions. To configure a policy under a specific scope (user vs. device), please use the following paths:
@@ -43,9490 +46,1133 @@ The Policy configuration service provider has the following sub-categories:
>
> - **./Vendor/MSFT/Policy/Config/_AreaName/PolicyName_** to configure the policy.
> - **./Vendor/MSFT/Policy/Result/_AreaName/PolicyName_** to get the result.
+
-The following shows the Policy configuration service provider in tree format as used by both Open Mobile Alliance Device Management (OMA DM) and OMA Client Provisioning.
+
+The following example shows the Policy configuration service provider in tree format.
-```console
-./Vendor/MSFT
-Policy
--------Config
-----------AreaName
--------------PolicyName
--------Result
-----------AreaName
--------------PolicyName
--------ConfigOperations
-----------ADMXInstall
--------------AppName
-----------------Policy
-------------------UniqueID
-----------------Preference
-------------------UniqueID
+```text
+./Device/Vendor/MSFT/Policy
+--- Config
+------ {AreaName}
+--------- {PolicyName}
+--- ConfigOperations
+------ ADMXInstall
+--------- {AppName}
+------------ {SettingsType}
+--------------- {AdmxFileId}
+------------ Properties
+--------------- {SettingsType}
+------------------ {AdmxFileId}
+--------------------- Version
+--- Result
+------ {AreaName}
+--------- {PolicyName}
+./User/Vendor/MSFT/Policy
+--- Config
+------ {AreaName}
+--------- {PolicyName}
+--- Result
+------ {AreaName}
+--------- {PolicyName}
```
+
+
+## Device/Config
-**./Vendor/MSFT/Policy**
-The root node for the Policy configuration service provider.
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
-Supported operation is Get.
+
+```Device
+./Device/Vendor/MSFT/Policy/Config
+```
+
-**Policy/Config**
-Node for grouping all policies configured by one source. The configuration source can use this path to set policy values and later query any policy value that it previously set. One policy can be configured by multiple configuration sources. If a configuration source wants to query the result of conflict resolution (for example, if Exchange and MDM both attempt to set a value) the configuration source can use the Policy/Result path to retrieve the resulting value.
+
+Node for grouping all policies configured by one source. The configuration source can use this path to set policy values and later query any policy value that it previously set. One policy can be configured by multiple configuration sources. If a configuration source wants to query the result of conflict resolution (for example, if Exchange and MDM both attempt to set a value,) the configuration source can use the Policy/Result path to retrieve the resulting value.
+
-Supported operation is Get.
+
+
+
-**Policy/Config/_AreaName_**
-The area group that can be configured by a single technology for a single provider. Once added, you cannot change the value.
+
+**Description framework properties**:
-Supported operations are Add, Get, and Delete.
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+
-**Policy/Config/_AreaName/PolicyName_**
-Specifies the name/value pair used in the policy.
+
+
+
+
+
+
+### Device/Config/{AreaName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/{AreaName}
+```
+
+
+
+The area group that can be configured by a single technology for a single provider. Once added, you cannot change the value. See the individual Area DDFs for Policy CSP for a list of Areas that can be configured.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+| Dynamic Node Naming | ClientInventory |
+
+
+
+
+
+
+
+
+
+#### Device/Config/{AreaName}/{PolicyName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/{AreaName}/{PolicyName}
+```
+
+
+
+Specifies the name/value pair used in the policy. See the individual Area DDFs for more information about the policies available to configure.
+
+
+
+
The following list shows some tips to help you when configuring policies:
-- Separate substring values by the Unicode &\#xF000; in the XML file.
-
+- Separate substring values by Unicode `0xF000` in the XML file.
> [!NOTE]
> A query from a different caller could provide a different value as each caller could have different values for a named policy.
-
- In SyncML, wrap this policy with the Atomic command so that the policy settings are treated as a single transaction.
- Supported operations are Add, Get, Delete, and Replace.
- Value type is string.
+
-**Policy/Result**
-Groups the evaluated policies from all providers that can be configured.
+
+**Description framework properties**:
-Supported operation is Get.
+| Property name | Property value |
+|:--|:--|
+| Format | null |
+| Access Type | Add, Delete, Get, Replace |
+| Dynamic Node Naming | ClientInventory |
+
-**Policy/Result/_AreaName_**
-The area group that can be configured by a single technology independent of the providers.
+
+
+
-Supported operation is Get.
+
-**Policy/Result/_AreaName/PolicyName_**
-Specifies the name/value pair used in the policy.
+
+## Device/ConfigOperations
-Supported operation is Get.
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
-**Policy/ConfigOperations**
-Added in Windows 10, version 1703. The root node for grouping different configuration operations.
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations
+```
+
-Supported operations are Add, Get, and Delete.
+
+The root node for grouping different configuration operations.
+
-**Policy/ConfigOperations/ADMXInstall**
-Added in Windows 10, version 1703. Allows settings for ADMX files for Win32 and Desktop Bridge apps to be imported (ingested) by your device and processed into new ADMX-backed policies or preferences. By using ADMXInstall, you can add ADMX-backed policies for those Win32 or Desktop Bridge apps that have been added between OS releases. ADMX-backed policies are ingested to your device by using the Policy CSP URI: ./Vendor/MSFT/Policy/ConfigOperations/ADMXInstall. Each ADMX-backed policy or preference that is added is assigned a unique ID. For more information about using Policy CSP to configure Win32 and Desktop Bridge app policies, see [Win32 and Desktop Bridge app policy configuration](../win32-and-centennial-app-policy-configuration.md).
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+
+
+
+
+
+
+
+
+
+### Device/ConfigOperations/ADMXInstall
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall
+```
+
+
+
+Allows settings for ADMX files for Win32 and Desktop Bridge apps to be imported (ingested) by your device and processed into new ADMX-backed policies or preferences. By using ADMXInstall, you can add ADMX-backed policies for those Win32 or Desktop Bridge apps that have been added between OS releases. ADMX-backed policies are ingested to your device by using the Policy CSP URI: ./Vendor/MSFT/Policy/ConfigOperations/ADMXInstall. Each ADMX-backed policy or preference that is added is assigned a unique ID. ADMX files that have been installed by using ConfigOperations/ADMXInstall can later be deleted by using the URI delete operation. Deleting an ADMX file will delete the ADMX file from disk, remove the metadata from the ADMXdefault registry hive, and delete all the policies that were set from the file. The MDM server can also delete all ADMX policies that are tied to a particular app by calling delete on the URI, ./Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}.
+
+
+
+
+ For more information about using Policy CSP to configure Win32 and Desktop Bridge app policies, see [Win32 and Desktop Bridge app policy configuration](../win32-and-centennial-app-policy-configuration.md).
> [!NOTE]
> The OPAX settings that are managed by the Microsoft Office Customization Tool are not supported by MDM. For more information about this tool, see [Office Customization Tool](/previous-versions/office/office-2013-resource-kit/cc179097(v=office.15)).
-
-ADMX files that have been installed by using **ConfigOperations/ADMXInstall** can later be deleted by using the URI delete operation. Deleting an ADMX file will delete the ADMX file from disk, remove the metadata from the ADMXdefault registry hive, and delete all the policies that were set from the file. The MDM server can also delete all ADMX policies that are tied to a particular app by calling delete on the URI, ./Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}.
-
-Supported operations are Add, Get, and Delete.
-
-**Policy/ConfigOperations/ADMXInstall/_AppName_**
-Added in Windows 10, version 1703. Specifies the name of the Win32 or Desktop Bridge app associated with the ADMX file.
-
-Supported operations are Add, Get, and Delete.
-
-**Policy/ConfigOperations/ADMXInstall/_AppName_/Policy**
-Added in Windows 10, version 1703. Specifies that a Win32 or Desktop Bridge app policy is to be imported.
-
-Supported operations are Add, Get, and Delete.
-
-**Policy/ConfigOperations/ADMXInstall/_AppName_/Policy/_UniqueID_**
-Added in Windows 10, version 1703. Specifies the unique ID of the app ADMX file that contains the policy to import.
-
-Supported operations are Add and Get. Does not support Delete.
-
-**Policy/ConfigOperations/ADMXInstall/_AppName_/Preference**
-Added in Windows 10, version 1703. Specifies that a Win32 or Desktop Bridge app preference is to be imported.
-
-Supported operations are Add, Get, and Delete.
-
-**Policy/ConfigOperations/ADMXInstall/_AppName_/Preference/_UniqueID_**
-Added in Windows 10, version 1703. Specifies the unique ID of the app ADMX file that contains the preference to import.
-
-Supported operations are Add and Get. Does not support Delete.
-
-## Policies
-
-### AboveLock policies
-
-
- -
- AboveLock/AllowCortanaAboveLock
-
- -
- AboveLock/AllowToasts
-
-
-
-### Accounts policies
-
-
- -
- Accounts/AllowAddingNonMicrosoftAccountsManually
-
- -
- Accounts/AllowMicrosoftAccountConnection
-
- -
- Accounts/AllowMicrosoftAccountSignInAssistant
-
-
-
-
-### ActiveXControls policies
-
-
- -
- ActiveXControls/ApprovedInstallationSites
-
-
-
-### ADMX_ActiveXInstallService policies
-
-
- -
- ADMX_ActiveXInstallService/AxISURLZonePolicies
-
-
-
-### ADMX_AddRemovePrograms policies
-
- -
- ADMX_AddRemovePrograms/DefaultCategory
-
- -
- ADMX_AddRemovePrograms/NoAddFromCDorFloppy
-
- -
- ADMX_AddRemovePrograms/NoAddFromInternet
-
- -
- ADMX_AddRemovePrograms/NoAddFromNetwork
-
- -
- ADMX_AddRemovePrograms/NoAddPage
-
- -
- ADMX_AddRemovePrograms/NoAddRemovePrograms
-
- -
- ADMX_AddRemovePrograms/NoChooseProgramsPage
-
- -
- ADMX_AddRemovePrograms/NoRemovePage
-
- -
- ADMX_AddRemovePrograms/NoServices
-
- -
- ADMX_AddRemovePrograms/NoSupportInfo
-
- -
- ADMX_AddRemovePrograms/NoWindowsSetupPage
-
-
-
-### ADMX_AdmPwd policies
-
-
- -
- ADMX_AdmPwd/POL_AdmPwd_DontAllowPwdExpirationBehindPolicy
-
- -
- ADMX_AdmPwd/POL_AdmPwd_Enabled
-
- -
- ADMX_AdmPwd/POL_AdmPwd_AdminName
-
- -
- ADMX_AdmPwd/POL_AdmPwd
-
-
-
-### ADMX_AppCompat policies
-
-
- -
- ADMX_AppCompat/AppCompatPrevent16BitMach
-
- -
- ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage
-
- -
- ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry
-
- -
- ADMX_AppCompat/AppCompatTurnOffSwitchBack
-
- -
- ADMX_AppCompat/AppCompatTurnOffEngine
-
- -
- ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1
-
- -
- ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2
-
- -
- ADMX_AppCompat/AppCompatTurnOffUserActionRecord
-
- -
- ADMX_AppCompat/AppCompatTurnOffProgramInventory
-
-
-
-### ADMX_AppxPackageManager policies
-
-
- -
- ADMX_AppxPackageManager/AllowDeploymentInSpecialProfiles
-
-
-
-### ADMX_AppXRuntime policies
-
-
- -
- ADMX_AppXRuntime/AppxRuntimeApplicationContentUriRules
-
- -
- ADMX_AppXRuntime/AppxRuntimeBlockFileElevation
-
- -
- ADMX_AppXRuntime/AppxRuntimeBlockHostedAppAccessWinRT
-
- -
- ADMX_AppXRuntime/AppxRuntimeBlockProtocolElevation
-
-
-
-### ADMX_AttachmentManager policies
-
-
- -
- ADMX_AttachmentManager/AM_EstimateFileHandlerRisk
-
- -
- ADMX_AttachmentManager/AM_SetFileRiskLevel
-
- -
- ADMX_AttachmentManager/AM_SetHighRiskInclusion
-
- -
- ADMX_AttachmentManager/AM_SetLowRiskInclusion
-
- -
- ADMX_AttachmentManager/AM_SetModRiskInclusion
-
-
-
-### ADMX_AuditSettings policies
-
-
- -
- ADMX_AuditSettings/IncludeCmdLine
-
-
-
-
-### ADMX_Bits policies
-
-
- -
- ADMX_Bits/BITS_DisableBranchCache
-
- -
- ADMX_Bits/BITS_DisablePeercachingClient
-
- -
- ADMX_Bits/BITS_DisablePeercachingServer
-
- -
- ADMX_Bits/BITS_EnablePeercaching
-
- -
- ADMX_Bits/BITS_MaxBandwidthServedForPeers
-
- -
- ADMX_Bits/BITS_MaxBandwidthV2_Maintenance
-
- -
- ADMX_Bits/BITS_MaxBandwidthV2_Work
-
- -
- ADMX_Bits/BITS_MaxCacheSize
-
- -
- ADMX_Bits/BITS_MaxContentAge
-
- -
- ADMX_Bits/BITS_MaxDownloadTime
-
- -
- ADMX_Bits/BITS_MaxFilesPerJob
-
- -
- ADMX_Bits/BITS_MaxJobsPerMachine
-
- -
- ADMX_Bits/BITS_MaxJobsPerUser
-
- -
- ADMX_Bits/BITS_MaxRangesPerFile
-
-
-
-### ADMX_CipherSuiteOrder policies
-
-
- -
- ADMX_CipherSuiteOrder/SSLCipherSuiteOrder
-
- -
- ADMX_CipherSuiteOrder/SSLCurveOrder
-
-
-
-### ADMX_COM policies
-
-
- -
- ADMX_COM/AppMgmt_COM_SearchForCLSID_1
-
- -
- ADMX_COM/AppMgmt_COM_SearchForCLSID_2
-
-
-
-### ADMX_ControlPanel policies
-
-
- -
- ADMX_ControlPanel/DisallowCpls
-
- -
- ADMX_ControlPanel/ForceClassicControlPanel
-
- -
- ADMX_ControlPanel/NoControlPanel
-
- -
- ADMX_ControlPanel/RestrictCpls
-
-
-
-### ADMX_ControlPanelDisplay policies
-
-
- -
- ADMX_ControlPanelDisplay/CPL_Display_Disable
-
- -
- ADMX_ControlPanelDisplay/CPL_Display_HideSettings
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_DisableColorSchemeChoice
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_DisableThemeChange
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_DisableVisualStyle
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_EnableScreenSaver
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_ForceDefaultLockScreen
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_LockFontSize
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoChangingLockScreen
-
- -
-
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoColorAppearanceUI
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoDesktopBackgroundUI
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoDesktopIconsUI
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoLockScreen
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoMousePointersUI
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoScreenSaverUI
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_NoSoundSchemeUI
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_PersonalColors
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_ScreenSaverIsSecure
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_ScreenSaverTimeOut
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_SetScreenSaver
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_SetTheme
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_SetVisualStyle
-
- -
- ADMX_ControlPanelDisplay/CPL_Personalization_StartBackground
-
-
-
-### ADMX_Cpls policies
-
-
- -
- ADMX_CtrlAltDel/DisableChangePassword
-
- -
- ADMX_CtrlAltDel/DisableLockComputer
-
- -
- ADMX_CtrlAltDel/DisableTaskMgr
-
- -
- ADMX_CtrlAltDel/NoLogoff
-
-
-
-### ADMX_CredentialProviders policies
-
-
- -
- ADMX_CredentialProviders/AllowDomainDelayLock
-
- -
- ADMX_CredentialProviders/DefaultCredentialProvider
-
- -
- ADMX_CredentialProviders/ExcludedCredentialProviders
-
-
-
-### ADMX_CredSsp policies
-
-
- -
- ADMX_CredSsp/AllowDefCredentialsWhenNTLMOnly
-
- -
- ADMX_CredSsp/AllowDefaultCredentials
-
- -
- ADMX_CredSsp/AllowEncryptionOracle
-
- -
- ADMX_CredSsp/AllowFreshCredentials
-
- -
- ADMX_CredSsp/AllowFreshCredentialsWhenNTLMOnly
-
- -
- ADMX_CredSsp/AllowSavedCredentials
-
- -
- ADMX_CredSsp/AllowSavedCredentialsWhenNTLMOnly
-
- -
- ADMX_CredSsp/DenyDefaultCredentials
-
- -
- ADMX_CredSsp/DenyFreshCredentials
-
- -
- ADMX_CredSsp/DenySavedCredentials
-
- -
- ADMX_CredSsp/RestrictedRemoteAdministration
-
-### ADMX_CredUI policies
-
-
- -
- ADMX_CredUI/EnableSecureCredentialPrompting
-
- -
- ADMX_CredUI/NoLocalPasswordResetQuestions
-
-
-
-### ADMX_CtrlAltDel policies
-
- -
- ADMX_Cpls/UseDefaultTile
-
-
-
-### ADMX_DataCollection policies
-
-
- -
- ADMX_DataCollection/CommercialIdPolicy
-
-
-
-### ADMX_DCOM policies
-
-
- -
- ADMX_DCOM/DCOMActivationSecurityCheckAllowLocalList
-
- -
- ADMX_DCOM/DCOMActivationSecurityCheckExemptionList
-
-
-
-### ADMX_Desktop policies
-
-
- -
- ADMX_Desktop/AD_EnableFilter
-
- -
- ADMX_Desktop/AD_HideDirectoryFolder
-
- -
- ADMX_Desktop/AD_QueryLimit
-
- -
- ADMX_Desktop/ForceActiveDesktopOn
-
- -
- ADMX_Desktop/NoActiveDesktop
-
- -
- ADMX_Desktop/NoActiveDesktopChanges
-
- -
- ADMX_Desktop/NoDesktop
-
- -
- ADMX_Desktop/NoDesktopCleanupWizard
-
- -
- ADMX_Desktop/NoInternetIcon
-
- -
- ADMX_Desktop/NoMyComputerIcon
-
- -
- ADMX_Desktop/NoMyDocumentsIcon
-
- -
- ADMX_Desktop/NoNetHood
-
- -
- ADMX_Desktop/NoPropertiesMyComputer
-
- -
- ADMX_Desktop/NoPropertiesMyDocuments
-
- -
- ADMX_Desktop/NoRecentDocsNetHood
-
- -
- ADMX_Desktop/NoRecycleBinIcon
-
- -
- ADMX_Desktop/NoRecycleBinProperties
-
- -
- ADMX_Desktop/NoSaveSettings
-
- -
- ADMX_Desktop/NoWindowMinimizingShortcuts
-
- -
- ADMX_Desktop/Wallpaper
-
- -
- ADMX_Desktop/sz_ATC_DisableAdd
-
- -
- ADMX_Desktop/sz_ATC_DisableClose
-
- -
- ADMX_Desktop/sz_ATC_DisableDel
-
- -
- ADMX_Desktop/sz_ATC_DisableEdit
-
- -
- ADMX_Desktop/sz_ATC_NoComponents
-
- -
- ADMX_Desktop/sz_AdminComponents_Title
-
- -
- ADMX_Desktop/sz_DB_DragDropClose
-
- -
- ADMX_Desktop/sz_DB_Moving
-
- -
- ADMX_Desktop/sz_DWP_NoHTMLPaper
-
-
-
-### ADMX_DeviceCompat policies
-
-
- -
- ADMX_DeviceCompat/DeviceFlags
-
- -
- ADMX_DeviceCompat/DriverShims
-
-
-
-### ADMX_DeviceGuard policies
-
- -
- ADMX_DeviceGuard/ConfigCIPolicy
-
-
-
-### ADMX_DeviceInstallation policies
-
-
- -
- ADMX_DeviceInstallation/DeviceInstall_AllowAdminInstall
-
- -
- ADMX_DeviceInstallation/DeviceInstall_DeniedPolicy_DetailText
-
- -
- ADMX_DeviceInstallation/DeviceInstall_DeniedPolicy_SimpleText
-
- -
- ADMX_DeviceInstallation/DeviceInstall_InstallTimeout
-
- -
- ADMX_DeviceInstallation/DeviceInstall_Policy_RebootTime
-
- -
- ADMX_DeviceInstallation/DeviceInstall_Removable_Deny
-
- -
- ADMX_DeviceInstallation/DeviceInstall_SystemRestore
-
- -
- ADMX_DeviceInstallation/DriverInstall_Classes_AllowUser
-
-
-
-### ADMX_DeviceSetup policies
-
-
- -
- ADMX_DeviceSetup/DeviceInstall_BalloonTips
-
- -
- ADMX_DeviceSetup/DriverSearchPlaces_SearchOrderConfiguration
-
-
-
-### ADMX_DFS policies
-
-
- -
- ADMX_DFS/DFSDiscoverDC
-
-
-
-### ADMX_DigitalLocker policies
-
-
--
- ADMX_DigitalLocker/Digitalx_DiableApplication_TitleText_1
-
- -
- ADMX_DigitalLocker/Digitalx_DiableApplication_TitleText_2
-
-
-
-### ADMX_DiskDiagnostic policies
-
-
- -
- ADMX_DiskDiagnostic/DfdAlertPolicy
-
- -
- ADMX_DiskDiagnostic/WdiScenarioExecutionPolicy
-
-
-
-### ADMX_DiskNVCache policies
-
-
- -
- ADMX_DiskNVCache/BootResumePolicy
-
- -
- ADMX_DiskNVCache/FeatureOffPolicy
-
- -
- ADMX_DiskNVCache/SolidStatePolicy
-
-
-
-### ADMX_DiskQuota policies
-
-
- -
- ADMX_DiskQuota/DQ_RemovableMedia
-
- -
- ADMX_DiskQuota/DQ_Enable
-
- -
- ADMX_DiskQuota/DQ_Enforce
-
- -
- ADMX_DiskQuota/DQ_LogEventOverLimit
-
- -
- ADMX_DiskQuota/DQ_LogEventOverThreshold
-
- -
- ADMX_DiskQuota/DQ_Limit
-
-
-
-### ADMX_DistributedLinkTracking policies
-
-
- -
- ADMX_DistributedLinkTracking/DLT_AllowDomainMode
-
-
-
-
-### ADMX_DnsClient policies
-
-
- -
- ADMX_DnsClient/DNS_AllowFQDNNetBiosQueries
-
- -
- ADMX_DnsClient/DNS_AppendToMultiLabelName
-
- -
- ADMX_DnsClient/DNS_Domain
-
- -
- ADMX_DnsClient/DNS_DomainNameDevolutionLevel
-
- -
- ADMX_DnsClient/DNS_IdnEncoding
-
- -
- ADMX_DnsClient/DNS_IdnMapping
-
- -
- ADMX_DnsClient/DNS_NameServer
-
- -
- ADMX_DnsClient/DNS_PreferLocalResponsesOverLowerOrderDns
-
- -
- ADMX_DnsClient/DNS_PrimaryDnsSuffix
-
- -
- ADMX_DnsClient/DNS_RegisterAdapterName
-
- -
- ADMX_DnsClient/DNS_RegisterReverseLookup
-
- -
- ADMX_DnsClient/DNS_RegistrationEnabled
-
- -
- ADMX_DnsClient/DNS_RegistrationOverwritesInConflict
-
- -
- ADMX_DnsClient/DNS_RegistrationRefreshInterval
-
- -
- ADMX_DnsClient/DNS_RegistrationTtl
-
- -
- ADMX_DnsClient/DNS_SearchList
-
- -
- ADMX_DnsClient/DNS_SmartMultiHomedNameResolution
-
- -
- ADMX_DnsClient/DNS_SmartProtocolReorder
-
- -
- ADMX_DnsClient/DNS_UpdateSecurityLevel
-
- -
- ADMX_DnsClient/DNS_UpdateTopLevelDomainZones
-
- -
- ADMX_DnsClient/DNS_UseDomainNameDevolution
-
- -
- ADMX_DnsClient/Turn_Off_Multicast
-
-
-
-### ADMX_DWM policies
-
- -
- ADMX_DWM/DwmDefaultColorizationColor_1
-
- -
- ADMX_DWM/DwmDefaultColorizationColor_2
-
- -
- ADMX_DWM/DwmDisallowAnimations_1
-
- -
- ADMX_DWM/DwmDisallowAnimations_2
-
- -
- ADMX_DWM/DwmDisallowColorizationColorChanges_1
-
- -
- ADMX_DWM/DwmDisallowColorizationColorChanges_2
-
-
-
-### ADMX_EAIME policies
-
-
- -
- ADMX_EAIME/L_DoNotIncludeNonPublishingStandardGlyphInTheCandidateList
-
- -
- ADMX_EAIME/L_RestrictCharacterCodeRangeOfConversion
-
- -
- ADMX_EAIME/L_TurnOffCustomDictionary
-
- -
- ADMX_EAIME/L_TurnOffHistorybasedPredictiveInput
-
- -
- ADMX_EAIME/L_TurnOffInternetSearchIntegration
-
- -
- ADMX_EAIME/L_TurnOffOpenExtendedDictionary
-
- -
- ADMX_EAIME/L_TurnOffSavingAutoTuningDataToFile
-
- -
- ADMX_EAIME/L_TurnOnCloudCandidate
-
- -
- ADMX_EAIME/L_TurnOnCloudCandidateCHS
-
- -
- ADMX_EAIME/L_TurnOnLexiconUpdate
-
- -
- ADMX_EAIME/L_TurnOnLiveStickers
-
- -
- ADMX_EAIME/L_TurnOnMisconversionLoggingForMisconversionReport
-
-
-
-### ADMX_EncryptFilesonMove policies
-
- -
- ADMX_EncryptFilesonMove/NoEncryptOnMove
-
-
-
-### ADMX_EventLogging policies
-
- -
- ADMX_EventLogging/EnableProtectedEventLogging
-
-
-
-### ADMX_EnhancedStorage policies
-
-
- -
- ADMX_EnhancedStorage/ApprovedEnStorDevices
-
- -
- ADMX_EnhancedStorage/ApprovedSilos
-
- -
- ADMX_EnhancedStorage/DisablePasswordAuthentication
-
- -
- ADMX_EnhancedStorage/DisallowLegacyDiskDevices
-
- -
- ADMX_EnhancedStorage/LockDeviceOnMachineLock
-
- -
- ADMX_EnhancedStorage/RootHubConnectedEnStorDevices
-
-
-
-### ADMX_ErrorReporting policies
-
-
- -
- ADMX_ErrorReporting/PCH_AllOrNoneDef
-
- -
- ADMX_ErrorReporting/PCH_AllOrNoneEx
-
- -
- ADMX_ErrorReporting/PCH_AllOrNoneInc
-
- -
- ADMX_ErrorReporting/PCH_ConfigureReport
-
- -
- ADMX_ErrorReporting/PCH_ReportOperatingSystemFaults
-
- -
- ADMX_ErrorReporting/WerArchive_1
-
- -
- ADMX_ErrorReporting/WerArchive_2
-
- -
- ADMX_ErrorReporting/WerAutoApproveOSDumps_1
-
- -
- ADMX_ErrorReporting/WerAutoApproveOSDumps_2
-
- -
- ADMX_ErrorReporting/WerBypassDataThrottling_1
-
- -
- ADMX_ErrorReporting/WerBypassDataThrottling_2
-
- -
- ADMX_ErrorReporting/WerBypassNetworkCostThrottling_1
-
- -
- ADMX_ErrorReporting/WerBypassNetworkCostThrottling_2
-
- -
- ADMX_ErrorReporting/WerBypassPowerThrottling_1
-
- -
- ADMX_ErrorReporting/WerBypassPowerThrottling_2
-
- -
- ADMX_ErrorReporting/WerCER
-
- -
- ADMX_ErrorReporting/WerConsentCustomize_1
-
- -
- ADMX_ErrorReporting/WerConsentOverride_1
-
- -
- ADMX_ErrorReporting/WerConsentOverride_2
-
- -
- ADMX_ErrorReporting/WerDefaultConsent_1
-
- -
- ADMX_ErrorReporting/WerDefaultConsent_2
-
- -
- ADMX_ErrorReporting/WerDisable_1
-
- -
- ADMX_ErrorReporting/WerExlusion_1
-
- -
- ADMX_ErrorReporting/WerExlusion_2
-
- -
- ADMX_ErrorReporting/WerNoLogging_1
-
- -
- ADMX_ErrorReporting/WerNoLogging_2
-
- -
- ADMX_ErrorReporting/WerNoSecondLevelData_1
-
- -
- ADMX_ErrorReporting/WerQueue_1
-
- -
- ADMX_ErrorReporting/WerQueue_2
-
-
-
-### ADMX_EventForwarding policies
-
-
- -
- ADMX_EventForwarding/ForwarderResourceUsage
-
- -
- ADMX_EventForwarding/SubscriptionManager
-
-
-
-### ADMX_EventLog policies
-
-
- -
- ADMX_EventLog/Channel_LogEnabled
-
- -
- ADMX_EventLog/Channel_LogFilePath_1
-
- -
- ADMX_EventLog/Channel_LogFilePath_2
-
- -
- ADMX_EventLog/Channel_LogFilePath_3
-
- -
- ADMX_EventLog/Channel_LogFilePath_4
-
- -
- ADMX_EventLog/Channel_LogMaxSize_3
-
- -
- ADMX_EventLog/Channel_Log_AutoBackup_1
-
- -
- ADMX_EventLog/Channel_Log_AutoBackup_2
-
- -
- ADMX_EventLog/Channel_Log_AutoBackup_3
-
- -
- ADMX_EventLog/Channel_Log_AutoBackup_4
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_1
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_2
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_3
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_4
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_5
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_6
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_7
-
- -
- ADMX_EventLog/Channel_Log_FileLogAccess_8
-
- -
- ADMX_EventLog/Channel_Log_Retention_2
-
- -
- ADMX_EventLog/Channel_Log_Retention_3
-
- -
- ADMX_EventLog/Channel_Log_Retention_4
-
-
-
-### ADMX_EventViewer policies
-
-
- -
- ADMX_EventViewer/EventViewer_RedirectionProgram
-
- -
- ADMX_EventViewer/EventViewer_RedirectionProgramCommandLineParameters
-
- -
- ADMX_EventViewer/EventViewer_RedirectionURL
-
-
-
-### ADMX_Explorer policies
-
-
- -
- ADMX_Explorer/AdminInfoUrl
-
- -
-
-
- -
- ADMX_Explorer/DisableRoamedProfileInit
-
- -
- ADMX_Explorer/PreventItemCreationInUsersFilesFolder
-
- -
- ADMX_Explorer/TurnOffSPIAnimations
-
-
-
-### ADMX_ExternalBoot policies
-
-
- -
- ADMX_ExternalBoot/PortableOperatingSystem_Hibernate
-
- ADMX_ExternalBoot/PortableOperatingSystem_Sleep
-
-
- ADMX_ExternalBoot/PortableOperatingSystem_Launcher
-
-
-
-### ADMX_FileRecovery policies
-
- -
- ADMX_FileRecovery/WdiScenarioExecutionPolicy
-
-
-
-### ADMX_FileRevocation policies
-
- -
- ADMX_FileRevocation/DelegatedPackageFamilyNames
-
-
-
-### ADMX_FileServerVSSProvider policies
-
- -
- ADMX_FileServerVSSProvider/Pol_EncryptProtocol
-
-
-
-### ADMX_FileSys policies
-
- -
- ADMX_FileSys/DisableCompression
-
- -
- ADMX_FileSys/DisableDeleteNotification
-
- -
- ADMX_FileSys/DisableEncryption
-
- -
- ADMX_FileSys/EnablePagefileEncryption
-
- -
- ADMX_FileSys/LongPathsEnabled
-
- -
- ADMX_FileSys/ShortNameCreationSettings
-
- -
- ADMX_FileSys/SymlinkEvaluation
-
- -
- ADMX_FileSys/TxfDeprecatedFunctionality
-
-
-
-### ADMX_FolderRedirection policies
-
- -
- ADMX_FolderRedirection/DisableFRAdminPin
-
- -
- ADMX_FolderRedirection/DisableFRAdminPinByFolder
-
- -
- ADMX_FolderRedirection/FolderRedirectionEnableCacheRename
-
- -
- ADMX_FolderRedirection/LocalizeXPRelativePaths_1
-
- -
- ADMX_FolderRedirection/LocalizeXPRelativePaths_2
-
- -
- ADMX_FolderRedirection/PrimaryComputer_FR_1
-
- -
- ADMX_FolderRedirection/PrimaryComputer_FR_2
-
-
-
-### ADMX_FramePanes policies
-
- -
- ADMX_FramePanes/NoReadingPane
-
- -
- ADMX_FramePanes/NoPreviewPane
-
-
-
-### ADMX_FTHSVC policies
-
- -
- ADMX_FTHSVC/WdiScenarioExecutionPolicy
-
-
-
-### ADMX_Help policies
-
- -
- ADMX_Help/DisableHHDEP
-
- -
- ADMX_Help/HelpQualifiedRootDir_Comp
-
- -
- ADMX_Help/RestrictRunFromHelp
-
- -
- ADMX_Help/RestrictRunFromHelp_Comp
-
-
-
-### ADMX_HotSpotAuth policies
-
- -
- ADMX_HotSpotAuth/HotspotAuth_Enable
-
-
-
-### ADMX_Globalization policies
-
-
- -
- ADMX_Globalization/BlockUserInputMethodsForSignIn
-
- -
- ADMX_Globalization/CustomLocalesNoSelect_1
-
- -
- ADMX_Globalization/CustomLocalesNoSelect_2
-
- -
- ADMX_Globalization/HideAdminOptions
-
- -
- ADMX_Globalization/HideCurrentLocation
-
- -
- ADMX_Globalization/HideLanguageSelection
-
- -
- ADMX_Globalization/HideLocaleSelectAndCustomize
-
- -
- ADMX_Globalization/ImplicitDataCollectionOff_1
-
- -
- ADMX_Globalization/ImplicitDataCollectionOff_2
-
- -
- ADMX_Globalization/LocaleSystemRestrict
-
- -
- ADMX_Globalization/LocaleUserRestrict_1
-
- -
- ADMX_Globalization/LocaleUserRestrict_2
-
- -
- ADMX_Globalization/LockMachineUILanguage
-
- -
- ADMX_Globalization/LockUserUILanguage
-
- -
- ADMX_Globalization/PreventGeoIdChange_1
-
- -
- ADMX_Globalization/PreventGeoIdChange_2
-
- -
- ADMX_Globalization/PreventUserOverrides_1
-
- -
- ADMX_Globalization/PreventUserOverrides_2
-
- -
- ADMX_Globalization/RestrictUILangSelect
-
- -
- ADMX_Globalization/TurnOffAutocorrectMisspelledWords
-
- -
- ADMX_Globalization/TurnOffHighlightMisspelledWords
-
- -
- ADMX_Globalization/TurnOffInsertSpace
-
- -
- ADMX_Globalization/TurnOffOfferTextPredictions
-
- -
- ADMX_Globalization/Y2K
-
-
-
-### ADMX_GroupPolicy policies
-
-
- -
- ADMX_GroupPolicy/AllowX-ForestPolicy-and-RUP
-
- -
- ADMX_GroupPolicy/CSE_AppMgmt
-
- -
- ADMX_GroupPolicy/CSE_DiskQuota
-
- -
- ADMX_GroupPolicy/CSE_EFSRecovery
-
- -
- ADMX_GroupPolicy/CSE_FolderRedirection
-
- -
- ADMX_GroupPolicy/CSE_IEM
-
- -
- ADMX_GroupPolicy/CSE_IPSecurity
-
- -
- ADMX_GroupPolicy/CSE_Registry
-
- -
- ADMX_GroupPolicy/CSE_Scripts
-
- -
- ADMX_GroupPolicy/CSE_Security
-
- -
- ADMX_GroupPolicy/CSE_Wired
-
- -
- ADMX_GroupPolicy/CSE_Wireless
-
- -
- ADMX_GroupPolicy/CorpConnSyncWaitTime
-
- -
- ADMX_GroupPolicy/DenyRsopToInteractiveUser_1
-
- -
- ADMX_GroupPolicy/DenyRsopToInteractiveUser_2
-
- -
- ADMX_GroupPolicy/DisableAOACProcessing
-
- -
- ADMX_GroupPolicy/DisableAutoADMUpdate
-
- -
- ADMX_GroupPolicy/DisableBackgroundPolicy
-
- -
- ADMX_GroupPolicy/DisableLGPOProcessing
-
- -
- ADMX_GroupPolicy/DisableUsersFromMachGP
-
- -
- ADMX_GroupPolicy/EnableCDP
-
- -
- ADMX_GroupPolicy/EnableLogonOptimization
-
- -
- ADMX_GroupPolicy/EnableLogonOptimizationOnServerSKU
-
- -
- ADMX_GroupPolicy/EnableMMX
-
- -
- ADMX_GroupPolicy/EnforcePoliciesOnly
-
- -
- ADMX_GroupPolicy/FontMitigation
-
- -
- ADMX_GroupPolicy/GPDCOptions
-
- -
- ADMX_GroupPolicy/GPTransferRate_1
-
- -
- ADMX_GroupPolicy/GPTransferRate_2
-
- -
- ADMX_GroupPolicy/GroupPolicyRefreshRate
-
- -
- ADMX_GroupPolicy/GroupPolicyRefreshRateDC
-
- -
- ADMX_GroupPolicy/GroupPolicyRefreshRateUser
-
- -
- ADMX_GroupPolicy/LogonScriptDelay
-
- -
- ADMX_GroupPolicy/NewGPODisplayName
-
- -
- ADMX_GroupPolicy/NewGPOLinksDisabled
-
- -
- ADMX_GroupPolicy/OnlyUseLocalAdminFiles
-
- -
- ADMX_GroupPolicy/ProcessMitigationOptions
-
- -
- ADMX_GroupPolicy/RSoPLogging
-
- -
- ADMX_GroupPolicy/ResetDfsClientInfoDuringRefreshPolicy
-
- -
- ADMX_GroupPolicy/SlowLinkDefaultForDirectAccess
-
- -
- ADMX_GroupPolicy/SlowlinkDefaultToAsync
-
- -
- ADMX_GroupPolicy/SyncWaitTime
-
- -
- ADMX_GroupPolicy/UserPolicyMode
-
-
-
-### ADMX_HelpAndSupport policies
-
- -
- ADMX_HelpAndSupport/ActiveHelp
-
- -
- ADMX_HelpAndSupport/HPExplicitFeedback
-
- -
- ADMX_HelpAndSupport/HPImplicitFeedback
-
- -
- ADMX_HelpAndSupport/HPOnlineAssistance
-
-
-
-
-## ADMX_ICM policies
-
-
- -
- ADMX_ICM/CEIPEnable
-
- -
- ADMX_ICM/CertMgr_DisableAutoRootUpdates
-
- -
- ADMX_ICM/DisableHTTPPrinting_1
-
- -
- ADMX_ICM/DisableWebPnPDownload_1
-
- -
- ADMX_ICM/DriverSearchPlaces_DontSearchWindowsUpdate
-
- -
- ADMX_ICM/EventViewer_DisableLinks
-
- -
- ADMX_ICM/HSS_HeadlinesPolicy
-
- -
- ADMX_ICM/HSS_KBSearchPolicy
-
- -
- ADMX_ICM/InternetManagement_RestrictCommunication_1
-
- -
- ADMX_ICM/InternetManagement_RestrictCommunication_2
-
- -
- ADMX_ICM/NC_ExitOnISP
-
- -
- ADMX_ICM/NC_NoRegistration
-
- -
- ADMX_ICM/PCH_DoNotReport
-
- -
- ADMX_ICM/RemoveWindowsUpdate_ICM
-
- -
- ADMX_ICM/SearchCompanion_DisableFileUpdates
-
- -
- ADMX_ICM/ShellNoUseInternetOpenWith_1
-
- -
- ADMX_ICM/ShellNoUseInternetOpenWith_2
-
- -
- ADMX_ICM/ShellNoUseStoreOpenWith_1
-
- -
- ADMX_ICM/ShellNoUseStoreOpenWith_2
-
- -
- ADMX_ICM/ShellPreventWPWDownload_1
-
- -
- ADMX_ICM/ShellRemoveOrderPrints_1
-
- -
- ADMX_ICM/ShellRemoveOrderPrints_2
-
- -
- ADMX_ICM/ShellRemovePublishToWeb_1
-
- -
- ADMX_ICM/ShellRemovePublishToWeb_2
-
- -
- ADMX_ICM/WinMSG_NoInstrumentation_1
-
- -
- ADMX_ICM/WinMSG_NoInstrumentation_2
-
-
-
-### ADMX_IIS policies
-
- -
- ADMX_IIS/PreventIISInstall
-
-
-
-### ADMX_iSCSI policies
-
-
- -
- ADMX_iSCSI/iSCSIGeneral_RestrictAdditionalLogins
-
- -
- ADMX_iSCSI/iSCSIGeneral_ChangeIQNName
-
- -
- ADMX_iSCSI/iSCSISecurity_ChangeCHAPSecret
-
-
-
-### ADMX_kdc policies
-
- -
- ADMX_kdc/CbacAndArmor
-
- -
- ADMX_kdc/ForestSearch
-
- -
- ADMX_kdc/PKINITFreshness
-
- -
- ADMX_kdc/RequestCompoundId
-
- -
- ADMX_kdc/TicketSizeThreshold
-
- -
- ADMX_kdc/emitlili
-
-
-
-### ADMX_Kerberos policies
-
-
- -
- ADMX_Kerberos/AlwaysSendCompoundId
-
- -
- ADMX_Kerberos/DevicePKInitEnabled
-
- -
- ADMX_Kerberos/HostToRealm
-
- -
- ADMX_Kerberos/KdcProxyDisableServerRevocationCheck
-
- -
- ADMX_Kerberos/KdcProxyServer
-
- -
- ADMX_Kerberos/MitRealms
-
- -
- ADMX_Kerberos/ServerAcceptsCompound
-
- -
- ADMX_Kerberos/StrictTarget
-
-
-
-### ADMX_LanmanServer policies
-
- -
- ADMX_LanmanServer/Pol_CipherSuiteOrder
-
- -
- ADMX_LanmanServer/Pol_HashPublication
-
- -
- ADMX_LanmanServer/Pol_HashSupportVersion
-
- -
- ADMX_LanmanServer/Pol_HonorCipherSuiteOrder
-
-
-
-### ADMX_LanmanWorkstation policies
-
-
- -
- ADMX_LanmanWorkstation/Pol_CipherSuiteOrder
-
- -
- ADMX_LanmanWorkstation/Pol_EnableHandleCachingForCAFiles
-
- -
- ADMX_LanmanWorkstation/Pol_EnableOfflineFilesforCAShares
-
-
-
-### ADMX_LeakDiagnostic policies
-
- -
- ADMX_LeakDiagnostic/WdiScenarioExecutionPolicy
-
-
-
-### ADMX_LinkLayerTopologyDiscovery policies
-
- -
- ADMX_LinkLayerTopologyDiscovery/LLTD_EnableLLTDIO
-
- -
- ADMX_LinkLayerTopologyDiscovery/LLTD_EnableRspndr
-
-
-
-### ADMX_LocationProviderAdm policies
-
-
- -
- ADMX_LocationProviderAdm/BlockUserFromShowingAccountDetailsOnSignin
-
-
-
-### ADMX_Logon policies
-
-
- -
- ADMX_Logon/BlockUserFromShowingAccountDetailsOnSignin
-
- -
- ADMX_Logon/DisableAcrylicBackgroundOnLogon
-
- -
- ADMX_Logon/DisableExplorerRunLegacy_1
-
- -
- ADMX_Logon/DisableExplorerRunLegacy_2
-
- -
- ADMX_Logon/DisableExplorerRunOnceLegacy_1
-
- -
- ADMX_Logon/DisableExplorerRunOnceLegacy_2
-
- -
- ADMX_Logon/DisableStatusMessages
-
- -
- ADMX_Logon/DontEnumerateConnectedUsers
-
- -
- ADMX_Logon/NoWelcomeTips_1
-
- -
- ADMX_Logon/NoWelcomeTips_2
-
- -
- ADMX_Logon/Run_1
-
- -
- ADMX_Logon/Run_2
-
- -
- ADMX_Logon/SyncForegroundPolicy
-
- -
- ADMX_Logon/UseOEMBackground
-
- -
- ADMX_Logon/VerboseStatus
-
-
-
-### ADMX_MicrosoftDefenderAntivirus policies
-
-
- -
- ADMX_MicrosoftDefenderAntivirus/AllowFastServiceStartup
-
- -
- ADMX_MicrosoftDefenderAntivirus/DisableAntiSpywareDefender
-
- -
- ADMX_MicrosoftDefenderAntivirus/DisableAutoExclusions
-
- -
- ADMX_MicrosoftDefenderAntivirus/DisableBlockAtFirstSeen
-
- -
- ADMX_MicrosoftDefenderAntivirus/DisableLocalAdminMerge
-
- -
- ADMX_MicrosoftDefenderAntivirus/DisableRealtimeMonitoring
-
- -
- ADMX_MicrosoftDefenderAntivirus/DisableRoutinelyTakingAction
-
- -
- ADMX_MicrosoftDefenderAntivirus/Exclusions_Extensions
-
- -
- ADMX_MicrosoftDefenderAntivirus/Exclusions_Paths
-
- -
- ADMX_MicrosoftDefenderAntivirus/Exclusions_Processes
-
- -
- ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ASR_ASROnlyExclusions
-
- -
- ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ASR_Rules
-
- -
- ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ControlledFolderAccess_AllowedApplications
-
- -
- ADMX_MicrosoftDefenderAntivirus/ExploitGuard_ControlledFolderAccess_ProtectedFolders
-
- -
- ADMX_MicrosoftDefenderAntivirus/MpEngine_EnableFileHashComputation
-
- -
- ADMX_MicrosoftDefenderAntivirus/Nis_Consumers_IPS_DisableSignatureRetirement
-
- -
- ADMX_MicrosoftDefenderAntivirus/Nis_Consumers_IPS_sku_differentiation_Signature_Set_Guid
-
- -
- ADMX_MicrosoftDefenderAntivirus/Nis_DisableProtocolRecognition
-
- -
- ADMX_MicrosoftDefenderAntivirus/ProxyBypass
-
- -
- ADMX_MicrosoftDefenderAntivirus/ProxyPacUrl
-
- -
- ADMX_MicrosoftDefenderAntivirus/ProxyServer
-
- -
- ADMX_MicrosoftDefenderAntivirus/Quarantine_LocalSettingOverridePurgeItemsAfterDelay
-
- -
- ADMX_MicrosoftDefenderAntivirus/Quarantine_PurgeItemsAfterDelay
-
- -
- ADMX_MicrosoftDefenderAntivirus/RandomizeScheduleTaskTimes
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableBehaviorMonitoring
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableIOAVProtection
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableOnAccessProtection
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableRawWriteNotification
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_DisableScanOnRealtimeEnable
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_IOAVMaxSize
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableBehaviorMonitoring
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableIOAVProtection
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableOnAccessProtection
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideDisableRealtimeMonitoring
-
- -
- ADMX_MicrosoftDefenderAntivirus/RealtimeProtection_LocalSettingOverrideRealtimeScanDirection
-
- -
- ADMX_MicrosoftDefenderAntivirus/Remediation_LocalSettingOverrideScan_ScheduleTime
-
- -
- ADMX_MicrosoftDefenderAntivirus/Remediation_Scan_ScheduleDay
-
- -
- ADMX_MicrosoftDefenderAntivirus/Remediation_Scan_ScheduleTime
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_AdditionalActionTimeout
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_CriticalFailureTimeout
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_DisableEnhancedNotifications
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_Disablegenericreports
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_NonCriticalTimeout
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_RecentlyCleanedTimeout
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_WppTracingComponents
-
- -
- ADMX_MicrosoftDefenderAntivirus/Reporting_WppTracingLevel
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_AllowPause
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_ArchiveMaxDepth
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_ArchiveMaxSize
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableArchiveScanning
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableEmailScanning
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableHeuristics
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisablePackedExeScanning
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableRemovableDriveScanning
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableReparsePointScanning
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableRestorePoint
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableScanningMappedNetworkDrivesForFullScan
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_DisableScanningNetworkFiles
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideAvgCPULoadFactor
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScanParameters
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScheduleDay
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScheduleQuickScantime
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_LocalSettingOverrideScheduleTime
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_LowCpuPriority
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_MissedScheduledScanCountBeforeCatchup
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_PurgeItemsAfterDelay
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_QuickScanInterval
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_ScanOnlyIfIdle
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_ScheduleDay
-
- -
- ADMX_MicrosoftDefenderAntivirus/Scan_ScheduleTime
-
- -
- ADMX_MicrosoftDefenderAntivirus/ServiceKeepAlive
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ASSignatureDue
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_AVSignatureDue
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DefinitionUpdateFileSharesSources
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DisableScanOnUpdate
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DisableScheduledSignatureUpdateonBattery
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_DisableUpdateOnStartupWithoutEngine
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_FallbackOrder
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ForceUpdateFromMU
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_RealtimeSignatureDelivery
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ScheduleDay
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_ScheduleTime
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_SharedSignaturesLocation
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_SignatureDisableNotification
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_SignatureUpdateCatchupInterval
-
- -
- ADMX_MicrosoftDefenderAntivirus/SignatureUpdate_UpdateOnStartup
-
- -
- ADMX_MicrosoftDefenderAntivirus/SpynetReporting
-
- -
- ADMX_MicrosoftDefenderAntivirus/Spynet_LocalSettingOverrideSpynetReporting
-
- -
- ADMX_MicrosoftDefenderAntivirus/Threats_ThreatIdDefaultAction
-
- -
- ADMX_MicrosoftDefenderAntivirus/UX_Configuration_CustomDefaultActionToastString
-
- -
- ADMX_MicrosoftDefenderAntivirus/UX_Configuration_Notification_Suppress
-
- -
- ADMX_MicrosoftDefenderAntivirus/UX_Configuration_SuppressRebootNotification
-
- -
- ADMX_MicrosoftDefenderAntivirus/UX_Configuration_UILockdown
-
-
-
-### ADMX_MMC policies
-
- -
- ADMX_MMC/MMC_ActiveXControl
-
- -
- ADMX_MMC/MMC_ExtendView
-
- -
- ADMX_MMC/MMC_LinkToWeb
-
- -
- ADMX_MMC/MMC_Restrict_Author
-
- -
- ADMX_MMC/MMC_Restrict_To_Permitted_Snapins
-
-
-
-### ADMX_MMCSnapins policies
-
-
- -
- ADMX_MMCSnapins/MMC_ADMComputers_1
-
- -
- ADMX_MMCSnapins/MMC_ADMComputers_2
-
- -
- ADMX_MMCSnapins/MMC_ADMUsers_1
-
- -
- ADMX_MMCSnapins/MMC_ADMUsers_2
-
- -
- ADMX_MMCSnapins/MMC_ADSI
-
- -
- ADMX_MMCSnapins/MMC_ActiveDirDomTrusts
-
- -
- ADMX_MMCSnapins/MMC_ActiveDirSitesServices
-
- -
- ADMX_MMCSnapins/MMC_ActiveDirUsersComp
-
- -
- ADMX_MMCSnapins/MMC_AppleTalkRouting
-
- -
- ADMX_MMCSnapins/MMC_AuthMan
-
- -
- ADMX_MMCSnapins/MMC_CertAuth
-
- -
- ADMX_MMCSnapins/MMC_CertAuthPolSet
-
- -
- ADMX_MMCSnapins/MMC_Certs
-
- -
- ADMX_MMCSnapins/MMC_CertsTemplate
-
- -
- ADMX_MMCSnapins/MMC_ComponentServices
-
- -
- ADMX_MMCSnapins/MMC_ComputerManagement
-
- -
- ADMX_MMCSnapins/MMC_ConnectionSharingNAT
-
- -
- ADMX_MMCSnapins/MMC_DCOMCFG
-
- -
- ADMX_MMCSnapins/MMC_DFS
-
- -
- ADMX_MMCSnapins/MMC_DHCPRelayMgmt
-
- -
- ADMX_MMCSnapins/MMC_DeviceManager_1
-
- -
- ADMX_MMCSnapins/MMC_DeviceManager_2
-
- -
- ADMX_MMCSnapins/MMC_DiskDefrag
-
- -
- ADMX_MMCSnapins/MMC_DiskMgmt
-
- -
- ADMX_MMCSnapins/MMC_EnterprisePKI
-
- -
- ADMX_MMCSnapins/MMC_EventViewer_1
-
- -
- ADMX_MMCSnapins/MMC_EventViewer_2
-
- -
- ADMX_MMCSnapins/MMC_EventViewer_3
-
- -
- ADMX_MMCSnapins/MMC_EventViewer_4
-
- -
- ADMX_MMCSnapins/MMC_FAXService
-
- -
- ADMX_MMCSnapins/MMC_FailoverClusters
-
- -
- ADMX_MMCSnapins/MMC_FolderRedirection_1
-
- -
- ADMX_MMCSnapins/MMC_FolderRedirection_2
-
- -
- ADMX_MMCSnapins/MMC_FrontPageExt
-
- -
- ADMX_MMCSnapins/MMC_GroupPolicyManagementSnapIn
-
- -
- ADMX_MMCSnapins/MMC_GroupPolicySnapIn
-
- -
- ADMX_MMCSnapins/MMC_GroupPolicyTab
-
- -
- ADMX_MMCSnapins/MMC_HRA
-
- -
- ADMX_MMCSnapins/MMC_IAS
-
- -
- ADMX_MMCSnapins/MMC_IASLogging
-
- -
- ADMX_MMCSnapins/MMC_IEMaintenance_1
-
- -
- ADMX_MMCSnapins/MMC_IEMaintenance_2
-
- -
- ADMX_MMCSnapins/MMC_IGMPRouting
-
- -
- ADMX_MMCSnapins/MMC_IIS
-
- -
- ADMX_MMCSnapins/MMC_IPRouting
-
- -
- ADMX_MMCSnapins/MMC_IPSecManage_GP
-
- -
- ADMX_MMCSnapins/MMC_IPXRIPRouting
-
- -
- ADMX_MMCSnapins/MMC_IPXRouting
-
- -
- ADMX_MMCSnapins/MMC_IPXSAPRouting
-
- -
- ADMX_MMCSnapins/MMC_IndexingService
-
- -
- ADMX_MMCSnapins/MMC_IpSecManage
-
- -
- ADMX_MMCSnapins/MMC_IpSecMonitor
-
- -
- ADMX_MMCSnapins/MMC_LocalUsersGroups
-
- -
- ADMX_MMCSnapins/MMC_LogicalMappedDrives
-
- -
- ADMX_MMCSnapins/MMC_NPSUI
-
- -
- ADMX_MMCSnapins/MMC_NapSnap
-
- -
- ADMX_MMCSnapins/MMC_NapSnap_GP
-
- -
- ADMX_MMCSnapins/MMC_Net_Framework
-
- -
- ADMX_MMCSnapins/MMC_OCSP
-
- -
- ADMX_MMCSnapins/MMC_OSPFRouting
-
- -
- ADMX_MMCSnapins/MMC_PerfLogsAlerts
-
- -
- ADMX_MMCSnapins/MMC_PublicKey
-
- -
- ADMX_MMCSnapins/MMC_QoSAdmission
-
- -
- ADMX_MMCSnapins/MMC_RAS_DialinUser
-
- -
- ADMX_MMCSnapins/MMC_RIPRouting
-
- -
- ADMX_MMCSnapins/MMC_RIS
-
- -
- ADMX_MMCSnapins/MMC_RRA
-
- -
- ADMX_MMCSnapins/MMC_RSM
-
- -
- ADMX_MMCSnapins/MMC_RemStore
-
- -
- ADMX_MMCSnapins/MMC_RemoteAccess
-
- -
- ADMX_MMCSnapins/MMC_RemoteDesktop
-
- -
- ADMX_MMCSnapins/MMC_ResultantSetOfPolicySnapIn
-
- -
- ADMX_MMCSnapins/MMC_Routing
-
- -
- ADMX_MMCSnapins/MMC_SCA
-
- -
- ADMX_MMCSnapins/MMC_SMTPProtocol
-
- -
- ADMX_MMCSnapins/MMC_SNMP
-
- -
- ADMX_MMCSnapins/MMC_ScriptsMachine_1
-
- -
- ADMX_MMCSnapins/MMC_ScriptsMachine_2
-
- -
- ADMX_MMCSnapins/MMC_ScriptsUser_1
-
- -
- ADMX_MMCSnapins/MMC_ScriptsUser_2
-
- -
- ADMX_MMCSnapins/MMC_SecuritySettings_1
-
- -
- ADMX_MMCSnapins/MMC_SecuritySettings_2
-
- -
- ADMX_MMCSnapins/MMC_SecurityTemplates
-
- -
- ADMX_MMCSnapins/MMC_SendConsoleMessage
-
- -
- ADMX_MMCSnapins/MMC_ServerManager
-
- -
- ADMX_MMCSnapins/MMC_ServiceDependencies
-
- -
- ADMX_MMCSnapins/MMC_Services
-
- -
- ADMX_MMCSnapins/MMC_SharedFolders
-
- -
- ADMX_MMCSnapins/MMC_SharedFolders_Ext
-
- -
- ADMX_MMCSnapins/MMC_SoftwareInstalationComputers_1
-
- -
- ADMX_MMCSnapins/MMC_SoftwareInstalationComputers_2
-
- -
- ADMX_MMCSnapins/MMC_SoftwareInstallationUsers_1
-
- -
- ADMX_MMCSnapins/MMC_SoftwareInstallationUsers_2
-
- -
- ADMX_MMCSnapins/MMC_SysInfo
-
- -
- ADMX_MMCSnapins/MMC_SysProp
-
- -
- ADMX_MMCSnapins/MMC_TPMManagement
-
- -
- ADMX_MMCSnapins/MMC_Telephony
-
- -
- ADMX_MMCSnapins/MMC_TerminalServices
-
- -
- ADMX_MMCSnapins/MMC_WMI
-
- -
- ADMX_MMCSnapins/MMC_WindowsFirewall
-
- -
- ADMX_MMCSnapins/MMC_WindowsFirewall_GP
-
- -
- ADMX_MMCSnapins/MMC_WiredNetworkPolicy
-
- -
- ADMX_MMCSnapins/MMC_WirelessMon
-
- -
- ADMX_MMCSnapins/MMC_WirelessNetworkPolicy
-
-
-
-### ADMX_MobilePCMobilityCenter policies
-
- -
- ADMX_MobilePCMobilityCenter/MobilityCenterEnable_1
-
- -
- ADMX_MobilePCMobilityCenter/MobilityCenterEnable_2
-
-
-
-### ADMX_MobilePCPresentationSettings policies
-
- -
- ADMX_MobilePCPresentationSettings/PresentationSettingsEnable_1
-
- -
- ADMX_MobilePCPresentationSettings/PresentationSettingsEnable_2
-
-
-
-### ADMX_MSAPolicy policies
-
- -
- ADMX_MSAPolicy/IncludeMicrosoftAccount_DisableUserAuthCmdLine
-
- -
-
-### ADMX_msched policies
-
-
- -
- ADMX_msched/ActivationBoundaryPolicy
-
- -
- ADMX_msched/RandomDelayPolicy
-
-
-
-### ADMX_MSDT policies
-
-
- -
- ADMX_MSDT/MsdtSupportProvider
-
- -
- ADMX_MSDT/MsdtToolDownloadPolicy
-
- -
- ADMX_MSDT/WdiScenarioExecutionPolicy
-
-
-
-### ADMX_MSI policies
-
-
- -
- ADMX_MSI/AllowLockdownBrowse
-
- -
- ADMX_MSI/AllowLockdownMedia
-
- -
- ADMX_MSI/AllowLockdownPatch
-
- -
- ADMX_MSI/DisableAutomaticApplicationShutdown
-
- -
- ADMX_MSI/DisableBrowse
-
- -
- ADMX_MSI/DisableFlyweightPatching
-
- -
- ADMX_MSI/DisableLoggingFromPackage
-
- -
- ADMX_MSI/DisableMSI
-
- -
- ADMX_MSI/DisableMedia
-
- -
- ADMX_MSI/DisablePatch
-
- -
- ADMX_MSI/DisableRollback_1
-
- -
- ADMX_MSI/DisableRollback_2
-
- -
- ADMX_MSI/DisableSharedComponent
-
- -
- ADMX_MSI/MSILogging
-
- -
- ADMX_MSI/MSI_DisableLUAPatching
-
- -
- ADMX_MSI/MSI_DisablePatchUninstall
-
- -
- ADMX_MSI/MSI_DisableSRCheckPoints
-
- -
- ADMX_MSI/MSI_DisableUserInstalls
-
- -
- ADMX_MSI/MSI_EnforceUpgradeComponentRules
-
- -
- ADMX_MSI/MSI_MaxPatchCacheSize
-
- -
- ADMX_MSI/MsiDisableEmbeddedUI
-
- -
- ADMX_MSI/SafeForScripting
-
- -
- ADMX_MSI/SearchOrder
-
- -
- ADMX_MSI/TransformsSecure
-
-
-
-### ADMX_MsiFileRecovery policies
-
- -
- ADMX_MsiFileRecovery/WdiScenarioExecutionPolicy
-
-
-
-### ADMX_nca policies
-
- -
- ADMX_nca/CorporateResources
-
- -
- ADMX_nca/CustomCommands
-
- -
- ADMX_nca/DTEs
-
- -
- ADMX_nca/FriendlyName
-
- -
- ADMX_nca/LocalNamesOn
-
- -
- ADMX_nca/PassiveMode
-
- -
- ADMX_nca/ShowUI
-
- -
- ADMX_nca/SupportEmail
-
-
-
-### ADMX_NCSI policies
-
- -
- ADMX_NCSI/NCSI_CorpDnsProbeContent
-
- -
- ADMX_NCSI/NCSI_CorpDnsProbeHost
-
- -
- ADMX_NCSI/NCSI_CorpSitePrefixes
-
- -
- ADMX_NCSI/NCSI_CorpWebProbeUrl
-
- -
- ADMX_NCSI/NCSI_DomainLocationDeterminationUrl
-
- -
- ADMX_NCSI/NCSI_GlobalDns
-
- -
- ADMX_NCSI/NCSI_PassivePolling
-
-
-
-### ADMX_Netlogon policies
-
-
- -
- ADMX_Netlogon/Netlogon_AddressLookupOnPingBehavior
-
- -
- ADMX_Netlogon/Netlogon_AddressTypeReturned
-
- -
- ADMX_Netlogon/Netlogon_AllowDnsSuffixSearch
-
- -
- ADMX_Netlogon/Netlogon_AllowNT4Crypto
-
- -
- ADMX_Netlogon/Netlogon_AllowSingleLabelDnsDomain
-
- -
- ADMX_Netlogon/Netlogon_AutoSiteCoverage
-
- -
- ADMX_Netlogon/Netlogon_AvoidFallbackNetbiosDiscovery
-
- -
- ADMX_Netlogon/Netlogon_AvoidPdcOnWan
-
- -
- ADMX_Netlogon/Netlogon_BackgroundRetryInitialPeriod
-
- -
- ADMX_Netlogon/Netlogon_BackgroundRetryMaximumPeriod
-
- -
- ADMX_Netlogon/Netlogon_BackgroundRetryQuitTime
-
- -
- ADMX_Netlogon/Netlogon_BackgroundSuccessfulRefreshPeriod
-
- -
- ADMX_Netlogon/Netlogon_DebugFlag
-
- -
- ADMX_Netlogon/Netlogon_DnsAvoidRegisterRecords
-
- -
- ADMX_Netlogon/Netlogon_DnsRefreshInterval
-
- -
- ADMX_Netlogon/Netlogon_DnsSrvRecordUseLowerCaseHostNames
-
- -
- ADMX_Netlogon/Netlogon_DnsTtl
-
- -
- ADMX_Netlogon/Netlogon_ExpectedDialupDelay
-
- -
- ADMX_Netlogon/Netlogon_ForceRediscoveryInterval
-
- -
- ADMX_Netlogon/Netlogon_GcSiteCoverage
-
- -
- ADMX_Netlogon/Netlogon_IgnoreIncomingMailslotMessages
-
- -
- ADMX_Netlogon/Netlogon_LdapSrvPriority
-
- -
- ADMX_Netlogon/Netlogon_LdapSrvWeight
-
- -
- ADMX_Netlogon/Netlogon_MaximumLogFileSize
-
- -
- ADMX_Netlogon/Netlogon_NdncSiteCoverage
-
- -
- ADMX_Netlogon/Netlogon_NegativeCachePeriod
-
- -
- ADMX_Netlogon/Netlogon_NetlogonShareCompatibilityMode
-
- -
- ADMX_Netlogon/Netlogon_NonBackgroundSuccessfulRefreshPeriod
-
- -
- ADMX_Netlogon/Netlogon_PingUrgencyMode
-
- -
- ADMX_Netlogon/Netlogon_ScavengeInterval
-
- -
- ADMX_Netlogon/Netlogon_SiteCoverage
-
- -
- ADMX_Netlogon/Netlogon_SiteName
-
- -
- ADMX_Netlogon/Netlogon_SysvolShareCompatibilityMode
-
- -
- ADMX_Netlogon/Netlogon_TryNextClosestSite
-
- -
- ADMX_Netlogon/Netlogon_UseDynamicDns
-
-
-
-### ADMX_NetworkConnections policies
-
-
- -
- ADMX_NetworkConnections/NC_AddRemoveComponents
-
- -
- ADMX_NetworkConnections/NC_AdvancedSettings
-
- -
- ADMX_NetworkConnections/NC_AllowAdvancedTCPIPConfig
-
- -
- ADMX_NetworkConnections/NC_ChangeBindState
-
- -
- ADMX_NetworkConnections/NC_DeleteAllUserConnection
-
- -
- ADMX_NetworkConnections/NC_DeleteConnection
-
- -
- ADMX_NetworkConnections/NC_DialupPrefs
-
- -
- ADMX_NetworkConnections/NC_DoNotShowLocalOnlyIcon
-
- -
- ADMX_NetworkConnections/NC_EnableAdminProhibits
-
- -
- ADMX_NetworkConnections/NC_ForceTunneling
-
- -
- ADMX_NetworkConnections/NC_IpStateChecking
-
- -
- ADMX_NetworkConnections/NC_LanChangeProperties
-
- -
- ADMX_NetworkConnections/NC_LanConnect
-
- -
- ADMX_NetworkConnections/NC_LanProperties
-
- -
- ADMX_NetworkConnections/NC_NewConnectionWizard
-
- -
- ADMX_NetworkConnections/NC_PersonalFirewallConfig
-
- -
- ADMX_NetworkConnections/NC_RasAllUserProperties
-
- -
- ADMX_NetworkConnections/NC_RasChangeProperties
-
- -
- ADMX_NetworkConnections/NC_RasConnect
-
- -
- ADMX_NetworkConnections/NC_RasMyProperties
-
- -
- ADMX_NetworkConnections/NC_RenameAllUserRasConnection
-
- -
- ADMX_NetworkConnections/NC_RenameConnection
-
- -
- ADMX_NetworkConnections/NC_RenameLanConnection
-
- -
- ADMX_NetworkConnections/NC_RenameMyRasConnection
-
- -
- ADMX_NetworkConnections/NC_ShowSharedAccessUI
-
- -
- ADMX_NetworkConnections/NC_Statistics
-
- -
- ADMX_NetworkConnections/NC_StdDomainUserSetLocation
-
-
-
-### ADMX_OfflineFiles policies
-
--
- ADMX_OfflineFiles/Pol_AlwaysPinSubFolders
-
- -
- ADMX_OfflineFiles/Pol_AssignedOfflineFiles_1
-
- -
- ADMX_OfflineFiles/Pol_AssignedOfflineFiles_2
-
- -
- ADMX_OfflineFiles/Pol_BackgroundSyncSettings
-
- -
- ADMX_OfflineFiles/Pol_CacheSize
-
- -
- ADMX_OfflineFiles/Pol_CustomGoOfflineActions_1
-
- -
- ADMX_OfflineFiles/Pol_CustomGoOfflineActions_2
-
- -
- ADMX_OfflineFiles/Pol_DefCacheSize
-
- -
- ADMX_OfflineFiles/Pol_Enabled
-
- -
- ADMX_OfflineFiles/Pol_EncryptOfflineFiles
-
- -
- ADMX_OfflineFiles/Pol_EventLoggingLevel_1
-
- -
- ADMX_OfflineFiles/Pol_EventLoggingLevel_2
-
- -
- ADMX_OfflineFiles/Pol_ExclusionListSettings
-
- -
- ADMX_OfflineFiles/Pol_ExtExclusionList
-
- -
- ADMX_OfflineFiles/Pol_GoOfflineAction_1
-
- -
- ADMX_OfflineFiles/Pol_GoOfflineAction_2
-
- -
- ADMX_OfflineFiles/Pol_NoCacheViewer_1
-
- -
- ADMX_OfflineFiles/Pol_NoCacheViewer_2
-
- -
- ADMX_OfflineFiles/Pol_NoConfigCache_1
-
- -
- ADMX_OfflineFiles/Pol_NoConfigCache_2
-
- -
- ADMX_OfflineFiles/Pol_NoMakeAvailableOffline_1
-
- -
- ADMX_OfflineFiles/Pol_NoMakeAvailableOffline_2
-
- -
- ADMX_OfflineFiles/Pol_NoPinFiles_1
-
- -
- ADMX_OfflineFiles/Pol_NoPinFiles_2
-
- -
- ADMX_OfflineFiles/Pol_NoReminders_1
-
- -
- ADMX_OfflineFiles/Pol_NoReminders_2
-
- -
- ADMX_OfflineFiles/Pol_OnlineCachingSettings
-
- -
- ADMX_OfflineFiles/Pol_PurgeAtLogoff
-
- -
- ADMX_OfflineFiles/Pol_QuickAdimPin
-
- -
- ADMX_OfflineFiles/Pol_ReminderFreq_1
-
- -
- ADMX_OfflineFiles/Pol_ReminderFreq_2
-
- -
- ADMX_OfflineFiles/Pol_ReminderInitTimeout_1
-
- -
- ADMX_OfflineFiles/Pol_ReminderInitTimeout_2
-
- -
- ADMX_OfflineFiles/Pol_ReminderTimeout_1
-
- -
- ADMX_OfflineFiles/Pol_ReminderTimeout_2
-
- -
- ADMX_OfflineFiles/Pol_SlowLinkSettings
-
- -
- ADMX_OfflineFiles/Pol_SlowLinkSpeed
-
- -
- ADMX_OfflineFiles/Pol_SyncAtLogoff_1
-
- -
- ADMX_OfflineFiles/Pol_SyncAtLogoff_2
-
- -
- ADMX_OfflineFiles/Pol_SyncAtLogon_1
-
- -
- ADMX_OfflineFiles/Pol_SyncAtLogon_2
-
- -
- ADMX_OfflineFiles/Pol_SyncAtSuspend_1
-
- -
- ADMX_OfflineFiles/Pol_SyncAtSuspend_2
-
- -
- ADMX_OfflineFiles/Pol_SyncOnCostedNetwork
-
- -
- ADMX_OfflineFiles/Pol_WorkOfflineDisabled_1
-
- -
- ADMX_OfflineFiles/Pol_WorkOfflineDisabled_2
-
-
-
-### ADMX_pca policies
-
-
- -
- ADMX_pca/DetectDeprecatedCOMComponentFailuresPolicy
-
- -
- ADMX_pca/DetectDeprecatedComponentFailuresPolicy
-
- -
- ADMX_pca/DetectInstallFailuresPolicy
-
- -
- ADMX_pca/DetectUndetectedInstallersPolicy
-
- -
- ADMX_pca/DetectUpdateFailuresPolicy
-
- -
- ADMX_pca/DisablePcaUIPolicy
-
--
- ADMX_pca/DetectBlockedDriversPolicy
-
-
-
-### ADMX_PeerToPeerCaching policies
-
-
- -
- ADMX_PeerToPeerCaching/EnableWindowsBranchCache
-
- -
- ADMX_PeerToPeerCaching/EnableWindowsBranchCache_Distributed
-
- -
- ADMX_PeerToPeerCaching/EnableWindowsBranchCache_Hosted
-
- -
- ADMX_PeerToPeerCaching/EnableWindowsBranchCache_HostedCacheDiscovery
-
- -
- ADMX_PeerToPeerCaching/EnableWindowsBranchCache_HostedMultipleServers
-
- -
- ADMX_PeerToPeerCaching/EnableWindowsBranchCache_SMB
-
- -
- ADMX_PeerToPeerCaching/SetCachePercent
-
- -
- ADMX_PeerToPeerCaching/SetDataCacheEntryMaxAge
-
- -
- ADMX_PeerToPeerCaching/SetDowngrading
-
-
-
-### ADMX_PenTraining policies
-
-
- -
- ADMX_PenTraining/PenTrainingOff_1
-
- -
- ADMX_PenTraining/PenTrainingOff_2
-
-
-
-### ADMX_PerformanceDiagnostics policies
-
-
- -
- ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_1
-
- -
- ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_2
-
- -
- ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_3
-
- -
- ADMX_PerformanceDiagnostics/WdiScenarioExecutionPolicy_4
-
-
-
-### ADMX_Power policies
-
-
- -
- ADMX_Power/ACConnectivityInStandby_2
-
- -
- ADMX_Power/ACCriticalSleepTransitionsDisable_2
-
- -
-
-
- -
- ADMX_Power/AllowSystemPowerRequestAC
-
- -
- ADMX_Power/AllowSystemPowerRequestDC
-
- -
- ADMX_Power/AllowSystemSleepWithRemoteFilesOpenAC
-
- -
- ADMX_Power/AllowSystemSleepWithRemoteFilesOpenDC
-
- -
- ADMX_Power/CustomActiveSchemeOverride_2
-
- -
- ADMX_Power/DCBatteryDischargeAction0_2
-
- -
- ADMX_Power/DCBatteryDischargeAction1_2
-
- -
- ADMX_Power/DCBatteryDischargeLevel0_2
-
- -
- ADMX_Power/DCBatteryDischargeLevel1UINotification_2
-
- -
- ADMX_Power/DCBatteryDischargeLevel1_2
-
- -
- ADMX_Power/DCConnectivityInStandby_2
-
- -
- ADMX_Power/DCCriticalSleepTransitionsDisable_2
-
- -
-
-
- -
- ADMX_Power/DiskACPowerDownTimeOut_2
-
- -
- ADMX_Power/DiskDCPowerDownTimeOut_2
-
- -
- ADMX_Power/Dont_PowerOff_AfterShutdown
-
- -
- ADMX_Power/EnableDesktopSlideShowAC
-
- -
- ADMX_Power/EnableDesktopSlideShowDC
-
- -
- ADMX_Power/InboxActiveSchemeOverride_2
-
- -
- ADMX_Power/PW_PromptPasswordOnResume
-
- -
- ADMX_Power/PowerThrottlingTurnOff
-
- -
- ADMX_Power/ReserveBatteryNotificationLevel
-
-
-
-### ADMX_PowerShellExecutionPolicy policies
-
-
- -
- ADMX_PowerShellExecutionPolicy/EnableModuleLogging
-
- -
- ADMX_PowerShellExecutionPolicy/EnableScripts
-
- -
- ADMX_PowerShellExecutionPolicy/EnableTranscripting
-
- -
- ADMX_PowerShellExecutionPolicy/EnableUpdateHelpDefaultSourcePath
-
-
-
-### ADMX_PreviousVersions policies
-
-
- -
- ADMX_PreviousVersions/DisableLocalPage_1
-
- -
- ADMX_PreviousVersions/DisableLocalPage_2
-
- -
- ADMX_PreviousVersions/DisableRemotePage_1
-
- -
- ADMX_PreviousVersions/DisableRemotePage_2
-
- -
- ADMX_PreviousVersions/HideBackupEntries_1
-
- -
- ADMX_PreviousVersions/HideBackupEntries_2
-
- -
- ADMX_PreviousVersions/DisableLocalRestore_1
-
- -
- ADMX_PreviousVersions/DisableLocalRestore_2
-
-
-
-### ADMX_Printing policies
-
-
- -
- ADMX_Printing/AllowWebPrinting
-
- -
- ADMX_Printing/ApplicationDriverIsolation
-
- -
- ADMX_Printing/CustomizedSupportUrl
-
- -
- ADMX_Printing/DoNotInstallCompatibleDriverFromWindowsUpdate
-
- -
- ADMX_Printing/DomainPrinters
-
- -
- ADMX_Printing/DownlevelBrowse
-
- -
- ADMX_Printing/EMFDespooling
-
- -
- ADMX_Printing/ForceSoftwareRasterization
-
- -
- ADMX_Printing/IntranetPrintersUrl
-
- -
- ADMX_Printing/KMPrintersAreBlocked
-
- -
- ADMX_Printing/LegacyDefaultPrinterMode
-
- -
- ADMX_Printing/MXDWUseLegacyOutputFormatMSXPS
-
- -
- ADMX_Printing/NoDeletePrinter
-
- -
- ADMX_Printing/NonDomainPrinters
-
- -
- ADMX_Printing/PackagePointAndPrintOnly
-
- -
- ADMX_Printing/PackagePointAndPrintOnly_Win7
-
- -
- ADMX_Printing/PackagePointAndPrintServerList
-
- -
- ADMX_Printing/PackagePointAndPrintServerList_Win7
-
- -
- ADMX_Printing/PhysicalLocation
-
- -
- ADMX_Printing/PhysicalLocationSupport
-
- -
- ADMX_Printing/PrintDriverIsolationExecutionPolicy
-
- -
- ADMX_Printing/PrintDriverIsolationOverrideCompat
-
- -
- ADMX_Printing/PrinterDirectorySearchScope
-
- -
- ADMX_Printing/PrinterServerThread
-
- -
- ADMX_Printing/ShowJobTitleInEventLogs
-
- -
- ADMX_Printing/V4DriverDisallowPrinterExtension
-
-
-
-### ADMX_Printing2 policies
-
-
- -
- ADMX_Printing2/AutoPublishing
-
- -
- ADMX_Printing2/ImmortalPrintQueue
-
- -
- ADMX_Printing2/PruneDownlevel
-
- -
- ADMX_Printing2/PruningInterval
-
- -
- ADMX_Printing2/PruningPriority
-
- -
- ADMX_Printing2/PruningRetries
-
- -
- ADMX_Printing2/PruningRetryLog
-
- -
- ADMX_Printing2/RegisterSpoolerRemoteRpcEndPoint
-
- -
- ADMX_Printing2/VerifyPublishedState
-
-
-
-### ADMX_Programs policies
-
-
- -
- ADMX_Programs/NoDefaultPrograms
-
- -
- ADMX_Programs/NoGetPrograms
-
- -
- ADMX_Programs/NoInstalledUpdates
-
- -
- ADMX_Programs/NoProgramsAndFeatures
-
- -
- ADMX_Programs/NoProgramsCPL
-
- -
- ADMX_Programs/NoWindowsFeatures
-
- -
- ADMX_Programs/NoWindowsMarketplace
-
-
-
-### ADMX_Reliability policies
-
-
- -
- ADMX_Reliability/EE_EnablePersistentTimeStamp
-
- -
- ADMX_Reliability/PCH_ReportShutdownEvents
-
- -
- ADMX_Reliability/ShutdownEventTrackerStateFile
-
- -
- ADMX_Reliability/ShutdownReason
-
-
-
-### ADMX_RemoteAssistance policies
-
-
- -
- ADMX_RemoteAssistance/RA_EncryptedTicketOnly
-
- -
- ADMX_RemoteAssistance/RA_Optimize_Bandwidth
-
-
-
-### ADMX_RemovableStorage policies
-
-
- -
- ADMX_RemovableStorage/AccessRights_RebootTime_1
-
- -
- ADMX_RemovableStorage/AccessRights_RebootTime_2
-
- -
- ADMX_RemovableStorage/CDandDVD_DenyExecute_Access_2
-
- -
- ADMX_RemovableStorage/CDandDVD_DenyRead_Access_1
-
- -
- ADMX_RemovableStorage/CDandDVD_DenyRead_Access_2
-
- -
- ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_1
-
- -
- ADMX_RemovableStorage/CDandDVD_DenyWrite_Access_2
-
- -
- ADMX_RemovableStorage/CustomClasses_DenyRead_Access_1
-
- -
- ADMX_RemovableStorage/CustomClasses_DenyRead_Access_2
-
- -
- ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_1
-
- -
- ADMX_RemovableStorage/CustomClasses_DenyWrite_Access_2
-
- -
- ADMX_RemovableStorage/FloppyDrives_DenyExecute_Access_2
-
- -
- ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_1
-
- -
- ADMX_RemovableStorage/FloppyDrives_DenyRead_Access_2
-
- -
- ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_1
-
- -
- ADMX_RemovableStorage/FloppyDrives_DenyWrite_Access_2
-
- -
- ADMX_RemovableStorage/RemovableDisks_DenyExecute_Access_2
-
- -
- ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_1
-
- -
- ADMX_RemovableStorage/RemovableDisks_DenyRead_Access_2
-
- -
- ADMX_RemovableStorage/RemovableDisks_DenyWrite_Access_1
-
- -
- ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_1
-
- -
- ADMX_RemovableStorage/RemovableStorageClasses_DenyAll_Access_2
-
- -
- ADMX_RemovableStorage/Removable_Remote_Allow_Access
-
- -
- ADMX_RemovableStorage/TapeDrives_DenyExecute_Access_2
-
- -
- ADMX_RemovableStorage/TapeDrives_DenyRead_Access_1
-
- -
- ADMX_RemovableStorage/TapeDrives_DenyRead_Access_2
-
- -
- ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_1
-
- -
- ADMX_RemovableStorage/TapeDrives_DenyWrite_Access_2
-
- -
- ADMX_RemovableStorage/WPDDevices_DenyRead_Access_1
-
- -
- ADMX_RemovableStorage/WPDDevices_DenyRead_Access_2
-
- -
- ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_1
-
- -
- ADMX_RemovableStorage/WPDDevices_DenyWrite_Access_2
-
-
-
-### ADMX_RPC policies
-
-
- -
- ADMX_RPC/RpcExtendedErrorInformation
-
- -
- ADMX_RPC/RpcIgnoreDelegationFailure
-
- -
- ADMX_RPC/RpcMinimumHttpConnectionTimeout
-
- -
- ADMX_RPC/RpcStateInformation
-
-
-
-### ADMX_Scripts policies
-
-
- -
- ADMX_Scripts/Allow_Logon_Script_NetbiosDisabled
-
- -
- ADMX_Scripts/MaxGPOScriptWaitPolicy
-
- -
- ADMX_Scripts/Run_Computer_PS_Scripts_First
-
- -
- ADMX_Scripts/Run_Legacy_Logon_Script_Hidden
-
- -
- ADMX_Scripts/Run_Logoff_Script_Visible
-
- -
- ADMX_Scripts/Run_Logon_Script_Sync_1
-
- -
- ADMX_Scripts/Run_Logon_Script_Sync_2
-
- -
- ADMX_Scripts/Run_Logon_Script_Visible
-
- -
- ADMX_Scripts/Run_Shutdown_Script_Visible
-
- -
- ADMX_Scripts/Run_Startup_Script_Sync
-
- -
- ADMX_Scripts/Run_Startup_Script_Visible
-
- -
- ADMX_Scripts/Run_User_PS_Scripts_First
-
-
-
-### ADMX_sdiagschd policies
-
-
- -
- ADMX_sdiagschd/ScheduledDiagnosticsExecutionPolicy
-
-
-
-### ADMX_sdiageng policies
-
-
- -
- ADMX_sdiageng/BetterWhenConnected
-
- -
- ADMX_sdiageng/ScriptedDiagnosticsExecutionPolicy
-
- -
- ADMX_sdiageng/ScriptedDiagnosticsSecurityPolicy
-
-
-
-### ADMX_Securitycenter policies
-
-
- -
- ADMX_Securitycenter/SecurityCenter_SecurityCenterInDomain
-
-
-
-### ADMX_Sensors policies
-
-
- -
- ADMX_Sensors/DisableLocationScripting_1
-
- -
- ADMX_Sensors/DisableLocationScripting_2
-
- -
- ADMX_Sensors/DisableLocation_1
-
- -
- ADMX_Sensors/DisableSensors_1
-
- -
- ADMX_Sensors/DisableSensors_2
-
-
-
-### ADMX_ServerManager policies
-
-
- -
- ADMX_ServerManager/Do_not_display_Manage_Your_Server_page
-
- -
- ADMX_ServerManager/ServerManagerAutoRefreshRate
-
- -
- ADMX_ServerManager/DoNotLaunchInitialConfigurationTasks
-
- -
- ADMX_ServerManager/DoNotLaunchServerManager
-
-
-
-### ADMX_Servicing policies
-
-
- -
- ADMX_Servicing/Servicing
-
-
-
-### ADMX_SettingSync policies
-
-
- -
- ADMX_SettingSync/DisableAppSyncSettingSync
-
- -
- ADMX_SettingSync/DisableApplicationSettingSync
-
- -
- ADMX_SettingSync/DisableCredentialsSettingSync
-
- -
- ADMX_SettingSync/DisableDesktopThemeSettingSync
-
- -
- ADMX_SettingSync/DisablePersonalizationSettingSync
-
- -
- ADMX_SettingSync/DisableSettingSync
-
- -
- ADMX_SettingSync/DisableStartLayoutSettingSync
-
- -
- ADMX_SettingSync/DisableSyncOnPaidNetwork
-
- -
- ADMX_SettingSync/DisableWindowsSettingSync
-
-
-
-### ADMX_SharedFolders policies
-
-
- -
- ADMX_SharedFolders/PublishDfsRoots
-
- -
- ADMX_SharedFolders/PublishSharedFolders
-
-
-
-### ADMX_Sharing policies
-
-
- -
- ADMX_Sharing/NoInplaceSharing
-
-
-
-### ADMX_ShellCommandPromptRegEditTools policies
-
-
- -
- ADMX_ShellCommandPromptRegEditTools/DisallowApps
-
- -
- ADMX_ShellCommandPromptRegEditTools/DisableRegedit
-
- -
- ADMX_ShellCommandPromptRegEditTools/DisableCMD
-
- -
- ADMX_ShellCommandPromptRegEditTools/RestrictApps
-
-
-
-### ADMX_Smartcard policies
-
-
- -
- ADMX_Smartcard/AllowCertificatesWithNoEKU
-
- -
- ADMX_Smartcard/AllowIntegratedUnblock
-
- -
- ADMX_Smartcard/AllowSignatureOnlyKeys
-
- -
- ADMX_Smartcard/AllowTimeInvalidCertificates
-
- -
- ADMX_Smartcard/CertPropEnabledString
-
- -
- ADMX_Smartcard/CertPropRootCleanupString
-
- -
- ADMX_Smartcard/CertPropRootEnabledString
-
- -
- ADMX_Smartcard/DisallowPlaintextPin
-
- -
- ADMX_Smartcard/EnumerateECCCerts
-
- -
- ADMX_Smartcard/FilterDuplicateCerts
-
- -
- ADMX_Smartcard/ForceReadingAllCertificates
-
- -
- ADMX_Smartcard/IntegratedUnblockPromptString
-
- -
- ADMX_Smartcard/ReverseSubject
-
- -
- ADMX_Smartcard/SCPnPEnabled
-
- -
- ADMX_Smartcard/SCPnPNotification
-
- -
- ADMX_Smartcard/X509HintsNeeded
-
-
-
-### ADMX_Snmp policies
-
-
- -
- ADMX_Snmp/SNMP_Communities
-
- -
- ADMX_Snmp/SNMP_PermittedManagers
-
- -
- ADMX_Snmp/SNMP_Traps_Public
-
-
-
-
-
-### ADMX_StartMenu policies
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
- ADMX_StartMenu/NoNetAndDialupConnect
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
- -
-
-
-
-
-### ADMX_SystemRestore policies
-
-
- -
- ADMX_SystemRestore/SR_DisableConfig
-
-
-
-### ADMX_TabletShell policies
-
-
- -
- ADMX_TabletShell/DisableInkball_1
-
- -
- ADMX_TabletShell/DisableNoteWriterPrinting_1
-
-
-
-### ADMX_Taskbar policies
-
-
- -
- ADMX_Taskbar/DisableNotificationCenter
-
- -
- ADMX_Taskbar/EnableLegacyBalloonNotifications
-
- -
- ADMX_Taskbar/HideSCAHealth
-
- -
- ADMX_Taskbar/HideSCANetwork
-
- -
- ADMX_Taskbar/HideSCAPower
-
- -
- ADMX_Taskbar/HideSCAVolume
-
- -
- ADMX_Taskbar/NoBalloonFeatureAdvertisements
-
- -
- ADMX_Taskbar/NoPinningStoreToTaskbar
-
- -
- ADMX_Taskbar/NoPinningToDestinations
-
- -
- ADMX_Taskbar/NoPinningToTaskbar
-
- -
- ADMX_Taskbar/NoRemoteDestinations
-
- -
- ADMX_Taskbar/NoSystraySystemPromotion
-
- -
- ADMX_Taskbar/ShowWindowsStoreAppsOnTaskbar
-
- -
- ADMX_Taskbar/TaskbarLockAll
-
- -
- ADMX_Taskbar/TaskbarNoAddRemoveToolbar
-
- -
- ADMX_Taskbar/TaskbarNoDragToolbar
-
- -
- ADMX_Taskbar/TaskbarNoMultimon
-
- -
- ADMX_Taskbar/TaskbarNoNotification
-
- -
- ADMX_Taskbar/TaskbarNoPinnedList
-
- -
- ADMX_Taskbar/TaskbarNoRedock
-
- -
- ADMX_Taskbar/TaskbarNoResize
-
- -
- ADMX_Taskbar/TaskbarNoThumbnail
-
-
-
-### ADMX_tcpip policies
-
-
- -
- ADMX_tcpip/6to4_Router_Name
-
- -
- ADMX_tcpip/6to4_Router_Name_Resolution_Interval
-
- -
- ADMX_tcpip/6to4_State
-
- -
- ADMX_tcpip/IPHTTPS_ClientState
-
- -
- ADMX_tcpip/IP_Stateless_Autoconfiguration_Limits_State
-
- -
- ADMX_tcpip/ISATAP_Router_Name
-
- -
- ADMX_tcpip/ISATAP_State
-
- -
- ADMX_tcpip/Teredo_Client_Port
-
- -
- ADMX_tcpip/Teredo_Default_Qualified
-
- -
- ADMX_tcpip/Teredo_Refresh_Rate
-
- -
- ADMX_tcpip/Teredo_Server_Name
-
- -
- ADMX_tcpip/Teredo_State
-
- -
- ADMX_tcpip/Windows_Scaling_Heuristics_State
-
-
-
-### ADMX_TerminalServer policies
-
-
- -
- ADMX_TerminalServer/TS_AUTO_RECONNECT
-
- -
- ADMX_TerminalServer/TS_CAMERA_REDIRECTION
-
- -
- ADMX_TerminalServer/TS_CERTIFICATE_TEMPLATE_POLICY
-
- -
- ADMX_TerminalServer/TS_CLIENT_ALLOW_SIGNED_FILES_1
-
- -
- ADMX_TerminalServer/TS_CLIENT_ALLOW_SIGNED_FILES_2
-
- -
- ADMX_TerminalServer/TS_CLIENT_ALLOW_UNSIGNED_FILES_1
-
- -
- ADMX_TerminalServer/TS_CLIENT_ALLOW_UNSIGNED_FILES_2
-
- -
- ADMX_TerminalServer/TS_CLIENT_AUDIO
-
- -
- ADMX_TerminalServer/TS_CLIENT_AUDIO_CAPTURE
-
- -
- ADMX_TerminalServer/TS_CLIENT_AUDIO_QUALITY
-
- -
- ADMX_TerminalServer/TS_CLIENT_CLIPBOARD
-
- -
- ADMX_TerminalServer/TS_CLIENT_COM
-
- -
- ADMX_TerminalServer/TS_CLIENT_DEFAULT_M
-
- -
- ADMX_TerminalServer/TS_CLIENT_DISABLE_HARDWARE_MODE
-
- -
- ADMX_TerminalServer/TS_CLIENT_DISABLE_PASSWORD_SAVING_1
-
- -
- ADMX_TerminalServer/TS_CLIENT_LPT
-
- -
- ADMX_TerminalServer/TS_CLIENT_PNP
-
- -
- ADMX_TerminalServer/TS_CLIENT_PRINTER
-
- -
- ADMX_TerminalServer/TS_CLIENT_TRUSTED_CERTIFICATE_THUMBPRINTS_1
-
- -
- ADMX_TerminalServer/TS_CLIENT_TRUSTED_CERTIFICATE_THUMBPRINTS_2
-
- -
- ADMX_TerminalServer/TS_CLIENT_TURN_OFF_UDP
-
- -
- ADMX_TerminalServer/TS_COLORDEPTH
-
- -
- ADMX_TerminalServer/TS_DELETE_ROAMING_USER_PROFILES
-
- -
- ADMX_TerminalServer/TS_DISABLE_REMOTE_DESKTOP_WALLPAPER
-
- -
- ADMX_TerminalServer/TS_DX_USE_FULL_HWGPU
-
- -
- ADMX_TerminalServer/TS_EASY_PRINT
-
- -
- ADMX_TerminalServer/TS_EASY_PRINT_User
-
- -
- ADMX_TerminalServer/TS_EnableVirtualGraphics
-
- -
- ADMX_TerminalServer/TS_FALLBACKPRINTDRIVERTYPE
-
- -
- ADMX_TerminalServer/TS_FORCIBLE_LOGOFF
-
- -
- ADMX_TerminalServer/TS_GATEWAY_POLICY_ENABLE
-
- -
- ADMX_TerminalServer/TS_GATEWAY_POLICY_AUTH_METHOD
-
- -
- ADMX_TerminalServer/TS_GATEWAY_POLICY_SERVER
-
- -
- ADMX_TerminalServer/TS_JOIN_SESSION_DIRECTORY
-
- -
- ADMX_TerminalServer/TS_KEEP_ALIVE
-
- -
- ADMX_TerminalServer/TS_LICENSE_SECGROUP
-
- -
- ADMX_TerminalServer/TS_LICENSE_SERVERS
-
- -
- ADMX_TerminalServer/TS_LICENSE_TOOLTIP
-
- -
- ADMX_TerminalServer/TS_LICENSING_MODE
-
- -
- ADMX_TerminalServer/TS_MAX_CON_POLICY
-
- -
- ADMX_TerminalServer/TS_MAXDISPLAYRES
-
- -
- ADMX_TerminalServer/TS_MAXMONITOR
-
- -
-
-
- -
-
-
- -
- ADMX_TerminalServer/TS_PreventLicenseUpgrade
-
- -
- ADMX_TerminalServer/TS_PROMT_CREDS_CLIENT_COMP
-
- -
- ADMX_TerminalServer/TS_RADC_DefaultConnection
-
- -
- ADMX_TerminalServer/TS_RDSAppX_WaitForRegistration
-
- -
- ADMX_TerminalServer/TS_RemoteControl_1
-
- -
- ADMX_TerminalServer/TS_RemoteControl_2
-
- -
- ADMX_TerminalServer/TS_RemoteDesktopVirtualGraphics
-
- -
- ADMX_TerminalServer/TS_SD_ClustName
-
- -
- ADMX_TerminalServer/TS_SD_EXPOSE_ADDRESS
-
- -
- ADMX_TerminalServer/TS_SD_Loc
-
- -
- ADMX_TerminalServer/TS_SECURITY_LAYER_POLICY
-
- -
- ADMX_TerminalServer/TS_SELECT_NETWORK_DETECT
-
- -
- ADMX_TerminalServer/TS_SELECT_TRANSPORT
-
- -
- ADMX_TerminalServer/TS_SERVER_ADVANCED_REMOTEFX_REMOTEAPP
-
- -
- ADMX_TerminalServer/TS_SERVER_AUTH
-
- -
- ADMX_TerminalServer/TS_SERVER_AVC_HW_ENCODE_PREFERRED
-
- -
- ADMX_TerminalServer/TS_SERVER_AVC444_MODE_PREFERRED
-
- -
- ADMX_TerminalServer/TS_SERVER_COMPRESSOR
-
- -
- ADMX_TerminalServer/TS_SERVER_IMAGE_QUALITY
-
- -
- ADMX_TerminalServer/TS_SERVER_LEGACY_RFX
-
- -
- ADMX_TerminalServer/TS_SERVER_PROFILE
-
- -
- ADMX_TerminalServer/TS_SERVER_VISEXP
-
- -
- ADMX_TerminalServer/TS_SERVER_WDDM_GRAPHICS_DRIVER
-
- -
- ADMX_TerminalServer/TS_Session_End_On_Limit_1
-
- -
- ADMX_TerminalServer/TS_Session_End_On_Limit_2
-
- -
- ADMX_TerminalServer/TS_SESSIONS_Disconnected_Timeout_1
-
- -
- ADMX_TerminalServer/TS_SESSIONS_Disconnected_Timeout_2
-
- ADMX_TerminalServer/TS_SESSIONS_Idle_Limit_1
-
- -
- ADMX_TerminalServer/TS_SESSIONS_Idle_Limit_2
-
- -
- ADMX_TerminalServer/TS_SINGLE_SESSION
-
- -
- ADMX_TerminalServer/TS_SMART_CARD
-
- -
- ADMX_TerminalServer/TS_START_PROGRAM_1
-
- -
- ADMX_TerminalServer/TS_START_PROGRAM_2
-
- -
- ADMX_TerminalServer/TS_TEMP_DELETE
-
- -
- ADMX_TerminalServer/TS_TEMP_PER_SESSION
-
- -
- ADMX_TerminalServer/TS_TIME_ZONE
-
- -
- ADMX_TerminalServer/TS_TSCC_PERMISSIONS_POLICY
-
- -
- ADMX_TerminalServer/TS_TURNOFF_SINGLEAPP
-
- -
- ADMX_TerminalServer/TS_UIA
-
- -
- ADMX_TerminalServer/TS_USB_REDIRECTION_DISABLE
-
- -
- ADMX_TerminalServer/TS_USER_AUTHENTICATION_POLICY
-
- -
- ADMX_TerminalServer/TS_USER_HOME
-
- -
- ADMX_TerminalServer/TS_USER_MANDATORY_PROFILES
-
- -
- ADMX_TerminalServer/TS_USER_PROFILES
-
-
-
-### ADMX_Thumbnails policies
-
-
- -
- ADMX_Thumbnails/DisableThumbnails
-
- -
- ADMX_Thumbnails/DisableThumbnailsOnNetworkFolders
-
- -
- ADMX_Thumbnails/DisableThumbsDBOnNetworkFolders
-
-
-
-### ADMX_TouchInput policies
-
-
- -
- ADMX_TouchInput/TouchInputOff_1
-
- -
- ADMX_TouchInput/TouchInputOff_2
-
- -
- ADMX_TouchInput/PanningEverywhereOff_1
-
- -
- ADMX_TouchInput/PanningEverywhereOff_2
-
-
-
-### ADMX_TPM policies
-
-
- -
- ADMX_TPM/BlockedCommandsList_Name
-
- -
- ADMX_TPM/ClearTPMIfNotReady_Name
-
- -
- ADMX_TPM/IgnoreDefaultList_Name
-
- -
- ADMX_TPM/IgnoreLocalList_Name
-
- -
- ADMX_TPM/OSManagedAuth_Name
-
- -
- ADMX_TPM/OptIntoDSHA_Name
-
- -
- ADMX_TPM/StandardUserAuthorizationFailureDuration_Name
-
- -
- ADMX_TPM/StandardUserAuthorizationFailureIndividualThreshold_Name
-
- -
- ADMX_TPM/StandardUserAuthorizationFailureTotalThreshold_Name
-
- -
- ADMX_TPM/UseLegacyDAP_Name
-
-
-
-### ADMX_UserExperienceVirtualization policies
-
-
- -
- ADMX_UserExperienceVirtualization/Calculator
-
- -
- ADMX_UserExperienceVirtualization/ConfigureSyncMethod
-
- -
- ADMX_UserExperienceVirtualization/ConfigureVdi
-
- -
- ADMX_UserExperienceVirtualization/ContactITDescription
-
- -
- ADMX_UserExperienceVirtualization/ContactITUrl
-
- -
- ADMX_UserExperienceVirtualization/DisableWin8Sync
-
- -
- ADMX_UserExperienceVirtualization/DisableWindowsOSSettings
-
- -
- ADMX_UserExperienceVirtualization/EnableUEV
-
- -
- ADMX_UserExperienceVirtualization/Finance
-
- -
- ADMX_UserExperienceVirtualization/FirstUseNotificationEnabled
-
- -
- ADMX_UserExperienceVirtualization/Games
-
- -
- ADMX_UserExperienceVirtualization/InternetExplorer8
-
- -
- ADMX_UserExperienceVirtualization/InternetExplorer9
-
- -
- ADMX_UserExperienceVirtualization/InternetExplorer10
-
- -
- ADMX_UserExperienceVirtualization/InternetExplorer11
-
- -
- ADMX_UserExperienceVirtualization/InternetExplorerCommon
-
- -
- ADMX_UserExperienceVirtualization/Maps
-
- -
- ADMX_UserExperienceVirtualization/MaxPackageSizeInBytes
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Access
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Common
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Excel
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010InfoPath
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Lync
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010OneNote
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Outlook
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010PowerPoint
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Project
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Publisher
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010SharePointDesigner
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010SharePointWorkspace
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Visio
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2010Word
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Access
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013AccessBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Common
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013CommonBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Excel
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013ExcelBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013InfoPath
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013InfoPathBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Lync
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013LyncBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013OneDriveForBusiness
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013OneNote
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013OneNoteBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Outlook
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013OutlookBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013PowerPoint
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013PowerPointBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Project
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013ProjectBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Publisher
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013PublisherBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013SharePointDesigner
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013SharePointDesignerBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013UploadCenter
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Visio
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013VisioBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013Word
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2013WordBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Access
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016AccessBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Common
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016CommonBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Excel
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016ExcelBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Lync
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016LyncBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016OneDriveForBusiness
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016OneNote
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016OneNoteBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Outlook
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016OutlookBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016PowerPoint
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016PowerPointBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Project
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016ProjectBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Publisher
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016PublisherBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016UploadCenter
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Visio
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016VisioBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016Word
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice2016WordBackup
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Access2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Access2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Common2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Common2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Excel2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Excel2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365InfoPath2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Lync2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Lync2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365OneNote2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365OneNote2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Outlook2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Outlook2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365PowerPoint2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365PowerPoint2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Project2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Project2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Publisher2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Publisher2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365SharePointDesigner2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Visio2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Visio2016
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Word2013
-
- -
- ADMX_UserExperienceVirtualization/MicrosoftOffice365Word2016
-
- -
- ADMX_UserExperienceVirtualization/Music
-
- -
- ADMX_UserExperienceVirtualization/News
-
- -
- ADMX_UserExperienceVirtualization/Notepad
-
- -
- ADMX_UserExperienceVirtualization/Reader
-
- -
- ADMX_UserExperienceVirtualization/RepositoryTimeout
-
- -
- ADMX_UserExperienceVirtualization/SettingsStoragePath
-
- -
- ADMX_UserExperienceVirtualization/SettingsTemplateCatalogPath
-
- -
- ADMX_UserExperienceVirtualization/Sports
-
- -
- ADMX_UserExperienceVirtualization/SyncEnabled
-
- -
- ADMX_UserExperienceVirtualization/SyncOverMeteredNetwork
-
- -
- ADMX_UserExperienceVirtualization/SyncOverMeteredNetworkWhenRoaming
-
- -
- ADMX_UserExperienceVirtualization/SyncProviderPingEnabled
-
- -
- ADMX_UserExperienceVirtualization/SyncUnlistedWindows8Apps
-
- -
- ADMX_UserExperienceVirtualization/Travel
-
- -
- ADMX_UserExperienceVirtualization/TrayIconEnabled
-
- -
- ADMX_UserExperienceVirtualization/Video
-
- -
- ADMX_UserExperienceVirtualization/Weather
-
- -
- ADMX_UserExperienceVirtualization/Wordpad
-
-
-
-### ADMX_UserProfiles policies
-
-
- -
- ADMX_UserProfiles/CleanupProfiles
-
- -
- ADMX_UserProfiles/DontForceUnloadHive
-
- -
- ADMX_UserProfiles/LeaveAppMgmtData
-
- -
- ADMX_UserProfiles/LimitSize
-
- -
- ADMX_UserProfiles/ProfileErrorAction
-
- -
- ADMX_UserProfiles/SlowLinkTimeOut
-
- -
- ADMX_UserProfiles/USER_HOME
-
- -
- ADMX_UserProfiles/UserInfoAccessAction
-
-
-
-### ADMX_W32Time policies
-
-
- -
- ADMX_W32Time/W32TIME_POLICY_CONFIG
-
- -
- ADMX_W32Time/W32TIME_POLICY_CONFIGURE_NTPCLIENT
-
- -
- ADMX_W32Time/W32TIME_POLICY_ENABLE_NTPCLIENT
-
- -
- ADMX_W32Time/W32TIME_POLICY_ENABLE_NTPSERVER
-
-
-
-### ADMX_WCM policies
-
-
- -
- ADMX_WCM/WCM_DisablePowerManagement
-
- -
- ADMX_WCM/WCM_EnableSoftDisconnect
-
- -
- ADMX_WCM/WCM_MinimizeConnections
-
-
-
-### ADMX_WDI Policies
-
-
- -
- ADMX_WDI/WdiDpsScenarioExecutionPolicy
-
- -
- ADMX_WDI/WdiDpsScenarioDataSizeLimitPolicy
-
-
-
-### ADMX_WinCal policies
-
-
- -
- ADMX_WinCal/TurnOffWinCal_1
-
- -
- ADMX_WinCal/TurnOffWinCal_2
-
-
-
-### ADMX_WindowsConnectNow policies
-
-
- -
- ADMX_WindowsConnectNow/WCN_DisableWcnUi_1
-
- -
- ADMX_WindowsConnectNow/WCN_DisableWcnUi_2
-
- -
- ADMX_WindowsConnectNow/WCN_EnableRegistrar
-
-
-
-
-### ADMX_WindowsExplorer policies
-
-
- -
- ADMX_WindowsExplorer/CheckSameSourceAndTargetForFRAndDFS
-
- -
- ADMX_WindowsExplorer/ClassicShell
-
- -
- ADMX_WindowsExplorer/ConfirmFileDelete
-
- -
- ADMX_WindowsExplorer/DefaultLibrariesLocation
-
- -
- ADMX_WindowsExplorer/DisableBindDirectlyToPropertySetStorage
-
- -
- ADMX_WindowsExplorer/DisableIndexedLibraryExperience
-
- -
- ADMX_WindowsExplorer/DisableKnownFolders
-
- -
- ADMX_WindowsExplorer/DisableSearchBoxSuggestions
-
- -
- ADMX_WindowsExplorer/EnableShellShortcutIconRemotePath
-
- -
- ADMX_WindowsExplorer/EnableSmartScreen
-
- -
- ADMX_WindowsExplorer/EnforceShellExtensionSecurity
-
- -
- ADMX_WindowsExplorer/ExplorerRibbonStartsMinimized
-
- -
- ADMX_WindowsExplorer/HideContentViewModeSnippets
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Internet
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_InternetLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Intranet
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_IntranetLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_LocalMachine
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_LocalMachineLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Restricted
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_RestrictedLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_Trusted
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchPreview_TrustedLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Internet
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_InternetLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Intranet
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_IntranetLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_LocalMachine
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_LocalMachineLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Restricted
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_RestrictedLockdown
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_Trusted
-
- -
- ADMX_WindowsExplorer/IZ_Policy_OpenSearchQuery_TrustedLockdown
-
- -
- ADMX_WindowsExplorer/LinkResolveIgnoreLinkInfo
-
- -
- ADMX_WindowsExplorer/MaxRecentDocs
-
- -
- ADMX_WindowsExplorer/NoBackButton
-
- -
- ADMX_WindowsExplorer/NoCDBurning
-
- -
- ADMX_WindowsExplorer/NoCacheThumbNailPictures
-
- -
- ADMX_WindowsExplorer/NoChangeAnimation
-
- -
- ADMX_WindowsExplorer/NoChangeKeyboardNavigationIndicators
-
- -
- ADMX_WindowsExplorer/NoDFSTab
-
- -
- ADMX_WindowsExplorer/NoDrives
-
- -
- ADMX_WindowsExplorer/NoEntireNetwork
-
- -
- ADMX_WindowsExplorer/NoFileMRU
-
- -
-
-
- -
- ADMX_WindowsExplorer/NoFolderOptions
-
- -
- ADMX_WindowsExplorer/NoHardwareTab
-
- -
- ADMX_WindowsExplorer/NoManageMyComputerVerb
-
- -
- ADMX_WindowsExplorer/NoMyComputerSharedDocuments
-
- -
- ADMX_WindowsExplorer/NoNetConnectDisconnect
-
- -
- ADMX_WindowsExplorer/NoNewAppAlert
-
- -
- ADMX_WindowsExplorer/NoPlacesBar
-
- -
- ADMX_WindowsExplorer/NoRecycleFiles
-
- -
- ADMX_WindowsExplorer/NoRunAsInstallPrompt
-
- -
- ADMX_WindowsExplorer/NoSearchInternetTryHarderButton
-
- -
- ADMX_WindowsExplorer/NoSecurityTab
-
- -
- ADMX_WindowsExplorer/NoShellSearchButton
-
- -
- ADMX_WindowsExplorer/NoStrCmpLogical
-
- -
-
-
- -
- ADMX_WindowsExplorer/NoViewOnDrive
-
- -
- ADMX_WindowsExplorer/NoWindowsHotKeys
-
- -
- ADMX_WindowsExplorer/NoWorkgroupContents
-
- -
- ADMX_WindowsExplorer/PlacesBar
-
- -
- ADMX_WindowsExplorer/PromptRunasInstallNetPath
-
- -
- ADMX_WindowsExplorer/RecycleBinSize
-
- -
- ADMX_WindowsExplorer/ShellProtocolProtectedModeTitle_1
-
- -
- ADMX_WindowsExplorer/ShellProtocolProtectedModeTitle_2
-
- -
- ADMX_WindowsExplorer/ShowHibernateOption
-
- -
- ADMX_WindowsExplorer/ShowSleepOption
-
- -
- ADMX_WindowsExplorer/TryHarderPinnedLibrary
-
- -
- ADMX_WindowsExplorer/TryHarderPinnedOpenSearch
-
-
-
-### ADMX_WindowsMediaDRM policies
-
-
- -
- ADMX_WindowsMediaDRM/DisableOnline
-
-
-
-### ADMX_WindowsMediaPlayer policies
-
-
- -
- ADMX_WindowsMediaPlayer/ConfigureHTTPProxySettings
-
- -
- ADMX_WindowsMediaPlayer/ConfigureMMSProxySettings
-
- -
- ADMX_WindowsMediaPlayer/ConfigureRTSPProxySettings
-
- -
- ADMX_WindowsMediaPlayer/DisableAutoUpdate
-
- -
- ADMX_WindowsMediaPlayer/DisableNetworkSettings
-
- -
- ADMX_WindowsMediaPlayer/DisableSetupFirstUseConfiguration
-
- -
- ADMX_WindowsMediaPlayer/DoNotShowAnchor
-
- -
- ADMX_WindowsMediaPlayer/DontUseFrameInterpolation
-
- -
- ADMX_WindowsMediaPlayer/EnableScreenSaver
-
- -
- ADMX_WindowsMediaPlayer/HidePrivacyTab
-
- -
- ADMX_WindowsMediaPlayer/HideSecurityTab
-
- -
- ADMX_WindowsMediaPlayer/NetworkBuffering
-
- -
- ADMX_WindowsMediaPlayer/PolicyCodecUpdate
-
- -
- ADMX_WindowsMediaPlayer/PreventCDDVDMetadataRetrieval
-
- -
- ADMX_WindowsMediaPlayer/PreventLibrarySharing
-
- -
- ADMX_WindowsMediaPlayer/PreventMusicFileMetadataRetrieval
-
- -
- ADMX_WindowsMediaPlayer/PreventQuickLaunchShortcut
-
- -
- ADMX_WindowsMediaPlayer/PreventRadioPresetsRetrieval
-
- -
- ADMX_WindowsMediaPlayer/PreventWMPDeskTopShortcut
-
- -
- ADMX_WindowsMediaPlayer/SkinLockDown
-
- -
- ADMX_WindowsMediaPlayer/WindowsStreamingMediaProtocols
-
-
-
-
-### ADMX_WindowsRemoteManagement policies
-
-
- -
- ADMX_WindowsRemoteManagement/DisallowKerberos_1
-
- -
- ADMX_WindowsRemoteManagement/DisallowKerberos_2
-
-
-
-### ADMX_WindowsStore policies
-
-
- -
- ADMX_WindowsStore/DisableAutoDownloadWin8
-
- -
- ADMX_WindowsStore/DisableOSUpgrade_1
-
- -
- ADMX_WindowsStore/DisableOSUpgrade_2
-
- -
- ADMX_WindowsStore/RemoveWindowsStore_1
-
- -
- ADMX_WindowsStore/RemoveWindowsStore_2
-
-
-
-### ADMX_WinInit policies
-
-
- -
- ADMX_WinInit/DisableNamedPipeShutdownPolicyDescription
-
- -
- ADMX_WinInit/Hiberboot
-
- -
- ADMX_WinInit/ShutdownTimeoutHungSessionsDescription
-
-
-
-### ADMX_WinLogon policies
-
-
- -
- ADMX_WinLogon/CustomShell
-
- -
- ADMX_WinLogon/DisplayLastLogonInfoDescription
-
- -
- ADMX_WinLogon/LogonHoursNotificationPolicyDescription
-
- -
- ADMX_WinLogon/LogonHoursPolicyDescription
-
- -
- ADMX_WinLogon/ReportCachedLogonPolicyDescription
-
- -
- ADMX_WinLogon/SoftwareSASGeneration
-
-
-
-### ADMX_Winsrv policies
-
-
- -
- ADMX_Winsrv/AllowBlockingAppsAtShutdown
-
-
-
-### ADMX_wlansvc policies
-
-
- -
- ADMX_wlansvc/SetCost
-
- -
- ADMX_wlansvc/SetPINEnforced
-
- -
- ADMX_wlansvc/SetPINPreferred
-
-
-
-### ADMX_WordWheel policies
-
-
- -
- ADMX_WordWheel/CustomSearch
-
-
-
-### ADMX_WorkFoldersClient policies
-
-
- -
- ADMX_WorkFoldersClient/Pol_UserEnableTokenBroker
-
- -
- ADMX_WorkFoldersClient/Pol_UserEnableWorkFolders
-
- -
- ADMX_WorkFoldersClient/Pol_MachineEnableWorkFolders
-
-
-
-### ADMX_WPN policies
-
-
- -
- ADMX_WPN/NoCallsDuringQuietHours
-
- -
- ADMX_WPN/NoLockScreenToastNotification
-
- -
- ADMX_WPN/NoQuietHours
-
- -
- ADMX_WPN/NoToastNotification
-
- -
- ADMX_WPN/QuietHoursDailyBeginMinute
-
- -
- ADMX_WPN/QuietHoursDailyEndMinute
-
-
-
-### ApplicationDefaults policies
-
-
- -
- ApplicationDefaults/DefaultAssociationsConfiguration
-
- -
- ApplicationDefaults/EnableAppUriHandlers
-
-
-
-### ApplicationManagement policies
-
-
- -
- ApplicationManagement/AllowAllTrustedApps
-
- -
- ApplicationManagement/AllowAppStoreAutoUpdate
-
- -
- ApplicationManagement/AllowDeveloperUnlock
-
- -
- ApplicationManagement/AllowGameDVR
-
- -
- ApplicationManagement/AllowSharedUserAppData
-
- -
- ApplicationManagement/BlockNonAdminUserInstall
-
- -
- ApplicationManagement/DisableStoreOriginatedApps
-
- -
- ApplicationManagement/LaunchAppAfterLogOn
-
- -
- ApplicationManagement/MSIAllowUserControlOverInstall
-
- -
- ApplicationManagement/MSIAlwaysInstallWithElevatedPrivileges
-
- -
- ApplicationManagement/RequirePrivateStoreOnly
-
- -
- ApplicationManagement/RestrictAppDataToSystemVolume
-
- -
- ApplicationManagement/RestrictAppToSystemVolume
-
- -
- ApplicationManagement/ScheduleForceRestartForUpdateFailures
-
-
-
-### AppRuntime policies
-
-
- -
- AppRuntime/AllowMicrosoftAccountsToBeOptional
-
-
-
-### AppVirtualization policies
-
-
- -
- AppVirtualization/AllowAppVClient
-
- -
- AppVirtualization/AllowDynamicVirtualization
-
- -
- AppVirtualization/AllowPackageCleanup
-
- -
- AppVirtualization/AllowPackageScripts
-
- -
- AppVirtualization/AllowPublishingRefreshUX
-
- -
- AppVirtualization/AllowReportingServer
-
- -
- AppVirtualization/AllowRoamingFileExclusions
-
- -
- AppVirtualization/AllowRoamingRegistryExclusions
-
- -
- AppVirtualization/AllowStreamingAutoload
-
- -
- AppVirtualization/ClientCoexistenceAllowMigrationmode
-
- -
- AppVirtualization/IntegrationAllowRootGlobal
-
- -
- AppVirtualization/IntegrationAllowRootUser
-
- -
- AppVirtualization/PublishingAllowServer1
-
- -
- AppVirtualization/PublishingAllowServer2
-
- -
- AppVirtualization/PublishingAllowServer3
-
- -
- AppVirtualization/PublishingAllowServer4
-
- -
- AppVirtualization/PublishingAllowServer5
-
- -
- AppVirtualization/StreamingAllowCertificateFilterForClient_SSL
-
- -
- AppVirtualization/StreamingAllowHighCostLaunch
-
- -
- AppVirtualization/StreamingAllowLocationProvider
-
- -
- AppVirtualization/StreamingAllowPackageInstallationRoot
-
- -
- AppVirtualization/StreamingAllowPackageSourceRoot
-
- -
- AppVirtualization/StreamingAllowReestablishmentInterval
-
- -
- AppVirtualization/StreamingAllowReestablishmentRetries
-
- -
- AppVirtualization/StreamingSharedContentStoreMode
-
- -
- AppVirtualization/StreamingSupportBranchCache
-
- -
- AppVirtualization/StreamingVerifyCertificateRevocationList
-
- -
- AppVirtualization/VirtualComponentsAllowList
-
-
-
-### AttachmentManager policies
-
-
- -
- AttachmentManager/DoNotPreserveZoneInformation
-
- -
- AttachmentManager/HideZoneInfoMechanism
-
- -
- AttachmentManager/NotifyAntivirusPrograms
-
-
-
-### Audit policies
-
-
- -
- Audit/AccountLogonLogoff_AuditAccountLockout
-
- -
- Audit/AccountLogonLogoff_AuditGroupMembership
-
- -
- Audit/AccountLogonLogoff_AuditIPsecExtendedMode
-
- -
- Audit/AccountLogonLogoff_AuditIPsecMainMode
-
- -
- Audit/AccountLogonLogoff_AuditIPsecQuickMode
-
- -
- Audit/AccountLogonLogoff_AuditLogoff
-
- -
- Audit/AccountLogonLogoff_AuditLogon
-
- -
- Audit/AccountLogonLogoff_AuditNetworkPolicyServer
-
- -
- Audit/AccountLogonLogoff_AuditOtherLogonLogoffEvents
-
- -
- Audit/AccountLogonLogoff_AuditSpecialLogon
-
- -
- Audit/AccountLogonLogoff_AuditUserDeviceClaims
-
- -
- Audit/AccountLogon_AuditCredentialValidation
-
- -
- Audit/AccountLogon_AuditKerberosAuthenticationService
-
- -
- Audit/AccountLogon_AuditKerberosServiceTicketOperations
-
- -
- Audit/AccountLogon_AuditOtherAccountLogonEvents
-
- -
- Audit/AccountManagement_AuditApplicationGroupManagement
-
- -
- Audit/AccountManagement_AuditComputerAccountManagement
-
- -
- Audit/AccountManagement_AuditDistributionGroupManagement
-
- -
- Audit/AccountManagement_AuditOtherAccountManagementEvents
-
- -
- Audit/AccountManagement_AuditSecurityGroupManagement
-
- -
- Audit/AccountManagement_AuditUserAccountManagement
-
- -
- Audit/DSAccess_AuditDetailedDirectoryServiceReplication
-
- -
- Audit/DSAccess_AuditDirectoryServiceAccess
-
- -
- Audit/DSAccess_AuditDirectoryServiceChanges
-
- -
- Audit/DSAccess_AuditDirectoryServiceReplication
-
- -
- Audit/DetailedTracking_AuditDPAPIActivity
-
- -
- Audit/DetailedTracking_AuditPNPActivity
-
- -
- Audit/DetailedTracking_AuditProcessCreation
-
- -
- Audit/DetailedTracking_AuditProcessTermination
-
- -
- Audit/DetailedTracking_AuditRPCEvents
-
- -
- Audit/DetailedTracking_AuditTokenRightAdjusted
-
- -
- Audit/ObjectAccess_AuditApplicationGenerated
-
- -
- Audit/ObjectAccess_AuditCentralAccessPolicyStaging
-
- -
- Audit/ObjectAccess_AuditCertificationServices
-
- -
- Audit/ObjectAccess_AuditDetailedFileShare
-
- -
- Audit/ObjectAccess_AuditFileShare
-
- -
- Audit/ObjectAccess_AuditFileSystem
-
- -
- Audit/ObjectAccess_AuditFilteringPlatformConnection
-
- -
- Audit/ObjectAccess_AuditFilteringPlatformPacketDrop
-
- -
- Audit/ObjectAccess_AuditHandleManipulation
-
- -
- Audit/ObjectAccess_AuditKernelObject
-
- -
- Audit/ObjectAccess_AuditOtherObjectAccessEvents
-
- -
- Audit/ObjectAccess_AuditRegistry
-
- -
- Audit/ObjectAccess_AuditRemovableStorage
-
- -
- Audit/ObjectAccess_AuditSAM
-
- -
- Audit/PolicyChange_AuditAuthenticationPolicyChange
-
- -
- Audit/PolicyChange_AuditAuthorizationPolicyChange
-
- -
- Audit/PolicyChange_AuditFilteringPlatformPolicyChange
-
- -
- Audit/PolicyChange_AuditMPSSVCRuleLevelPolicyChange
-
- -
- Audit/PolicyChange_AuditOtherPolicyChangeEvents
-
- -
- Audit/PolicyChange_AuditPolicyChange
-
- -
- Audit/PrivilegeUse_AuditNonSensitivePrivilegeUse
-
- -
- Audit/PrivilegeUse_AuditOtherPrivilegeUseEvents
-
- -
- Audit/PrivilegeUse_AuditSensitivePrivilegeUse
-
- -
- Audit/System_AuditIPsecDriver
-
- -
- Audit/System_AuditOtherSystemEvents
-
- -
- Audit/System_AuditSecurityStateChange
-
- -
- Audit/System_AuditSecuritySystemExtension
-
- -
- Audit/System_AuditSystemIntegrity
-
-
-
-### Authentication policies
-
-
- -
- Authentication/AllowAadPasswordReset
-
- -
- Authentication/AllowEAPCertSSO
-
- -
- Authentication/AllowFastReconnect
-
- -
- Authentication/AllowFidoDeviceSignon
-
- -
- Authentication/AllowSecondaryAuthenticationDevice
-
- -
- Authentication/EnableFastFirstSignIn (Preview mode only)
-
- -
- Authentication/EnableWebSignIn (Preview mode only)
-
- -
- Authentication/PreferredAadTenantDomainName
-
-
-
-### Autoplay policies
-
-
- -
- Autoplay/DisallowAutoplayForNonVolumeDevices
-
- -
- Autoplay/SetDefaultAutoRunBehavior
-
- -
- Autoplay/TurnOffAutoPlay
-
-
-
-### BitLocker policies
-
-
- -
- BitLocker/EncryptionMethod
-
-
-
-### BITS policies
-
-
- -
- BITS/BandwidthThrottlingEndTime
-
- -
- BITS/BandwidthThrottlingStartTime
-
- -
- BITS/BandwidthThrottlingTransferRate
-
- -
- BITS/CostedNetworkBehaviorBackgroundPriority
-
- -
- BITS/CostedNetworkBehaviorForegroundPriority
-
- -
- BITS/JobInactivityTimeout
-
-
-
-### Bluetooth policies
-
-
- -
- Bluetooth/AllowAdvertising
-
- -
- Bluetooth/AllowDiscoverableMode
-
- -
- Bluetooth/AllowPrepairing
-
- -
- Bluetooth/AllowPromptedProximalConnections
-
- -
- Bluetooth/LocalDeviceName
-
- -
- Bluetooth/ServicesAllowedList
-
- -
- Bluetooth/SetMinimumEncryptionKeySize
-
-
-
-### Browser policies
-
-
- -
- Browser/AllowAddressBarDropdown
-
- -
- Browser/AllowAutofill
-
- -
- Browser/AllowConfigurationUpdateForBooksLibrary
-
- -
- Browser/AllowCookies
-
- -
- Browser/AllowDeveloperTools
-
- -
- Browser/AllowDoNotTrack
-
- -
- Browser/AllowExtensions
-
- -
- Browser/AllowFlash
-
- -
- Browser/AllowFlashClickToRun
-
- -
- Browser/AllowFullScreenMode
-
- -
- Browser/AllowInPrivate
-
- -
- Browser/AllowMicrosoftCompatibilityList
-
- -
- Browser/AllowPasswordManager
-
- -
-
-
- -
- Browser/AllowPrelaunch
-
- -
- Browser/AllowPrinting
-
- -
- Browser/AllowSavingHistory
-
- -
- Browser/AllowSearchEngineCustomization
-
- -
- Browser/AllowSearchSuggestionsinAddressBar
-
- -
- Browser/AllowSideloadingOfExtensions
-
- -
- Browser/AllowSmartScreen
-
- -
- Browser/AllowTabPreloading
-
- -
- Browser/AllowWebContentOnNewTabPage
-
- -
- Browser/AlwaysEnableBooksLibrary
-
- -
- Browser/ClearBrowsingDataOnExit
-
- -
- Browser/ConfigureAdditionalSearchEngines
-
- -
- Browser/ConfigureFavoritesBar
-
- -
- Browser/ConfigureHomeButton
-
- -
- Browser/ConfigureKioskMode
-
- -
- Browser/ConfigureKioskResetAfterIdleTimeout
-
- -
- Browser/ConfigureOpenMicrosoftEdgeWith
-
- -
- Browser/ConfigureTelemetryForMicrosoft365Analytics
-
- -
- Browser/DisableLockdownOfStartPages
-
- -
- Browser/EnableExtendedBooksTelemetry
-
- -
- Browser/EnterpriseModeSiteList
-
- -
- Browser/EnterpriseSiteListServiceUrl
-
- -
- Browser/HomePages
-
- -
- Browser/LockdownFavorites
-
- -
- Browser/PreventAccessToAboutFlagsInMicrosoftEdge
-
- -
- Browser/PreventCertErrorOverrides
-
- -
- Browser/PreventFirstRunPage
-
- -
- Browser/PreventLiveTileDataCollection
-
- -
- Browser/PreventSmartScreenPromptOverride
-
- -
- Browser/PreventSmartScreenPromptOverrideForFiles
-
- -
- Browser/PreventUsingLocalHostIPAddressForWebRTC
-
- -
- Browser/ProvisionFavorites
-
- -
- Browser/SendIntranetTraffictoInternetExplorer
-
- -
- Browser/SetDefaultSearchEngine
-
- -
- Browser/SetHomeButtonURL
-
- -
- Browser/SetNewTabPageURL
-
- -
- Browser/ShowMessageWhenOpeningSitesInInternetExplorer
-
- -
- Browser/SyncFavoritesBetweenIEAndMicrosoftEdge
-
- -
- Browser/UnlockHomeButton
-
- -
- Browser/UseSharedFolderForBooks
-
-
-
-### Camera policies
-
-
- -
- Camera/AllowCamera
-
-
-
-### Cellular policies
-
-
- -
- Cellular/LetAppsAccessCellularData
-
- -
- Cellular/LetAppsAccessCellularData_ForceAllowTheseApps
-
- -
- Cellular/LetAppsAccessCellularData_ForceDenyTheseApps
-
- -
- Cellular/LetAppsAccessCellularData_UserInControlOfTheseApps
-
- -
- Cellular/ShowAppCellularAccessUI
-
-
-
-### Connectivity policies
-
-
- -
- Connectivity/AllowBluetooth
-
- -
- Connectivity/AllowCellularData
-
- -
- Connectivity/AllowCellularDataRoaming
-
- -
- Connectivity/AllowConnectedDevices
-
- -
- Connectivity/AllowPhonePCLinking
-
- -
- Connectivity/AllowUSBConnection
-
- -
- Connectivity/AllowVPNOverCellular
-
- -
- Connectivity/AllowVPNRoamingOverCellular
-
- -
- Connectivity/DiablePrintingOverHTTP
-
- -
- Connectivity/DisableDownloadingOfPrintDriversOverHTTP
-
- -
- Connectivity/DisableInternetDownloadForWebPublishingAndOnlineOrderingWizards
-
- -
- Connectivity/DisallowNetworkConnectivityActiveTests
-
- -
- Connectivity/HardenedUNCPaths
-
- -
- Connectivity/ProhibitInstallationAndConfigurationOfNetworkBridge
-
-
-
-### ControlPolicyConflict policies
-
-
- -
- ControlPolicyConflict/MDMWinsOverGP
-
-
-
-### CredentialProviders policies
-
-
- -
- CredentialProviders/AllowPINLogon
-
- -
- CredentialProviders/BlockPicturePassword
-
- -
- CredentialProviders/DisableAutomaticReDeploymentCredentials
-
-
-
-### CredentialsDelegation policies
-
-
- -
- CredentialsDelegation/RemoteHostAllowsDelegationOfNonExportableCredentials
-
-
-
-### CredentialsUI policies
-
-
- -
- CredentialsUI/DisablePasswordReveal
-
- -
- CredentialsUI/EnumerateAdministrators
-
-
-
-### Cryptography policies
-
-
- -
- Cryptography/AllowFipsAlgorithmPolicy
-
- -
- Cryptography/TLSCipherSuites
-
-
-
-### DataProtection policies
-
-
- -
- DataProtection/AllowDirectMemoryAccess
-
- -
- DataProtection/LegacySelectiveWipeID
-
-
-
-### DataUsage policies
-
-
- -
- DataUsage/SetCost3G
-
- -
- DataUsage/SetCost4G
-
-
-
-### Defender policies
-
-
- -
- Defender/AllowArchiveScanning
-
- -
- Defender/AllowBehaviorMonitoring
-
- -
- Defender/AllowCloudProtection
-
- -
- Defender/AllowEmailScanning
-
- -
- Defender/AllowFullScanOnMappedNetworkDrives
-
- -
- Defender/AllowFullScanRemovableDriveScanning
-
- -
- Defender/AllowIOAVProtection
-
- -
- Defender/AllowOnAccessProtection
-
- -
- Defender/AllowRealtimeMonitoring
-
- -
- Defender/AllowScanningNetworkFiles
-
- -
- Defender/AllowScriptScanning
-
- -
- Defender/AllowUserUIAccess
-
- -
- Defender/AttackSurfaceReductionOnlyExclusions
-
- -
- Defender/AttackSurfaceReductionRules
-
- -
- Defender/AvgCPULoadFactor
-
- -
- Defender/CheckForSignaturesBeforeRunningScan
-
- -
- Defender/CloudBlockLevel
-
- -
- Defender/CloudExtendedTimeout
-
- -
- Defender/ControlledFolderAccessAllowedApplications
-
- -
- Defender/ControlledFolderAccessProtectedFolders
-
- -
- Defender/DaysToRetainCleanedMalware
-
- -
- Defender/DisableCatchupFullScan
-
- -
- Defender/DisableCatchupQuickScan
-
- -
- Defender/EnableControlledFolderAccess
-
- -
- Defender/EnableLowCPUPriority
-
- -
- Defender/EnableNetworkProtection
-
- -
- Defender/ExcludedExtensions
-
- -
- Defender/ExcludedPaths
-
- -
- Defender/ExcludedProcesses
-
- -
- Defender/PUAProtection
-
- -
- Defender/RealTimeScanDirection
-
- -
- Defender/ScanParameter
-
- -
- Defender/ScheduleQuickScanTime
-
- -
- Defender/ScheduleScanDay
-
- -
- Defender/ScheduleScanTime
-
- -
- Defender/SignatureUpdateFallbackOrder
-
- -
- Defender/SignatureUpdateFileSharesSources
-
- -
- Defender/SignatureUpdateInterval
-
- -
- Defender/SubmitSamplesConsent
-
- -
- Defender/ThreatSeverityDefaultAction
-
-
-
-### DeliveryOptimization policies
-
-
- -
- DeliveryOptimization/DOAbsoluteMaxCacheSize
-
- -
- DeliveryOptimization/DOAllowVPNPeerCaching
-
- -
- DeliveryOptimization/DOCacheHost
-
- -
- DeliveryOptimization/DOCacheHostSource
-
- -
- DeliveryOptimization/DODelayBackgroundDownloadFromHttp
-
- -
- DeliveryOptimization/DODelayForegroundDownloadFromHttp
-
- -
- DeliveryOptimization/DODelayCacheServerFallbackBackground
-
- -
- DeliveryOptimization/DODelayCacheServerFallbackForeground
-
- -
- DeliveryOptimization/DODownloadMode
-
- -
- DeliveryOptimization/DOGroupId
-
- -
- DeliveryOptimization/DOGroupIdSource
-
- -
- DeliveryOptimization/DOMaxBackgroundDownloadBandwidth
-
- -
- DeliveryOptimization/DOMaxCacheAge
-
- -
- DeliveryOptimization/DOMaxCacheSize
-
- -
- DeliveryOptimization/DOMaxDownloadBandwidth (deprecated)
-
- -
- DeliveryOptimization/DOMaxForegroundDownloadBandwidth
-
- -
- DeliveryOptimization/DOMaxUploadBandwidth (deprecated)
-
- -
- DeliveryOptimization/DOMinBackgroundQos
-
- -
- DeliveryOptimization/DOMinBatteryPercentageAllowedToUpload
-
- -
- DeliveryOptimization/DOMinDiskSizeAllowedToPeer
-
- -
- DeliveryOptimization/DOMinFileSizeToCache
-
- -
- DeliveryOptimization/DOMinRAMAllowedToPeer
-
- -
- DeliveryOptimization/DOModifyCacheDrive
-
- -
- DeliveryOptimization/DOMonthlyUploadDataCap
-
- -
- DeliveryOptimization/DOPercentageMaxBackgroundBandwidth
-
- -
- DeliveryOptimization/DOPercentageMaxDownloadBandwidth (deprecated)
-
- -
- DeliveryOptimization/DOPercentageMaxForegroundBandwidth
-
- -
- DeliveryOptimization/DORestrictPeerSelectionBy
-
- -
- DeliveryOptimization/DOSetHoursToLimitBackgroundDownloadBandwidth
-
- -
- DeliveryOptimization/DOSetHoursToLimitForegroundDownloadBandwidth
-
-
-
-### Desktop policies
-
-
- -
- Desktop/PreventUserRedirectionOfProfileFolders
-
-
-
-### DesktopAppInstaller policies
-
- -
- DesktopAppInstaller/EnableAdditionalSources
-
--
- DesktopAppInstaller/EnableAppInstaller
-
- -
- DesktopAppInstaller/EnableDefaultSource
-
- -
- DesktopAppInstaller/EnableLocalManifestFiles
-
- -
- DesktopAppInstaller/EnableHashOverride
-
- -
- DesktopAppInstaller/EnableMicrosoftStoreSource
-
- -
- DesktopAppInstaller/EnableMSAppInstallerProtocol
-
- -
- DesktopAppInstaller/EnableSettings
-
- -
- DesktopAppInstaller/EnableAllowedSources
-
- -
- DesktopAppInstaller/EnableExperimentalFeatures
-
- -
- DesktopAppInstaller/SourceAutoUpdateInterval
-
-
-
-### DeviceGuard policies
-
-
- -
- DeviceGuard/ConfigureSystemGuardLaunch
-
- -
- DeviceGuard/EnableVirtualizationBasedSecurity
-
- -
- DeviceGuard/LsaCfgFlags
-
- -
- DeviceGuard/RequirePlatformSecurityFeatures
-
-
-
-### DeviceHealthMonitoring policies
-
-
- -
- DeviceHealthMonitoring/AllowDeviceHealthMonitoring
-
- -
- DeviceHealthMonitoring/ConfigDeviceHealthMonitoringScope
-
- -
- DeviceHealthMonitoring/ConfigDeviceHealthMonitoringUploadDestination
-
-
-
-### DeviceInstallation policies
-
-
- -
- DeviceInstallation/AllowInstallationOfMatchingDeviceIDs
-
- -
- DeviceInstallation/AllowInstallationOfMatchingDeviceSetupClasses
-
- -
- DeviceInstallation/AllowInstallationOfMatchingDeviceInstanceIDs
-
- -
- DeviceInstallation/PreventDeviceMetadataFromNetwork
-
- -
- DeviceInstallation/PreventInstallationOfDevicesNotDescribedByOtherPolicySettings
-
- -
- DeviceInstallation/PreventInstallationOfMatchingDeviceIDs
-
- -
- DeviceInstallation/PreventInstallationOfMatchingDeviceInstanceIDs
-
- -
- DeviceInstallation/PreventInstallationOfMatchingDeviceSetupClasses
-
-
-
-### DeviceLock policies
-
-
- -
- DeviceLock/AllowIdleReturnWithoutPassword
-
- -
- DeviceLock/AllowSimpleDevicePassword
-
- -
- DeviceLock/AlphanumericDevicePasswordRequired
-
- -
- DeviceLock/DevicePasswordEnabled
-
- -
- DeviceLock/DevicePasswordExpiration
-
- -
- DeviceLock/DevicePasswordHistory
-
- -
- DeviceLock/EnforceLockScreenAndLogonImage
-
- -
- DeviceLock/MaxDevicePasswordFailedAttempts
-
- -
- DeviceLock/MaxInactivityTimeDeviceLock
-
- -
- DeviceLock/MinDevicePasswordComplexCharacters
-
- -
- DeviceLock/MinDevicePasswordLength
-
- -
- DeviceLock/MinimumPasswordAge
-
- -
- DeviceLock/PreventEnablingLockScreenCamera
-
- -
- DeviceLock/PreventLockScreenSlideShow
-
-
-
-### Display policies
-
-
- -
- Display/DisablePerProcessDpiForApps
-
- -
- Display/EnablePerProcessDpi
-
- -
- Display/EnablePerProcessDpiForApps
-
- -
- Display/TurnOffGdiDPIScalingForApps
-
- -
- Display/TurnOnGdiDPIScalingForApps
-
-
-
-### DmaGuard policies
-
-
- -
- DmaGuard/DeviceEnumerationPolicy
-
-
-
-### EAP policies
-
-
- -
- EAP/AllowTLS1_3
-
-
-
-### Education policies
-
-
- -
- Education/AllowGraphingCalculator
-
- -
- Education/DefaultPrinterName
-
- -
- Education/PreventAddingNewPrinters
-
- -
- Education/PrinterNames
-
-
-
-### EnterpriseCloudPrint policies
-
-
- -
- EnterpriseCloudPrint/CloudPrintOAuthAuthority
-
- -
- EnterpriseCloudPrint/CloudPrintOAuthClientId
-
- -
- EnterpriseCloudPrint/CloudPrintResourceId
-
- -
- EnterpriseCloudPrint/CloudPrinterDiscoveryEndPoint
-
- -
- EnterpriseCloudPrint/DiscoveryMaxPrinterLimit
-
- -
- EnterpriseCloudPrint/MopriaDiscoveryResourceId
-
-
-
-### ErrorReporting policies
-
-
- -
- ErrorReporting/CustomizeConsentSettings
-
- -
- ErrorReporting/DisableWindowsErrorReporting
-
- -
- ErrorReporting/DisplayErrorNotification
-
- -
- ErrorReporting/DoNotSendAdditionalData
-
- -
- ErrorReporting/PreventCriticalErrorDisplay
-
-
-
-### EventLogService policies
-
-
- -
- EventLogService/ControlEventLogBehavior
-
- -
- EventLogService/SpecifyMaximumFileSizeApplicationLog
-
- -
- EventLogService/SpecifyMaximumFileSizeSecurityLog
-
- -
- EventLogService/SpecifyMaximumFileSizeSystemLog
-
-
-
-### Experience policies
-
-
- -
- Experience/AllowClipboardHistory
-
- -
- Experience/AllowCortana
-
- -
- Experience/AllowDeviceDiscovery
-
- -
- Experience/AllowFindMyDevice
-
- -
- Experience/AllowManualMDMUnenrollment
-
- -
- Experience/AllowSaveAsOfOfficeFiles
-
- -
- Experience/AllowSharingOfOfficeFiles
-
- -
- Experience/AllowSyncMySettings
-
- -
- Experience/AllowSpotlightCollection
-
- -
- Experience/AllowTailoredExperiencesWithDiagnosticData
-
- -
- Experience/AllowThirdPartySuggestionsInWindowsSpotlight
-
- -
- Experience/AllowWindowsConsumerFeatures
-
- -
- Experience/AllowWindowsSpotlight
-
- -
- Experience/AllowWindowsSpotlightOnActionCenter
-
- -
- Experience/AllowWindowsSpotlightOnSettings
-
- -
- Experience/AllowWindowsSpotlightWindowsWelcomeExperience
-
- -
- Experience/AllowWindowsTips
-
- -
- Experience/ConfigureWindowsSpotlightOnLockScreen
-
- -
- Experience/DisableCloudOptimizedContent
-
- -
- Experience/DoNotShowFeedbackNotifications
-
- -
- Experience/DoNotSyncBrowserSettings
-
- -
- Experience/PreventUsersFromTurningOnBrowserSyncing
-
- -
- Experience/ShowLockOnUserTile
-
-
-
-### ExploitGuard policies
-
-
- -
- ExploitGuard/ExploitProtectionSettings
-
-
-
-### FederatedAuthentication policies
-
-
- -
- FederatedAuthentication/EnableWebSignInForPrimaryUser
-
-
-
-### Feeds policies
-
- -
- Feeds/FeedsEnabled
-
-
-
-### FileExplorer policies
-
-
- -
- FileExplorer/TurnOffDataExecutionPreventionForExplorer
-
- -
- FileExplorer/TurnOffHeapTerminationOnCorruption
-
-
-
-### Games policies
-
-
- -
- Games/AllowAdvancedGamingServices
-
-
-
-### Handwriting policies
-
-
- -
- Handwriting/PanelDefaultModeDocked
-
-
-
-### HumanPresence policies
-
-
- -
- HumanPresence/ForceInstantLock
-
- -
- HumanPresence/ForceInstantWake
-
- -
- HumanPresence/ForceLockTimeout
-
-
-
-### InternetExplorer policies
-
-
- -
- InternetExplorer/AddSearchProvider
-
- -
- InternetExplorer/AllowActiveXFiltering
-
- -
- InternetExplorer/AllowAddOnList
-
- -
- InternetExplorer/AllowAutoComplete
-
- -
- InternetExplorer/AllowCertificateAddressMismatchWarning
-
- -
- InternetExplorer/AllowDeletingBrowsingHistoryOnExit
-
- -
- InternetExplorer/AllowEnhancedProtectedMode
-
- -
- InternetExplorer/AllowEnhancedSuggestionsInAddressBar
-
- -
-
-
- -
- InternetExplorer/AllowEnterpriseModeSiteList
-
- -
- InternetExplorer/AllowFallbackToSSL3
-
- -
- InternetExplorer/AllowInternetExplorer7PolicyList
-
- -
- InternetExplorer/AllowInternetExplorerStandardsMode
-
- -
- InternetExplorer/AllowInternetZoneTemplate
-
- -
- InternetExplorer/AllowIntranetZoneTemplate
-
- -
- InternetExplorer/AllowLocalMachineZoneTemplate
-
- -
- InternetExplorer/AllowLockedDownInternetZoneTemplate
-
- -
- InternetExplorer/AllowLockedDownIntranetZoneTemplate
-
- -
- InternetExplorer/AllowLockedDownLocalMachineZoneTemplate
-
- -
- InternetExplorer/AllowLockedDownRestrictedSitesZoneTemplate
-
- -
- InternetExplorer/AllowOneWordEntry
-
- -
- InternetExplorer/AllowSiteToZoneAssignmentList
-
- -
- InternetExplorer/AllowSoftwareWhenSignatureIsInvalid
-
- -
- InternetExplorer/AllowSuggestedSites
-
- -
- InternetExplorer/AllowTrustedSitesZoneTemplate
-
- -
- InternetExplorer/AllowsLockedDownTrustedSitesZoneTemplate
-
- -
- InternetExplorer/AllowsRestrictedSitesZoneTemplate
-
- -
- InternetExplorer/CheckServerCertificateRevocation
-
- -
- InternetExplorer/CheckSignaturesOnDownloadedPrograms
-
- -
- InternetExplorer/ConsistentMimeHandlingInternetExplorerProcesses
-
- -
- InternetExplorer/DisableActiveXVersionListAutoDownload
-
-
- InternetExplorer/DisableAdobeFlash
-
- -
- InternetExplorer/DisableBypassOfSmartScreenWarnings
-
- -
- InternetExplorer/DisableBypassOfSmartScreenWarningsAboutUncommonFiles
-
- -
- InternetExplorer/DisableCompatView
-
- -
- InternetExplorer/DisableConfiguringHistory
-
- -
- InternetExplorer/DisableCrashDetection
-
- -
- InternetExplorer/DisableCustomerExperienceImprovementProgramParticipation
-
- -
- InternetExplorer/DisableDeletingUserVisitedWebsites
-
- -
- InternetExplorer/DisableEnclosureDownloading
-
- -
- InternetExplorer/DisableEncryptionSupport
-
- -
- InternetExplorer/DisableFeedsBackgroundSync
-
- -
- InternetExplorer/DisableFirstRunWizard
-
- -
- InternetExplorer/DisableFlipAheadFeature
-
- -
- InternetExplorer/DisableGeolocation
-
- -
- InternetExplorer/DisableHomePageChange
-
- -
- InternetExplorer/DisableIgnoringCertificateErrors
-
- -
- InternetExplorer/DisableInPrivateBrowsing
-
- -
- InternetExplorer/DisableProcessesInEnhancedProtectedMode
-
- -
- InternetExplorer/DisableProxyChange
-
- -
- InternetExplorer/DisableSearchProviderChange
-
- -
- InternetExplorer/DisableSecondaryHomePageChange
-
- -
- InternetExplorer/DisableSecuritySettingsCheck
-
- -
- InternetExplorer/DisableUpdateCheck
-
- -
- InternetExplorer/DisableWebAddressAutoComplete
-
- -
- InternetExplorer/DoNotAllowActiveXControlsInProtectedMode
-
- -
- InternetExplorer/DoNotAllowUsersToAddSites
-
- -
- InternetExplorer/DoNotAllowUsersToChangePolicies
-
- -
- InternetExplorer/DoNotBlockOutdatedActiveXControls
-
- -
- InternetExplorer/DoNotBlockOutdatedActiveXControlsOnSpecificDomains
-
- -
- InternetExplorer/IncludeAllLocalSites
-
- -
- InternetExplorer/IncludeAllNetworkPaths
-
- -
- InternetExplorer/InternetZoneAllowAccessToDataSources
-
- -
- InternetExplorer/InternetZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/InternetZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/InternetZoneAllowCopyPasteViaScript
-
- -
- InternetExplorer/InternetZoneAllowDragAndDropCopyAndPasteFiles
-
- -
- InternetExplorer/InternetZoneAllowFontDownloads
-
- -
- InternetExplorer/InternetZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/InternetZoneAllowLoadingOfXAMLFiles
-
- -
- InternetExplorer/InternetZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/InternetZoneAllowOnlyApprovedDomainsToUseActiveXControls
-
- -
- InternetExplorer/InternetZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl
-
- -
- InternetExplorer/InternetZoneAllowScriptInitiatedWindows
-
- -
- InternetExplorer/InternetZoneAllowScriptingOfInternetExplorerWebBrowserControls
-
- -
- InternetExplorer/InternetZoneAllowScriptlets
-
- -
- InternetExplorer/InternetZoneAllowSmartScreenIE
-
- -
- InternetExplorer/InternetZoneAllowUpdatesToStatusBarViaScript
-
- -
- InternetExplorer/InternetZoneAllowUserDataPersistence
-
- -
- InternetExplorer/InternetZoneAllowVBScriptToRunInInternetExplorer
-
- -
- InternetExplorer/InternetZoneDoNotRunAntimalwareAgainstActiveXControls
-
- -
- InternetExplorer/InternetZoneDownloadSignedActiveXControls
-
- -
- InternetExplorer/InternetZoneDownloadUnsignedActiveXControls
-
- -
- InternetExplorer/InternetZoneEnableCrossSiteScriptingFilter
-
- -
- InternetExplorer/InternetZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows
-
- -
- InternetExplorer/InternetZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows
-
- -
- InternetExplorer/InternetZoneEnableMIMESniffing
-
- -
- InternetExplorer/InternetZoneEnableProtectedMode
-
- -
- InternetExplorer/InternetZoneIncludeLocalPathWhenUploadingFilesToServer
-
- -
- InternetExplorer/InternetZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/InternetZoneInitializeAndScriptActiveXControlsNotMarkedSafe
-
- -
- InternetExplorer/InternetZoneJavaPermissions
-
- -
- InternetExplorer/InternetZoneLaunchingApplicationsAndFilesInIFRAME
-
- -
- InternetExplorer/InternetZoneLogonOptions
-
- -
- InternetExplorer/InternetZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/InternetZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode
-
- -
- InternetExplorer/InternetZoneShowSecurityWarningForPotentiallyUnsafeFiles
-
- -
-
-
- -
- InternetExplorer/IntranetZoneAllowAccessToDataSources
-
- -
- InternetExplorer/IntranetZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/IntranetZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/IntranetZoneAllowFontDownloads
-
- -
- InternetExplorer/IntranetZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/IntranetZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/IntranetZoneAllowScriptlets
-
- -
- InternetExplorer/IntranetZoneAllowSmartScreenIE
-
- -
- InternetExplorer/IntranetZoneAllowUserDataPersistence
-
- -
- InternetExplorer/IntranetZoneDoNotRunAntimalwareAgainstActiveXControls
-
- -
- InternetExplorer/IntranetZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/IntranetZoneJavaPermissions
-
- -
- InternetExplorer/IntranetZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/LocalMachineZoneAllowAccessToDataSources
-
- -
- InternetExplorer/LocalMachineZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/LocalMachineZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/LocalMachineZoneAllowFontDownloads
-
- -
- InternetExplorer/LocalMachineZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/LocalMachineZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/LocalMachineZoneAllowScriptlets
-
- -
- InternetExplorer/LocalMachineZoneAllowSmartScreenIE
-
- -
- InternetExplorer/LocalMachineZoneAllowUserDataPersistence
-
- -
- InternetExplorer/LocalMachineZoneDoNotRunAntimalwareAgainstActiveXControls
-
- -
- InternetExplorer/LocalMachineZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/LocalMachineZoneJavaPermissions
-
- -
- InternetExplorer/LocalMachineZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/LockedDownInternetZoneAllowAccessToDataSources
-
- -
- InternetExplorer/LockedDownInternetZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/LockedDownInternetZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/LockedDownInternetZoneAllowFontDownloads
-
- -
- InternetExplorer/LockedDownInternetZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/LockedDownInternetZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/LockedDownInternetZoneAllowScriptlets
-
- -
- InternetExplorer/LockedDownInternetZoneAllowSmartScreenIE
-
- -
- InternetExplorer/LockedDownInternetZoneAllowUserDataPersistence
-
- -
- InternetExplorer/LockedDownInternetZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/LockedDownInternetZoneJavaPermissions
-
- -
- InternetExplorer/LockedDownInternetZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/LockedDownIntranetJavaPermissions
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowAccessToDataSources
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowFontDownloads
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowScriptlets
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowSmartScreenIE
-
- -
- InternetExplorer/LockedDownIntranetZoneAllowUserDataPersistence
-
- -
- InternetExplorer/LockedDownIntranetZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/LockedDownIntranetZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowAccessToDataSources
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowFontDownloads
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowScriptlets
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowSmartScreenIE
-
- -
- InternetExplorer/LockedDownLocalMachineZoneAllowUserDataPersistence
-
- -
- InternetExplorer/LockedDownLocalMachineZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/LockedDownLocalMachineZoneJavaPermissions
-
- -
- InternetExplorer/LockedDownLocalMachineZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowAccessToDataSources
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowFontDownloads
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowScriptlets
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowSmartScreenIE
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneAllowUserDataPersistence
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneJavaPermissions
-
- -
- InternetExplorer/LockedDownRestrictedSitesZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowAccessToDataSources
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowFontDownloads
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowScriptlets
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowSmartScreenIE
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneAllowUserDataPersistence
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneJavaPermissions
-
- -
- InternetExplorer/LockedDownTrustedSitesZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/MKProtocolSecurityRestrictionInternetExplorerProcesses
-
- -
- InternetExplorer/MimeSniffingSafetyFeatureInternetExplorerProcesses
-
- -
- InternetExplorer/NewTabDefaultPage
-
- -
- InternetExplorer/NotificationBarInternetExplorerProcesses
-
- -
- InternetExplorer/PreventManagingSmartScreenFilter
-
- -
- InternetExplorer/PreventPerUserInstallationOfActiveXControls
-
- -
- InternetExplorer/ProtectionFromZoneElevationInternetExplorerProcesses
-
- -
- InternetExplorer/RemoveRunThisTimeButtonForOutdatedActiveXControls
-
- -
- InternetExplorer/RestrictActiveXInstallInternetExplorerProcesses
-
- -
- InternetExplorer/RestrictFileDownloadInternetExplorerProcesses
-
- -
- InternetExplorer/RestrictedSitesZoneAllowAccessToDataSources
-
- -
- InternetExplorer/RestrictedSitesZoneAllowActiveScripting
-
- -
- InternetExplorer/RestrictedSitesZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/RestrictedSitesZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/RestrictedSitesZoneAllowBinaryAndScriptBehaviors
-
- -
- InternetExplorer/RestrictedSitesZoneAllowCopyPasteViaScript
-
- -
- InternetExplorer/RestrictedSitesZoneAllowDragAndDropCopyAndPasteFiles
-
- -
- InternetExplorer/RestrictedSitesZoneAllowFileDownloads
-
- -
- InternetExplorer/RestrictedSitesZoneAllowFontDownloads
-
- -
- InternetExplorer/RestrictedSitesZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/RestrictedSitesZoneAllowLoadingOfXAMLFiles
-
- -
- InternetExplorer/RestrictedSitesZoneAllowMETAREFRESH
-
- -
- InternetExplorer/RestrictedSitesZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/RestrictedSitesZoneAllowOnlyApprovedDomainsToUseActiveXControls
-
- -
- InternetExplorer/RestrictedSitesZoneAllowOnlyApprovedDomainsToUseTDCActiveXControl
-
- -
- InternetExplorer/RestrictedSitesZoneAllowScriptInitiatedWindows
-
- -
- InternetExplorer/RestrictedSitesZoneAllowScriptingOfInternetExplorerWebBrowserControls
-
- -
- InternetExplorer/RestrictedSitesZoneAllowScriptlets
-
- -
- InternetExplorer/RestrictedSitesZoneAllowSmartScreenIE
-
- -
- InternetExplorer/RestrictedSitesZoneAllowUpdatesToStatusBarViaScript
-
- -
- InternetExplorer/RestrictedSitesZoneAllowUserDataPersistence
-
- -
- InternetExplorer/RestrictedSitesZoneAllowVBScriptToRunInInternetExplorer
-
- -
- InternetExplorer/RestrictedSitesZoneDoNotRunAntimalwareAgainstActiveXControls
-
- -
- InternetExplorer/RestrictedSitesZoneDownloadSignedActiveXControls
-
- -
- InternetExplorer/RestrictedSitesZoneDownloadUnsignedActiveXControls
-
- -
- InternetExplorer/RestrictedSitesZoneEnableCrossSiteScriptingFilter
-
- -
- InternetExplorer/RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsAcrossWindows
-
- -
- InternetExplorer/RestrictedSitesZoneEnableDraggingOfContentFromDifferentDomainsWithinWindows
-
- -
- InternetExplorer/RestrictedSitesZoneEnableMIMESniffing
-
- -
- InternetExplorer/RestrictedSitesZoneIncludeLocalPathWhenUploadingFilesToServer
-
- -
- InternetExplorer/RestrictedSitesZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/RestrictedSitesZoneJavaPermissions
-
- -
- InternetExplorer/RestrictedSitesZoneLaunchingApplicationsAndFilesInIFRAME
-
- -
- InternetExplorer/RestrictedSitesZoneLogonOptions
-
- -
- InternetExplorer/RestrictedSitesZoneNavigateWindowsAndFrames
-
- -
- InternetExplorer/RestrictedSitesZoneRunActiveXControlsAndPlugins
-
- -
- InternetExplorer/RestrictedSitesZoneRunNETFrameworkReliantComponentsSignedWithAuthenticode
-
- -
- InternetExplorer/RestrictedSitesZoneScriptActiveXControlsMarkedSafeForScripting
-
- -
- InternetExplorer/RestrictedSitesZoneScriptingOfJavaApplets
-
- -
- InternetExplorer/RestrictedSitesZoneShowSecurityWarningForPotentiallyUnsafeFiles
-
- -
- InternetExplorer/RestrictedSitesZoneTurnOnProtectedMode
-
- -
-
-
- -
- InternetExplorer/ScriptedWindowSecurityRestrictionsInternetExplorerProcesses
-
- -
- InternetExplorer/SearchProviderList
-
- -
- InternetExplorer/SecurityZonesUseOnlyMachineSettings
-
- -
- InternetExplorer/SpecifyUseOfActiveXInstallerService
-
- -
- InternetExplorer/TrustedSitesZoneAllowAccessToDataSources
-
- -
- InternetExplorer/TrustedSitesZoneAllowAutomaticPromptingForActiveXControls
-
- -
- InternetExplorer/TrustedSitesZoneAllowAutomaticPromptingForFileDownloads
-
- -
- InternetExplorer/TrustedSitesZoneAllowFontDownloads
-
- -
- InternetExplorer/TrustedSitesZoneAllowLessPrivilegedSites
-
- -
- InternetExplorer/TrustedSitesZoneAllowNETFrameworkReliantComponents
-
- -
- InternetExplorer/TrustedSitesZoneAllowScriptlets
-
- -
- InternetExplorer/TrustedSitesZoneAllowSmartScreenIE
-
- -
- InternetExplorer/TrustedSitesZoneAllowUserDataPersistence
-
- -
- InternetExplorer/TrustedSitesZoneDoNotRunAntimalwareAgainstActiveXControls
-
- -
- InternetExplorer/TrustedSitesZoneInitializeAndScriptActiveXControls
-
- -
- InternetExplorer/TrustedSitesZoneJavaPermissions
-
- -
- InternetExplorer/TrustedSitesZoneNavigateWindowsAndFrames
-
-
-
-### Kerberos policies
-
-
- -
- Kerberos/AllowForestSearchOrder
-
- -
- Kerberos/KerberosClientSupportsClaimsCompoundArmor
-
- -
- Kerberos/RequireKerberosArmoring
-
- -
- Kerberos/RequireStrictKDCValidation
-
- -
- Kerberos/SetMaximumContextTokenSize
-
- -
- Kerberos/UPNNameHints
-
-
-
-### KioskBrowser policies
-
-
- -
- KioskBrowser/BlockedUrlExceptions
-
- -
- KioskBrowser/BlockedUrls
-
- -
- KioskBrowser/DefaultURL
-
- -
- KioskBrowser/EnableEndSessionButton
-
- -
- KioskBrowser/EnableHomeButton
-
- -
- KioskBrowser/EnableNavigationButtons
-
- -
- KioskBrowser/RestartOnIdleTime
-
-
-
-### LanmanWorkstation policies
-
-
- -
- LanmanWorkstation/EnableInsecureGuestLogons
-
-
-
-### Language Pack Management CSP policies
-
-
- -
- LanmanWorkstation/EnableInsecureGuestLogons
-
-
-
-### Licensing policies
-
-
- -
- Licensing/AllowWindowsEntitlementReactivation
-
- -
- Licensing/DisallowKMSClientOnlineAVSValidation
-
-
-
-### LocalPoliciesSecurityOptions policies
-
-
- -
- LocalPoliciesSecurityOptions/Accounts_BlockMicrosoftAccounts
-
- -
- LocalPoliciesSecurityOptions/Accounts_LimitLocalAccountUseOfBlankPasswordsToConsoleLogonOnly
-
- -
- LocalPoliciesSecurityOptions/Accounts_RenameAdministratorAccount
-
- -
- LocalPoliciesSecurityOptions/Accounts_RenameGuestAccount
-
- -
- LocalPoliciesSecurityOptions/Devices_AllowUndockWithoutHavingToLogon
-
- -
- LocalPoliciesSecurityOptions/Devices_AllowedToFormatAndEjectRemovableMedia
-
- -
- LocalPoliciesSecurityOptions/Devices_PreventUsersFromInstallingPrinterDriversWhenConnectingToSharedPrinters
-
- -
- LocalPoliciesSecurityOptions/Devices_RestrictCDROMAccessToLocallyLoggedOnUserOnly
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_DisplayUserInformationWhenTheSessionIsLocked
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_DoNotDisplayLastSignedIn
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_DoNotDisplayUsernameAtSignIn
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_DoNotRequireCTRLALTDEL
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_MachineInactivityLimit
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_MessageTextForUsersAttemptingToLogOn
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_MessageTitleForUsersAttemptingToLogOn
-
- -
- LocalPoliciesSecurityOptions/InteractiveLogon_SmartCardRemovalBehavior
-
- -
- LocalPoliciesSecurityOptions/MicrosoftNetworkClient_DigitallySignCommunicationsIfServerAgrees
-
- -
- LocalPoliciesSecurityOptions/MicrosoftNetworkClient_SendUnencryptedPasswordToThirdPartySMBServers
-
- -
- LocalPoliciesSecurityOptions/MicrosoftNetworkServer_DigitallySignCommunicationsAlways
-
- -
- LocalPoliciesSecurityOptions/MicrosoftNetworkServer_DigitallySignCommunicationsIfClientAgrees
-
- -
- LocalPoliciesSecurityOptions/NetworkAccess_DoNotAllowAnonymousEnumerationOfSAMAccounts
-
- -
- LocalPoliciesSecurityOptions/NetworkAccess_DoNotAllowAnonymousEnumerationOfSamAccountsAndShares
-
- -
- LocalPoliciesSecurityOptions/NetworkAccess_RestrictAnonymousAccessToNamedPipesAndShares
-
- -
- LocalPoliciesSecurityOptions/NetworkAccess_RestrictClientsAllowedToMakeRemoteCallsToSAM
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_AllowLocalSystemToUseComputerIdentityForNTLM
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_AllowPKU2UAuthenticationRequests
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_DoNotStoreLANManagerHashValueOnNextPasswordChange
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_LANManagerAuthenticationLevel
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_MinimumSessionSecurityForNTLMSSPBasedClients
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_MinimumSessionSecurityForNTLMSSPBasedServers
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_AddRemoteServerExceptionsForNTLMAuthentication
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_AuditIncomingNTLMTraffic
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_IncomingNTLMTraffic
-
- -
- LocalPoliciesSecurityOptions/NetworkSecurity_RestrictNTLM_OutgoingNTLMTrafficToRemoteServers
-
- -
- LocalPoliciesSecurityOptions/Shutdown_AllowSystemToBeShutDownWithoutHavingToLogOn
-
- -
- LocalPoliciesSecurityOptions/Shutdown_ClearVirtualMemoryPageFile
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_AllowUIAccessApplicationsToPromptForElevation
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_BehaviorOfTheElevationPromptForAdministrators
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_BehaviorOfTheElevationPromptForStandardUsers
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_DetectApplicationInstallationsAndPromptForElevation
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_OnlyElevateExecutableFilesThatAreSignedAndValidated
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_OnlyElevateUIAccessApplicationsThatAreInstalledInSecureLocations
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_RunAllAdministratorsInAdminApprovalMode
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_SwitchToTheSecureDesktopWhenPromptingForElevation
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_UseAdminApprovalMode
-
- -
- LocalPoliciesSecurityOptions/UserAccountControl_VirtualizeFileAndRegistryWriteFailuresToPerUserLocations
-
-
-
-### LocalUsersAndGroups policies
-
-
- -
- LocalUsersAndGroups/Configure
-
-
-
-### LockDown policies
-
-
- -
- LockDown/AllowEdgeSwipe
-
-
-
-### Maps policies
-
-
- -
- Maps/AllowOfflineMapsDownloadOverMeteredConnection
-
- -
- Maps/EnableOfflineMapsAutoUpdate
-
-
-
-### MemoryDump policies
-
-
- -
- MemoryDump/AllowCrashDump
-
- -
- MemoryDump/AllowLiveDump
-
-
-
-### Messaging policies
-
-
- -
- Messaging/AllowMessageSync
-
-
-
-### MixedReality policies
-
-
- -
- MixedReality/AADGroupMembershipCacheValidityInDays
-
- -
- MixedReality/BrightnessButtonDisabled
-
- -
- MixedReality/FallbackDiagnostics
-
- -
- MixedReality/MicrophoneDisabled
-
- -
- MixedReality/VolumeButtonDisabled
-
-
-
-### MSSecurityGuide policies
-
-
- -
- MSSecurityGuide/ApplyUACRestrictionsToLocalAccountsOnNetworkLogon
-
- -
- MSSecurityGuide/ConfigureSMBV1ClientDriver
-
- -
- MSSecurityGuide/ConfigureSMBV1Server
-
- -
- MSSecurityGuide/EnableStructuredExceptionHandlingOverwriteProtection
-
- -
- MSSecurityGuide/TurnOnWindowsDefenderProtectionAgainstPotentiallyUnwantedApplications
-
- -
- MSSecurityGuide/WDigestAuthentication
-
-
-
-### MSSLegacy policies
-
-
- -
- MSSLegacy/AllowICMPRedirectsToOverrideOSPFGeneratedRoutes
-
- -
- MSSLegacy/AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers
-
- -
- MSSLegacy/IPSourceRoutingProtectionLevel
-
- -
- MSSLegacy/IPv6SourceRoutingProtectionLevel
-
-
-
-### Multitasking policies
-
-
- -
- Multitasking/BrowserAltTabBlowout
-
-
-
-### NetworkIsolation policies
-
-
- -
- NetworkIsolation/EnterpriseCloudResources
-
- -
- NetworkIsolation/EnterpriseIPRange
-
- -
- NetworkIsolation/EnterpriseIPRangesAreAuthoritative
-
- -
- NetworkIsolation/EnterpriseInternalProxyServers
-
- -
- NetworkIsolation/EnterpriseNetworkDomainNames
-
- -
- NetworkIsolation/EnterpriseProxyServers
-
- -
- NetworkIsolation/EnterpriseProxyServersAreAuthoritative
-
- -
- NetworkIsolation/NeutralResources
-
-
-
-### NetworkListManager policies
-
-
- -
- NetworkListManager/AllowedTlsAuthenticationEndpoints
-
- -
- NetworkListManager/ConfiguredTLSAuthenticationNetworkName
-
- -
-
-
-### NewsAndInterests policies
-
-
- -
- NewsAndInterests/AllowNewsAndInterests
-
-
-
-### Notifications policies
-
-
- -
- Notifications/DisallowCloudNotification
-
- -
- Notifications/DisallowNotificationMirroring
-
- -
- Notifications/DisallowTileNotification
-
-
-
-### Power policies
-
-
- -
- Power/AllowStandbyStatesWhenSleepingOnBattery
-
- -
- Power/AllowStandbyWhenSleepingPluggedIn
-
- -
- Power/DisplayOffTimeoutOnBattery
-
- -
- Power/DisplayOffTimeoutPluggedIn
-
- -
- Power/EnergySaverBatteryThresholdOnBattery
-
- -
- Power/EnergySaverBatteryThresholdPluggedIn
-
- -
- Power/HibernateTimeoutOnBattery
-
- -
- Power/HibernateTimeoutPluggedIn
-
- -
- Power/RequirePasswordWhenComputerWakesOnBattery
-
- -
- Power/RequirePasswordWhenComputerWakesPluggedIn
-
- -
- Power/SelectLidCloseActionOnBattery
-
- -
- Power/SelectLidCloseActionPluggedIn
-
- -
- Power/SelectPowerButtonActionOnBattery
-
- -
- Power/SelectPowerButtonActionPluggedIn
-
- -
- Power/SelectSleepButtonActionOnBattery
-
- -
- Power/SelectSleepButtonActionPluggedIn
-
- -
- Power/StandbyTimeoutOnBattery
-
- -
- Power/StandbyTimeoutPluggedIn
-
- -
- Power/TurnOffHybridSleepOnBattery
-
- -
- Power/TurnOffHybridSleepPluggedIn
-
- -
- Power/UnattendedSleepTimeoutOnBattery
-
- -
- Power/UnattendedSleepTimeoutPluggedIn
-
-
-
-### Printers policies
-
-
- -
- Printers/ApprovedUsbPrintDevices
-
- -
- Printers/ApprovedUsbPrintDevicesUser
-
- -
- Printers/ConfigureCopyFilesPolicy
-
- -
- Printers/ConfigureDriverValidationLevel
-
- -
- Printers/ConfigureIppPageCountsPolicy
-
- -
- Printers/ConfigureRedirectionGuardPolicy
-
- -
- Printers/ConfigureRpcConnectionPolicy
-
- -
- Printers/ConfigureRpcListenerPolicy
-
- -
- Printers/ConfigureRpcTcpPort
-
- -
- Printers/EnableDeviceControl
-
- -
- Printers/EnableDeviceControlUser
-
- -
- Printers/ManageDriverExclusionList
-
- -
- Printers/PointAndPrintRestrictions
-
- -
- Printers/PointAndPrintRestrictions_User
-
- -
- Printers/PublishPrinters
-
- -
- Printers/RestrictDriverInstallationToAdministrators
-
-
-
-### Privacy policies
-
-
- -
- Privacy/AllowAutoAcceptPairingAndPrivacyConsentPrompts
-
- -
- Privacy/AllowCrossDeviceClipboard
-
- -
- Privacy/AllowInputPersonalization
-
- -
- Privacy/DisableAdvertisingId
-
- -
- Privacy/DisablePrivacyExperience
-
- -
- Privacy/EnableActivityFeed
-
- -
- Privacy/LetAppsAccessAccountInfo
-
- -
- Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessBackgroundSpatialPerception
-
- -
- Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessCalendar
-
- -
- Privacy/LetAppsAccessCalendar_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessCalendar_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessCalendar_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessCallHistory
-
- -
- Privacy/LetAppsAccessCallHistory_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessCallHistory_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessCallHistory_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessCamera
-
- -
- Privacy/LetAppsAccessCamera_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessCamera_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessCamera_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessContacts
-
- -
- Privacy/LetAppsAccessContacts_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessContacts_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessContacts_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessEmail
-
- -
- Privacy/LetAppsAccessEmail_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessEmail_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessEmail_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessGazeInput
-
- -
- Privacy/LetAppsAccessGazeInput_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessGazeInput_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessGazeInput_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessLocation
-
- -
- Privacy/LetAppsAccessLocation_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessLocation_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessLocation_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessMessaging
-
- -
- Privacy/LetAppsAccessMessaging_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessMessaging_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessMessaging_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessMicrophone
-
- -
- Privacy/LetAppsAccessMicrophone_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessMicrophone_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessMicrophone_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessMotion
-
- -
- Privacy/LetAppsAccessMotion_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessMotion_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessMotion_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessNotifications
-
- -
- Privacy/LetAppsAccessNotifications_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessNotifications_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessNotifications_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessPhone
-
- -
- Privacy/LetAppsAccessPhone_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessPhone_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessPhone_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessRadios
-
- -
- Privacy/LetAppsAccessRadios_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessRadios_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessRadios_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessTasks
-
- -
- Privacy/LetAppsAccessTasks_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessTasks_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessTasks_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsAccessTrustedDevices
-
- -
- Privacy/LetAppsAccessTrustedDevices_ForceAllowTheseApps
-
- -
- Privacy/LetAppsAccessTrustedDevices_ForceDenyTheseApps
-
- -
- Privacy/LetAppsAccessTrustedDevices_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsActivateWithVoice
-
- -
- Privacy/LetAppsActivateWithVoiceAboveLock
-
- -
- Privacy/LetAppsGetDiagnosticInfo
-
- -
- Privacy/LetAppsGetDiagnosticInfo_ForceAllowTheseApps
-
- -
- Privacy/LetAppsGetDiagnosticInfo_ForceDenyTheseApps
-
- -
- Privacy/LetAppsGetDiagnosticInfo_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsRunInBackground
-
- -
- Privacy/LetAppsRunInBackground_ForceAllowTheseApps
-
- -
- Privacy/LetAppsRunInBackground_ForceDenyTheseApps
-
- -
- Privacy/LetAppsRunInBackground_UserInControlOfTheseApps
-
- -
- Privacy/LetAppsSyncWithDevices
-
- -
- Privacy/LetAppsSyncWithDevices_ForceAllowTheseApps
-
- -
- Privacy/LetAppsSyncWithDevices_ForceDenyTheseApps
-
- -
- Privacy/LetAppsSyncWithDevices_UserInControlOfTheseApps
-
- -
- Privacy/PublishUserActivities
-
- -
- Privacy/UploadUserActivities
-
-
-
-### RemoteAssistance policies
-
-
- -
- RemoteAssistance/CustomizeWarningMessages
-
- -
- RemoteAssistance/SessionLogging
-
- -
- RemoteAssistance/SolicitedRemoteAssistance
-
- -
- RemoteAssistance/UnsolicitedRemoteAssistance
-
-
-
-### RemoteDesktop policies
-
-
- -
- RemoteDesktop/AutoSubscription
-
- -
- RemoteDesktop/LoadAadCredKeyFromProfile
-
-
-
-### RemoteDesktopServices policies
-
-
- -
- RemoteDesktopServices/AllowUsersToConnectRemotely
-
- -
- RemoteDesktopServices/ClientConnectionEncryptionLevel
-
- -
- RemoteDesktopServices/DoNotAllowDriveRedirection
-
- -
- RemoteDesktopServices/DoNotAllowPasswordSaving
-
- -
- RemoteDesktopServices/PromptForPasswordUponConnection
-
- -
- RemoteDesktopServices/RequireSecureRPCCommunication
-
-
-
-### RemoteManagement policies
-
-
- -
- RemoteManagement/AllowBasicAuthentication_Client
-
- -
- RemoteManagement/AllowBasicAuthentication_Service
-
- -
- RemoteManagement/AllowCredSSPAuthenticationClient
-
- -
- RemoteManagement/AllowCredSSPAuthenticationService
-
- -
- RemoteManagement/AllowRemoteServerManagement
-
- -
- RemoteManagement/AllowUnencryptedTraffic_Client
-
- -
- RemoteManagement/AllowUnencryptedTraffic_Service
-
- -
- RemoteManagement/DisallowDigestAuthentication
-
- -
- RemoteManagement/DisallowNegotiateAuthenticationClient
-
- -
- RemoteManagement/DisallowNegotiateAuthenticationService
-
- -
- RemoteManagement/DisallowStoringOfRunAsCredentials
-
- -
- RemoteManagement/SpecifyChannelBindingTokenHardeningLevel
-
- -
- RemoteManagement/TrustedHosts
-
- -
- RemoteManagement/TurnOnCompatibilityHTTPListener
-
- -
- RemoteManagement/TurnOnCompatibilityHTTPSListener
-
-
-
-### RemoteProcedureCall policies
-
-
- -
- RemoteProcedureCall/RPCEndpointMapperClientAuthentication
-
- -
- RemoteProcedureCall/RestrictUnauthenticatedRPCClients
-
-
-
-### RemoteShell policies
-
-
- -
- RemoteShell/AllowRemoteShellAccess
-
- -
- RemoteShell/MaxConcurrentUsers
-
- -
- RemoteShell/SpecifyIdleTimeout
-
- -
- RemoteShell/SpecifyMaxMemory
-
- -
- RemoteShell/SpecifyMaxProcesses
-
- -
- RemoteShell/SpecifyMaxRemoteShells
-
- -
- RemoteShell/SpecifyShellTimeout
-
-
-
-### RestrictedGroups policies
-
-
- -
- RestrictedGroups/ConfigureGroupMembership
-
-
-
-### Search policies
-
-
- -
- Search/AllowCloudSearch
-
- -
- Search/AllowFindMyFiles
-
- -
- Search/AllowIndexingEncryptedStoresOrItems
-
- -
- Search/AllowSearchToUseLocation
-
- -
- Search/AllowStoringImagesFromVisionSearch
-
- -
- Search/AllowUsingDiacritics
-
- -
- Search/AllowWindowsIndexer
-
- -
- Search/AlwaysUseAutoLangDetection
-
- -
- Search/DisableBackoff
-
- -
- Search/DisableRemovableDriveIndexing
-
- -
- Search/DisableSearch
-
- -
- Search/DoNotUseWebResults
-
- -
- Search/PreventIndexingLowDiskSpaceMB
-
- -
- Search/PreventRemoteQueries
-
-
-
-### Security policies
-
-
- -
- Security/AllowAddProvisioningPackage
-
- -
- Security/AllowAutomaticDeviceEncryptionForAzureADJoinedDevices
-
- -
- Security/AllowRemoveProvisioningPackage
-
- -
- Security/ClearTPMIfNotReady
-
- -
- Security/ConfigureWindowsPasswords
-
- -
- Security/PreventAutomaticDeviceEncryptionForAzureADJoinedDevices
-
- -
- Security/RecoveryEnvironmentAuthentication
-
- -
- Security/RequireDeviceEncryption
-
- -
- Security/RequireProvisioningPackageSignature
-
- -
- Security/RequireRetrieveHealthCertificateOnBoot
-
-
-
-### ServiceControlManager policies
-
- -
- ServiceControlManager/SvchostProcessMitigation
-
-
-
-### Settings policies
-
-
- -
- Settings/AllowAutoPlay
-
- -
- Settings/AllowDataSense
-
- -
- Settings/AllowDateTime
-
- -
- Settings/AllowLanguage
-
- -
- Settings/AllowOnlineTips
-
- -
- Settings/AllowPowerSleep
-
- -
- Settings/AllowRegion
-
- -
- Settings/AllowSignInOptions
-
- -
- Settings/AllowVPN
-
- -
- Settings/AllowWorkplace
-
- -
- Settings/AllowYourAccount
-
- -
- Settings/ConfigureTaskbarCalendar
-
- -
- Settings/PageVisibilityList
-
-
-
-### Windows Defender SmartScreen policies
-
-
- -
- SmartScreen/EnableAppInstallControl
-
- -
- SmartScreen/EnableSmartScreenInShell
-
- -
- SmartScreen/PreventOverrideForFilesInShell
-
-
-
-### Speech policies
-
-
- -
- Speech/AllowSpeechModelUpdate
-
-
-
-### Start policies
-
-
- -
- Start/AllowPinnedFolderDocuments
-
- -
- Start/AllowPinnedFolderDownloads
-
- -
- Start/AllowPinnedFolderFileExplorer
-
- -
- Start/AllowPinnedFolderHomeGroup
-
- -
- Start/AllowPinnedFolderMusic
-
- -
- Start/AllowPinnedFolderNetwork
-
- -
- Start/AllowPinnedFolderPersonalFolder
-
- -
- Start/AllowPinnedFolderPictures
-
- -
- Start/AllowPinnedFolderSettings
-
- -
- Start/AllowPinnedFolderVideos
-
- -
-
-
- -
- Start/DisableControlCenter
-
- -
- Start/DisableEditingQuickSettings
-
- -
- Start/ForceStartSize
-
- -
- Start/HideAppList
-
- -
- Start/HideChangeAccountSettings
-
- -
- Start/HideFrequentlyUsedApps
-
- -
- Start/HideHibernate
-
- -
- Start/HideLock
-
- -
- Start/HidePeopleBar
-
- -
- Start/HidePowerButton
-
- -
- Start/HideRecentJumplists
-
- -
- Start/HideRecentlyAddedApps
-
- -
- Start/HideRecommendedSection
-
- -
- Start/HideRestart
-
- -
- Start/HideShutDown
-
- -
- Start/HideSignOut
-
- -
- Start/HideSleep
-
- -
- Start/HideSwitchAccount
-
- -
- Start/HideTaskViewButton
-
- -
- Start/HideUserTile
-
- -
- Start/ImportEdgeAssets
-
- -
- Start/NoPinningToTaskbar
-
- -
- Start/SimplifyQuickSettings
-
- -
- Start/StartLayout
-
-
-
-### Storage policies
-
-
- -
- Storage/AllowDiskHealthModelUpdates
-
- -
- Storage/AllowStorageSenseGlobal
-
- -
- Storage/AllowStorageSenseTemporaryFilesCleanup
-
- -
- Storage/ConfigStorageSenseCloudContentDehydrationThreshold
-
- -
- Storage/ConfigStorageSenseDownloadsCleanupThreshold
-
- -
- Storage/ConfigStorageSenseGlobalCadence
-
- -
- Storage/ConfigStorageSenseRecycleBinCleanupThreshold
-
-
- Storage/EnhancedStorageDevices
-
- -
- Storage/RemovableDiskDenyWriteAccess
-
- -
- Storage/WPDDevicesDenyReadAccessPerDevice
-
- -
- Storage/WPDDevicesDenyReadAccessPerUser
-
- -
- Storage/WPDDevicesDenyWriteAccessPerDevice
-
- -
- Storage/WPDDevicesDenyWriteAccessPerUser
-
-
-
-### System policies
-
-
- -
- System/AllowBuildPreview
-
- -
- System/AllowCommercialDataPipeline
-
- -
- System/AllowDeviceNameInDiagnosticData
-
- -
- System/AllowEmbeddedMode
-
- -
- System/AllowExperimentation
-
- -
- System/AllowFontProviders
-
- -
- System/AllowLocation
-
- -
- System/AllowStorageCard
-
- -
- System/AllowTelemetry
-
- -
- System/AllowUserToResetPhone
-
- -
- System/BootStartDriverInitialization
-
- -
- System/ConfigureMicrosoft365UploadEndpoint
-
- -
- System/ConfigureTelemetryOptInChangeNotification
-
- -
- System/ConfigureTelemetryOptInSettingsUx
-
- -
- System/DisableDeviceDelete
-
- -
- System/DisableDiagnosticDataViewer
-
- -
- System/DisableEnterpriseAuthProxy
-
- -
- System/DisableOneDriveFileSync
-
- -
- System/DisableSystemRestore
-
- -
- System/FeedbackHubAlwaysSaveDiagnosticsLocally
-
- -
- System/LimitDiagnosticLogCollection
-
- -
- System/LimitDumpCollection
-
- -
- System/LimitEnhancedDiagnosticDataWindowsAnalytics
-
- -
- System/TelemetryProxy
-
- -
- System/TurnOffFileHistory
-
-
-
-### SystemServices policies
-
-
- -
- SystemServices/ConfigureHomeGroupListenerServiceStartupMode
-
- -
- SystemServices/ConfigureHomeGroupProviderServiceStartupMode
-
- -
- SystemServices/ConfigureXboxAccessoryManagementServiceStartupMode
-
- -
- SystemServices/ConfigureXboxLiveAuthManagerServiceStartupMode
-
- -
- SystemServices/ConfigureXboxLiveGameSaveServiceStartupMode
-
- -
- SystemServices/ConfigureXboxLiveNetworkingServiceStartupMode
-
-
-
-### TaskManager policies
-
-
- -
- TaskManager/AllowEndTask
-
-
-
-### TaskScheduler policies
-
-
- -
- TaskScheduler/EnableXboxGameSaveTask
-
-
-
-### TextInput policies
-
-
- -
- TextInput/AllowHardwareKeyboardTextSuggestions
-
- -
- TextInput/AllowIMELogging
-
- -
- TextInput/AllowIMENetworkAccess
-
- -
- TextInput/AllowInputPanel
-
- -
- TextInput/AllowJapaneseIMESurrogatePairCharacters
-
- -
- TextInput/AllowJapaneseIVSCharacters
-
- -
- TextInput/AllowJapaneseNonPublishingStandardGlyph
-
- -
- TextInput/AllowJapaneseUserDictionary
-
- -
- TextInput/AllowKeyboardTextSuggestions
-
- -
- TextInput/AllowKoreanExtendedHanja
-
- -
- TextInput/AllowLanguageFeaturesUninstall
-
- -
- TextInput/AllowLinguisticDataCollection
-
- -
- TextInput/AllowTextInputSuggestionUpdate
-
- -
- TextInput/ConfigureJapaneseIMEVersion
-
- -
- TextInput/ConfigureSimplifiedChineseIMEVersion
-
- -
- TextInput/ConfigureTraditionalChineseIMEVersion
-
- -
- TextInput/EnableTouchKeyboardAutoInvokeInDesktopMode
-
- -
- TextInput/ExcludeJapaneseIMEExceptJIS0208
-
- -
- TextInput/ExcludeJapaneseIMEExceptJIS0208andEUDC
-
- -
- TextInput/ExcludeJapaneseIMEExceptShiftJIS
-
- -
- TextInput/ForceTouchKeyboardDockedState
-
- -
- TextInput/TouchKeyboardDictationButtonAvailability
-
- -
- TextInput/TouchKeyboardEmojiButtonAvailability
-
- -
- TextInput/TouchKeyboardFullModeAvailability
-
- -
- TextInput/TouchKeyboardHandwritingModeAvailability
-
- -
- TextInput/TouchKeyboardNarrowModeAvailability
-
- -
- TextInput/TouchKeyboardSplitModeAvailability
-
- -
- TextInput/TouchKeyboardWideModeAvailability
-
-
-
-### TimeLanguageSettings policies
-
-
- -
- TimeLanguageSettings/BlockCleanupOfUnusedPreinstalledLangPacks
-
- -
- TimeLanguageSettings/ConfigureTimeZone
-
- -
- TimeLanguageSettings/MachineUILanguageOverwrite
-
- -
- TimeLanguageSettings/RestrictLanguagePacksAndFeaturesInstall
-
-
-
-### Troubleshooting policies
-
-
- -
- Troubleshooting/AllowRecommendations
-
-
-
-### Update policies
-
-
- -
- Update/ActiveHoursEnd
-
- -
- Update/ActiveHoursMaxRange
-
- -
-
-
- -
- Update/AllowAutoUpdate
-
- -
- Update/AllowAutoWindowsUpdateDownloadOverMeteredNetwork
-
- -
- Update/AllowMUUpdateService
-
- -
- Update/AllowNonMicrosoftSignedUpdate
-
- -
- Update/AllowUpdateService
-
- -
- Update/AutoRestartDeadlinePeriodInDays
-
- -
- Update/AutoRestartDeadlinePeriodInDaysForFeatureUpdates
-
- -
- Update/AutoRestartNotificationSchedule
-
- -
- Update/AutoRestartRequiredNotificationDismissal
-
- -
- Update/AutomaticMaintenanceWakeUp
-
- -
- Update/BranchReadinessLevel
-
- -
- Update/ConfigureDeadlineForFeatureUpdates
-
- -
- Update/ConfigureDeadlineForQualityUpdates
-
- -
- Update/ConfigureDeadlineGracePeriod
-
- -
- Update/ConfigureDeadlineGracePeriodForFeatureUpdates
-
- -
- Update/ConfigureDeadlineNoAutoReboot
-
- -
- Update/ConfigureFeatureUpdateUninstallPeriod
-
- -
- Update/DeferFeatureUpdatesPeriodInDays
-
- -
- Update/DeferQualityUpdatesPeriodInDays
-
- -
- Update/DeferUpdatePeriod
-
- -
- Update/DeferUpgradePeriod
-
- -
- Update/DetectionFrequency
-
- -
- Update/DisableDualScan
-
- -
- Update/DisableWUfBSafeguards
-
- -
- Update/DoNotEnforceEnterpriseTLSCertPinningForUpdateDetection
-
- -
- Update/EngagedRestartDeadline
-
- -
- Update/EngagedRestartDeadlineForFeatureUpdates
-
- -
- Update/EngagedRestartSnoozeSchedule
-
- -
- Update/EngagedRestartSnoozeScheduleForFeatureUpdates
-
- -
- Update/EngagedRestartTransitionSchedule
-
- -
- Update/EngagedRestartTransitionScheduleForFeatureUpdates
-
- -
- Update/ExcludeWUDriversInQualityUpdate
-
- -
- Update/FillEmptyContentUrls
-
- -
- Update/IgnoreMOAppDownloadLimit
-
- -
- Update/IgnoreMOUpdateDownloadLimit
-
- -
- Update/ManagePreviewBuilds
-
- -
- Update/PauseDeferrals
-
- -
- Update/PauseFeatureUpdates
-
- -
- Update/PauseFeatureUpdatesStartTime
-
- -
- Update/PauseQualityUpdates
-
- -
- Update/PauseQualityUpdatesStartTime
-
- -
- Update/PhoneUpdateRestrictions
-
- -
- Update/RequireDeferUpgrade
-
- -
- Update/RequireUpdateApproval
-
- -
- Update/ScheduleImminentRestartWarning
-
- -
- Update/ScheduleRestartWarning
-
- -
- Update/ScheduledInstallDay
-
- -
- Update/ScheduledInstallEveryWeek
-
- -
- Update/ScheduledInstallFirstWeek
-
- -
- Update/ScheduledInstallFourthWeek
-
- -
- Update/ScheduledInstallSecondWeek
-
- -
- Update/ScheduledInstallThirdWeek
-
- -
- Update/ScheduledInstallTime
-
- -
- Update/SetAutoRestartNotificationDisable
-
- -
- Update/SetDisablePauseUXAccess
-
- -
- Update/SetDisableUXWUAccess
-
- -
- Update/SetEDURestart
-
- -
- Update/SetPolicyDrivenUpdateSourceForDriverUpdates
-
- -
- Update/SetPolicyDrivenUpdateSourceForFeatureUpdates
-
- -
- Update/SetPolicyDrivenUpdateSourceForOtherUpdates
-
- -
- Update/SetPolicyDrivenUpdateSourceForQualityUpdates
-
- -
- Update/SetProxyBehaviorForUpdateDetection
-
- -
- Update/TargetReleaseVersion
-
- -
-
-
- Update/UpdateNotificationLevel
-
- -
- Update/UpdateServiceUrl
-
- -
- Update/UpdateServiceUrlAlternate
-
-
-
-### UserRights policies
-
-
- -
- UserRights/AccessCredentialManagerAsTrustedCaller
-
- -
- UserRights/AccessFromNetwork
-
- -
- UserRights/ActAsPartOfTheOperatingSystem
-
- -
- UserRights/AllowLocalLogOn
-
- -
- UserRights/BackupFilesAndDirectories
-
- -
- UserRights/ChangeSystemTime
-
- -
- UserRights/CreateGlobalObjects
-
- -
- UserRights/CreatePageFile
-
- -
- UserRights/CreatePermanentSharedObjects
-
- -
- UserRights/CreateSymbolicLinks
-
- -
- UserRights/CreateToken
-
- -
- UserRights/DebugPrograms
-
- -
- UserRights/DenyAccessFromNetwork
-
- -
- UserRights/DenyLocalLogOn
-
- -
- UserRights/DenyRemoteDesktopServicesLogOn
-
- -
- UserRights/EnableDelegation
-
- -
- UserRights/GenerateSecurityAudits
-
- -
- UserRights/ImpersonateClient
-
- -
- UserRights/IncreaseSchedulingPriority
-
- -
- UserRights/LoadUnloadDeviceDrivers
-
- -
- UserRights/LockMemory
-
- -
- UserRights/ManageAuditingAndSecurityLog
-
- -
- UserRights/ManageVolume
-
- -
- UserRights/ModifyFirmwareEnvironment
-
- -
- UserRights/ModifyObjectLabel
-
- -
- UserRights/ProfileSingleProcess
-
- -
- UserRights/RemoteShutdown
-
- -
- UserRights/RestoreFilesAndDirectories
-
- -
- UserRights/TakeOwnership
-
-
-
-### VirtualizationBasedTechnology policies
-
-
- -
- VirtualizationBasedTechnology/HypervisorEnforcedCodeIntegrity
-
- -
- VirtualizationBasedTechnology/RequireUEFIMemoryAttributesTable
-
-
-
-### WebThreatDefense policies
-
-
- -
- WebThreatDefense/EnableService
-
- -
- WebThreatDefense/NotifyMalicious
-
- -
- WebThreatDefense/NotifyPasswordReuse
-
- -
- WebThreatDefense/NotifyUnsafeApp
-
-
-
-### Wifi policies
-
-
- -
- WiFi/AllowWiFiHotSpotReporting
-
- -
- Wifi/AllowAutoConnectToWiFiSenseHotspots
-
- -
- Wifi/AllowInternetSharing
-
- -
- Wifi/AllowManualWiFiConfiguration
-
- -
- Wifi/AllowWiFi
-
- -
- Wifi/AllowWiFiDirect
-
- -
- Wifi/WLANScanMode
-
-
-
-### WindowsAutoPilot policies
-
-
- -
- WindowsAutoPilot/EnableAgilityPostEnrollment
-
-
-
-### WindowsConnectionManager policies
-
-
- -
- WindowsConnectionManager/ProhitConnectionToNonDomainNetworksWhenConnectedToDomainAuthenticatedNetwork
-
-
-
-### WindowsDefenderSecurityCenter policies
-
-
- -
- WindowsDefenderSecurityCenter/CompanyName
-
- -
- WindowsDefenderSecurityCenter/DisableAccountProtectionUI
-
- -
- WindowsDefenderSecurityCenter/DisableAppBrowserUI
-
- -
- WindowsDefenderSecurityCenter/DisableClearTpmButton
-
- -
- WindowsDefenderSecurityCenter/DisableDeviceSecurityUI
-
- -
- WindowsDefenderSecurityCenter/DisableEnhancedNotifications
-
- -
- WindowsDefenderSecurityCenter/DisableFamilyUI
-
- -
- WindowsDefenderSecurityCenter/DisableHealthUI
-
- -
- WindowsDefenderSecurityCenter/DisableNetworkUI
-
- -
- WindowsDefenderSecurityCenter/DisableNotifications
-
- -
- WindowsDefenderSecurityCenter/DisableTpmFirmwareUpdateWarning
-
- -
- WindowsDefenderSecurityCenter/DisableVirusUI
-
- -
- WindowsDefenderSecurityCenter/DisallowExploitProtectionOverride
-
- -
- WindowsDefenderSecurityCenter/Email
-
- -
- WindowsDefenderSecurityCenter/EnableCustomizedToasts
-
- -
- WindowsDefenderSecurityCenter/EnableInAppCustomization
-
- -
- WindowsDefenderSecurityCenter/HideRansomwareDataRecovery
-
- -
- WindowsDefenderSecurityCenter/HideSecureBoot
-
- -
- WindowsDefenderSecurityCenter/HideTPMTroubleshooting
-
- -
- WindowsDefenderSecurityCenter/HideWindowsSecurityNotificationAreaControl
-
- -
- WindowsDefenderSecurityCenter/Phone
-
- -
- WindowsDefenderSecurityCenter/URL
-
-
-
-### WindowsInkWorkspace policies
-
-
- -
- WindowsInkWorkspace/AllowSuggestedAppsInWindowsInkWorkspace
-
- -
- WindowsInkWorkspace/AllowWindowsInkWorkspace
-
-
-
-### WindowsLogon policies
-
-
- -
- WindowsLogon/AllowAutomaticRestartSignOn
-
- -
- WindowsLogon/ConfigAutomaticRestartSignOn
-
- -
- WindowsLogon/DisableLockScreenAppNotifications
-
- -
- WindowsLogon/DontDisplayNetworkSelectionUI
-
- -
- WindowsLogon/EnableFirstLogonAnimation
-
- -
- WindowsLogon/EnableMPRNotifications
-
- -
- WindowsLogon/EnumerateLocalUsersOnDomainJoinedComputers
-
- -
- WindowsLogon/HideFastUserSwitching
-
-
-
-### WindowsPowerShell policies
-
-
- -
- WindowsPowerShell/TurnOnPowerShellScriptBlockLogging
-
-
-
-### WindowsSandbox policies
-
-
- -
- WindowsSandbox/AllowAudioInput
-
- -
- WindowsSandbox/AllowClipboardRedirection
-
- -
- WindowsSandbox/AllowNetworking
-
- -
- WindowsSandbox/AllowPrinterRedirection
-
- -
- WindowsSandbox/AllowVGPU
-
- -
- WindowsSandbox/AllowVideoInput
-
-
-
-### WirelessDisplay policies
-
-
- -
- WirelessDisplay/AllowMdnsAdvertisement
-
- -
- WirelessDisplay/AllowMdnsDiscovery
-
- -
- WirelessDisplay/AllowMovementDetectionOnInfrastructure
-
- -
- WirelessDisplay/AllowProjectionFromPC
-
- -
- WirelessDisplay/AllowProjectionFromPCOverInfrastructure
-
- -
- WirelessDisplay/AllowProjectionToPC
-
- -
- WirelessDisplay/AllowProjectionToPCOverInfrastructure
-
- -
- WirelessDisplay/AllowUserInputFromWirelessDisplayReceiver
-
- -
- WirelessDisplay/RequirePinForPairing
-
-
-
-
-## Policies in Policy CSP supported by Group Policy and ADMX-backed policies in Policy CSP
-- [Policies in Policy CSP supported by Group Policy](./policies-in-policy-csp-supported-by-group-policy.md)
-- [ADMX-backed policies in Policy CSP](./policies-in-policy-csp-admx-backed.md)
-
-> [!NOTE]
-> Not all Policies in Policy CSP supported by Group Policy are ADMX-backed. For more details, see [Understanding ADMX-backed policies](../understanding-admx-backed-policies.md).
-
-## Policies in Policy CSP supported by HoloLens devices
-- [Policies in Policy CSP supported by HoloLens 2](./policies-in-policy-csp-supported-by-hololens2.md)
-- [Policies in Policy CSP supported by HoloLens (1st gen) Commercial Suite](./policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md)
-- [Policies in Policy CSP supported by HoloLens (1st gen) Development Edition](./policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md)
-
-## Policies in Policy CSP supported by Windows 10 IoT
-- [Policies in Policy CSP supported by Windows 10 IoT Core](./policies-in-policy-csp-supported-by-iot-core.md)
-
-## Policies in Policy CSP supported by Microsoft Surface Hub
-- [Policies in Policy CSP supported by Microsoft Surface Hub](./policies-in-policy-csp-supported-by-surface-hub.md)
-
-## Policies in Policy CSP that can be set using Exchange ActiveSync (EAS)
-- [Policies in Policy CSP that can be set using Exchange ActiveSync (EAS)](./policies-in-policy-csp-that-can-be-set-using-eas.md)
-
-## Related topics
-
-[Configuration service provider reference](index.yml)
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+
+
+
+
+
+
+
+
+
+#### Device/ConfigOperations/ADMXInstall/{AppName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}
+```
+
+
+
+Specifies the name of the Win32 or Desktop Bridge app associated with the ADMX file.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+| Dynamic Node Naming | UniqueName: Specifies the name of the Win32 or Desktop Bridge app associated with the ADMX file. |
+
+
+
+
+
+
+
+
+
+##### Device/ConfigOperations/ADMXInstall/{AppName}/{SettingsType}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}/{SettingsType}
+```
+
+
+
+Setting Type of Win32 App. Policy Or Preference
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+| Dynamic Node Naming | UniqueName: Setting Type of Win32 App. Policy Or Preference |
+
+
+
+
+
+
+
+
+
+###### Device/ConfigOperations/ADMXInstall/{AppName}/{SettingsType}/{AdmxFileId}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}/{SettingsType}/{AdmxFileId}
+```
+
+
+
+Unique ID of ADMX file
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Dynamic Node Naming | ServerGeneratedUniqueIdentifier |
+
+
+
+
+
+
+
+
+
+##### Device/ConfigOperations/ADMXInstall/{AppName}/Properties
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299.1481] and later
:heavy_check_mark: Windows 10, version 1803 [10.0.17134.1099] and later
:heavy_check_mark: Windows 10, version 1809 [10.0.17763.832] and later
:heavy_check_mark: Windows 10, version 1903 [10.0.18362.387] and later
:heavy_check_mark: Windows 10, version 1909 [10.0.18363] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}/Properties
+```
+
+
+
+Properties of Win32 App ADMX Ingestion
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+
+
+
+
+
+
+
+
+
+###### Device/ConfigOperations/ADMXInstall/{AppName}/Properties/{SettingsType}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299.1481] and later
:heavy_check_mark: Windows 10, version 1803 [10.0.17134.1099] and later
:heavy_check_mark: Windows 10, version 1809 [10.0.17763.832] and later
:heavy_check_mark: Windows 10, version 1903 [10.0.18362.387] and later
:heavy_check_mark: Windows 10, version 1909 [10.0.18363] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}/Properties/{SettingsType}
+```
+
+
+
+Setting Type of Win32 App. Policy Or Preference
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+| Dynamic Node Naming | UniqueName: Setting Type of Win32 App. Policy Or Preference |
+
+
+
+
+
+
+
+
+
+###### Device/ConfigOperations/ADMXInstall/{AppName}/Properties/{SettingsType}/{AdmxFileId}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299.1481] and later
:heavy_check_mark: Windows 10, version 1803 [10.0.17134.1099] and later
:heavy_check_mark: Windows 10, version 1809 [10.0.17763.832] and later
:heavy_check_mark: Windows 10, version 1903 [10.0.18362.387] and later
:heavy_check_mark: Windows 10, version 1909 [10.0.18363] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}/Properties/{SettingsType}/{AdmxFileId}
+```
+
+
+
+Unique ID of ADMX file
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+| Dynamic Node Naming | ServerGeneratedUniqueIdentifier |
+
+
+
+
+
+
+
+
+
+###### Device/ConfigOperations/ADMXInstall/{AppName}/Properties/{SettingsType}/{AdmxFileId}/Version
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299.1481] and later
:heavy_check_mark: Windows 10, version 1803 [10.0.17134.1099] and later
:heavy_check_mark: Windows 10, version 1809 [10.0.17763.832] and later
:heavy_check_mark: Windows 10, version 1903 [10.0.18362.387] and later
:heavy_check_mark: Windows 10, version 1909 [10.0.18363] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/ConfigOperations/ADMXInstall/{AppName}/Properties/{SettingsType}/{AdmxFileId}/Version
+```
+
+
+
+Version of ADMX file. This can be set by the server to keep a record of the versioning of the ADMX file ingested by the device.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+## Device/Result
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Result
+```
+
+
+
+Groups the evaluated policies from all providers that can be configured.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### Device/Result/{AreaName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Result/{AreaName}
+```
+
+
+
+The area group that can be configured by a single technology independent of the providers. See the individual Area DDFs for Policy CSP for a list of Areas that can be configured.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+| Dynamic Node Naming | ClientInventory |
+
+
+
+
+
+
+
+
+
+#### Device/Result/{AreaName}/{PolicyName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Result/{AreaName}/{PolicyName}
+```
+
+
+
+Specifies the name/value pair used in the policy. See the individual Area DDFs for more information about the policies available to configure.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | null |
+| Access Type | Get |
+| Dynamic Node Naming | ClientInventory |
+
+
+
+
+
+
+
+
+
+## User/Config
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config
+```
+
+
+
+Node for grouping all policies configured by one source. The configuration source can use this path to set policy values and later query any policy value that it previously set. One policy can be configured by multiple configuration sources. If a configuration source wants to query the result of conflict resolution (for example, if Exchange and MDM both attempt to set a value,) the configuration source can use the Policy/Result path to retrieve the resulting value.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+
+
+
+
+
+
+
+
+
+### User/Config/{AreaName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/{AreaName}
+```
+
+
+
+The area group that can be configured by a single technology for a single provider. Once added, you cannot change the value. See the individual Area DDFs for Policy CSP for a list of Areas that can be configured.
+
+
+
+
+The following list shows some tips to help you when configuring policies:
+
+- Separate substring values by Unicode `0xF000` in the XML file.
+ > [!NOTE]
+ > A query from a different caller could provide a different value as each caller could have different values for a named policy.
+- In SyncML, wrap this policy with the Atomic command so that the policy settings are treated as a single transaction.
+- Supported operations are Add, Get, Delete, and Replace.
+- Value type is string.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Add, Delete, Get |
+| Dynamic Node Naming | ClientInventory |
+
+
+
+
+
+
+
+
+
+#### User/Config/{AreaName}/{PolicyName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/{AreaName}/{PolicyName}
+```
+
+
+
+Specifies the name/value pair used in the policy. See the individual Area DDFs for more information about the policies available to configure.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | null |
+| Access Type | Add, Delete, Get, Replace |
+| Dynamic Node Naming | ClientInventory |
+
+
+
+
+
+
+
+
+
+## User/Result
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Result
+```
+
+
+
+Groups the evaluated policies from all providers that can be configured.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+
+
+
+
+
+
+
+
+
+### User/Result/{AreaName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Result/{AreaName}
+```
+
+
+
+The area group that can be configured by a single technology independent of the providers. See the individual Area DDFs for Policy CSP for a list of Areas that can be configured.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | node |
+| Access Type | Get |
+| Dynamic Node Naming | ClientInventory |
+
+
+
+
+
+
+
+
+
+#### User/Result/{AreaName}/{PolicyName}
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:heavy_check_mark: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Result/{AreaName}/{PolicyName}
+```
+
+
+
+Specifies the name/value pair used in the policy. See the individual Area DDFs for more information about the policies available to configure.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | null |
+| Access Type | Get |
+| Dynamic Node Naming | ServerGeneratedUniqueIdentifier |
+
+
+
+
+
+
+
+
+## Policy Areas
+
+- [AboveLock](policy-csp-abovelock.md)
+- [Accounts](policy-csp-accounts.md)
+- [ActiveXControls](policy-csp-activexcontrols.md)
+- [ADMX_ActiveXInstallService](policy-csp-admx-activexinstallservice.md)
+- [ADMX_AddRemovePrograms](policy-csp-admx-addremoveprograms.md)
+- [ADMX_AdmPwd](policy-csp-admx-admpwd.md)
+- [ADMX_AppCompat](policy-csp-admx-appcompat.md)
+- [ADMX_AppxPackageManager](policy-csp-admx-appxpackagemanager.md)
+- [ADMX_AppXRuntime](policy-csp-admx-appxruntime.md)
+- [ADMX_AttachmentManager](policy-csp-admx-attachmentmanager.md)
+- [ADMX_AuditSettings](policy-csp-admx-auditsettings.md)
+- [ADMX_Bits](policy-csp-admx-bits.md)
+- [ADMX_CipherSuiteOrder](policy-csp-admx-ciphersuiteorder.md)
+- [ADMX_COM](policy-csp-admx-com.md)
+- [ADMX_ControlPanel](policy-csp-admx-controlpanel.md)
+- [ADMX_ControlPanelDisplay](policy-csp-admx-controlpaneldisplay.md)
+- [ADMX_Cpls](policy-csp-admx-cpls.md)
+- [ADMX_CredentialProviders](policy-csp-admx-credentialproviders.md)
+- [ADMX_CredSsp](policy-csp-admx-credssp.md)
+- [ADMX_CredUI](policy-csp-admx-credui.md)
+- [ADMX_CtrlAltDel](policy-csp-admx-ctrlaltdel.md)
+- [ADMX_DataCollection](policy-csp-admx-datacollection.md)
+- [ADMX_DCOM](policy-csp-admx-dcom.md)
+- [ADMX_Desktop](policy-csp-admx-desktop.md)
+- [ADMX_DeviceCompat](policy-csp-admx-devicecompat.md)
+- [ADMX_DeviceGuard](policy-csp-admx-deviceguard.md)
+- [ADMX_DeviceInstallation](policy-csp-admx-deviceinstallation.md)
+- [ADMX_DeviceSetup](policy-csp-admx-devicesetup.md)
+- [ADMX_DFS](policy-csp-admx-dfs.md)
+- [ADMX_DigitalLocker](policy-csp-admx-digitallocker.md)
+- [ADMX_DiskDiagnostic](policy-csp-admx-diskdiagnostic.md)
+- [ADMX_DiskNVCache](policy-csp-admx-disknvcache.md)
+- [ADMX_DiskQuota](policy-csp-admx-diskquota.md)
+- [ADMX_DistributedLinkTracking](policy-csp-admx-distributedlinktracking.md)
+- [ADMX_DnsClient](policy-csp-admx-dnsclient.md)
+- [ADMX_DWM](policy-csp-admx-dwm.md)
+- [ADMX_EAIME](policy-csp-admx-eaime.md)
+- [ADMX_EncryptFilesonMove](policy-csp-admx-encryptfilesonmove.md)
+- [ADMX_EnhancedStorage](policy-csp-admx-enhancedstorage.md)
+- [ADMX_ErrorReporting](policy-csp-admx-errorreporting.md)
+- [ADMX_EventForwarding](policy-csp-admx-eventforwarding.md)
+- [ADMX_EventLog](policy-csp-admx-eventlog.md)
+- [ADMX_EventLogging](policy-csp-admx-eventlogging.md)
+- [ADMX_EventViewer](policy-csp-admx-eventviewer.md)
+- [ADMX_Explorer](policy-csp-admx-explorer.md)
+- [ADMX_ExternalBoot](policy-csp-admx-externalboot.md)
+- [ADMX_FileRecovery](policy-csp-admx-filerecovery.md)
+- [ADMX_FileRevocation](policy-csp-admx-filerevocation.md)
+- [ADMX_FileServerVSSProvider](policy-csp-admx-fileservervssprovider.md)
+- [ADMX_FileSys](policy-csp-admx-filesys.md)
+- [ADMX_FolderRedirection](policy-csp-admx-folderredirection.md)
+- [ADMX_FramePanes](policy-csp-admx-framepanes.md)
+- [ADMX_fthsvc](policy-csp-admx-fthsvc.md)
+- [ADMX_Globalization](policy-csp-admx-globalization.md)
+- [ADMX_GroupPolicy](policy-csp-admx-grouppolicy.md)
+- [ADMX_Help](policy-csp-admx-help.md)
+- [ADMX_HelpAndSupport](policy-csp-admx-helpandsupport.md)
+- [ADMX_hotspotauth](policy-csp-admx-hotspotauth.md)
+- [ADMX_ICM](policy-csp-admx-icm.md)
+- [ADMX_IIS](policy-csp-admx-iis.md)
+- [ADMX_iSCSI](policy-csp-admx-iscsi.md)
+- [ADMX_kdc](policy-csp-admx-kdc.md)
+- [ADMX_Kerberos](policy-csp-admx-kerberos.md)
+- [ADMX_LanmanServer](policy-csp-admx-lanmanserver.md)
+- [ADMX_LanmanWorkstation](policy-csp-admx-lanmanworkstation.md)
+- [ADMX_LeakDiagnostic](policy-csp-admx-leakdiagnostic.md)
+- [ADMX_LinkLayerTopologyDiscovery](policy-csp-admx-linklayertopologydiscovery.md)
+- [ADMX_LocationProviderAdm](policy-csp-admx-locationprovideradm.md)
+- [ADMX_Logon](policy-csp-admx-logon.md)
+- [ADMX_MicrosoftDefenderAntivirus](policy-csp-admx-microsoftdefenderantivirus.md)
+- [ADMX_MMC](policy-csp-admx-mmc.md)
+- [ADMX_MMCSnapins](policy-csp-admx-mmcsnapins.md)
+- [ADMX_MobilePCMobilityCenter](policy-csp-admx-mobilepcmobilitycenter.md)
+- [ADMX_MobilePCPresentationSettings](policy-csp-admx-mobilepcpresentationsettings.md)
+- [ADMX_MSAPolicy](policy-csp-admx-msapolicy.md)
+- [ADMX_msched](policy-csp-admx-msched.md)
+- [ADMX_MSDT](policy-csp-admx-msdt.md)
+- [ADMX_MSI](policy-csp-admx-msi.md)
+- [ADMX_MsiFileRecovery](policy-csp-admx-msifilerecovery.md)
+- [ADMX_MSS-legacy](policy-csp-admx-mss-legacy.md)
+- [ADMX_nca](policy-csp-admx-nca.md)
+- [ADMX_NCSI](policy-csp-admx-ncsi.md)
+- [ADMX_Netlogon](policy-csp-admx-netlogon.md)
+- [ADMX_NetworkConnections](policy-csp-admx-networkconnections.md)
+- [ADMX_OfflineFiles](policy-csp-admx-offlinefiles.md)
+- [ADMX_pca](policy-csp-admx-pca.md)
+- [ADMX_PeerToPeerCaching](policy-csp-admx-peertopeercaching.md)
+- [ADMX_PenTraining](policy-csp-admx-pentraining.md)
+- [ADMX_PerformanceDiagnostics](policy-csp-admx-performancediagnostics.md)
+- [ADMX_Power](policy-csp-admx-power.md)
+- [ADMX_PowerShellExecutionPolicy](policy-csp-admx-powershellexecutionpolicy.md)
+- [ADMX_PreviousVersions](policy-csp-admx-previousversions.md)
+- [ADMX_Printing](policy-csp-admx-printing.md)
+- [ADMX_Printing2](policy-csp-admx-printing2.md)
+- [ADMX_Programs](policy-csp-admx-programs.md)
+- [ADMX_PushToInstall](policy-csp-admx-pushtoinstall.md)
+- [ADMX_QOS](policy-csp-admx-qos.md)
+- [ADMX_Radar](policy-csp-admx-radar.md)
+- [ADMX_Reliability](policy-csp-admx-reliability.md)
+- [ADMX_RemoteAssistance](policy-csp-admx-remoteassistance.md)
+- [ADMX_RemovableStorage](policy-csp-admx-removablestorage.md)
+- [ADMX_RPC](policy-csp-admx-rpc.md)
+- [ADMX_sam](policy-csp-admx-sam.md)
+- [ADMX_Scripts](policy-csp-admx-scripts.md)
+- [ADMX_sdiageng](policy-csp-admx-sdiageng.md)
+- [ADMX_sdiagschd](policy-csp-admx-sdiagschd.md)
+- [ADMX_Securitycenter](policy-csp-admx-securitycenter.md)
+- [ADMX_Sensors](policy-csp-admx-sensors.md)
+- [ADMX_ServerManager](policy-csp-admx-servermanager.md)
+- [ADMX_Servicing](policy-csp-admx-servicing.md)
+- [ADMX_SettingSync](policy-csp-admx-settingsync.md)
+- [ADMX_SharedFolders](policy-csp-admx-sharedfolders.md)
+- [ADMX_Sharing](policy-csp-admx-sharing.md)
+- [ADMX_ShellCommandPromptRegEditTools](policy-csp-admx-shellcommandpromptregedittools.md)
+- [ADMX_Smartcard](policy-csp-admx-smartcard.md)
+- [ADMX_Snmp](policy-csp-admx-snmp.md)
+- [ADMX_SoundRec](policy-csp-admx-soundrec.md)
+- [ADMX_srmfci](policy-csp-admx-srmfci.md)
+- [ADMX_StartMenu](policy-csp-admx-startmenu.md)
+- [ADMX_SystemRestore](policy-csp-admx-systemrestore.md)
+- [ADMX_TabletPCInputPanel](policy-csp-admx-tabletpcinputpanel.md)
+- [ADMX_TabletShell](policy-csp-admx-tabletshell.md)
+- [ADMX_Taskbar](policy-csp-admx-taskbar.md)
+- [ADMX_tcpip](policy-csp-admx-tcpip.md)
+- [ADMX_TerminalServer](policy-csp-admx-terminalserver.md)
+- [ADMX_Thumbnails](policy-csp-admx-thumbnails.md)
+- [ADMX_TouchInput](policy-csp-admx-touchinput.md)
+- [ADMX_TPM](policy-csp-admx-tpm.md)
+- [ADMX_UserExperienceVirtualization](policy-csp-admx-userexperiencevirtualization.md)
+- [ADMX_UserProfiles](policy-csp-admx-userprofiles.md)
+- [ADMX_W32Time](policy-csp-admx-w32time.md)
+- [ADMX_WCM](policy-csp-admx-wcm.md)
+- [ADMX_WDI](policy-csp-admx-wdi.md)
+- [ADMX_WinCal](policy-csp-admx-wincal.md)
+- [ADMX_WindowsColorSystem](policy-csp-admx-windowscolorsystem.md)
+- [ADMX_WindowsConnectNow](policy-csp-admx-windowsconnectnow.md)
+- [ADMX_WindowsExplorer](policy-csp-admx-windowsexplorer.md)
+- [ADMX_WindowsMediaDRM](policy-csp-admx-windowsmediadrm.md)
+- [ADMX_WindowsMediaPlayer](policy-csp-admx-windowsmediaplayer.md)
+- [ADMX_WindowsRemoteManagement](policy-csp-admx-windowsremotemanagement.md)
+- [ADMX_WindowsStore](policy-csp-admx-windowsstore.md)
+- [ADMX_WinInit](policy-csp-admx-wininit.md)
+- [ADMX_WinLogon](policy-csp-admx-winlogon.md)
+- [ADMX_Winsrv](policy-csp-admx-winsrv.md)
+- [ADMX_wlansvc](policy-csp-admx-wlansvc.md)
+- [ADMX_WordWheel](policy-csp-admx-wordwheel.md)
+- [ADMX_WorkFoldersClient](policy-csp-admx-workfoldersclient.md)
+- [ADMX_WPN](policy-csp-admx-wpn.md)
+- [ApplicationDefaults](policy-csp-applicationdefaults.md)
+- [ApplicationManagement](policy-csp-applicationmanagement.md)
+- [AppRuntime](policy-csp-appruntime.md)
+- [AppVirtualization](policy-csp-appvirtualization.md)
+- [AttachmentManager](policy-csp-attachmentmanager.md)
+- [Audit](policy-csp-audit.md)
+- [Authentication](policy-csp-authentication.md)
+- [Autoplay](policy-csp-autoplay.md)
+- [Bitlocker](policy-csp-bitlocker.md)
+- [BITS](policy-csp-bits.md)
+- [Bluetooth](policy-csp-bluetooth.md)
+- [Browser](policy-csp-browser.md)
+- [Camera](policy-csp-camera.md)
+- [Cellular](policy-csp-cellular.md)
+- [CloudDesktop](policy-csp-clouddesktop.md)
+- [CloudPC](policy-csp-cloudpc.md)
+- [Connectivity](policy-csp-connectivity.md)
+- [ControlPolicyConflict](policy-csp-controlpolicyconflict.md)
+- [CredentialProviders](policy-csp-credentialproviders.md)
+- [CredentialsDelegation](policy-csp-credentialsdelegation.md)
+- [CredentialsUI](policy-csp-credentialsui.md)
+- [Cryptography](policy-csp-cryptography.md)
+- [DataProtection](policy-csp-dataprotection.md)
+- [DataUsage](policy-csp-datausage.md)
+- [Defender](policy-csp-defender.md)
+- [DeliveryOptimization](policy-csp-deliveryoptimization.md)
+- [Desktop](policy-csp-desktop.md)
+- [DesktopAppInstaller](policy-csp-desktopappinstaller.md)
+- [DeviceGuard](policy-csp-deviceguard.md)
+- [DeviceHealthMonitoring](policy-csp-devicehealthmonitoring.md)
+- [DeviceInstallation](policy-csp-deviceinstallation.md)
+- [DeviceLock](policy-csp-devicelock.md)
+- [Display](policy-csp-display.md)
+- [DmaGuard](policy-csp-dmaguard.md)
+- [Eap](policy-csp-eap.md)
+- [Education](policy-csp-education.md)
+- [EnterpriseCloudPrint](policy-csp-enterprisecloudprint.md)
+- [ErrorReporting](policy-csp-errorreporting.md)
+- [EventLogService](policy-csp-eventlogservice.md)
+- [Experience](policy-csp-experience.md)
+- [ExploitGuard](policy-csp-exploitguard.md)
+- [FederatedAuthentication](policy-csp-federatedauthentication.md)
+- [FileExplorer](policy-csp-fileexplorer.md)
+- [Games](policy-csp-games.md)
+- [Handwriting](policy-csp-handwriting.md)
+- [HumanPresence](policy-csp-humanpresence.md)
+- [InternetExplorer](policy-csp-internetexplorer.md)
+- [Kerberos](policy-csp-kerberos.md)
+- [KioskBrowser](policy-csp-kioskbrowser.md)
+- [LanmanWorkstation](policy-csp-lanmanworkstation.md)
+- [Licensing](policy-csp-licensing.md)
+- [LocalPoliciesSecurityOptions](policy-csp-localpoliciessecurityoptions.md)
+- [LocalSecurityAuthority](policy-csp-lsa.md)
+- [LocalUsersAndGroups](policy-csp-localusersandgroups.md)
+- [LockDown](policy-csp-lockdown.md)
+- [Maps](policy-csp-maps.md)
+- [MemoryDump](policy-csp-memorydump.md)
+- [Messaging](policy-csp-messaging.md)
+- [MixedReality](policy-csp-mixedreality.md)
+- [MSSecurityGuide](policy-csp-mssecurityguide.md)
+- [MSSLegacy](policy-csp-msslegacy.md)
+- [Multitasking](policy-csp-multitasking.md)
+- [NetworkIsolation](policy-csp-networkisolation.md)
+- [NetworkListManager](policy-csp-networklistmanager.md)
+- [NewsAndInterests](policy-csp-newsandinterests.md)
+- [Notifications](policy-csp-notifications.md)
+- [Power](policy-csp-power.md)
+- [Printers](policy-csp-printers.md)
+- [Privacy](policy-csp-privacy.md)
+- [RemoteAssistance](policy-csp-remoteassistance.md)
+- [RemoteDesktop](policy-csp-remotedesktop.md)
+- [RemoteDesktopServices](policy-csp-remotedesktopservices.md)
+- [RemoteManagement](policy-csp-remotemanagement.md)
+- [RemoteProcedureCall](policy-csp-remoteprocedurecall.md)
+- [RemoteShell](policy-csp-remoteshell.md)
+- [RestrictedGroups](policy-csp-restrictedgroups.md)
+- [Search](policy-csp-search.md)
+- [Security](policy-csp-security.md)
+- [ServiceControlManager](policy-csp-servicecontrolmanager.md)
+- [Settings](policy-csp-settings.md)
+- [SettingsSync](policy-csp-settingssync.md)
+- [SmartScreen](policy-csp-smartscreen.md)
+- [Speech](policy-csp-speech.md)
+- [Start](policy-csp-start.md)
+- [Stickers](policy-csp-stickers.md)
+- [Storage](policy-csp-storage.md)
+- [System](policy-csp-system.md)
+- [SystemServices](policy-csp-systemservices.md)
+- [TaskManager](policy-csp-taskmanager.md)
+- [TaskScheduler](policy-csp-taskscheduler.md)
+- [TenantDefinedTelemetry](policy-csp-tenantdefinedtelemetry.md)
+- [TenantRestrictions](policy-csp-tenantrestrictions.md)
+- [TextInput](policy-csp-textinput.md)
+- [TimeLanguageSettings](policy-csp-timelanguagesettings.md)
+- [Troubleshooting](policy-csp-troubleshooting.md)
+- [Update](policy-csp-update.md)
+- [UserRights](policy-csp-userrights.md)
+- [VirtualizationBasedTechnology](policy-csp-virtualizationbasedtechnology.md)
+- [WebThreatDefense](policy-csp-webthreatdefense.md)
+- [Wifi](policy-csp-wifi.md)
+- [WindowsAutopilot](policy-csp-windowsautopilot.md)
+- [WindowsConnectionManager](policy-csp-windowsconnectionmanager.md)
+- [WindowsDefenderSecurityCenter](policy-csp-windowsdefendersecuritycenter.md)
+- [WindowsInkWorkspace](policy-csp-windowsinkworkspace.md)
+- [WindowsLogon](policy-csp-windowslogon.md)
+- [WindowsPowerShell](policy-csp-windowspowershell.md)
+- [WindowsSandbox](policy-csp-windowssandbox.md)
+- [WirelessDisplay](policy-csp-wirelessdisplay.md)
+
+
+
+
+
+
+## Related articles
+
+[Configuration service provider reference](configuration-service-provider-reference.md)
diff --git a/windows/client-management/mdm/policy-csp-admx-mss-legacy.md b/windows/client-management/mdm/policy-csp-admx-mss-legacy.md
new file mode 100644
index 0000000000..a22c707db1
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-mss-legacy.md
@@ -0,0 +1,812 @@
+---
+title: ADMX_MSS-legacy Policy CSP
+description: Learn more about the ADMX_MSS-legacy Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/29/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - ADMX_MSS-legacy
+
+> [!TIP]
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+
+
+
+
+
+## Pol_MSS_AutoAdminLogon
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_AutoAdminLogon
+```
+
+
+
+
+
+
+
+
+Enable Automatic Logon (not recommended).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_AutoReboot
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_AutoReboot
+```
+
+
+
+
+
+
+
+
+Allow Windows to automatically restart after a system crash (recommended except for highly secure environments).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_AutoShareServer
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_AutoShareServer
+```
+
+
+
+
+
+
+
+
+Enable administrative shares on servers (recommended except for highly secure environments).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_AutoShareWks
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_AutoShareWks
+```
+
+
+
+
+
+
+
+
+Enable administrative shares on workstations (recommended except for highly secure environments).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_DisableSavePassword
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_DisableSavePassword
+```
+
+
+
+
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+Prevent the dial-up password from being saved (recommended).
+
+
+
+
+
+## Pol_MSS_EnableDeadGWDetect
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_EnableDeadGWDetect
+```
+
+
+
+
+
+
+
+
+Allow automatic detection of dead network gateways (could lead to DoS).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_HideFromBrowseList
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_HideFromBrowseList
+```
+
+
+
+
+
+
+
+
+Hide Computer From the Browse List (not recommended except for highly secure environments).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_KeepAliveTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_KeepAliveTime
+```
+
+
+
+
+
+
+
+
+Define how often keep-alive packets are sent in milliseconds.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_NoDefaultExempt
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_NoDefaultExempt
+```
+
+
+
+
+
+
+
+
+Configure IPSec exemptions for various types of network traffic.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_NtfsDisable8dot3NameCreation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_NtfsDisable8dot3NameCreation
+```
+
+
+
+
+
+
+
+
+Enable the computer to stop generating 8.3 style filenames.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_PerformRouterDiscovery
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_PerformRouterDiscovery
+```
+
+
+
+
+
+
+
+
+ Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_SafeDllSearchMode
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_SafeDllSearchMode
+```
+
+
+
+
+
+
+
+
+Enable Safe DLL search mode (recommended).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_ScreenSaverGracePeriod
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_ScreenSaverGracePeriod
+```
+
+
+
+
+
+
+
+
+he time in seconds before the screen saver grace period expires (0 recommended).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_SynAttackProtect
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_SynAttackProtect
+```
+
+
+
+
+
+
+
+
+Syn attack protection level (protects against DoS).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_TcpMaxConnectResponseRetransmissions
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_TcpMaxConnectResponseRetransmissions
+```
+
+
+
+
+
+
+
+
+SYN-ACK retransmissions when a connection request is not acknowledged.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_TcpMaxDataRetransmissions
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_TcpMaxDataRetransmissions
+```
+
+
+
+
+
+
+
+
+Define how many times unacknowledged data is retransmitted (3 recommended, 5 is default).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_TcpMaxDataRetransmissionsIPv6
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_TcpMaxDataRetransmissionsIPv6
+```
+
+
+
+
+
+
+
+
+Define how many times unacknowledged data is retransmitted (3 recommended, 5 is default).
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Pol_MSS_WarningLevel
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_MSS-legacy/Pol_MSS_WarningLevel
+```
+
+
+
+
+
+
+
+
+Percentage threshold for the security event log at which the system will generate a warning.
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-admx-qos.md b/windows/client-management/mdm/policy-csp-admx-qos.md
new file mode 100644
index 0000000000..615fe1f468
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-qos.md
@@ -0,0 +1,1145 @@
+---
+title: ADMX_QOS Policy CSP
+description: Learn more about the ADMX_QOS Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/29/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - ADMX_QOS
+
+> [!TIP]
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+
+
+
+
+
+## QosMaxOutstandingSends
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosMaxOutstandingSends
+```
+
+
+
+Specifies the maximum number of outstanding packets permitted on the system. When the number of outstanding packets reaches this limit, the Packet Scheduler postpones all submissions to network adapters until the number falls below this limit.
+
+"Outstanding packets" are packets that the Packet Scheduler has submitted to a network adapter for transmission, but which have not yet been sent.
+
+If you enable this setting, you can limit the number of outstanding packets.
+
+If you disable this setting or do not configure it, then the setting has no effect on the system.
+
+Important: If the maximum number of outstanding packets is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosMaxOutstandingSends |
+| Friendly Name | Limit outstanding packets |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosNonBestEffortLimit
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosNonBestEffortLimit
+```
+
+
+
+Determines the percentage of connection bandwidth that the system can reserve. This value limits the combined bandwidth reservations of all programs running on the system.
+
+By default, the Packet Scheduler limits the system to 80 percent of the bandwidth of a connection, but you can use this setting to override the default.
+
+If you enable this setting, you can use the "Bandwidth limit" box to adjust the amount of bandwidth the system can reserve.
+
+If you disable this setting or do not configure it, the system uses the default value of 80 percent of the connection.
+
+Important: If a bandwidth limit is set for a particular network adapter in the registry, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosNonBestEffortLimit |
+| Friendly Name | Limit reservable bandwidth |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeBestEffort_C
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeBestEffort_C
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Best Effort service type (ServiceTypeBestEffort). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Best Effort service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeBestEffort_C |
+| Friendly Name | Best effort service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeBestEffort_NC
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeBestEffort_NC
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Best Effort service type (ServiceTypeBestEffort). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that do not conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Best Effort service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeBestEffort_NC |
+| Friendly Name | Best effort service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of non-conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingNonConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeBestEffort_PV
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeBestEffort_PV
+```
+
+
+
+Specifies an alternate link layer (Layer-2) priority value for packets with the Best Effort service type (ServiceTypeBestEffort). The Packet Scheduler inserts the corresponding priority value in the Layer-2 header of the packets.
+
+If you enable this setting, you can change the default priority value associated with the Best Effort service type.
+
+If you disable this setting, the system uses the default priority value of 0.
+
+Important: If the Layer-2 priority value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeBestEffort_PV |
+| Friendly Name | Best effort service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > Layer-2 priority value |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\UserPriorityMapping |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeControlledLoad_C
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeControlledLoad_C
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Controlled Load service type (ServiceTypeControlledLoad). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Controlled Load service type.
+
+If you disable this setting, the system uses the default DSCP value of 24 (0x18).
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeControlledLoad_C |
+| Friendly Name | Controlled load service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeControlledLoad_NC
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeControlledLoad_NC
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Controlled Load service type (ServiceTypeControlledLoad). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that do not conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Controlled Load service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeControlledLoad_NC |
+| Friendly Name | Controlled load service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of non-conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingNonConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeControlledLoad_PV
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeControlledLoad_PV
+```
+
+
+
+Specifies an alternate link layer (Layer-2) priority value for packets with the Controlled Load service type (ServiceTypeControlledLoad). The Packet Scheduler inserts the corresponding priority value in the Layer-2 header of the packets.
+
+If you enable this setting, you can change the default priority value associated with the Controlled Load service type.
+
+If you disable this setting, the system uses the default priority value of 0.
+
+Important: If the Layer-2 priority value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeControlledLoad_PV |
+| Friendly Name | Controlled load service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > Layer-2 priority value |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\UserPriorityMapping |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeGuaranteed_C
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeGuaranteed_C
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Guaranteed service type (ServiceTypeGuaranteed). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Guaranteed service type.
+
+If you disable this setting, the system uses the default DSCP value of 40 (0x28).
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeGuaranteed_C |
+| Friendly Name | Guaranteed service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeGuaranteed_NC
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeGuaranteed_NC
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Guaranteed service type (ServiceTypeGuaranteed). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that do not conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Guaranteed service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeGuaranteed_NC |
+| Friendly Name | Guaranteed service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of non-conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingNonConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeGuaranteed_PV
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeGuaranteed_PV
+```
+
+
+
+Specifies an alternate link layer (Layer-2) priority value for packets with the Guaranteed service type (ServiceTypeGuaranteed). The Packet Scheduler inserts the corresponding priority value in the Layer-2 header of the packets.
+
+If you enable this setting, you can change the default priority value associated with the Guaranteed service type.
+
+If you disable this setting, the system uses the default priority value of 0.
+
+Important: If the Layer-2 priority value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeGuaranteed_PV |
+| Friendly Name | Guaranteed service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > Layer-2 priority value |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\UserPriorityMapping |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeNetworkControl_C
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeNetworkControl_C
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Network Control service type (ServiceTypeNetworkControl). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Network Control service type.
+
+If you disable this setting, the system uses the default DSCP value of 48 (0x30).
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeNetworkControl_C |
+| Friendly Name | Network control service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeNetworkControl_NC
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeNetworkControl_NC
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Network Control service type (ServiceTypeNetworkControl). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that do not conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Network Control service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeNetworkControl_NC |
+| Friendly Name | Network control service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of non-conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingNonConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeNetworkControl_PV
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeNetworkControl_PV
+```
+
+
+
+Specifies an alternate link layer (Layer-2) priority value for packets with the Network Control service type (ServiceTypeNetworkControl). The Packet Scheduler inserts the corresponding priority value in the Layer-2 header of the packets.
+
+If you enable this setting, you can change the default priority value associated with the Network Control service type.
+
+If you disable this setting, the system uses the default priority value of 0.
+
+Important: If the Layer-2 priority value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeNetworkControl_PV |
+| Friendly Name | Network control service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > Layer-2 priority value |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\UserPriorityMapping |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeNonConforming
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeNonConforming
+```
+
+
+
+Specifies an alternate link layer (Layer-2) priority value for packets that do not conform to the flow specification. The Packet Scheduler inserts the corresponding priority value in the Layer-2 header of the packets.
+
+If you enable this setting, you can change the default priority value associated with nonconforming packets.
+
+If you disable this setting, the system uses the default priority value of 0.
+
+Important: If the Layer-2 priority value for nonconforming packets is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeNonConforming |
+| Friendly Name | Non-conforming packets |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > Layer-2 priority value |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\UserPriorityMapping |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeQualitative_C
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeQualitative_C
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Qualitative service type (ServiceTypeQualitative). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Qualitative service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeQualitative_C |
+| Friendly Name | Qualitative service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeQualitative_NC
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeQualitative_NC
+```
+
+
+
+Specifies an alternate Layer-3 Differentiated Services Code Point (DSCP) value for packets with the Qualitative service type (ServiceTypeQualitative). The Packet Scheduler inserts the corresponding DSCP value in the IP header of the packets.
+
+This setting applies only to packets that do not conform to the flow specification.
+
+If you enable this setting, you can change the default DSCP value associated with the Qualitative service type.
+
+If you disable this setting, the system uses the default DSCP value of 0.
+
+Important: If the DSCP value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeQualitative_NC |
+| Friendly Name | Qualitative service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > DSCP value of non-conforming packets |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\DiffservByteMappingNonConforming |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosServiceTypeQualitative_PV
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosServiceTypeQualitative_PV
+```
+
+
+
+Specifies an alternate link layer (Layer-2) priority value for packets with the Qualitative service type (ServiceTypeQualitative). The Packet Scheduler inserts the corresponding priority value in the Layer-2 header of the packets.
+
+If you enable this setting, you can change the default priority value associated with the Qualitative service type.
+
+If you disable this setting, the system uses the default priority value of 0.
+
+Important: If the Layer-2 priority value for this service type is specified in the registry for a particular network adapter, this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosServiceTypeQualitative_PV |
+| Friendly Name | Qualitative service type |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler > Layer-2 priority value |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched\UserPriorityMapping |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+## QosTimerResolution
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_QOS/QosTimerResolution
+```
+
+
+
+Determines the smallest unit of time that the Packet Scheduler uses when scheduling packets for transmission. The Packet Scheduler cannot schedule packets for transmission more frequently than permitted by the value of this entry.
+
+If you enable this setting, you can override the default timer resolution established for the system, usually units of 10 microseconds.
+
+If you disable this setting or do not configure it, the setting has no effect on the system.
+
+Important: If a timer resolution is specified in the registry for a particular network adapter, then this setting is ignored when configuring that network adapter.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | QosTimerResolution |
+| Friendly Name | Set timer resolution |
+| Location | Computer Configuration |
+| Path | Network > QoS Packet Scheduler |
+| Registry Key Name | Software\Policies\Microsoft\Windows\Psched |
+| ADMX File Name | QOS.admx |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-admx-sam.md b/windows/client-management/mdm/policy-csp-admx-sam.md
new file mode 100644
index 0000000000..16f8928707
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-sam.md
@@ -0,0 +1,113 @@
+---
+title: ADMX_sam Policy CSP
+description: Learn more about the ADMX_sam Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/29/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - ADMX_sam
+
+> [!TIP]
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+
+
+
+
+
+## SamNGCKeyROCAValidation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_sam/SamNGCKeyROCAValidation
+```
+
+
+
+This policy setting allows you to configure how domain controllers handle Windows Hello for Business (WHfB) keys that are vulnerable to the "Return of Coppersmith's attack" (ROCA) vulnerability.
+
+For more information on the ROCA vulnerability, please see:
+
+https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15361
+
+https://en.wikipedia.org/wiki/ROCA_vulnerability
+
+If you enable this policy setting the following options are supported:
+
+Ignore: during authentication the domain controller will not probe any WHfB keys for the ROCA vulnerability.
+
+Audit: during authentication the domain controller will emit audit events for WHfB keys that are subject to the ROCA vulnerability (authentications will still succeed).
+
+Block: during authentication the domain controller will block the use of WHfB keys that are subject to the ROCA vulnerability (authentications will fail).
+
+This setting only takes effect on domain controllers.
+
+If not configured, domain controllers will default to using their local configuration. The default local configuration is Audit.
+
+A reboot is not required for changes to this setting to take effect.
+
+Note: to avoid unexpected disruptions this setting should not be set to Block until appropriate mitigations have been performed, for example patching of vulnerable TPMs.
+
+More information is available at https://go.microsoft.com/fwlink/?linkid=2116430.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SamNGCKeyROCAValidation |
+| Friendly Name | Configure validation of ROCA-vulnerable WHfB keys during authentication |
+| Location | Computer Configuration |
+| Path | System > Security Account Manager |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System\SAM |
+| ADMX File Name | sam.admx |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-admx-tabletpcinputpanel.md b/windows/client-management/mdm/policy-csp-admx-tabletpcinputpanel.md
new file mode 100644
index 0000000000..b8297ea689
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-tabletpcinputpanel.md
@@ -0,0 +1,1038 @@
+---
+title: ADMX_TabletPCInputPanel Policy CSP
+description: Learn more about the ADMX_TabletPCInputPanel Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/29/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - ADMX_TabletPCInputPanel
+
+> [!TIP]
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+
+
+
+
+
+## AutoComplete_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/AutoComplete_2
+```
+
+
+
+Turns off the integration of application auto complete lists with Tablet PC Input Panel in applications where this behavior is available.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, application auto complete lists will never appear next to Input Panel. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, application auto complete lists will appear next to Input Panel in applications where the functionality is available. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, application auto complete lists will appear next to Input Panel in applications where the functionality is available. Users will be able to configure this setting on the Text completion tab in Input Panel Options.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | AutoComplete |
+| Friendly Name | Turn off AutoComplete integration with Input Panel |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | DisableACIntegration |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## EdgeTarget_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/EdgeTarget_2
+```
+
+
+
+Prevents Input Panel tab from appearing on the edge of the Tablet PC screen.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel tab will not appear on the edge of the Tablet PC screen. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel tab will appear on the edge of the Tablet PC screen. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel tab will appear on the edge of the Tablet PC screen. Users will be able to configure this setting on the Opening tab in Input Panel Options.
+
+Caution: If you enable both the “Prevent Input Panel from appearing next to text entry areas” policy and the “Prevent Input Panel tab from appearing” policy, and disable the “Show Input Panel taskbar icon” policy, the user will then have no way to access Input Panel.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | EdgeTarget |
+| Friendly Name | Prevent Input Panel tab from appearing |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | DisableEdgeTarget |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## IPTIPTarget_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/IPTIPTarget_2
+```
+
+
+
+Prevents the Tablet PC Input Panel icon from appearing next to any text entry area in applications where this behavior is available. This policy applies only when using a tablet pen as an input device.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel will never appear next to text entry areas when using a tablet pen as an input device. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel will appear next to any text entry area in applications where this behavior is available. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel will appear next to text entry areas in applications where this behavior is available. Users will be able to configure this setting on the Opening tab in Input Panel Options.
+
+Caution: If you enable both the “Prevent Input Panel from appearing next to text entry areas” policy and the “Prevent Input Panel tab from appearing” policy, and disable the “Show Input Panel taskbar icon” policy, the user will then have no way to access Input Panel.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | IPTIPTarget |
+| Friendly Name | For tablet pen input, don’t show the Input Panel icon |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | HideIPTIPTarget |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## IPTIPTouchTarget_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/IPTIPTouchTarget_2
+```
+
+
+
+Prevents the Tablet PC Input Panel icon from appearing next to any text entry area in applications where this behavior is available. This policy applies only when a user is using touch input.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel will never appear next to any text entry area when a user is using touch input. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel will appear next to text entry areas in applications where this behavior is available. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel will appear next to text entry areas in applications where this behavior is available. Users will be able to configure this setting on the Opening tab in Input Panel Options.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | IPTIPTouchTarget |
+| Friendly Name | For touch input, don’t show the Input Panel icon |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | HideIPTIPTouchTarget |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## PasswordSecurity_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/PasswordSecurity_2
+```
+
+
+
+Adjusts password security settings in Touch Keyboard and Handwriting panel (a.k.a. Tablet PC Input Panel in Windows 7 and Windows Vista). These settings include using the on-screen keyboard by default, preventing users from switching to another Input Panel skin (the writing pad or character pad), and not showing what keys are tapped when entering a password.
+
+Touch Keyboard and Handwriting panel enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy and choose “Low” from the drop-down box, password security is set to “Low.” At this setting, all password security settings are turned off. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “Medium-Low” from the drop-down box, password security is set to “Medium-Low.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel displays the cursor and which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “Medium” from the drop-down box, password security is set to “Medium.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is not allowed, and Input Panel displays the cursor and which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose to “Medium-High” from the drop-down box, password security is set to “Medium-High.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel does not display the cursor or which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “High” from the drop-down box, password security is set to “High.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is not allowed, and Input Panel does not display the cursor or which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, password security is set to “Medium-High.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel does not display the cursor or which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, password security is set to “Medium-High” by default. At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel does not display the cursor or which keys are tapped. Users will be able to configure this setting on the Advanced tab in Input Panel Options in Windows 7 and Windows Vista.
+
+Caution: If you lower password security settings, people who can see the user’s screen might be able to see their passwords.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | PasswordSecurity |
+| Friendly Name | Turn off password security in Input Panel |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | PasswordSecurityState |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## Prediction_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/Prediction_2
+```
+
+
+
+Prevents the Touch Keyboard and Handwriting panel (a.k.a. Tablet PC Input Panel in Windows 7 and Windows Vista) from providing text prediction suggestions. This policy applies for both the on-screen keyboard and the handwriting tab when the feature is available for the current input area and input language.
+
+Touch Keyboard and Handwriting panel enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel will not provide text prediction suggestions. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel will provide text prediction suggestions. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel will provide text prediction suggestions. Users will be able to configure this setting on the Text Completion tab in Input Panel Options in Windows 7 and Windows Vista.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | EnablePrediction |
+| Friendly Name | Disable text prediction |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | DisablePrediction |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## RareChar_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/RareChar_2
+```
+
+
+
+Includes rarely used Chinese, Kanji, and Hanja characters when handwriting is converted to typed text. This policy applies only to the use of the Microsoft recognizers for Chinese (Simplified), Chinese (Traditional), Japanese, and Korean. This setting appears in Input Panel Options (in Windows 7 and Windows Vista only) only when these input languages or keyboards are installed.
+
+Touch Keyboard and Handwriting panel (a.k.a. Tablet PC Input Panel in Windows 7 and Windows Vista) enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, rarely used Chinese, Kanji, and Hanja characters will be included in recognition results when handwriting is converted to typed text. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, rarely used Chinese, Kanji, and Hanja characters will not be included in recognition results when handwriting is converted to typed text. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, rarely used Chinese, Kanji, and Hanja characters will not be included in recognition results when handwriting is converted to typed text. Users will be able to configure this setting on the Ink to text conversion tab in Input Panel Options (in Windows 7 and Windows Vista).
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | RareChar |
+| Friendly Name | Include rarely used Chinese, Kanji, or Hanja characters |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | IncludeRareChar |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## ScratchOut_2
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/ScratchOut_2
+```
+
+
+
+Turns off both the more tolerant scratch-out gestures that were added in Windows Vista and the Z-shaped scratch-out gesture that was available in Microsoft Windows XP Tablet PC Edition.
+
+The tolerant gestures let users scratch out ink in Input Panel by using strikethrough and other scratch-out gesture shapes.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy and choose “All” from the drop-down menu, no scratch-out gestures will be available in Input Panel. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “Tolerant," users will be able to use the Z-shaped scratch-out gesture that was available in Microsoft Windows XP Tablet PC Edition. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “None,” users will be able to use both the tolerant scratch-out gestures and the Z-shaped scratch-out gesture. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, users will be able to use both the tolerant scratch-out gestures and the Z-shaped scratch-out gesture. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, users will be able to use both the tolerant scratch-out gestures and the Z-shaped scratch-out gesture. Users will be able to configure this setting on the Gestures tab in Input Panel Options.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ScratchOut |
+| Friendly Name | Turn off tolerant and Z-shaped scratch-out gestures |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | ScratchOutState |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## AutoComplete_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/AutoComplete_1
+```
+
+
+
+Turns off the integration of application auto complete lists with Tablet PC Input Panel in applications where this behavior is available.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, application auto complete lists will never appear next to Input Panel. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, application auto complete lists will appear next to Input Panel in applications where the functionality is available. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, application auto complete lists will appear next to Input Panel in applications where the functionality is available. Users will be able to configure this setting on the Text completion tab in Input Panel Options.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | AutoComplete |
+| Friendly Name | Turn off AutoComplete integration with Input Panel |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | DisableACIntegration |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## EdgeTarget_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/EdgeTarget_1
+```
+
+
+
+Prevents Input Panel tab from appearing on the edge of the Tablet PC screen.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel tab will not appear on the edge of the Tablet PC screen. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel tab will appear on the edge of the Tablet PC screen. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel tab will appear on the edge of the Tablet PC screen. Users will be able to configure this setting on the Opening tab in Input Panel Options.
+
+Caution: If you enable both the “Prevent Input Panel from appearing next to text entry areas” policy and the “Prevent Input Panel tab from appearing” policy, and disable the “Show Input Panel taskbar icon” policy, the user will then have no way to access Input Panel.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | EdgeTarget |
+| Friendly Name | Prevent Input Panel tab from appearing |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | DisableEdgeTarget |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## IPTIPTarget_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/IPTIPTarget_1
+```
+
+
+
+Prevents the Tablet PC Input Panel icon from appearing next to any text entry area in applications where this behavior is available. This policy applies only when using a tablet pen as an input device.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel will never appear next to text entry areas when using a tablet pen as an input device. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel will appear next to any text entry area in applications where this behavior is available. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel will appear next to text entry areas in applications where this behavior is available. Users will be able to configure this setting on the Opening tab in Input Panel Options.
+
+Caution: If you enable both the “Prevent Input Panel from appearing next to text entry areas” policy and the “Prevent Input Panel tab from appearing” policy, and disable the “Show Input Panel taskbar icon” policy, the user will then have no way to access Input Panel.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | IPTIPTarget |
+| Friendly Name | For tablet pen input, don’t show the Input Panel icon |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | HideIPTIPTarget |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## IPTIPTouchTarget_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/IPTIPTouchTarget_1
+```
+
+
+
+Prevents the Tablet PC Input Panel icon from appearing next to any text entry area in applications where this behavior is available. This policy applies only when a user is using touch input.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel will never appear next to any text entry area when a user is using touch input. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel will appear next to text entry areas in applications where this behavior is available. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel will appear next to text entry areas in applications where this behavior is available. Users will be able to configure this setting on the Opening tab in Input Panel Options.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | IPTIPTouchTarget |
+| Friendly Name | For touch input, don’t show the Input Panel icon |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | HideIPTIPTouchTarget |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## PasswordSecurity_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/PasswordSecurity_1
+```
+
+
+
+Adjusts password security settings in Touch Keyboard and Handwriting panel (a.k.a. Tablet PC Input Panel in Windows 7 and Windows Vista). These settings include using the on-screen keyboard by default, preventing users from switching to another Input Panel skin (the writing pad or character pad), and not showing what keys are tapped when entering a password.
+
+Touch Keyboard and Handwriting panel enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy and choose “Low” from the drop-down box, password security is set to “Low.” At this setting, all password security settings are turned off. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “Medium-Low” from the drop-down box, password security is set to “Medium-Low.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel displays the cursor and which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “Medium” from the drop-down box, password security is set to “Medium.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is not allowed, and Input Panel displays the cursor and which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose to “Medium-High” from the drop-down box, password security is set to “Medium-High.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel does not display the cursor or which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “High” from the drop-down box, password security is set to “High.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is not allowed, and Input Panel does not display the cursor or which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, password security is set to “Medium-High.” At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel does not display the cursor or which keys are tapped. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, password security is set to “Medium-High” by default. At this setting, when users enter passwords from Input Panel they use the on-screen keyboard by default, skin switching is allowed, and Input Panel does not display the cursor or which keys are tapped. Users will be able to configure this setting on the Advanced tab in Input Panel Options in Windows 7 and Windows Vista.
+
+Caution: If you lower password security settings, people who can see the user’s screen might be able to see their passwords.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | PasswordSecurity |
+| Friendly Name | Turn off password security in Input Panel |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | PasswordSecurityState |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## Prediction_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/Prediction_1
+```
+
+
+
+Prevents the Touch Keyboard and Handwriting panel (a.k.a. Tablet PC Input Panel in Windows 7 and Windows Vista) from providing text prediction suggestions. This policy applies for both the on-screen keyboard and the handwriting tab when the feature is available for the current input area and input language.
+
+Touch Keyboard and Handwriting panel enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, Input Panel will not provide text prediction suggestions. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, Input Panel will provide text prediction suggestions. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, Input Panel will provide text prediction suggestions. Users will be able to configure this setting on the Text Completion tab in Input Panel Options in Windows 7 and Windows Vista.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | EnablePrediction |
+| Friendly Name | Disable text prediction |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | DisablePrediction |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## RareChar_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/RareChar_1
+```
+
+
+
+Includes rarely used Chinese, Kanji, and Hanja characters when handwriting is converted to typed text. This policy applies only to the use of the Microsoft recognizers for Chinese (Simplified), Chinese (Traditional), Japanese, and Korean. This setting appears in Input Panel Options (in Windows 7 and Windows Vista only) only when these input languages or keyboards are installed.
+
+Touch Keyboard and Handwriting panel (a.k.a. Tablet PC Input Panel in Windows 7 and Windows Vista) enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy, rarely used Chinese, Kanji, and Hanja characters will be included in recognition results when handwriting is converted to typed text. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, rarely used Chinese, Kanji, and Hanja characters will not be included in recognition results when handwriting is converted to typed text. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, rarely used Chinese, Kanji, and Hanja characters will not be included in recognition results when handwriting is converted to typed text. Users will be able to configure this setting on the Ink to text conversion tab in Input Panel Options (in Windows 7 and Windows Vista).
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | RareChar |
+| Friendly Name | Include rarely used Chinese, Kanji, or Hanja characters |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | IncludeRareChar |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+## ScratchOut_1
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :x: Device
:heavy_check_mark: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```User
+./User/Vendor/MSFT/Policy/Config/ADMX_TabletPCInputPanel/ScratchOut_1
+```
+
+
+
+Turns off both the more tolerant scratch-out gestures that were added in Windows Vista and the Z-shaped scratch-out gesture that was available in Microsoft Windows XP Tablet PC Edition.
+
+The tolerant gestures let users scratch out ink in Input Panel by using strikethrough and other scratch-out gesture shapes.
+
+Tablet PC Input Panel is a Tablet PC accessory that enables you to use handwriting or an on-screen keyboard to enter text, symbols, numbers, or keyboard shortcuts.
+
+If you enable this policy and choose “All” from the drop-down menu, no scratch-out gestures will be available in Input Panel. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “Tolerant," users will be able to use the Z-shaped scratch-out gesture that was available in Microsoft Windows XP Tablet PC Edition. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you enable this policy and choose “None,” users will be able to use both the tolerant scratch-out gestures and the Z-shaped scratch-out gesture. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you disable this policy, users will be able to use both the tolerant scratch-out gestures and the Z-shaped scratch-out gesture. Users will not be able to configure this setting in the Input Panel Options dialog box.
+
+If you do not configure this policy, users will be able to use both the tolerant scratch-out gestures and the Z-shaped scratch-out gesture. Users will be able to configure this setting on the Gestures tab in Input Panel Options.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ScratchOut |
+| Friendly Name | Turn off tolerant and Z-shaped scratch-out gestures |
+| Location | User Configuration |
+| Path | WindowsComponents > Tablet PC > Input Panel |
+| Registry Key Name | software\policies\microsoft\TabletTip\1.7 |
+| Registry Value Name | ScratchOutState |
+| ADMX File Name | TabletPCInputPanel.admx |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-clouddesktop.md b/windows/client-management/mdm/policy-csp-clouddesktop.md
new file mode 100644
index 0000000000..c0907eacb8
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-clouddesktop.md
@@ -0,0 +1,80 @@
+---
+title: CloudDesktop Policy CSP
+description: Learn more about the CloudDesktop Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/22/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - CloudDesktop
+
+
+
+
+
+
+## BootToCloudMode
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:x: Windows SE | :heavy_check_mark: Windows Insider Preview |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/CloudDesktop/BootToCloudMode
+```
+
+
+
+This policy is used by IT admin to set the configuration mode of cloud PC.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+| Dependency [OverrideShellProgramDependencyGroup] | Dependency Type: `DependsOn`
Dependency URI: `Device/Vendor/MSFT/Policy/Config/WindowsLogon/OverrideShellProgram`
Dependency Allowed Value: `[1]`
Dependency Allowed Value Type: `Range`
|
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not Configured |
+| 1 | Enable Boot to Cloud Desktop |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-cloudpc.md b/windows/client-management/mdm/policy-csp-cloudpc.md
new file mode 100644
index 0000000000..0c497a0c4e
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-cloudpc.md
@@ -0,0 +1,79 @@
+---
+title: CloudPC Policy CSP
+description: Learn more about the CloudPC Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/02/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - CloudPC
+
+
+
+
+
+
+## CloudPCConfiguration
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:x: Windows SE | :heavy_check_mark: Windows Insider Preview |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/CloudPC/CloudPCConfiguration
+```
+
+
+
+This policy is used by IT admin to set the configuration mode of cloud PC.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Fast Switching Configuration. |
+| 1 | Boot to cloud PC Configuration. |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-defender.md b/windows/client-management/mdm/policy-csp-defender.md
index c23b7be9a8..efc7a8a312 100644
--- a/windows/client-management/mdm/policy-csp-defender.md
+++ b/windows/client-management/mdm/policy-csp-defender.md
@@ -1,2439 +1,2794 @@
---
-title: Policy CSP - Defender
-description: Learn how to use the Policy CSP - Defender setting so you can allow or disallow scanning of archives.
+title: Defender Policy CSP
+description: Learn more about the Defender Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/02/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 05/12/2022
-ms.reviewer:
-manager: aaroncz
-ms.collection: highpri
+ms.topic: reference
---
+
+
+
# Policy CSP - Defender
+
+
+
+
+
+## AllowArchiveScanning
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowArchiveScanning
+```
+
+
+
+This policy setting allows you to configure scans for malicious software and unwanted software in archive files such as .ZIP or .CAB files.
+
+If you enable or do not configure this setting, archive files will be scanned.
+
+If you disable this setting, archive files will not be scanned. However, archives are always scanned during directed scans.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. Turns off scanning on archived files. |
+| 1 (Default) | Allowed. Scans the archive files. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableArchiveScanning |
+| Friendly Name | Scan archive files |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableArchiveScanning |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowBehaviorMonitoring
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
-
-
-
-
-## Defender policies
-
-
- -
- Defender/AllowArchiveScanning
-
- -
- Defender/AllowBehaviorMonitoring
-
- -
- Defender/AllowCloudProtection
-
- -
- Defender/AllowEmailScanning
-
- -
- Defender/AllowFullScanOnMappedNetworkDrives
-
- -
- Defender/AllowFullScanRemovableDriveScanning
-
- -
- Defender/AllowIOAVProtection
-
- -
- Defender/AllowOnAccessProtection
-
- -
- Defender/AllowRealtimeMonitoring
-
- -
- Defender/AllowScanningNetworkFiles
-
- -
- Defender/AllowScriptScanning
-
- -
- Defender/AllowUserUIAccess
-
- -
- Defender/AttackSurfaceReductionOnlyExclusions
-
- -
- Defender/AttackSurfaceReductionRules
-
- -
- Defender/AvgCPULoadFactor
-
- -
- Defender/CheckForSignaturesBeforeRunningScan
-
- -
- Defender/CloudBlockLevel
-
- -
- Defender/CloudExtendedTimeout
-
- -
- Defender/ControlledFolderAccessAllowedApplications
-
- -
- Defender/ControlledFolderAccessProtectedFolders
-
- -
- Defender/DaysToRetainCleanedMalware
-
- -
- Defender/DisableCatchupFullScan
-
- -
- Defender/DisableCatchupQuickScan
-
- -
- Defender/EnableControlledFolderAccess
-
- -
- Defender/EnableLowCPUPriority
-
- -
- Defender/EnableNetworkProtection
-
- -
- Defender/ExcludedExtensions
-
- -
- Defender/ExcludedPaths
-
- -
- Defender/ExcludedProcesses
-
- -
- Defender/PUAProtection
-
- -
- Defender/RealTimeScanDirection
-
- -
- Defender/ScanParameter
-
- -
- Defender/ScheduleQuickScanTime
-
- -
- Defender/ScheduleScanDay
-
- -
- Defender/ScheduleScanTime
-
- -
- Defender/SecurityIntelligenceLocation
-
- -
- Defender/SignatureUpdateFallbackOrder
-
- -
- Defender/SignatureUpdateFileSharesSources
-
- -
- Defender/SignatureUpdateInterval
-
- -
- Defender/SubmitSamplesConsent
-
- -
- Defender/ThreatSeverityDefaultAction
-
-
-
-
-
-
-
-**Defender/AllowArchiveScanning**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-
-Allows or disallows scanning of archives.
-
-
-
-ADMX Info:
-- GP Friendly name: *Scan archive files*
-- GP name: *Scan_DisableArchiveScanning*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Turns off scanning on archived files.
-- 1 (default) – Allowed. Scans the archive files.
-
-
-
-
-
-
-
-**Defender/AllowBehaviorMonitoring**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-
-Allows or disallows Windows Defender Behavior Monitoring functionality.
-
-
-
-ADMX Info:
-- GP Friendly name: *Turn on behavior monitoring*
-- GP name: *RealtimeProtection_DisableBehaviorMonitoring*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Real-time Protection*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Turns off behavior monitoring.
-- 1 (default) – Allowed. Turns on real-time behavior monitoring.
-
-
-
-
-
-
-
-**Defender/AllowCloudProtection**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-To best protect your PC, Windows Defender will send information to Microsoft about any problems it finds. Microsoft will analyze that information, learn more about problems affecting you and other customers, and offer improved solutions.
-
-
-
-ADMX Info:
-- GP Friendly name: *Join Microsoft MAPS*
-- GP name: *SpynetReporting*
-- GP element: *SpynetReporting*
-- GP path: *Windows Components/Microsoft Defender Antivirus/MAPS*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Turns off the Microsoft Active Protection Service.
-- 1 (default) – Allowed. Turns on the Microsoft Active Protection Service.
-
-
-
-
-
-
-
-**Defender/AllowEmailScanning**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows scanning of email.
-
-
-
-ADMX Info:
-- GP Friendly name: *Turn on e-mail scanning*
-- GP name: *Scan_DisableEmailScanning*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) – Not allowed. Turns off email scanning.
-- 1 – Allowed. Turns on email scanning.
-
-
-
-
-
-
-
-**Defender/AllowFullScanOnMappedNetworkDrives**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows a full scan of mapped network drives.
-
-
-
-ADMX Info:
-- GP Friendly name: *Run full scan on mapped network drives*
-- GP name: *Scan_DisableScanningMappedNetworkDrivesForFullScan*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) – Not allowed. Disables scanning on mapped network drives.
-- 1 – Allowed. Scans mapped network drives.
-
-
-
-
-
-
-
-**Defender/AllowFullScanRemovableDriveScanning**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows a full scan of removable drives. During a quick scan, removable drives may still be scanned.
-
-
-
-ADMX Info:
-- GP Friendly name: *Scan removable drives*
-- GP name: *Scan_DisableRemovableDriveScanning*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Turns off scanning on removable drives.
-- 1 (default) – Allowed. Scans removable drives.
-
-
-
-
-
-
-
-**Defender/AllowIOAVProtection**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows Windows Defender IOAVP Protection functionality.
-
-
-
-ADMX Info:
-- GP Friendly name: *Scan all downloaded files and attachments*
-- GP name: *RealtimeProtection_DisableIOAVProtection*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Real-time Protection*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed.
-- 1 (default) – Allowed.
-
-
-
-
-
-
-
-**Defender/AllowOnAccessProtection**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows Windows Defender On Access Protection functionality.
-
-
-
-ADMX Info:
-- GP Friendly name: *Monitor file and program activity on your computer*
-- GP name: *RealtimeProtection_DisableOnAccessProtection*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Real-time Protection*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed.
-- 1 (default) – Allowed.
-
-
-
-
-> [!IMPORTANT]
-> AllowOnAccessProtection is officially being deprecated.
-
-
-
-
-**Defender/AllowRealtimeMonitoring**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows Windows Defender real-time Monitoring functionality.
-
-
-
-ADMX Info:
-- GP Friendly name: *Turn off real-time protection*
-- GP name: *DisableRealtimeMonitoring*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Real-time Protection*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Turns off the real-time monitoring service.
-- 1 (default) – Allowed. Turns on and runs the real-time monitoring service.
-
-
-
-
-
-
-
-**Defender/AllowScanningNetworkFiles**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows a scanning of network files.
-
-
-
-ADMX Info:
-- GP Friendly name: *Scan network files*
-- GP name: *Scan_DisableScanningNetworkFiles*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Turns off scanning of network files.
-- 1 (default) – Allowed. Scans network files.
-
-
-
-
-
-
-
-**Defender/AllowScriptScanning**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowBehaviorMonitoring
+```
+
+
+
+This policy setting allows you to configure behavior monitoring.
+
+If you enable or do not configure this setting, behavior monitoring will be enabled.
+
+If you disable this setting, behavior monitoring will be disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. Turns off behavior monitoring. |
+| 1 (Default) | Allowed. Turns on real-time behavior monitoring. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | RealtimeProtection_DisableBehaviorMonitoring |
+| Friendly Name | Turn on behavior monitoring |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Real-time Protection |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Real-Time Protection |
+| Registry Value Name | DisableBehaviorMonitoring |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowCloudProtection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowCloudProtection
+```
+
+
+
+This policy setting allows you to join Microsoft MAPS. Microsoft MAPS is the online community that helps you choose how to respond to potential threats. The community also helps stop the spread of new malicious software infections.
+
+You can choose to send basic or additional information about detected software. Additional information helps Microsoft create new security intelligence and help it to protect your computer. This information can include things like location of detected items on your computer if harmful software was removed. The information will be automatically collected and sent. In some instances, personal information might unintentionally be sent to Microsoft. However, Microsoft will not use this information to identify you or contact you.
+
+Possible options are:
+(0x0) Disabled (default)
+(0x1) Basic membership
+(0x2) Advanced membership
+
+Basic membership will send basic information to Microsoft about software that has been detected, including where the software came from, the actions that you apply or that are applied automatically, and whether the actions were successful.
+
+Advanced membership, in addition to basic information, will send more information to Microsoft about malicious software, spyware, and potentially unwanted software, including the location of the software, file names, how the software operates, and how it has impacted your computer.
+
+If you enable this setting, you will join Microsoft MAPS with the membership specified.
+
+If you disable or do not configure this setting, you will not join Microsoft MAPS.
+
+In Windows 10, Basic membership is no longer available, so setting the value to 1 or 2 enrolls the device into Advanced membership.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. Turns off the Microsoft Active Protection Service. |
+| 1 (Default) | Allowed. Turns on the Microsoft Active Protection Service. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SpynetReporting |
+| Friendly Name | Join Microsoft MAPS |
+| Element Name | Join Microsoft MAPS |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > MAPS |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Spynet |
+| Registry Value Name | SpynetReporting |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowEmailScanning
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowEmailScanning
+```
+
+
+
+This policy setting allows you to configure e-mail scanning. When e-mail scanning is enabled, the engine will parse the mailbox and mail files, according to their specific format, in order to analyze the mail bodies and attachments. Several e-mail formats are currently supported, for example: pst (Outlook), dbx, mbx, mime (Outlook Express), binhex (Mac). Email scanning is not supported on modern email clients.
+
+If you enable this setting, e-mail scanning will be enabled.
+
+If you disable or do not configure this setting, e-mail scanning will be disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not allowed. Turns off email scanning. |
+| 1 | Allowed. Turns on email scanning. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableEmailScanning |
+| Friendly Name | Turn on e-mail scanning |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableEmailScanning |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowFullScanOnMappedNetworkDrives
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowFullScanOnMappedNetworkDrives
+```
+
+
+
+This policy setting allows you to configure scanning mapped network drives.
+
+If you enable this setting, mapped network drives will be scanned.
+
+If you disable or do not configure this setting, mapped network drives will not be scanned.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not allowed. Disables scanning on mapped network drives. |
+| 1 | Allowed. Scans mapped network drives. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableScanningMappedNetworkDrivesForFullScan |
+| Friendly Name | Run full scan on mapped network drives |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableScanningMappedNetworkDrivesForFullScan |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowFullScanRemovableDriveScanning
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowFullScanRemovableDriveScanning
+```
+
+
+
+This policy setting allows you to manage whether or not to scan for malicious software and unwanted software in the contents of removable drives, such as USB flash drives, when running a full scan.
+
+If you enable this setting, removable drives will be scanned during any type of scan.
+
+If you disable or do not configure this setting, removable drives will not be scanned during a full scan. Removable drives may still be scanned during quick scan and custom scan.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. Turns off scanning on removable drives. |
+| 1 (Default) | Allowed. Scans removable drives. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableRemovableDriveScanning |
+| Friendly Name | Scan removable drives |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableRemovableDriveScanning |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowIntrusionPreventionSystem
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowIntrusionPreventionSystem
+```
+
+
+
+Allows or disallows Windows Defender Intrusion Prevention functionality.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. |
+| 1 (Default) | Allowed. |
+
+
+
+
+
+
+
+
+
+## AllowIOAVProtection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowIOAVProtection
+```
+
+
+
+This policy setting allows you to configure scanning for all downloaded files and attachments.
+
+If you enable or do not configure this setting, scanning for all downloaded files and attachments will be enabled.
+
+If you disable this setting, scanning for all downloaded files and attachments will be disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. |
+| 1 (Default) | Allowed. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | RealtimeProtection_DisableIOAVProtection |
+| Friendly Name | Scan all downloaded files and attachments |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Real-time Protection |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Real-Time Protection |
+| Registry Value Name | DisableIOAVProtection |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowOnAccessProtection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowOnAccessProtection
+```
+
+
+
+This policy setting allows you to configure monitoring for file and program activity.
+
+If you enable or do not configure this setting, monitoring for file and program activity will be enabled.
+
+If you disable this setting, monitoring for file and program activity will be disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. |
+| 1 (Default) | Allowed. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | RealtimeProtection_DisableOnAccessProtection |
+| Friendly Name | Monitor file and program activity on your computer |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Real-time Protection |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Real-Time Protection |
+| Registry Value Name | DisableOnAccessProtection |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowRealtimeMonitoring
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowRealtimeMonitoring
+```
+
+
+
+This policy turns off real-time protection in Microsoft Defender Antivirus.
+
+Real-time protection consists of always-on scanning with file and process behavior monitoring and heuristics. When real-time protection is on, Microsoft Defender Antivirus detects malware and potentially unwanted software that attempts to install itself or run on your device, and prompts you to take action on malware detections.
+
+If you enable this policy setting, real-time protection is turned off.
+
+If you either disable or do not configure this policy setting, real-time protection is turned on.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. Turns off the real-time monitoring service. |
+| 1 (Default) | Allowed. Turns on and runs the real-time monitoring service. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | DisableRealtimeMonitoring |
+| Friendly Name | Turn off real-time protection |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Real-time Protection |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Real-Time Protection |
+| Registry Value Name | DisableRealtimeMonitoring |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowScanningNetworkFiles
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowScanningNetworkFiles
+```
+
+
+
+This policy setting allows you to configure scanning for network files. It is recommended that you do not enable this setting.
+
+If you enable this setting, network files will be scanned.
+
+If you disable or do not configure this setting, network files will not be scanned.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not allowed. Turns off scanning of network files. |
+| 1 | Allowed. Scans network files. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableScanningNetworkFiles |
+| Friendly Name | Scan network files |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableScanningNetworkFiles |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AllowScriptScanning
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowScriptScanning
+```
+
+
+
Allows or disallows Windows Defender Script Scanning functionality.
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed.
-- 1 (default) – Allowed.
-
-
-
-
-
-
-
-**Defender/AllowUserUIAccess**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows or disallows user access to the Windows Defender UI. I disallowed, all Windows Defender notifications will also be suppressed.
-
-
-
-ADMX Info:
-- GP Friendly name: *Enable headless UI mode*
-- GP name: *UX_Configuration_UILockdown*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Client Interface*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Not allowed. Prevents users from accessing UI.
-- 1 (default) – Allowed. Lets users access UI.
-
-
-
-
-
-
-
-**Defender/AttackSurfaceReductionOnlyExclusions**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-This policy setting allows you to prevent Attack Surface reduction rules from matching on files under the paths specified or for the fully qualified resources specified. Paths should be added under the Options for this setting. Each entry must be listed as a name value pair, where the name should be a string representation of a path or a fully qualified resource name. As an example, a path might be defined as: "c:\Windows" to exclude all files in this directory. A fully qualified resource name might be defined as: "C:\Windows\App.exe".
-
-Value type is string.
-
-
-
-ADMX Info:
-- GP Friendly name: *Exclude files and paths from Attack Surface Reduction Rules*
-- GP name: *ExploitGuard_ASR_ASROnlyExclusions*
-- GP element: *ExploitGuard_ASR_ASROnlyExclusions*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender Exploit Guard/Attack Surface Reduction*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/AttackSurfaceReductionRules**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-This policy setting enables setting the state (Block/Audit/Off) for each attack surface reduction (ASR) rule. Each ASR rule listed can be set to one of the following states (Block/Audit/Off). The ASR rule ID and state should be added under the Options for this setting. Each entry must be listed as a name value pair. The name defines a valid ASR rule ID, while the value contains the status ID indicating the status of the rule.
-
-For more information about ASR rule ID and status ID, see [Enable Attack Surface Reduction](/windows/threat-protection/windows-defender-exploit-guard/enable-attack-surface-reduction).
-
-Value type is string.
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure Attack Surface Reduction rules*
-- GP name: *ExploitGuard_ASR_Rules*
-- GP element: *ExploitGuard_ASR_Rules*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender Exploit Guard/Attack Surface Reduction*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/AvgCPULoadFactor**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Represents the average CPU load factor for the Windows Defender scan (in percent).
-
-The default value is 50.
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the maximum percentage of CPU utilization during a scan*
-- GP name: *Scan_AvgCPULoadFactor*
-- GP element: *Scan_AvgCPULoadFactor*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-Valid values: 0–100
-
-
-
-
-
-
-
-**Defender/CheckForSignaturesBeforeRunningScan**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-This policy setting allows you to manage whether a check for new virus and spyware definitions will occur before running a scan.
-
-This setting applies to scheduled scans and the command line "mpcmdrun -SigUpdate", but it has no effect on scans initiated manually from the user interface.
-
-If you enable this setting, a check for new definitions will occur before running a scan.
-
-If you disable this setting or don't configure this setting, the scan will start using the existing definitions.
-
-Supported values:
-
-- 0 (default) - Disabled
-- 1 - Enabled
-
-OMA-URI Path: ./Vendor/MSFT/Policy/Config/Defender/CheckForSignaturesBeforeRunningScan
-
-
-
-ADMX Info:
-- GP Friendly name: *Check for the latest virus and spyware definitions before running a scheduled scan*
-- GP name: *CheckForSignaturesBeforeRunningScan*
-- GP element: *CheckForSignaturesBeforeRunningScan*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-**Defender/CloudBlockLevel**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-This policy setting determines how aggressive Microsoft Defender Antivirus will be in blocking and scanning suspicious files. Value type is integer.
-
-If this setting is on, Microsoft Defender Antivirus will be more aggressive when identifying suspicious files to block and scan; otherwise, it will be less aggressive and therefore block and scan with less frequency.
-
-For more information about specific values that are supported, see the Microsoft Defender Antivirus documentation site.
-
-> [!NOTE]
-> This feature requires the "Join Microsoft MAPS" setting enabled in order to function.
-
-
-
-ADMX Info:
-- GP Friendly name: *Select cloud protection level*
-- GP name: *MpEngine_MpCloudBlockLevel*
-- GP element: *MpCloudBlockLevel*
-- GP path: *Windows Components/Microsoft Defender Antivirus/MpEngine*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0x0 - Default windows defender blocking level
-- 0x2 - High blocking level - aggressively block unknowns while optimizing client performance (greater chance of false positives)
-- 0x4 - High+ blocking level – aggressively block unknowns and apply more protection measures (may impact client performance)
-- 0x6 - Zero tolerance blocking level – block all unknown executables
-
-
-
-
-
-
-
-**Defender/CloudExtendedTimeout**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-This feature allows Microsoft Defender Antivirus to block a suspicious file for up to 60 seconds, and scan it in the cloud to make sure it's safe. Value type is integer, range is 0 - 50.
-
-The typical cloud check timeout is 10 seconds. To enable the extended cloud check feature, specify the extended time in seconds, up to an extra 50 seconds.
-
-For example, if the desired timeout is 60 seconds, specify 50 seconds in this setting, which will enable the extended cloud check feature, and will raise the total time to 60 seconds.
-
-> [!NOTE]
-> This feature depends on three other MAPS settings the must all be enabled- "Configure the 'Block at First Sight' feature; "Join Microsoft MAPS"; "Send file samples when further analysis is required".
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure extended cloud check*
-- GP name: *MpEngine_MpBafsExtendedTimeout*
-- GP element: *MpBafsExtendedTimeout*
-- GP path: *Windows Components/Microsoft Defender Antivirus/MpEngine*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/ControlledFolderAccessAllowedApplications**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop. The previous name was GuardedFoldersAllowedApplications and changed to ControlledFolderAccessAllowedApplications.
-
-Added in Windows 10, version 1709. This policy setting allows user-specified applications to the controlled folder access feature. Adding an allowed application means the controlled folder access feature will allow the application to modify or delete content in certain folders such as My Documents. In most cases it won't be necessary to add entries. Microsoft Defender Antivirus will automatically detect and dynamically add applications that are friendly. Value type is string. Use the | as the substring separator.
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure allowed applications*
-- GP name: *ExploitGuard_ControlledFolderAccess_AllowedApplications*
-- GP element: *ExploitGuard_ControlledFolderAccess_AllowedApplications*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender Exploit Guard/Controlled Folder Access*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/ControlledFolderAccessProtectedFolders**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop. The previous name was GuardedFoldersList and changed to ControlledFolderAccessProtectedFolders.
-
-This policy setting allows adding user-specified folder locations to the controlled folder access feature. These folders will complement the system defined folders such as My Documents and My Pictures. The list of system folders will be displayed in the user interface and can't be changed. Value type is string. Use the | as the substring separator.
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure protected folders*
-- GP name: *ExploitGuard_ControlledFolderAccess_ProtectedFolders*
-- GP element: *ExploitGuard_ControlledFolderAccess_ProtectedFolders*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender Exploit Guard/Controlled Folder Access*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/DaysToRetainCleanedMalware**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Time period (in days) that quarantine items will be stored on the system.
-
-The default value is 0, which keeps items in quarantine, and doesn't automatically remove them.
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure removal of items from Quarantine folder*
-- GP name: *Quarantine_PurgeItemsAfterDelay*
-- GP element: *Quarantine_PurgeItemsAfterDelay*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Quarantine*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-Valid values: 0–90
-
-
-
-
-
-
-
-**Defender/DisableCatchupFullScan**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. |
+| 1 (Default) | Allowed. |
+
+
+
+
+
+
+
+
+
+## AllowUserUIAccess
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AllowUserUIAccess
+```
+
+
+
+This policy setting allows you to configure whether or not to display AM UI to the users.
+If you enable this setting AM UI won't be available to users.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. Prevents users from accessing UI. |
+| 1 (Default) | Allowed. Lets users access UI. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | UX_Configuration_UILockdown |
+| Friendly Name | Enable headless UI mode |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Client Interface |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\UX Configuration |
+| Registry Value Name | UILockdown |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AttackSurfaceReductionOnlyExclusions
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AttackSurfaceReductionOnlyExclusions
+```
+
+
+
+Exclude files and paths from Attack Surface Reduction (ASR) rules.
+
+Enabled:
+Specify the folders or files and resources that should be excluded from ASR rules in the Options section.
+Enter each rule on a new line as a name-value pair:
+- Name column: Enter a folder path or a fully qualified resource name. For example, ""C:\Windows"" will exclude all files in that directory. ""C:\Windows\App.exe"" will exclude only that specific file in that specific folder
+- Value column: Enter ""0"" for each item
+
+Disabled:
+No exclusions will be applied to the ASR rules.
+
+Not configured:
+Same as Disabled.
+
+You can configure ASR rules in the Configure Attack Surface Reduction rules GP setting.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ExploitGuard_ASR_ASROnlyExclusions |
+| Friendly Name | Exclude files and paths from Attack Surface Reduction Rules |
+| Element Name | Exclusions from ASR rules |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Attack Surface Reduction |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\ASR |
+| Registry Value Name | ExploitGuard_ASR_ASROnlyExclusions |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AttackSurfaceReductionRules
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AttackSurfaceReductionRules
+```
+
+
+
+Set the state for each Attack Surface Reduction (ASR) rule.
+
+After enabling this setting, you can set each rule to the following in the Options section:
+- Block: the rule will be applied
+- Audit Mode: if the rule would normally cause an event, then it will be recorded (although the rule will not actually be applied)
+- Off: the rule will not be applied
+- Not Configured: the rule is enabled with default values
+- Warn: the rule will be applied and the end-user will have the option to bypass the block
+
+Unless the ASR rule is disabled, a subsample of audit events are collected for ASR rules will the value of not configured.
+
+Enabled:
+Specify the state for each ASR rule under the Options section for this setting.
+Enter each rule on a new line as a name-value pair:
+- Name column: Enter a valid ASR rule ID
+- Value column: Enter the status ID that relates to state you want to specify for the associated rule
+
+The following status IDs are permitted under the value column:
+- 1 (Block)
+- 0 (Off)
+- 2 (Audit)
+- 5 (Not Configured)
+- 6 (Warn)
+
+
+Example:
+xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx 0
+xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx 1
+xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx 2
+
+Disabled:
+No ASR rules will be configured.
+
+Not configured:
+Same as Disabled.
+
+You can exclude folders or files in the ""Exclude files and paths from Attack Surface Reduction Rules"" GP setting.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ExploitGuard_ASR_Rules |
+| Friendly Name | Configure Attack Surface Reduction rules |
+| Element Name | Set the state for each ASR rule |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Attack Surface Reduction |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\ASR |
+| Registry Value Name | ExploitGuard_ASR_Rules |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## AvgCPULoadFactor
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/AvgCPULoadFactor
+```
+
+
+
+This policy setting allows you to configure the maximum percentage CPU utilization permitted during a scan. Valid values for this setting are a percentage represented by the integers 5 to 100. A value of 0 indicates that there should be no throttling of CPU utilization. The default value is 50.
+
+If you enable this setting, CPU utilization will not exceed the percentage specified.
+
+If you disable or do not configure this setting, CPU utilization will not exceed the default value.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[0-100]` |
+| Default Value | 50 |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_AvgCPULoadFactor |
+| Friendly Name | Specify the maximum percentage of CPU utilization during a scan |
+| Element Name | Specify the maximum percentage of CPU utilization during a scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | AvgCPULoadFactor |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## CheckForSignaturesBeforeRunningScan
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/CheckForSignaturesBeforeRunningScan
+```
+
+
+
+This policy setting allows you to manage whether a check for new virus and spyware security intelligence will occur before running a scan.
+
+This setting applies to scheduled scans, but it has no effect on scans initiated manually from the user interface or to the ones started from the command line using "mpcmdrun -Scan".
+
+If you enable this setting, a check for new security intelligence will occur before running a scan.
+
+If you disable this setting or do not configure this setting, the scan will start using the existing security intelligence.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled |
+| 1 | Enabled |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | CheckForSignaturesBeforeRunningScan |
+| Friendly Name | Check for the latest virus and spyware security intelligence before running a scheduled scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | CheckForSignaturesBeforeRunningScan |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## CloudBlockLevel
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/CloudBlockLevel
+```
+
+
+
+This policy setting determines how aggressive Windows Defender Antivirus will be in blocking and scanning suspicious files. Value type is integer. If this setting is on, Windows Defender Antivirus will be more aggressive when identifying suspicious files to block and scan; otherwise, it will be less aggressive and therefore block and scan with less frequency. For more information about specific values that are supported, see the Windows Defender Antivirus documentation site. NoteThis feature requires the Join Microsoft MAPS setting enabled in order to function.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | NotConfigured |
+| 2 | High |
+| 4 | HighPlus |
+| 6 | ZeroTolerance |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | MpCloudBlockLevel |
+| Friendly Name | Select cloud protection level |
+| Element Name | Select cloud blocking level |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > MpEngine |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\MpEngine |
+| Registry Value Name | MpCloudBlockLevel |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## CloudExtendedTimeout
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/CloudExtendedTimeout
+```
+
+
+
+This feature allows Windows Defender Antivirus to block a suspicious file for up to 60 seconds, and scan it in the cloud to make sure it's safe. Value type is integer, range is 0 - 50. The typical cloud check timeout is 10 seconds. To enable the extended cloud check feature, specify the extended time in seconds, up to an additional 50 seconds. For example, if the desired timeout is 60 seconds, specify 50 seconds in this setting, which will enable the extended cloud check feature, and will raise the total time to 60 seconds. NoteThis feature depends on three other MAPS settings the must all be enabled- Configure the 'Block at First Sight' feature; Join Microsoft MAPS; Send file samples when further analysis is required.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[0-50]` |
+| Default Value | 0 |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | MpBafsExtendedTimeout |
+| Friendly Name | Configure extended cloud check |
+| Element Name | Specify the extended cloud check time in seconds |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > MpEngine |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\MpEngine |
+| Registry Value Name | MpBafsExtendedTimeout |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ControlledFolderAccessAllowedApplications
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ControlledFolderAccessAllowedApplications
+```
+
+
+
+Add additional applications that should be considered "trusted" by controlled folder access.
+
+These applications are allowed to modify or delete files in controlled folder access folders.
+
+Microsoft Defender Antivirus automatically determines which applications should be trusted. You can configure this setting to add additional applications.
+
+Enabled:
+Specify additional allowed applications in the Options section..
+
+Disabled:
+No additional applications will be added to the trusted list.
+
+Not configured:
+Same as Disabled.
+
+You can enable controlled folder access in the Configure controlled folder access GP setting.
+
+Default system folders are automatically guarded, but you can add folders in the configure protected folders GP setting.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ExploitGuard_ControlledFolderAccess_AllowedApplications |
+| Friendly Name | Configure allowed applications |
+| Element Name | Enter the applications that should be trusted |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Controlled Folder Access |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Controlled Folder Access |
+| Registry Value Name | ExploitGuard_ControlledFolderAccess_AllowedApplications |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ControlledFolderAccessProtectedFolders
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ControlledFolderAccessProtectedFolders
+```
+
+
+
+Specify additional folders that should be guarded by the Controlled folder access feature.
+
+Files in these folders cannot be modified or deleted by untrusted applications.
+
+Default system folders are automatically protected. You can configure this setting to add additional folders.
+The list of default system folders that are protected is shown in Windows Security.
+
+Enabled:
+Specify additional folders that should be protected in the Options section.
+
+Disabled:
+No additional folders will be protected.
+
+Not configured:
+Same as Disabled.
+
+You can enable controlled folder access in the Configure controlled folder access GP setting.
+
+Microsoft Defender Antivirus automatically determines which applications can be trusted. You can add additional trusted applications in the Configure allowed applications GP setting.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ExploitGuard_ControlledFolderAccess_ProtectedFolders |
+| Friendly Name | Configure protected folders |
+| Element Name | Enter the folders that should be guarded |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Controlled Folder Access |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Controlled Folder Access |
+| Registry Value Name | ExploitGuard_ControlledFolderAccess_ProtectedFolders |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## DaysToRetainCleanedMalware
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/DaysToRetainCleanedMalware
+```
+
+
+
+This policy setting defines the number of days items should be kept in the Quarantine folder before being removed.
+
+If you enable this setting, items will be removed from the Quarantine folder after the number of days specified.
+
+If you disable or do not configure this setting, items will be kept in the quarantine folder indefinitely and will not be automatically removed.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[0-90]` |
+| Default Value | 0 |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Quarantine_PurgeItemsAfterDelay |
+| Friendly Name | Configure removal of items from Quarantine folder |
+| Element Name | Configure removal of items from Quarantine folder |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Quarantine |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Quarantine |
+| Registry Value Name | PurgeItemsAfterDelay |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## DisableCatchupFullScan
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/DisableCatchupFullScan
+```
+
+
+
This policy setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
-If you enable this setting, catch-up scans for scheduled full scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone signs in to the computer. If there's no scheduled scan configured, there will be no catch-up scan run.
+If you enable this setting, catch-up scans for scheduled full scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone logs on to the computer. If there is no scheduled scan configured, there will be no catch-up scan run.
-If you disable or don't configure this setting, catch-up scans for scheduled full scans will be turned off.
+If you disable or do not configure this setting, catch-up scans for scheduled full scans will be turned off.
+
-Supported values:
+
+
+
-- 1 - Disabled (default)
-- 0 - Enabled
+
+**Description framework properties**:
-OMA-URI Path: ./Vendor/MSFT/Policy/Config/Defender/DisableCatchupFullScan
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
-
-
-ADMX Info:
-- GP Friendly name: *Turn on catch-up full scan*
-- GP name: *Scan_DisableCatchupFullScan*
-- GP element: *Scan_DisableCatchupFullScan*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
+
+**Allowed values**:
-
-
+| Value | Description |
+|:--|:--|
+| 0 | Enabled |
+| 1 (Default) | Disabled |
+
-
-
+
+**Group policy mapping**:
-
-
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableCatchupFullScan |
+| Friendly Name | Turn on catch-up full scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableCatchupFullScan |
+| ADMX File Name | WindowsDefender.admx |
+
-
-
+
+
+
-
+
-
-**Defender/DisableCatchupQuickScan**
+
+## DisableCatchupQuickScan
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/DisableCatchupQuickScan
+```
+
+
+
+This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
+
+If you enable this setting, catch-up scans for scheduled quick scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone logs on to the computer. If there is no scheduled scan configured, there will be no catch-up scan run.
+
+If you disable or do not configure this setting, catch-up scans for scheduled quick scans will be turned off.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Enabled |
+| 1 (Default) | Disabled |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_DisableCatchupQuickScan |
+| Friendly Name | Turn on catch-up quick scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | DisableCatchupQuickScan |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## EnableControlledFolderAccess
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/EnableControlledFolderAccess
+```
+
+
+
+Enable or disable controlled folder access for untrusted applications. You can choose to block, audit, or allow attempts by untrusted apps to:
+- Modify or delete files in protected folders, such as the Documents folder
+- Write to disk sectors
+
+You can also choose to only block or audit writes to disk sectors while still allowing the modification or deletion of files in protected folders.
+
+Microsoft Defender Antivirus automatically determines which applications can be trusted. You can add additional trusted applications in the Configure allowed applications GP setting.
+Default system folders are automatically protected, but you can add folders in the Configure protected folders GP setting.
+
+Block:
+The following will be blocked:
+- Attempts by untrusted apps to modify or delete files in protected folders
+- Attempts by untrusted apps to write to disk sectors
+The Windows event log will record these blocks under Applications and Services Logs > Microsoft > Windows > Windows Defender > Operational > ID 1123.
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
-
-If you enable this setting, catch-up scans for scheduled quick scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone signs in to the computer. If there's no scheduled scan configured, there will be no catch-up scan run.
-
-If you disable or don't configure this setting, catch-up scans for scheduled quick scans will be turned off.
-
-Supported values:
-
-- 1 - Disabled (default)
-- 0 - Enabled
-
-OMA-URI Path: ./Vendor/MSFT/Policy/Config/Defender/DisableCatchupQuickScan
-
-
-
-ADMX Info:
-- GP Friendly name: *Turn on catch-up quick scan*
-- GP name: *Scan_DisableCatchupQuickScan*
-- GP element: *Scan_DisableCatchupQuickScan*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-**Defender/EnableControlledFolderAccess**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+Disabled:
+The following will not be blocked and will be allowed to run:
+- Attempts by untrusted apps to modify or delete files in protected folders
+- Attempts by untrusted apps to write to disk sectors
+These attempts will not be recorded in the Windows event log.
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop. The previous name was EnableGuardMyFolders and changed to EnableControlledFolderAccess.
-
-This policy enables setting the state (On/Off/Audit) for the controlled folder access feature. The controlled folder access feature removes modify and delete permissions from untrusted applications to certain folders such as My Documents. Value type is integer and the range is 0 - 2.
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure Controlled folder access*
-- GP name: *ExploitGuard_ControlledFolderAccess_EnableControlledFolderAccess*
-- GP element: *ExploitGuard_ControlledFolderAccess_EnableControlledFolderAccess*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender Exploit Guard/Controlled Folder Access*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) - Disabled
-- 1 - Enabled
-- 2 - Audit Mode
-
-
-
-
-
-
-
-**Defender/EnableLowCPUPriority**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+Audit Mode:
+The following will not be blocked and will be allowed to run:
+- Attempts by untrusted apps to modify or delete files in protected folders
+- Attempts by untrusted apps to write to disk sectors
+The Windows event log will record these attempts under Applications and Services Logs > Microsoft > Windows > Windows Defender > Operational > ID 1124.
-
-
+Block disk modification only:
+The following will be blocked:
+- Attempts by untrusted apps to write to disk sectors
+The Windows event log will record these attempts under Applications and Services Logs > Microsoft > Windows > Windows Defender > Operational > ID 1123.
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+The following will not be blocked and will be allowed to run:
+- Attempts by untrusted apps to modify or delete files in protected folders
+These attempts will not be recorded in the Windows event log.
-> [!div class = "checklist"]
-> * Device
-
+Audit disk modification only:
+The following will not be blocked and will be allowed to run:
+- Attempts by untrusted apps to write to disk sectors
+- Attempts by untrusted apps to modify or delete files in protected folders
+Only attempts to write to protected disk sectors will be recorded in the Windows event log (under Applications and Services Logs > Microsoft > Windows > Windows Defender > Operational > ID 1124).
+Attempts to modify or delete files in protected folders will not be recorded.
-
-
+Not configured:
+Same as Disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled |
+| 1 | Enabled |
+| 2 | Audit Mode |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ExploitGuard_ControlledFolderAccess_EnableControlledFolderAccess |
+| Friendly Name | Configure Controlled folder access |
+| Element Name | Configure the guard my folders feature |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Controlled Folder Access |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Controlled Folder Access |
+| Registry Value Name | EnableControlledFolderAccess |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## EnableLowCPUPriority
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/EnableLowCPUPriority
+```
+
+
+
This policy setting allows you to enable or disable low CPU priority for scheduled scans.
If you enable this setting, low CPU priority will be used during scheduled scans.
-If you disable or don't configure this setting, no changes will be made to CPU priority for scheduled scans.
-
-Supported values:
-
-- 0 - Disabled (default)
-- 1 - Enabled
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure low CPU priority for scheduled scans*
-- GP name: *Scan_LowCpuPriority*
-- GP element: *Scan_LowCpuPriority*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-**Defender/EnableNetworkProtection**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-This policy allows you to turn on network protection (block/audit) or off. Network protection protects employees using any app from accessing phishing scams, exploit-hosting sites, and malicious content on the Internet. This protection includes preventing third-party browsers from connecting to dangerous sites. Value type is integer.
-
-If you enable this setting, network protection is turned on and employees can't turn it off. Its behavior can be controlled by the following options: Block and Audit.
-If you enable this policy with the ""Block"" option, users/apps will be blocked from connecting to dangerous domains. You'll be able to see this activity in Windows Defender Security Center.
-If you enable this policy with the ""Audit"" option, users/apps won't be blocked from connecting to dangerous domains. However, you'll still see this activity in Windows Defender Security Center.
-If you disable this policy, users/apps won't be blocked from connecting to dangerous domains. You'll not see any network activity in Windows Defender Security Center.
-If you don't configure this policy, network blocking will be disabled by default.
-
-
-
-ADMX Info:
-- GP Friendly name: *Prevent users and apps from accessing dangerous websites*
-- GP name: *ExploitGuard_EnableNetworkProtection*
-- GP element: *ExploitGuard_EnableNetworkProtection*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender Exploit Guard/Network Protection*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) - Disabled
-- 1 - Enabled (block mode)
-- 2 - Enabled (audit mode)
-
-
-
-
-
-
-
-**Defender/ExcludedExtensions**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows an administrator to specify a list of file type extensions to ignore during a scan. Each file type in the list must be separated by a **|**. For example, "lib|obj".
-
-
-
-ADMX Info:
-- GP Friendly name: *Path Exclusions*
-- GP name: *Exclusions_Paths*
-- GP element: *Exclusions_PathsList*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Exclusions*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/ExcludedPaths**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows an administrator to specify a list of directory paths to ignore during a scan. Each path in the list must be separated by a **|**. For example, "C:\\Example|C:\\Example1".
-
-
-
-ADMX Info:
-- GP Friendly name: *Extension Exclusions*
-- GP name: *Exclusions_Extensions*
-- GP element: *Exclusions_ExtensionsList*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Exclusions*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/ExcludedProcesses**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows an administrator to specify a list of files opened by processes to ignore during a scan.
-
-> [!IMPORTANT]
-> The process itself is not excluded from the scan, but can be by using the **Defender/ExcludedPaths** policy to exclude its path.
-
-Each file type must be separated by a **|**. For example, "C:\\Example.exe|C:\\Example1.exe".
-
-
-
-ADMX Info:
-- GP Friendly name: *Process Exclusions*
-- GP name: *Exclusions_Processes*
-- GP element: *Exclusions_ProcessesList*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Exclusions*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-**Defender/PUAProtection**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-
-Specifies the level of detection for potentially unwanted applications (PUAs). Windows Defender alerts you when potentially unwanted software is being downloaded or attempts to install itself on your computer.
-
-> [!NOTE]
-> Potentially unwanted applications (PUA) are a category of software that can cause your machine to run slowly, display unexpected ads, or at worst, install other software which might be unexpected or unwanted. By default in Windows 10 (version 2004 and later), Microsoft Defender Antivirus blocks apps that are considered PUA, for Enterprise (E5) devices. For more information about PUA, see [Detect and block potentially unwanted applications](/microsoft-365/security/defender-endpoint/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus).
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure detection for potentially unwanted applications*
-- GP name: *Root_PUAProtection*
-- GP element: *Root_PUAProtection*
-- GP path: *Windows Components/Microsoft Defender Antivirus*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) – PUA Protection off. Windows Defender won't protect against potentially unwanted applications.
-- 1 – PUA Protection on. Detected items are blocked. They'll show in history along with other threats.
-- 2 – Audit mode. Windows Defender will detect potentially unwanted applications, but take no action. You can review information about the applications Windows Defender would have taken action against by searching for events created by Windows Defender in the Event Viewer.
-
-
-
-
-
-
-
-**Defender/RealTimeScanDirection**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Controls which sets of files should be monitored.
-
-> [!NOTE]
-> If **AllowOnAccessProtection** is not allowed, then this configuration can be used to monitor specific files.
-
-
-
-ADMX Info:
-- GP Friendly name: *Configure monitoring for incoming and outgoing file and program activity*
-- GP name: *RealtimeProtection_RealtimeScanDirection*
-- GP element: *RealtimeProtection_RealtimeScanDirection*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Real-time Protection*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) – Monitor all files (bi-directional).
-- 1 – Monitor incoming files.
-- 2 – Monitor outgoing files.
-
-
-
-
-
-
-
-**Defender/ScanParameter**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Selects whether to perform a quick scan or full scan.
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the scan type to use for a scheduled scan*
-- GP name: *Scan_ScanParameters*
-- GP element: *Scan_ScanParameters*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 1 (default) – Quick scan
-- 2 – Full scan
-
-
-
-
-
-
-
-**Defender/ScheduleQuickScanTime**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Selects the time of day that the Windows Defender quick scan should run. The Windows Defender quick scan runs daily if a time is specified.
-
-
-
-For example, a value of 0=12:00AM, a value of 60=1:00AM, a value of 120=2:00, and so on, up to a value of 1380=11:00PM.
-
-The default value is 120
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the time for a daily quick scan*
-- GP name: *Scan_ScheduleQuickScantime*
-- GP element: *Scan_ScheduleQuickScantime*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-Valid values: 0–1380
-
-
-
-
-
-
-
-**Defender/ScheduleScanDay**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Selects the day that the Windows Defender scan should run.
-
-> [!NOTE]
-> The scan type will depends on what scan type is selected in the **Defender/ScanParameter** setting.
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the day of the week to run a scheduled scan*
-- GP name: *Scan_ScheduleDay*
-- GP element: *Scan_ScheduleDay*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 (default) – Every day
-- 1 – Sunday
-- 2 – Monday
-- 3 – Tuesday
-- 4 – Wednesday
-- 5 – Thursday
-- 6 – Friday
-- 7 – Saturday
-- 8 – No scheduled scan
-
-
-
-
-
-
-
-**Defender/ScheduleScanTime**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Selects the time of day that the Windows Defender scan should run.
-
-> [!NOTE]
-> The scan type will depends on what scan type is selected in the **Defender/ScanParameter** setting.
-
-For example, a value of 0=12:00AM, a value of 60=1:00AM, a value of 120=2:00, and so on, up to a value of 1380=11:00PM.
-
-The default value is 120.
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the time of day to run a scheduled scan*
-- GP name: *Scan_ScheduleTime*
-- GP element: *Scan_ScheduleTime*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Scan*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-Valid values: 0–1380.
-
-
-
-
-
-
-
-**Defender/SecurityIntelligenceLocation**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
+If you disable or do not configure this setting, not changes will be made to CPU priority for scheduled scans.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled |
+| 1 | Enabled |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_LowCpuPriority |
+| Friendly Name | Configure low CPU priority for scheduled scans |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | LowCpuPriority |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## EnableNetworkProtection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/EnableNetworkProtection
+```
+
+
+
+Enable or disable Microsoft Defender Exploit Guard network protection to prevent employees from using any application to access dangerous domains that may host phishing scams, exploit-hosting sites, and other malicious content on the Internet.
+
+Enabled:
+Specify the mode in the Options section:
+-Block: Users and applications will not be able to access dangerous domains
+-Audit Mode: Users and applications can connect to dangerous domains, however if this feature would have blocked access if it were set to Block, then a record of the event will be in the event logs.
+
+Disabled:
+Users and applications will not be blocked from connecting to dangerous domains.
+
+Not configured:
+Same as Disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled |
+| 1 | Enabled (block mode) |
+| 2 | Enabled (audit mode) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | ExploitGuard_EnableNetworkProtection |
+| Friendly Name | Prevent users and apps from accessing dangerous websites |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Microsoft Defender Exploit Guard > Network Protection |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Windows Defender Exploit Guard\Network Protection |
+| Registry Value Name | EnableNetworkProtection |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ExcludedExtensions
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ExcludedExtensions
+```
+
+
+
+Allows an administrator to specify a list of file type extensions to ignore during a scan. Each file type in the list must be separated by a |. For example, lib|obj.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Exclusions_Extensions |
+| Friendly Name | Extension Exclusions |
+| Element Name | Extension Exclusions |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Exclusions |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Exclusions |
+| Registry Value Name | Exclusions_Extensions |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ExcludedPaths
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ExcludedPaths
+```
+
+
+
+Allows an administrator to specify a list of directory paths to ignore during a scan. Each path in the list must be separated by a |. For example, C:\Example|C:\Example1.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Exclusions_Paths |
+| Friendly Name | Path Exclusions |
+| Element Name | Path Exclusions |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Exclusions |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Exclusions |
+| Registry Value Name | Exclusions_Paths |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ExcludedProcesses
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ExcludedProcesses
+```
+
+
+
+Allows an administrator to specify a list of files opened by processes to ignore during a scan. ImportantThe process itself is not excluded from the scan, but can be by using the Defender/ExcludedPaths policy to exclude its path. Each file type must be separated by a |. For example, C:\Example. exe|C:\Example1.exe.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Exclusions_Processes |
+| Friendly Name | Process Exclusions |
+| Element Name | Process Exclusions |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Exclusions |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Exclusions |
+| Registry Value Name | Exclusions_Processes |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## PUAProtection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/PUAProtection
+```
+
+
+
+Enable or disable detection for potentially unwanted applications. You can choose to block, audit, or allow when potentially unwanted software is being downloaded or attempts to install itself on your computer.
+
+Enabled:
+Specify the mode in the Options section:
+-Block: Potentially unwanted software will be blocked.
+-Audit Mode: Potentially unwanted software will not be blocked, however if this feature would have blocked access if it were set to Block, then a record of the event will be in the event logs.
+
+Disabled:
+Potentially unwanted software will not be blocked.
+
+Not configured:
+Same as Disabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | PUA Protection off. Windows Defender will not protect against potentially unwanted applications. |
+| 1 | PUA Protection on. Detected items are blocked. They will show in history along with other threats. |
+| 2 | Audit mode. Windows Defender will detect potentially unwanted applications, but take no action. You can review information about the applications Windows Defender would have taken action against by searching for events created by Windows Defender in the Event Viewer. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Root_PUAProtection |
+| Friendly Name | Configure detection for potentially unwanted applications |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender |
+| Registry Value Name | PUAProtection |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## RealTimeScanDirection
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/RealTimeScanDirection
+```
+
+
+
+This policy setting allows you to configure monitoring for incoming and outgoing files, without having to turn off monitoring entirely. It is recommended for use on servers where there is a lot of incoming and outgoing file activity but for performance reasons need to have scanning disabled for a particular scan direction. The appropriate configuration should be evaluated based on the server role.
+
+Note that this configuration is only honored for NTFS volumes. For any other file system type, full monitoring of file and program activity will be present on those volumes.
+
+The options for this setting are mutually exclusive:
+0 = Scan incoming and outgoing files (default)
+1 = Scan incoming files only
+2 = Scan outgoing files only
+
+Any other value, or if the value does not exist, resolves to the default (0).
+
+If you enable this setting, the specified type of monitoring will be enabled.
+
+If you disable or do not configure this setting, monitoring for incoming and outgoing files will be enabled.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Monitor all files (bi-directional). |
+| 1 | Monitor incoming files. |
+| 2 | Monitor outgoing files. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | RealtimeProtection_RealtimeScanDirection |
+| Friendly Name | Configure monitoring for incoming and outgoing file and program activity |
+| Element Name | Configure monitoring for incoming and outgoing file and program activity |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Real-time Protection |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Real-Time Protection |
+| Registry Value Name | RealtimeScanDirection |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ScanParameter
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ScanParameter
+```
+
+
+
+This policy setting allows you to specify the scan type to use during a scheduled scan. Scan type options are:
+1 = Quick Scan (default)
+2 = Full Scan
+
+If you enable this setting, the scan type will be set to the specified value.
+
+If you disable or do not configure this setting, the default scan type will used.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 (Default) | Quick scan |
+| 2 | Full scan |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_ScanParameters |
+| Friendly Name | Specify the scan type to use for a scheduled scan |
+| Element Name | Specify the scan type to use for a scheduled scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | ScanParameters |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ScheduleQuickScanTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ScheduleQuickScanTime
+```
+
+
+
+This policy setting allows you to specify the time of day at which to perform a daily quick scan. The time value is represented as the number of minutes past midnight (00:00). For example, 120 (0x78) is equivalent to 02:00 AM. By default, this setting is set to disabled. The schedule is based on local time on the computer where the scan is executing.
+
+If you enable this setting, a daily quick scan will run at the time of day specified.
+
+If you disable or do not configure this setting, daily quick scan controlled by this config will not be run.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[0-1380]` |
+| Default Value | 120 |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_ScheduleQuickScantime |
+| Friendly Name | Specify the time for a daily quick scan |
+| Element Name | Specify the time for a daily quick scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | ScheduleQuickScanTime |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ScheduleScanDay
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ScheduleScanDay
+```
+
+
+
+This policy setting allows you to specify the day of the week on which to perform a scheduled scan. The scan can also be configured to run every day or to never run at all.
+
+This setting can be configured with the following ordinal number values:
+(0x0) Every Day
+(0x1) Sunday
+(0x2) Monday
+(0x3) Tuesday
+(0x4) Wednesday
+(0x5) Thursday
+(0x6) Friday
+(0x7) Saturday
+(0x8) Never (default)
+
+If you enable this setting, a scheduled scan will run at the frequency specified.
+
+If you disable or do not configure this setting, a scheduled scan will run at a default frequency.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Every day |
+| 1 | Sunday |
+| 2 | Monday |
+| 3 | Tuesday |
+| 4 | Wednesday |
+| 5 | Thursday |
+| 6 | Friday |
+| 7 | Saturday |
+| 8 | No scheduled scan |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_ScheduleDay |
+| Friendly Name | Specify the day of the week to run a scheduled scan |
+| Element Name | Specify the day of the week to run a scheduled scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | ScheduleDay |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ScheduleScanTime
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ScheduleScanTime
+```
+
+
+
+This policy setting allows you to specify the time of day at which to perform a scheduled scan. The time value is represented as the number of minutes past midnight (00:00). For example, 120 (0x78) is equivalent to 02:00 AM. By default, this setting is set to a time value of 2:00 AM. The schedule is based on local time on the computer where the scan is executing.
+
+If you enable this setting, a scheduled scan will run at the time of day specified.
+
+If you disable or do not configure this setting, a scheduled scan will run at a default time.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[0-1380]` |
+| Default Value | 120 |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Scan_ScheduleTime |
+| Friendly Name | Specify the time of day to run a scheduled scan |
+| Element Name | Specify the time of day to run a scheduled scan |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Scan |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Scan |
+| Registry Value Name | ScheduleTime |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## SecurityIntelligenceLocation
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/SecurityIntelligenceLocation
+```
+
+
+
This policy setting allows you to define the security intelligence location for VDI-configured computers.
-If you disable or don't configure this setting, security intelligence will be referred from the default local source.
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the signature (Security intelligence) delivery optimization for Defender in Virtual Environments*
-- GP name: *SecurityIntelligenceLocation*
-- GP element: *SecurityIntelligenceLocation*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Windows Defender*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-- Empty string - no policy is set
-- Non-empty string - the policy is set and security intelligence is gathered from the location.
-
-
-
-
-
-
-
-**Defender/SignatureUpdateFallbackOrder**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-This policy setting allows you to define the order in which different definition update sources should be contacted. The value of this setting should be entered as a pipe-separated string enumerating the definition update sources in order.
-
-Possible values are:
-
-- InternalDefinitionUpdateServer
-- MicrosoftUpdateServer
-- MMPC
-- FileShares
-
-For example: InternalDefinitionUpdateServer | MicrosoftUpdateServer | MMPC
-
-If you enable this setting, definition update sources will be contacted in the order specified. Once definition updates have been successfully downloaded from one specified source, the remaining sources in the list won't be contacted.
-
-If you disable or don't configure this setting, definition update sources will be contacted in a default order.
-
-OMA-URI Path: ./Vendor/MSFT/Policy/Config/Defender/SignatureUpdateFallbackOrder
-
-
-
-ADMX Info:
-- GP Friendly name: *Define the order of sources for downloading definition updates*
-- GP name: *SignatureUpdate_FallbackOrder*
-- GP element: *SignatureUpdate_FallbackOrder*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Signature Updates*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-**Defender/SignatureUpdateFileSharesSources**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-This policy setting allows you to configure UNC file share sources for downloading definition updates. Sources will be contacted in the order specified. The value of this setting should be entered as a pipe-separated string enumerating the definition update sources.
-
-For example: \\unc1\Signatures | \\unc2\Signatures
-
-The list is empty by default.
-
-If you enable this setting, the specified sources will be contacted for definition updates. Once definition updates have been successfully downloaded from one specified source, the remaining sources in the list won't be contacted.
-
-If you disable or don't configure this setting, the list will remain empty by default and no sources will be contacted.
-
-OMA-URI Path: ./Vendor/MSFT/Policy/Config/Defender/SignatureUpdateFileSharesSources
-
-
-
-ADMX Info:
-- GP Friendly name: *Define file shares for downloading definition updates*
-- GP name: *SignatureUpdate_DefinitionUpdateFileSharesSources*
-- GP element: *SignatureUpdate_DefinitionUpdateFileSharesSources*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Signature Updates*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-**Defender/SignatureUpdateInterval**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Specifies the interval (in hours) that will be used to check for signatures, so instead of using the ScheduleDay and ScheduleTime the check for new signatures will be set according to the interval.
-
-A value of 0 means no check for new signatures, a value of 1 means to check every hour, a value of 2 means to check every two hours, and so on, up to a value of 24, which means to check every day.
-
-The default value is 8.
-
-OMA-URI Path: ./Vendor/MSFT/Policy/Config/Defender/SignatureUpdateInterval
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify the interval to check for definition updates*
-- GP name: *SignatureUpdate_SignatureUpdateInterval*
-- GP element: *SignatureUpdate_SignatureUpdateInterval*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Signature Updates*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-Valid values: 0–24.
-
-
-
-
-
-
-
-**Defender/SubmitSamplesConsent**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Checks for the user consent level in Windows Defender to send data. If the required consent has already been granted, Windows Defender submits them. If not (and if the user has specified never to ask), the UI is launched to ask for user consent (when **Defender/AllowCloudProtection** is allowed) before sending data.
-
-
-
-ADMX Info:
-- GP Friendly name: *Send file samples when further analysis is required*
-- GP name: *SubmitSamplesConsent*
-- GP element: *SubmitSamplesConsent*
-- GP path: *Windows Components/Microsoft Defender Antivirus/MAPS*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-The following list shows the supported values:
-
-- 0 – Always prompt.
-- 1 (default) – Send safe samples automatically.
-- 2 – Never send.
-- 3 – Send all samples automatically.
-
-
-
-
-
-
-
-**Defender/ThreatSeverityDefaultAction**
-
-
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-Allows an administrator to specify any valid threat severity levels and the corresponding default action ID to take.
-
-This value is a list of threat severity level IDs and corresponding actions, separated by a | using the format "*threat level*=*action*|*threat level*=*action*". For example, "1=6|2=2|4=10|5=3".
-
-The following list shows the supported values for threat severity levels:
-
-- 1 – Low severity threats
-- 2 – Moderate severity threats
-- 4 – High severity threats
-- 5 – Severe threats
-
-The following list shows the supported values for possible actions:
-
-- 1 – Clean. Service tries to recover files and try to disinfect.
-- 2 – Quarantine. Moves files to quarantine.
-- 3 – Remove. Removes files from system.
-- 6 – Allow. Allows file/does none of the above actions.
-- 8 – User defined. Requires user to make a decision on which action to take.
-- 10 – Block. Blocks file execution.
-
-
-
-ADMX Info:
-- GP Friendly name: *Specify threat alert levels at which default action should not be taken when detected*
-- GP name: *Threats_ThreatSeverityDefaultAction*
-- GP element: *Threats_ThreatSeverityDefaultActionList*
-- GP path: *Windows Components/Microsoft Defender Antivirus/Threats*
-- GP ADMX file name: *WindowsDefender.admx*
-
-
-
-
-
-
-
-
-
-## Related topics
+If you disable or do not configure this setting, security intelligence will be referred from the default local source.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SignatureUpdate_SharedSignaturesLocation |
+| Friendly Name | Define security intelligence location for VDI clients. |
+| Element Name | Define file share for downloading security intelligence updates in virtual environments |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Security Intelligence Updates |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Signature Updates |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## SignatureUpdateFallbackOrder
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/SignatureUpdateFallbackOrder
+```
+
+
+
+This policy setting allows you to define the order in which different security intelligence update sources should be contacted. The value of this setting should be entered as a pipe-separated string enumerating the security intelligence update sources in order. Possible values are: “InternalDefinitionUpdateServer”, “MicrosoftUpdateServer”, “MMPC”, and “FileShares”
+
+For example: { InternalDefinitionUpdateServer | MicrosoftUpdateServer | MMPC }
+
+If you enable this setting, security intelligence update sources will be contacted in the order specified. Once security intelligence updates have been successfully downloaded from one specified source, the remaining sources in the list will not be contacted.
+
+If you disable or do not configure this setting, security intelligence update sources will be contacted in a default order.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SignatureUpdate_FallbackOrder |
+| Friendly Name | Define the order of sources for downloading security intelligence updates |
+| Element Name | Define the order of sources for downloading security intelligence updates |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Security Intelligence Updates |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Signature Updates |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## SignatureUpdateFileSharesSources
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/SignatureUpdateFileSharesSources
+```
+
+
+
+This policy setting allows you to configure UNC file share sources for downloading security intelligence updates. Sources will be contacted in the order specified. The value of this setting should be entered as a pipe-separated string enumerating the security intelligence update sources. For example: "{\\unc1 | \\unc2 }". The list is empty by default.
+
+If you enable this setting, the specified sources will be contacted for security intelligence updates. Once security intelligence updates have been successfully downloaded from one specified source, the remaining sources in the list will not be contacted.
+
+If you disable or do not configure this setting, the list will remain empty by default and no sources will be contacted.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | List (Delimiter: `|`) |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SignatureUpdate_DefinitionUpdateFileSharesSources |
+| Friendly Name | Define file shares for downloading security intelligence updates |
+| Element Name | Define file shares for downloading security intelligence updates |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Security Intelligence Updates |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Signature Updates |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## SignatureUpdateInterval
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/SignatureUpdateInterval
+```
+
+
+
+This policy setting allows you to specify an interval at which to check for security intelligence updates. The time value is represented as the number of hours between update checks. Valid values range from 1 (every hour) to 24 (once per day).
+
+If you enable this setting, checks for security intelligence updates will occur at the interval specified.
+
+If you disable or do not configure this setting, checks for security intelligence updates will occur at the default interval.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Allowed Values | Range: `[0-24]` |
+| Default Value | 8 |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SignatureUpdate_SignatureUpdateInterval |
+| Friendly Name | Specify the interval to check for security intelligence updates |
+| Element Name | Specify the interval to check for security intelligence updates |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Security Intelligence Updates |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Signature Updates |
+| Registry Value Name | SignatureUpdateInterval |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## SubmitSamplesConsent
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/SubmitSamplesConsent
+```
+
+
+
+This policy setting configures behaviour of samples submission when opt-in for MAPS telemetry is set.
+
+Possible options are:
+(0x0) Always prompt
+(0x1) Send safe samples automatically
+(0x2) Never send
+(0x3) Send all samples automatically
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Always prompt. |
+| 1 (Default) | Send safe samples automatically. |
+| 2 | Never send. |
+| 3 | Send all samples automatically. |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SubmitSamplesConsent |
+| Friendly Name | Send file samples when further analysis is required |
+| Element Name | Send file samples when further analysis is required |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > MAPS |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Spynet |
+| Registry Value Name | SubmitSamplesConsent |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+## ThreatSeverityDefaultAction
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Defender/ThreatSeverityDefaultAction
+```
+
+
+
+Allows an administrator to specify any valid threat severity levels and the corresponding default action ID to take. This value is a list of threat severity level IDs and corresponding actions, separated by a | using the format threat level=action|threat level=action. For example, 1=6|2=2|4=10|5=3. The following list shows the supported values for threat severity levels:1 – Low severity threats2 – Moderate severity threats4 – High severity threats5 – Severe threatsThe following list shows the supported values for possible actions:1 – Clean. Service tries to recover files and try to disinfect. 2 – Quarantine. Moves files to quarantine. 3 – Remove. Removes files from system. 6 – Allow. Allows file/does none of the above actions. 8 – User defined. Requires user to make a decision on which action to take. 10 – Block. Blocks file execution.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | Threats_ThreatSeverityDefaultAction |
+| Friendly Name | Specify threat alert levels at which default action should not be taken when detected |
+| Element Name | Specify threat alert levels at which default action should not be taken when detected |
+| Location | Computer Configuration |
+| Path | Windows Components > Microsoft Defender Antivirus > Threats |
+| Registry Key Name | Software\Policies\Microsoft\Windows Defender\Threats |
+| Registry Value Name | Threats_ThreatSeverityDefaultAction |
+| ADMX File Name | WindowsDefender.admx |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-msslegacy.md b/windows/client-management/mdm/policy-csp-msslegacy.md
index 69fb84b6e9..c7e71ee0cf 100644
--- a/windows/client-management/mdm/policy-csp-msslegacy.md
+++ b/windows/client-management/mdm/policy-csp-msslegacy.md
@@ -1,211 +1,210 @@
---
-title: Policy CSP - MSSLegacy
-description: Learn how Policy CSP - MSSLegacy, an ADMX-backed policy, requires a special SyncML format to enable or disable.
+title: MSSLegacy Policy CSP
+description: Learn more about the MSSLegacy Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/29/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 09/27/2019
-ms.reviewer:
-manager: aaroncz
+ms.topic: reference
---
+
+
+
# Policy CSP - MSSLegacy
-
-
-
-## MSSLegacy policies
-
-
- -
- MSSLegacy/AllowICMPRedirectsToOverrideOSPFGeneratedRoutes
-
- -
- MSSLegacy/AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers
-
- -
- MSSLegacy/IPSourceRoutingProtectionLevel
-
- -
- MSSLegacy/IPv6SourceRoutingProtectionLevel
-
-
-
> [!TIP]
-> These are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](../understanding-admx-backed-policies.md).
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
>
-> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](../understanding-admx-backed-policies.md#enabling-a-policy).
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
>
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
+
+
+
-
-**MSSLegacy/AllowICMPRedirectsToOverrideOSPFGeneratedRoutes**
+
+## AllowICMPRedirectsToOverrideOSPFGeneratedRoutes
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/MSSLegacy/AllowICMPRedirectsToOverrideOSPFGeneratedRoutes
+```
+
-
-
+
+
+
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+
+Allow ICMP redirects to override OSPF generated routes.
+
-> [!div class = "checklist"]
-> * Device
+
+**Description framework properties**:
-
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-
-
+
+
+
-
+
+
+
-
-ADMX Info:
-- GP name: *Pol_MSS_EnableICMPRedirect*
-- GP ADMX file name: *mss-legacy.admx*
+
-
-
+
+## AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
-
-**MSSLegacy/AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers**
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/MSSLegacy/AllowTheComputerToIgnoreNetBIOSNameReleaseRequestsExceptFromWINSServers
+```
+
-
+
+
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+
+Allow the computer to ignore NetBIOS name release requests except from WINS servers.
+
-
-
+
+**Description framework properties**:
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-> [!div class = "checklist"]
-> * Device
+
+
+
-
+
+
+
-
-
+
-
+
+## IPSourceRoutingProtectionLevel
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
-
-ADMX Info:
-- GP name: *Pol_MSS_NoNameReleaseOnDemand*
-- GP ADMX file name: *mss-legacy.admx*
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/MSSLegacy/IPSourceRoutingProtectionLevel
+```
+
-
-
+
+
+
-
+
+
+IP source routing protection level (protects against packet spoofing).
+
-
-**MSSLegacy/IPSourceRoutingProtectionLevel**
+
+**Description framework properties**:
-
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+
+
-
-
+
+
+
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+
-> [!div class = "checklist"]
-> * Device
+
+## IPv6SourceRoutingProtectionLevel
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
-
-
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/MSSLegacy/IPv6SourceRoutingProtectionLevel
+```
+
-
+
+
+
-
-ADMX Info:
-- GP name: *Pol_MSS_DisableIPSourceRouting*
-- GP ADMX file name: *mss-legacy.admx*
+
+
+IPv6 source routing protection level (protects against packet spoofing).
+
-
-
+
+**Description framework properties**:
-
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-
-**MSSLegacy/IPv6SourceRoutingProtectionLevel**
+
+
+
-
+
+
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
-
-
+
+
+
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+
-> [!div class = "checklist"]
-> * Device
+## Related articles
-
-
-
-
-
-
-
-
-ADMX Info:
-- GP name: *Pol_MSS_DisableIPSourceRoutingIPv6*
-- GP ADMX file name: *mss-legacy.admx*
-
-
-
-
-
-
-
-
-## Related topics
-
-[Policy configuration service provider](policy-configuration-service-provider.md)
\ No newline at end of file
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-settingssync.md b/windows/client-management/mdm/policy-csp-settingssync.md
new file mode 100644
index 0000000000..3be0b76457
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-settingssync.md
@@ -0,0 +1,96 @@
+---
+title: SettingsSync Policy CSP
+description: Learn more about the SettingsSync Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/29/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - SettingsSync
+
+> [!TIP]
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+
+
+
+
+
+## DisableAccessibilitySettingSync
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows Insider Preview |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/SettingsSync/DisableAccessibilitySettingSync
+```
+
+
+
+Prevent the "accessibility" group from syncing to and from this PC. This turns off and disables the "accessibility" group on the "Windows backup" settings page in PC settings.
+
+If you enable this policy setting, the "accessibility", group will not be synced.
+
+Use the option "Allow users to turn accessibility syncing on" so that syncing is turned off by default but not disabled.
+
+If you do not set or disable this setting, syncing of the "accessibility" group is on by default and configurable by the user.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | DisableAccessibilitySettingSync |
+| Friendly Name | Do not sync accessibility settings |
+| Location | Computer Configuration |
+| Path | Windows Components > Sync your settings |
+| Registry Key Name | Software\Policies\Microsoft\Windows\SettingSync |
+| Registry Value Name | DisableAccessibilitySettingSync |
+| ADMX File Name | SettingSync.admx |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-stickers.md b/windows/client-management/mdm/policy-csp-stickers.md
new file mode 100644
index 0000000000..9b2eeee68c
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-stickers.md
@@ -0,0 +1,79 @@
+---
+title: Stickers Policy CSP
+description: Learn more about the Stickers Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/02/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - Stickers
+
+
+
+
+
+
+## EnableStickers
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 22H2 [10.0.22621] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/Stickers/EnableStickers
+```
+
+
+
+This policy setting allows you to control whether you want to allow stickers to be edited and placed on Desktop
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-tenantdefinedtelemetry.md b/windows/client-management/mdm/policy-csp-tenantdefinedtelemetry.md
new file mode 100644
index 0000000000..0ab6c560aa
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-tenantdefinedtelemetry.md
@@ -0,0 +1,80 @@
+---
+title: TenantDefinedTelemetry Policy CSP
+description: Learn more about the TenantDefinedTelemetry Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/02/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - TenantDefinedTelemetry
+
+
+
+
+
+
+## CustomTelemetryId
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:x: Pro
:x: Enterprise
:x: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 22H2 [10.0.22621] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/TenantDefinedTelemetry/CustomTelemetryId
+```
+
+
+
+This policy is used to let mission control what type of Edition we are currently in.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Base |
+| 1 | Education |
+| 2 | Commercial |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-tenantrestrictions.md b/windows/client-management/mdm/policy-csp-tenantrestrictions.md
new file mode 100644
index 0000000000..936808277a
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-tenantrestrictions.md
@@ -0,0 +1,98 @@
+---
+title: TenantRestrictions Policy CSP
+description: Learn more about the TenantRestrictions Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
+ms.author: vinpa
+ms.date: 11/29/2022
+ms.localizationpriority: medium
+ms.prod: windows-client
+ms.technology: itpro-manage
+ms.topic: reference
+---
+
+
+
+
+# Policy CSP - TenantRestrictions
+
+> [!TIP]
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+
+
+
+
+
+## ConfigureTenantRestrictions
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Unknown [10.0.20348.320] and later
:heavy_check_mark: Windows 10, version 2004 [10.0.19041.1320] and later
:heavy_check_mark: Windows 10, version 2009 [10.0.19042.1320] and later
:heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1320] and later
:heavy_check_mark: Windows 10, version 21H2 [10.0.19044] and later
:heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/TenantRestrictions/ConfigureTenantRestrictions
+```
+
+
+
+This setting enables and configures the device-based tenant restrictions feature for Azure Active Directory.
+
+When you enable this setting, compliant applications will be prevented from accessing disallowed tenants, according to a policy set in your Azure AD tenant.
+
+Note: Creation of a policy in your home tenant is required, and additional security measures for managed devices are recommended for best protection. Refer to Azure AD Tenant Restrictions for more details.
+
+https://go.microsoft.com/fwlink/?linkid=2148762
+
+Before enabling firewall protection, ensure that a Windows Defender Application Control (WDAC) policy that correctly tags applications has been applied to the target devices. Enabling firewall protection without a corresponding WDAC policy will prevent all applications from reaching Microsoft endpoints. This firewall setting is not supported on all versions of Windows - see the following link for more information.
+For details about setting up WDAC with tenant restrictions, see https://go.microsoft.com/fwlink/?linkid=2155230
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | trv2_payload |
+| Friendly Name | Cloud Policy Details |
+| Location | Computer Configuration |
+| Path | Windows Components > Tenant Restrictions |
+| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows\TenantRestrictions\Payload |
+| ADMX File Name | TenantRestrictions.admx |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-windowslogon.md b/windows/client-management/mdm/policy-csp-windowslogon.md
index 7af2d1affc..33e709f97a 100644
--- a/windows/client-management/mdm/policy-csp-windowslogon.md
+++ b/windows/client-management/mdm/policy-csp-windowslogon.md
@@ -1,267 +1,264 @@
---
-title: Policy CSP - WindowsLogon
-description: Use the Policy CSP - WindowsLogon setting to control whether a device automatically signs in and locks the last interactive user after the system restarts.
+title: WindowsLogon Policy CSP
+description: Learn more about the WindowsLogon Area in Policy CSP
+author: vinaypamnani-msft
+manager: aaroncz
ms.author: vinpa
-ms.topic: article
+ms.date: 11/29/2022
+ms.localizationpriority: medium
ms.prod: windows-client
ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 09/27/2019
-ms.reviewer:
-manager: aaroncz
+ms.topic: reference
---
+
+
+
# Policy CSP - WindowsLogon
-
-
-
-## WindowsLogon policies
-
-
- -
- WindowsLogon/AllowAutomaticRestartSignOn
-
- -
- WindowsLogon/ConfigAutomaticRestartSignOn
-
- -
- WindowsLogon/DisableLockScreenAppNotifications
-
- -
- WindowsLogon/DontDisplayNetworkSelectionUI
-
- -
- WindowsLogon/EnableFirstLogonAnimation
-
- -
- WindowsLogon/EnableMPRNotifications
-
- -
- WindowsLogon/EnumerateLocalUsersOnDomainJoinedComputers
-
- -
- WindowsLogon/HideFastUserSwitching
-
-
-
> [!TIP]
-> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](../understanding-admx-backed-policies.md).
+> Some of these are ADMX-backed policies and require a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
>
-> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](../understanding-admx-backed-policies.md#enabling-a-policy).
+> You must specify the data type in the SyncML as <Format>chr</Format>. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
>
> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
+
+
+
-
-**WindowsLogon/AllowAutomaticRestartSignOn**
+
+## AllowAutomaticRestartSignOn
-
-The table below shows the applicability of Windows:
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/AllowAutomaticRestartSignOn
+```
+
-
-
+
+This policy setting controls whether a device will automatically sign in and lock the last interactive user after the system restarts or after a shutdown and cold boot.
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+This only occurs if the last interactive user didn’t sign out before the restart or shutdown.
-> [!div class = "checklist"]
-> * Device
+If the device is joined to Active Directory or Azure Active Directory, this policy only applies to Windows Update restarts. Otherwise, this will apply to both Windows Update restarts and user-initiated restarts and shutdowns.
-
+If you don’t configure this policy setting, it is enabled by default. When the policy is enabled, the user is automatically signed in and the session is automatically locked with all lock screen apps configured for that user after the device boots.
-
-
-This policy setting controls whether a device automatically signs in and locks the last interactive user after the system restarts or after a shutdown and cold boot.
+After enabling this policy, you can configure its settings through the ConfigAutomaticRestartSignOn policy, which configures the mode of automatically signing in and locking the last interactive user after a restart or cold boot.
-This scenario occurs only if the last interactive user didn't sign out before the restart or shutdown.
+If you disable this policy setting, the device does not configure automatic sign in. The user’s lock screen apps are not restarted after the system restarts.
+
-If the device is joined to Active Directory or Azure Active Directory, this policy applies only to Windows Update restarts. Otherwise, this policy applies to both Windows Update restarts and user-initiated restarts and shutdowns.
+
+
+
-If you don't configure this policy setting, it's enabled by default. When the policy is enabled, the user is automatically signed in and the session is automatically locked with all lock screen apps configured for that user after the device boots.
+
+**Description framework properties**:
-After enabling this policy, you can configure its settings through the [ConfigAutomaticRestartSignOn](#windowslogon-configautomaticrestartsignon) policy, which configures the mode of automatically signing in and locking the last interactive user after a restart or cold boot.
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-If you disable this policy setting, the device doesn't configure automatic sign in. The user’s lock screen apps aren't restarted after the system restarts.
+
+**ADMX mapping**:
-
+| Name | Value |
+|:--|:--|
+| Name | AutomaticRestartSignOnDescription |
+| Friendly Name | Sign-in and lock last interactive user automatically after a restart |
+| Location | Computer Configuration |
+| Path | Windows Components > Windows Logon Options |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System |
+| Registry Value Name | DisableAutomaticRestartSignOn |
+| ADMX File Name | WinLogon.admx |
+
-
-ADMX Info:
-- GP Friendly name: *Sign-in and lock last interactive user automatically after a restart*
-- GP name: *AutomaticRestartSignOn*
-- GP path: *Windows Components/Windows Logon Options*
-- GP ADMX file name: *WinLogon.admx*
+
+
+
-
-
+
-
-
+
+## ConfigAutomaticRestartSignOn
-
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
-
-
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/ConfigAutomaticRestartSignOn
+```
+
-
-
-
-**WindowsLogon/ConfigAutomaticRestartSignOn**
-
-
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
-This policy setting controls the configuration under which an automatic restart, sign in, and lock occurs after a restart or cold boot. If you chose “Disabled” in the [AllowAutomaticRestartSignOn](#windowslogon-allowautomaticrestartsignon) policy, then automatic sign in doesn't occur and this policy need not be configured.
+
+This policy setting controls the configuration under which an automatic restart and sign on and lock occurs after a restart or cold boot. If you chose “Disabled” in the “Sign-in and lock last interactive user automatically after a restart” policy, then automatic sign on will not occur and this policy does not need to be configured.
If you enable this policy setting, you can choose one of the following two options:
-- Enabled if BitLocker is on and not suspended: Specifies that automatic sign in and lock occurs only if BitLocker is active and not suspended during the reboot or shutdown. Personal data can be accessed on the device’s hard drive at this time if BitLocker isn't on or suspended during an update. BitLocker suspension temporarily removes protection for system components and data but may be needed in certain circumstances to successfully update boot-critical components.
+1. “Enabled if BitLocker is on and not suspended” specifies that automatic sign on and lock will only occur if BitLocker is active and not suspended during the reboot or shutdown. Personal data can be accessed on the device’s hard drive at this time if BitLocker is not on or suspended during an update. BitLocker suspension temporarily removes protection for system components and data but may be needed in certain circumstances to successfully update boot-critical components.
BitLocker is suspended during updates if:
- - The device doesn't have TPM 2.0 and PCR7
- - The device doesn't use a TPM-only protector
-- Always Enabled: Specifies that automatic sign in happens even if BitLocker is off or suspended during reboot or shutdown. When BitLocker isn't enabled, personal data is accessible on the hard drive. Automatic restart and sign in should only be run under this condition if you're confident that the configured device is in a secure physical location.
+- The device doesn’t have TPM 2.0 and PCR7, or
+- The device doesn’t use a TPM-only protector
+2. “Always Enabled” specifies that automatic sign on will happen even if BitLocker is off or suspended during reboot or shutdown. When BitLocker is not enabled, personal data is accessible on the hard drive. Automatic restart and sign on should only be run under this condition if you are confident that the configured device is in a secure physical location.
-If you disable or don't configure this setting, automatic sign in defaults to the “Enabled if BitLocker is on and not suspended” behavior.
+If you disable or don’t configure this setting, automatic sign on will default to the “Enabled if BitLocker is on and not suspended” behavior.
+
-
+
+
+
-
-ADMX Info:
-- GP Friendly name: *Configure the mode of automatically signing in and locking last interactive user after a restart or cold boot*
-- GP name: *ConfigAutomaticRestartSignOn*
-- GP path: *Windows Components/Windows Logon Options*
-- GP ADMX file name: *WinLogon.admx*
+
+**Description framework properties**:
-
-
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-
-
+
+**ADMX mapping**:
-
-
+| Name | Value |
+|:--|:--|
+| Name | ConfigAutomaticRestartSignOnDescription |
+| Friendly Name | Configure the mode of automatically signing in and locking last interactive user after a restart or cold boot |
+| Location | Computer Configuration |
+| Path | Windows Components > Windows Logon Options |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System |
+| ADMX File Name | WinLogon.admx |
+
-
-
+
+
+
-
+
-
-**WindowsLogon/DisableLockScreenAppNotifications**
+
+## DisableLockScreenAppNotifications
-
-The table below shows the applicability of Windows:
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/DisableLockScreenAppNotifications
+```
+
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
+
This policy setting allows you to prevent app notifications from appearing on the lock screen.
If you enable this policy setting, no app notifications are displayed on the lock screen.
-If you disable or don't configure this policy setting, users can choose which apps display notifications on the lock screen.
+If you disable or do not configure this policy setting, users can choose which apps display notifications on the lock screen.
+
-
+
+
+
-
-ADMX Info:
-- GP Friendly name: *Turn off app notifications on the lock screen*
-- GP name: *DisableLockScreenAppNotifications*
-- GP path: *System/Logon*
-- GP ADMX file name: *logon.admx*
+
+**Description framework properties**:
-
-
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-
+
+**ADMX mapping**:
-
-**WindowsLogon/DontDisplayNetworkSelectionUI**
+| Name | Value |
+|:--|:--|
+| Name | DisableLockScreenAppNotifications |
+| Friendly Name | Turn off app notifications on the lock screen |
+| Location | Computer Configuration |
+| Path | System > Logon |
+| Registry Key Name | Software\Policies\Microsoft\Windows\System |
+| Registry Value Name | DisableLockScreenAppNotifications |
+| ADMX File Name | Logon.admx |
+
-
-The table below shows the applicability of Windows:
+
+
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
-
-
+
+## DontDisplayNetworkSelectionUI
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+
-> [!div class = "checklist"]
-> * Device
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/DontDisplayNetworkSelectionUI
+```
+
-
+
+This policy setting allows you to control whether anyone can interact with available networks UI on the logon screen.
-
-
-This policy setting allows you to control whether anyone can interact with available networks UI on the sign-in screen.
-
-If you enable this policy setting, the PC's network connectivity state can't be changed without signing into Windows.
+If you enable this policy setting, the PC's network connectivity state cannot be changed without signing into Windows.
If you disable or don't configure this policy setting, any user can disconnect the PC from the network or can connect the PC to other available networks without signing into Windows.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
+
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | DontDisplayNetworkSelectionUI |
+| Friendly Name | Do not display network selection UI |
+| Location | Computer Configuration |
+| Path | System > Logon |
+| Registry Key Name | Software\Policies\Microsoft\Windows\System |
+| Registry Value Name | DontDisplayNetworkSelectionUI |
+| ADMX File Name | Logon.admx |
+
+
+
+
+**Example**:
Here's an example to enable this policy:
@@ -287,236 +284,314 @@ Here's an example to enable this policy:
```
+
-
+
-
-ADMX Info:
-- GP Friendly name: *Do not display network selection UI*
-- GP name: *DontDisplayNetworkSelectionUI*
-- GP path: *System/Logon*
-- GP ADMX file name: *logon.admx*
+
+## EnableFirstLogonAnimation
-
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+
-
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/EnableFirstLogonAnimation
+```
+
-
-**WindowsLogon/EnableFirstLogonAnimation**
+
+This policy setting allows you to control whether users see the first sign-in animation when signing in to the computer for the first time. This applies to both the first user of the computer who completes the initial setup and users who are added to the computer later. It also controls if Microsoft account users will be offered the opt-in prompt for services during their first sign-in.
-
-The table below shows the applicability of Windows:
+If you enable this policy setting, Microsoft account users will see the opt-in prompt for services, and users with other accounts will see the sign-in animation.
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+If you disable this policy setting, users will not see the animation and Microsoft account users will not see the opt-in prompt for services.
-
-
+If you do not configure this policy setting, the user who completes the initial Windows setup will see the animation during their first sign-in. If the first user had already completed the initial setup and this policy setting is not configured, users new to this computer will not see the animation.
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+Note: The first sign-in animation will not be shown on Server, so this policy will have no effect.
+
-> [!div class = "checklist"]
-> * Device
+
+
+
-
+
+**Description framework properties**:
-
-
-This policy setting allows you to control whether users see the first sign-in animation when signing in to the computer for the first time. This view applies to both the first user of the computer who completes the initial setup and users who are added to the computer later. It also controls if Microsoft account users are offered the opt-in prompt for services during their first sign-in.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 1 |
+
-If you enable this policy setting, Microsoft account users see the opt-in prompt for services, and users with other accounts see the sign-in animation.
+
+**Allowed values**:
-If you disable this policy setting, users don't see the animation and Microsoft account users don't see the opt-in prompt for services.
+| Value | Description |
+|:--|:--|
+| 0 | Disabled. |
+| 1 (Default) | Enabled. |
+
-If you don't configure this policy setting, the user who completes the initial Windows setup see the animation during their first sign-in. If the first user had already completed the initial setup and this policy setting isn't configured, users new to this computer don't see the animation.
+
+**Group policy mapping**:
-> [!NOTE]
-> The first sign-in animation isn't displayed on Server, so this policy has no effect.
+| Name | Value |
+|:--|:--|
+| Name | EnableFirstLogonAnimation |
+| Friendly Name | Show first sign-in animation |
+| Location | Computer Configuration |
+| Path | System > Logon |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System |
+| Registry Value Name | EnableFirstLogonAnimation |
+| ADMX File Name | Logon.admx |
+
-
-
-ADMX Info:
-- GP Friendly name: *Show first sign-in animation*
-- GP name: *EnableFirstLogonAnimation*
-- GP path: *System/Logon*
-- GP ADMX file name: *Logon.admx*
+
+
+
-
-
-Supported values:
-- 0 - disabled
-- 1 - enabled
-
-
+
-
-
+
+## EnableMPRNotifications
-
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 22H2 [10.0.22621] and later |
+
-
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/EnableMPRNotifications
+```
+
-
-**WindowsLogon/EnableMPRNotifications**
+
+This policy controls the configuration under which winlogon sends MPR notifications in the system.
-
-The table below shows the applicability of Windows:
+If you enable this setting or do not configure it, winlogon sends MPR notifications if a credential manager is configured.
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+If you disable this setting, winlogon does not send MPR notifications.
+
-
-
+
+
+
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+**Description framework properties**:
-> [!div class = "checklist"]
-> * Device
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-
+
+**ADMX mapping**:
-
-
-This policy allows winlogon to send MPR notifications in the system if a credential manager is configured.
+| Name | Value |
+|:--|:--|
+| Name | EnableMPRNotifications |
+| Friendly Name | Enable MPR notifications for the system |
+| Location | Computer Configuration |
+| Path | Windows Components > Windows Logon Options |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System |
+| Registry Value Name | EnableMPR |
+| ADMX File Name | WinLogon.admx |
+
-If you disable (0), MPR notifications will not be sent by winlogon.
+
+
+
-If you enable (1) or do not configure this policy setting this policy, MPR notifications will be sent by winlogon.
+
-
-
-Supported values:
+
+## EnumerateLocalUsersOnDomainJoinedComputers
-- 0 - disabled
-- 1 (default)- enabled
-
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+
-
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/EnumerateLocalUsersOnDomainJoinedComputers
+```
+
-
-
-
-**WindowsLogon/EnumerateLocalUsersOnDomainJoinedComputers**
-
-
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-
-
-
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-
-
-
-
+
This policy setting allows local users to be enumerated on domain-joined computers.
If you enable this policy setting, Logon UI will enumerate all local users on domain-joined computers.
-If you disable or don't configure this policy setting, the Logon UI won't enumerate local users on domain-joined computers.
+If you disable or do not configure this policy setting, the Logon UI will not enumerate local users on domain-joined computers.
+
-
+
+
+
-
-ADMX Info:
-- GP Friendly name: *Enumerate local users on domain-joined computers*
-- GP name: *EnumerateLocalUsers*
-- GP path: *System/Logon*
-- GP ADMX file name: *logon.admx*
+
+**Description framework properties**:
-
-
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+
-
+
+**ADMX mapping**:
-
-**WindowsLogon/HideFastUserSwitching**
+| Name | Value |
+|:--|:--|
+| Name | EnumerateLocalUsers |
+| Friendly Name | Enumerate local users on domain-joined computers |
+| Location | Computer Configuration |
+| Path | System > Logon |
+| Registry Key Name | Software\Policies\Microsoft\Windows\System |
+| Registry Value Name | EnumerateLocalUsers |
+| ADMX File Name | Logon.admx |
+
-
-The table below shows the applicability of Windows:
+
+
+
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+
-
-
+
+## HideFastUserSwitching
-
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+
-> [!div class = "checklist"]
-> * Device
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/HideFastUserSwitching
+```
+
-
+
+This policy setting allows you to hide the Switch User interface in the Logon UI, the Start menu and the Task Manager.
-
-
-This policy setting allows you to hide the Switch account button on the sign-in screen, Start, and the Task Manager. If you enable this policy setting, the Switch account button is hidden from the user who is attempting to sign-in or is signed in to the computer that has this policy applied. If you disable or don't configure this policy setting, the Switch account button is accessible to the user in the three locations.
+If you enable this policy setting, the Switch User interface is hidden from the user who is attempting to log on or is logged on to the computer that has this policy applied.
-
-
-ADMX Info:
-- GP Friendly name: *Hide entry points for Fast User Switching*
-- GP name: *HideFastUserSwitching*
-- GP path: *System/Logon*
-- GP ADMX file name: *Logon.admx*
+The locations that Switch User interface appear are in the Logon UI, the Start menu and the Task Manager.
-
-
-The following list shows the supported values:
+If you disable or do not configure this policy setting, the Switch User interface is accessible to the user in the three locations.
+
-- 0 (default) - Disabled (visible).
-- 1 - Enabled (hidden).
+
+
+
-
-
-To validate on Desktop, do the following steps:
+
+**Description framework properties**:
-1. Enable policy.
-2. Verify that the Switch account button in Start is hidden.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
-
-
-
+
+**Allowed values**:
-
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled (visible). |
+| 1 | Enabled (hidden). |
+
-## Related topics
+
+**Group policy mapping**:
-[Policy configuration service provider](policy-configuration-service-provider.md)
\ No newline at end of file
+| Name | Value |
+|:--|:--|
+| Name | HideFastUserSwitching |
+| Friendly Name | Hide entry points for Fast User Switching |
+| Location | Computer Configuration |
+| Path | System > Logon |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System |
+| Registry Value Name | HideFastUserSwitching |
+| ADMX File Name | Logon.admx |
+
+
+
+
+
+
+
+
+
+## OverrideShellProgram
+
+
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device
:x: User | :x: Home
:heavy_check_mark: Pro
:heavy_check_mark: Enterprise
:heavy_check_mark: Education
:heavy_check_mark: Windows SE | :heavy_check_mark: Windows Insider Preview |
+
+
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/WindowsLogon/OverrideShellProgram
+```
+
+
+
+This policy is used by IT admin to override the registry based shell program.
+
+
+
+
+
+
+
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value | 0 |
+
+
+
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not Configured |
+| 1 | Apply Lightweight shell |
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/toc.yml b/windows/client-management/mdm/toc.yml
index 888db084cb..d1d4e1f569 100644
--- a/windows/client-management/mdm/toc.yml
+++ b/windows/client-management/mdm/toc.yml
@@ -1,920 +1,940 @@
items:
- - name: Configuration service provider reference
- href: index.yml
+- name: Configuration service provider reference
+ href: index.yml
+ expanded: true
+ items:
+ - name: Device description framework (DDF) files
+ href: configuration-service-provider-ddf.md
+ - name: Support scenarios
+ href: configuration-service-provider-support.md
+ - name: WMI Bridge provider
+ items:
+ - name: Using PowerShell scripting with the WMI Bridge Provider
+ href: ../using-powershell-scripting-with-the-wmi-bridge-provider.md
+ - name: WMI providers supported in Windows 10
+ href: ../wmi-providers-supported-in-windows.md
+ - name: Understanding ADMX policies
+ href: ../understanding-admx-backed-policies.md
+ items:
+ - name: Enable ADMX policies in MDM
+ href: ../enable-admx-backed-policies-in-mdm.md
+ - name: Win32 and Desktop Bridge app policy configuration
+ href: ../win32-and-centennial-app-policy-configuration.md
+ - name: OMA DM protocol support
+ href: ../oma-dm-protocol-support.md
+ items:
+ - name: Structure of OMA DM provisioning files
+ href: ../structure-of-oma-dm-provisioning-files.md
+ - name: Server requirements for OMA DM
+ href: ../server-requirements-windows-mdm.md
+ - name: Configuration service providers (CSPs)
expanded: true
items:
- - name: Device description framework (DDF) files
- href: configuration-service-provider-ddf.md
- - name: Support scenarios
- href: configuration-service-provider-support.md
- - name: WMI Bridge provider
+ - name: Policy
+ href: policy-configuration-service-provider.md
items:
- - name: Using PowerShell scripting with the WMI Bridge Provider
- href: ../using-powershell-scripting-with-the-wmi-bridge-provider.md
- - name: WMI providers supported in Windows 10
- href: ../wmi-providers-supported-in-windows.md
- - name: Understanding ADMX policies
- href: ../understanding-admx-backed-policies.md
+ - name: Policy CSP DDF file
+ href: policy-ddf-file.md
+ - name: Policy CSP support scenarios
+ items:
+ - name: ADMX policies in Policy CSP
+ href: policies-in-policy-csp-admx-backed.md
+ - name: Policies in Policy CSP supported by Group Policy
+ href: policies-in-policy-csp-supported-by-group-policy.md
+ - name: Policies in Policy CSP supported by HoloLens 2
+ href: policies-in-policy-csp-supported-by-hololens2.md
+ - name: Policies in Policy CSP supported by HoloLens (1st gen) Commercial Suite
+ href: policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md
+ - name: Policies in Policy CSP supported by HoloLens (1st gen) Development Edition
+ href: policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md
+ - name: Policies in Policy CSP supported by Windows 10 IoT Core
+ href: policies-in-policy-csp-supported-by-iot-core.md
+ - name: Policies in Policy CSP supported by Microsoft Surface Hub
+ href: policies-in-policy-csp-supported-by-surface-hub.md
+ - name: Policy CSPs that can be set using Exchange Active Sync (EAS)
+ href: policies-in-policy-csp-that-can-be-set-using-eas.md
+ - name: Policy CSP areas
+ expanded: true
+ items:
+ - name: AboveLock
+ href: policy-csp-abovelock.md
+ - name: Accounts
+ href: policy-csp-accounts.md
+ - name: ActiveXControls
+ href: policy-csp-activexcontrols.md
+ - name: ADMX_ActiveXInstallService
+ href: policy-csp-admx-activexinstallservice.md
+ - name: ADMX_AddRemovePrograms
+ href: policy-csp-admx-addremoveprograms.md
+ - name: ADMX_AdmPwd
+ href: policy-csp-admx-admpwd.md
+ - name: ADMX_AppCompat
+ href: policy-csp-admx-appcompat.md
+ - name: ADMX_AppxPackageManager
+ href: policy-csp-admx-appxpackagemanager.md
+ - name: ADMX_AppXRuntime
+ href: policy-csp-admx-appxruntime.md
+ - name: ADMX_AttachmentManager
+ href: policy-csp-admx-attachmentmanager.md
+ - name: ADMX_AuditSettings
+ href: policy-csp-admx-auditsettings.md
+ - name: ADMX_Bits
+ href: policy-csp-admx-bits.md
+ - name: ADMX_CipherSuiteOrder
+ href: policy-csp-admx-ciphersuiteorder.md
+ - name: ADMX_COM
+ href: policy-csp-admx-com.md
+ - name: ADMX_ControlPanel
+ href: policy-csp-admx-controlpanel.md
+ - name: ADMX_ControlPanelDisplay
+ href: policy-csp-admx-controlpaneldisplay.md
+ - name: ADMX_Cpls
+ href: policy-csp-admx-cpls.md
+ - name: ADMX_CredentialProviders
+ href: policy-csp-admx-credentialproviders.md
+ - name: ADMX_CredSsp
+ href: policy-csp-admx-credssp.md
+ - name: ADMX_CredUI
+ href: policy-csp-admx-credui.md
+ - name: ADMX_CtrlAltDel
+ href: policy-csp-admx-ctrlaltdel.md
+ - name: ADMX_DataCollection
+ href: policy-csp-admx-datacollection.md
+ - name: ADMX_DCOM
+ href: policy-csp-admx-dcom.md
+ - name: ADMX_Desktop
+ href: policy-csp-admx-desktop.md
+ - name: ADMX_DeviceCompat
+ href: policy-csp-admx-devicecompat.md
+ - name: ADMX_DeviceGuard
+ href: policy-csp-admx-deviceguard.md
+ - name: ADMX_DeviceInstallation
+ href: policy-csp-admx-deviceinstallation.md
+ - name: ADMX_DeviceSetup
+ href: policy-csp-admx-devicesetup.md
+ - name: ADMX_DFS
+ href: policy-csp-admx-dfs.md
+ - name: ADMX_DigitalLocker
+ href: policy-csp-admx-digitallocker.md
+ - name: ADMX_DiskDiagnostic
+ href: policy-csp-admx-diskdiagnostic.md
+ - name: ADMX_DistributedLinkTracking
+ href: policy-csp-admx-distributedlinktracking.md
+ - name: ADMX_DnsClient
+ href: policy-csp-admx-dnsclient.md
+ - name: ADMX_DWM
+ href: policy-csp-admx-dwm.md
+ - name: ADMX_EAIME
+ href: policy-csp-admx-eaime.md
+ - name: ADMX_EncryptFilesonMove
+ href: policy-csp-admx-encryptfilesonmove.md
+ - name: ADMX_EnhancedStorage
+ href: policy-csp-admx-enhancedstorage.md
+ - name: ADMX_ErrorReporting
+ href: policy-csp-admx-errorreporting.md
+ - name: ADMX_EventForwarding
+ href: policy-csp-admx-eventforwarding.md
+ - name: ADMX_EventLog
+ href: policy-csp-admx-eventlog.md
+ - name: ADMX_EventLogging
+ href: policy-csp-admx-eventlogging.md
+ - name: ADMX_EventViewer
+ href: policy-csp-admx-eventviewer.md
+ - name: ADMX_Explorer
+ href: policy-csp-admx-explorer.md
+ - name: ADMX_ExternalBoot
+ href: policy-csp-admx-externalboot.md
+ - name: ADMX_FileRecovery
+ href: policy-csp-admx-filerecovery.md
+ - name: ADMX_FileRevocation
+ href: policy-csp-admx-filerevocation.md
+ - name: ADMX_FileServerVSSProvider
+ href: policy-csp-admx-fileservervssprovider.md
+ - name: ADMX_FileSys
+ href: policy-csp-admx-filesys.md
+ - name: ADMX_FolderRedirection
+ href: policy-csp-admx-folderredirection.md
+ - name: ADMX_FramePanes
+ href: policy-csp-admx-framepanes.md
+ - name: ADMX_FTHSVC
+ href: policy-csp-admx-fthsvc.md
+ - name: ADMX_Globalization
+ href: policy-csp-admx-globalization.md
+ - name: ADMX_GroupPolicy
+ href: policy-csp-admx-grouppolicy.md
+ - name: ADMX_Help
+ href: policy-csp-admx-help.md
+ - name: ADMX_HelpAndSupport
+ href: policy-csp-admx-helpandsupport.md
+ - name: ADMX_HotSpotAuth
+ href: policy-csp-admx-hotspotauth.md
+ - name: ADMX_ICM
+ href: policy-csp-admx-icm.md
+ - name: ADMX_IIS
+ href: policy-csp-admx-iis.md
+ - name: ADMX_iSCSI
+ href: policy-csp-admx-iscsi.md
+ - name: ADMX_kdc
+ href: policy-csp-admx-kdc.md
+ - name: ADMX_Kerberos
+ href: policy-csp-admx-kerberos.md
+ - name: ADMX_LanmanServer
+ href: policy-csp-admx-lanmanserver.md
+ - name: ADMX_LanmanWorkstation
+ href: policy-csp-admx-lanmanworkstation.md
+ - name: ADMX_LeakDiagnostic
+ href: policy-csp-admx-leakdiagnostic.md
+ - name: ADMX_LinkLayerTopologyDiscovery
+ href: policy-csp-admx-linklayertopologydiscovery.md
+ - name: ADMX_LocationProviderAdm
+ href: policy-csp-admx-locationprovideradm.md
+ - name: ADMX_Logon
+ href: policy-csp-admx-logon.md
+ - name: ADMX_MicrosoftDefenderAntivirus
+ href: policy-csp-admx-microsoftdefenderantivirus.md
+ - name: ADMX_MMC
+ href: policy-csp-admx-mmc.md
+ - name: ADMX_MMCSnapins
+ href: policy-csp-admx-mmcsnapins.md
+ - name: ADMX_MobilePCMobilityCenter
+ href: policy-csp-admx-mobilepcmobilitycenter.md
+ - name: ADMX_MobilePCPresentationSettings
+ href: policy-csp-admx-mobilepcpresentationsettings.md
+ - name: ADMX_MSAPolicy
+ href: policy-csp-admx-msapolicy.md
+ - name: ADMX_msched
+ href: policy-csp-admx-msched.md
+ - name: ADMX_MSDT
+ href: policy-csp-admx-msdt.md
+ - name: ADMX_MSI
+ href: policy-csp-admx-msi.md
+ - name: ADMX_MsiFileRecovery
+ href: policy-csp-admx-msifilerecovery.md
+ - name: ADMX_MSS-legacy
+ href: policy-csp-admx-mss-legacy.md
+ - name: ADMX_nca
+ href: policy-csp-admx-nca.md
+ - name: ADMX_NCSI
+ href: policy-csp-admx-ncsi.md
+ - name: ADMX_Netlogon
+ href: policy-csp-admx-netlogon.md
+ - name: ADMX_NetworkConnections
+ href: policy-csp-admx-networkconnections.md
+ - name: ADMX_OfflineFiles
+ href: policy-csp-admx-offlinefiles.md
+ - name: ADMX_pca
+ href: policy-csp-admx-pca.md
+ - name: ADMX_PeerToPeerCaching
+ href: policy-csp-admx-peertopeercaching.md
+ - name: ADMX_PenTraining
+ href: policy-csp-admx-pentraining.md
+ - name: ADMX_PerformanceDiagnostics
+ href: policy-csp-admx-performancediagnostics.md
+ - name: ADMX_Power
+ href: policy-csp-admx-power.md
+ - name: ADMX_PowerShellExecutionPolicy
+ href: policy-csp-admx-powershellexecutionpolicy.md
+ - name: ADMX_PreviousVersions
+ href: policy-csp-admx-previousversions.md
+ - name: ADMX_Printing
+ href: policy-csp-admx-printing.md
+ - name: ADMX_Printing2
+ href: policy-csp-admx-printing2.md
+ - name: ADMX_Programs
+ href: policy-csp-admx-programs.md
+ - name: ADMX_QOS
+ href: policy-csp-admx-qos.md
+ - name: ADMX_Reliability
+ href: policy-csp-admx-reliability.md
+ - name: ADMX_RemoteAssistance
+ href: policy-csp-admx-remoteassistance.md
+ - name: ADMX_RemovableStorage
+ href: policy-csp-admx-removablestorage.md
+ - name: ADMX_RPC
+ href: policy-csp-admx-rpc.md
+ - name: ADMX_sam
+ href: policy-csp-admx-sam.md
+ - name: ADMX_Scripts
+ href: policy-csp-admx-scripts.md
+ - name: ADMX_sdiageng
+ href: policy-csp-admx-sdiageng.md
+ - name: ADMX_sdiagschd
+ href: policy-csp-admx-sdiagschd.md
+ - name: ADMX_Securitycenter
+ href: policy-csp-admx-securitycenter.md
+ - name: ADMX_Sensors
+ href: policy-csp-admx-sensors.md
+ - name: ADMX_ServerManager
+ href: policy-csp-admx-servermanager.md
+ - name: ADMX_Servicing
+ href: policy-csp-admx-servicing.md
+ - name: ADMX_SettingSync
+ href: policy-csp-admx-settingsync.md
+ - name: ADMX_SharedFolders
+ href: policy-csp-admx-sharedfolders.md
+ - name: ADMX_Sharing
+ href: policy-csp-admx-sharing.md
+ - name: ADMX_ShellCommandPromptRegEditTools
+ href: policy-csp-admx-shellcommandpromptregedittools.md
+ - name: ADMX_Smartcard
+ href: policy-csp-admx-smartcard.md
+ - name: ADMX_Snmp
+ href: policy-csp-admx-snmp.md
+ - name: ADMX_StartMenu
+ href: policy-csp-admx-startmenu.md
+ - name: ADMX_SystemRestore
+ href: policy-csp-admx-systemrestore.md
+ - name: ADMX_TabletPCInputPanel
+ href: policy-csp-admx-tabletpcinputpanel.md
+ - name: ADMX_TabletShell
+ href: policy-csp-admx-tabletshell.md
+ - name: ADMX_Taskbar
+ href: policy-csp-admx-taskbar.md
+ - name: ADMX_tcpip
+ href: policy-csp-admx-tcpip.md
+ - name: ADMX_TerminalServer
+ href: policy-csp-admx-terminalserver.md
+ - name: ADMX_Thumbnails
+ href: policy-csp-admx-thumbnails.md
+ - name: ADMX_TouchInput
+ href: policy-csp-admx-touchinput.md
+ - name: ADMX_TPM
+ href: policy-csp-admx-tpm.md
+ - name: ADMX_UserExperienceVirtualization
+ href: policy-csp-admx-userexperiencevirtualization.md
+ - name: ADMX_UserProfiles
+ href: policy-csp-admx-userprofiles.md
+ - name: ADMX_W32Time
+ href: policy-csp-admx-w32time.md
+ - name: ADMX_WCM
+ href: policy-csp-admx-wcm.md
+ - name: ADMX_WDI
+ href: policy-csp-admx-wdi.md
+ - name: ADMX_WinCal
+ href: policy-csp-admx-wincal.md
+ - name: ADMX_WindowsConnectNow
+ href: policy-csp-admx-windowsconnectnow.md
+ - name: ADMX_WindowsExplorer
+ href: policy-csp-admx-windowsexplorer.md
+ - name: ADMX_WindowsMediaDRM
+ href: policy-csp-admx-windowsmediadrm.md
+ - name: ADMX_WindowsMediaPlayer
+ href: policy-csp-admx-windowsmediaplayer.md
+ - name: ADMX_WindowsRemoteManagement
+ href: policy-csp-admx-windowsremotemanagement.md
+ - name: ADMX_WindowsStore
+ href: policy-csp-admx-windowsstore.md
+ - name: ADMX_WinInit
+ href: policy-csp-admx-wininit.md
+ - name: ADMX_WinLogon
+ href: policy-csp-admx-winlogon.md
+ - name: ADMX_wlansvc
+ href: policy-csp-admx-wlansvc.md
+ - name: ADMX_WordWheel
+ href: policy-csp-admx-wordwheel.md
+ - name: ADMX_WorkFoldersClient
+ href: policy-csp-admx-workfoldersclient.md
+ - name: ADMX_WPN
+ href: policy-csp-admx-wpn.md
+ - name: ADMX-Winsrv
+ href: policy-csp-admx-winsrv.md
+ - name: ApplicationDefaults
+ href: policy-csp-applicationdefaults.md
+ - name: ApplicationManagement
+ href: policy-csp-applicationmanagement.md
+ - name: AppRuntime
+ href: policy-csp-appruntime.md
+ - name: AppVirtualization
+ href: policy-csp-appvirtualization.md
+ - name: AttachmentManager
+ href: policy-csp-attachmentmanager.md
+ - name: Audit
+ href: policy-csp-audit.md
+ - name: Authentication
+ href: policy-csp-authentication.md
+ - name: Autoplay
+ href: policy-csp-autoplay.md
+ - name: BitLocker
+ href: policy-csp-bitlocker.md
+ - name: BITS
+ href: policy-csp-bits.md
+ - name: Bluetooth
+ href: policy-csp-bluetooth.md
+ - name: Browser
+ href: policy-csp-browser.md
+ - name: Camera
+ href: policy-csp-camera.md
+ - name: Cellular
+ href: policy-csp-cellular.md
+ - name: CloudDesktop
+ href: policy-csp-clouddesktop.md
+ - name: CloudPC
+ href: policy-csp-cloudpc.md
+ - name: Connectivity
+ href: policy-csp-connectivity.md
+ - name: ControlPolicyConflict
+ href: policy-csp-controlpolicyconflict.md
+ - name: CredentialProviders
+ href: policy-csp-credentialproviders.md
+ - name: CredentialsDelegation
+ href: policy-csp-credentialsdelegation.md
+ - name: CredentialsUI
+ href: policy-csp-credentialsui.md
+ - name: Cryptography
+ href: policy-csp-cryptography.md
+ - name: DataProtection
+ href: policy-csp-dataprotection.md
+ - name: DataUsage
+ href: policy-csp-datausage.md
+ - name: Defender
+ href: policy-csp-defender.md
+ - name: DeliveryOptimization
+ href: policy-csp-deliveryoptimization.md
+ - name: Desktop
+ href: policy-csp-desktop.md
+ - name: DesktopAppInstaller
+ href: policy-csp-desktopappinstaller.md
+ - name: DeviceGuard
+ href: policy-csp-deviceguard.md
+ - name: DeviceHealthMonitoring
+ href: policy-csp-devicehealthmonitoring.md
+ - name: DeviceInstallation
+ href: policy-csp-deviceinstallation.md
+ - name: DeviceLock
+ href: policy-csp-devicelock.md
+ - name: Display
+ href: policy-csp-display.md
+ - name: DmaGuard
+ href: policy-csp-dmaguard.md
+ - name: EAP
+ href: policy-csp-eap.md
+ - name: Education
+ href: policy-csp-education.md
+ - name: EnterpriseCloudPrint
+ href: policy-csp-enterprisecloudprint.md
+ - name: ErrorReporting
+ href: policy-csp-errorreporting.md
+ - name: EventLogService
+ href: policy-csp-eventlogservice.md
+ - name: Experience
+ href: policy-csp-experience.md
+ - name: ExploitGuard
+ href: policy-csp-exploitguard.md
+ - name: Federated Authentication
+ href: policy-csp-federatedauthentication.md
+ - name: Feeds
+ href: policy-csp-feeds.md
+ - name: FileExplorer
+ href: policy-csp-fileexplorer.md
+ - name: Games
+ href: policy-csp-games.md
+ - name: Handwriting
+ href: policy-csp-handwriting.md
+ - name: HumanPresence
+ href: policy-csp-humanpresence.md
+ - name: InternetExplorer
+ href: policy-csp-internetexplorer.md
+ - name: Kerberos
+ href: policy-csp-kerberos.md
+ - name: KioskBrowser
+ href: policy-csp-kioskbrowser.md
+ - name: LanmanWorkstation
+ href: policy-csp-lanmanworkstation.md
+ - name: Licensing
+ href: policy-csp-licensing.md
+ - name: LocalPoliciesSecurityOptions
+ href: policy-csp-localpoliciessecurityoptions.md
+ - name: LocalSecurityAuthority
+ href: policy-csp-lsa.md
+ - name: LocalUsersAndGroups
+ href: policy-csp-localusersandgroups.md
+ - name: LockDown
+ href: policy-csp-lockdown.md
+ - name: Maps
+ href: policy-csp-maps.md
+ - name: MemoryDump
+ href: policy-csp-memorydump.md
+ - name: Messaging
+ href: policy-csp-messaging.md
+ - name: MixedReality
+ href: policy-csp-mixedreality.md
+ - name: MSSecurityGuide
+ href: policy-csp-mssecurityguide.md
+ - name: MSSLegacy
+ href: policy-csp-msslegacy.md
+ - name: Multitasking
+ href: policy-csp-multitasking.md
+ - name: NetworkIsolation
+ href: policy-csp-networkisolation.md
+ - name: NetworkListManager
+ href: policy-csp-networklistmanager.md
+ - name: NewsAndInterests
+ href: policy-csp-newsandinterests.md
+ - name: Notifications
+ href: policy-csp-notifications.md
+ - name: Power
+ href: policy-csp-power.md
+ - name: Printers
+ href: policy-csp-printers.md
+ - name: Privacy
+ href: policy-csp-privacy.md
+ - name: RemoteAssistance
+ href: policy-csp-remoteassistance.md
+ - name: RemoteDesktop
+ href: policy-csp-remotedesktop.md
+ - name: RemoteDesktopServices
+ href: policy-csp-remotedesktopservices.md
+ - name: RemoteManagement
+ href: policy-csp-remotemanagement.md
+ - name: RemoteProcedureCall
+ href: policy-csp-remoteprocedurecall.md
+ - name: RemoteShell
+ href: policy-csp-remoteshell.md
+ - name: RestrictedGroups
+ href: policy-csp-restrictedgroups.md
+ - name: Search
+ href: policy-csp-search.md
+ - name: Security
+ href: policy-csp-security.md
+ - name: ServiceControlManager
+ href: policy-csp-servicecontrolmanager.md
+ - name: Settings
+ href: policy-csp-settings.md
+ - name: SettingsSync
+ href: policy-csp-settingssync.md
+ - name: Speech
+ href: policy-csp-speech.md
+ - name: Start
+ href: policy-csp-start.md
+ - name: Stickers
+ href: policy-csp-stickers.md
+ - name: Storage
+ href: policy-csp-storage.md
+ - name: System
+ href: policy-csp-system.md
+ - name: SystemServices
+ href: policy-csp-systemservices.md
+ - name: TaskManager
+ href: policy-csp-taskmanager.md
+ - name: TaskScheduler
+ href: policy-csp-taskscheduler.md
+ - name: TenantDefinedTelemetry
+ href: policy-csp-tenantdefinedtelemetry.md
+ - name: TenantRestrictions
+ href: policy-csp-tenantrestrictions.md
+ - name: TextInput
+ href: policy-csp-textinput.md
+ - name: TimeLanguageSettings
+ href: policy-csp-timelanguagesettings.md
+ - name: Troubleshooting
+ href: policy-csp-troubleshooting.md
+ - name: Update
+ href: policy-csp-update.md
+ - name: UserRights
+ href: policy-csp-userrights.md
+ - name: VirtualizationBasedTechnology
+ href: policy-csp-virtualizationbasedtechnology.md
+ - name: WebThreatDefense
+ href: policy-csp-webthreatdefense.md
+ - name: Wifi
+ href: policy-csp-wifi.md
+ - name: WindowsAutoPilot
+ href: policy-csp-windowsautopilot.md
+ - name: WindowsConnectionManager
+ href: policy-csp-windowsconnectionmanager.md
+ - name: WindowsDefenderSecurityCenter
+ href: policy-csp-windowsdefendersecuritycenter.md
+ - name: WindowsDefenderSmartScreen
+ href: policy-csp-smartscreen.md
+ - name: WindowsInkWorkspace
+ href: policy-csp-windowsinkworkspace.md
+ - name: WindowsLogon
+ href: policy-csp-windowslogon.md
+ - name: WindowsPowerShell
+ href: policy-csp-windowspowershell.md
+ - name: WindowsSandbox
+ href: policy-csp-windowssandbox.md
+ - name: WirelessDisplay
+ href: policy-csp-wirelessdisplay.md
+ - name: AccountManagement
+ href: accountmanagement-csp.md
items:
- - name: Enable ADMX policies in MDM
- href: ../enable-admx-backed-policies-in-mdm.md
- - name: Win32 and Desktop Bridge app policy configuration
- href: ../win32-and-centennial-app-policy-configuration.md
- - name: OMA DM protocol support
- href: ../oma-dm-protocol-support.md
+ - name: AccountManagement DDF file
+ href: accountmanagement-ddf.md
+ - name: Accounts
+ href: accounts-csp.md
items:
- - name: Structure of OMA DM provisioning files
- href: ../structure-of-oma-dm-provisioning-files.md
- - name: Server requirements for OMA DM
- href: ../server-requirements-windows-mdm.md
- - name: Configuration service providers (CSPs)
- expanded: true
+ - name: Accounts DDF file
+ href: accounts-ddf-file.md
+ - name: ActiveSync
+ href: activesync-csp.md
items:
- - name: Policy
- href: policy-configuration-service-provider.md
- items:
- - name: Policy CSP DDF file
- href: policy-ddf-file.md
- - name: Policy CSP support scenarios
- items:
- - name: ADMX policies in Policy CSP
- href: policies-in-policy-csp-admx-backed.md
- - name: Policies in Policy CSP supported by Group Policy
- href: policies-in-policy-csp-supported-by-group-policy.md
- - name: Policies in Policy CSP supported by HoloLens 2
- href: policies-in-policy-csp-supported-by-hololens2.md
- - name: Policies in Policy CSP supported by HoloLens (1st gen) Commercial Suite
- href: policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md
- - name: Policies in Policy CSP supported by HoloLens (1st gen) Development Edition
- href: policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md
- - name: Policies in Policy CSP supported by Windows 10 IoT Core
- href: policies-in-policy-csp-supported-by-iot-core.md
- - name: Policies in Policy CSP supported by Microsoft Surface Hub
- href: policies-in-policy-csp-supported-by-surface-hub.md
- - name: Policy CSPs that can be set using Exchange Active Sync (EAS)
- href: policies-in-policy-csp-that-can-be-set-using-eas.md
- - name: Policy CSP areas
- expanded: true
- items:
- - name: AboveLock
- href: policy-csp-abovelock.md
- - name: Accounts
- href: policy-csp-accounts.md
- - name: ActiveXControls
- href: policy-csp-activexcontrols.md
- - name: ADMX_ActiveXInstallService
- href: policy-csp-admx-activexinstallservice.md
- - name: ADMX_AddRemovePrograms
- href: policy-csp-admx-addremoveprograms.md
- - name: ADMX_AdmPwd
- href: policy-csp-admx-admpwd.md
- - name: ADMX_AppCompat
- href: policy-csp-admx-appcompat.md
- - name: ADMX_AppxPackageManager
- href: policy-csp-admx-appxpackagemanager.md
- - name: ADMX_AppXRuntime
- href: policy-csp-admx-appxruntime.md
- - name: ADMX_AttachmentManager
- href: policy-csp-admx-attachmentmanager.md
- - name: ADMX_AuditSettings
- href: policy-csp-admx-auditsettings.md
- - name: ADMX_Bits
- href: policy-csp-admx-bits.md
- - name: ADMX_CipherSuiteOrder
- href: policy-csp-admx-ciphersuiteorder.md
- - name: ADMX_COM
- href: policy-csp-admx-com.md
- - name: ADMX_ControlPanel
- href: policy-csp-admx-controlpanel.md
- - name: ADMX_ControlPanelDisplay
- href: policy-csp-admx-controlpaneldisplay.md
- - name: ADMX_Cpls
- href: policy-csp-admx-cpls.md
- - name: ADMX_CredentialProviders
- href: policy-csp-admx-credentialproviders.md
- - name: ADMX_CredSsp
- href: policy-csp-admx-credssp.md
- - name: ADMX_CredUI
- href: policy-csp-admx-credui.md
- - name: ADMX_CtrlAltDel
- href: policy-csp-admx-ctrlaltdel.md
- - name: ADMX_DataCollection
- href: policy-csp-admx-datacollection.md
- - name: ADMX_DCOM
- href: policy-csp-admx-dcom.md
- - name: ADMX_Desktop
- href: policy-csp-admx-desktop.md
- - name: ADMX_DeviceCompat
- href: policy-csp-admx-devicecompat.md
- - name: ADMX_DeviceGuard
- href: policy-csp-admx-deviceguard.md
- - name: ADMX_DeviceInstallation
- href: policy-csp-admx-deviceinstallation.md
- - name: ADMX_DeviceSetup
- href: policy-csp-admx-devicesetup.md
- - name: ADMX_DFS
- href: policy-csp-admx-dfs.md
- - name: ADMX_DigitalLocker
- href: policy-csp-admx-digitallocker.md
- - name: ADMX_DiskDiagnostic
- href: policy-csp-admx-diskdiagnostic.md
- - name: ADMX_DistributedLinkTracking
- href: policy-csp-admx-distributedlinktracking.md
- - name: ADMX_DnsClient
- href: policy-csp-admx-dnsclient.md
- - name: ADMX_DWM
- href: policy-csp-admx-dwm.md
- - name: ADMX_EAIME
- href: policy-csp-admx-eaime.md
- - name: ADMX_EncryptFilesonMove
- href: policy-csp-admx-encryptfilesonmove.md
- - name: ADMX_EventLogging
- href: policy-csp-admx-eventlogging.md
- - name: ADMX_EnhancedStorage
- href: policy-csp-admx-enhancedstorage.md
- - name: ADMX_ErrorReporting
- href: policy-csp-admx-errorreporting.md
- - name: ADMX_EventForwarding
- href: policy-csp-admx-eventforwarding.md
- - name: ADMX_EventLog
- href: policy-csp-admx-eventlog.md
- - name: ADMX_EventViewer
- href: policy-csp-admx-eventviewer.md
- - name: ADMX_Explorer
- href: policy-csp-admx-explorer.md
- - name: ADMX_ExternalBoot
- href: policy-csp-admx-externalboot.md
- - name: ADMX_FileRecovery
- href: policy-csp-admx-filerecovery.md
- - name: ADMX_FileRevocation
- href: policy-csp-admx-filerevocation.md
- - name: ADMX_FileServerVSSProvider
- href: policy-csp-admx-fileservervssprovider.md
- - name: ADMX_FileSys
- href: policy-csp-admx-filesys.md
- - name: ADMX_FolderRedirection
- href: policy-csp-admx-folderredirection.md
- - name: ADMX_FramePanes
- href: policy-csp-admx-framepanes.md
- - name: ADMX_FTHSVC
- href: policy-csp-admx-fthsvc.md
- - name: ADMX_Globalization
- href: policy-csp-admx-globalization.md
- - name: ADMX_GroupPolicy
- href: policy-csp-admx-grouppolicy.md
- - name: ADMX_Help
- href: policy-csp-admx-help.md
- - name: ADMX_HelpAndSupport
- href: policy-csp-admx-helpandsupport.md
- - name: ADMX_HotSpotAuth
- href: policy-csp-admx-hotspotauth.md
- - name: ADMX_ICM
- href: policy-csp-admx-icm.md
- - name: ADMX_IIS
- href: policy-csp-admx-iis.md
- - name: ADMX_iSCSI
- href: policy-csp-admx-iscsi.md
- - name: ADMX_kdc
- href: policy-csp-admx-kdc.md
- - name: ADMX_Kerberos
- href: policy-csp-admx-kerberos.md
- - name: ADMX_LanmanServer
- href: policy-csp-admx-lanmanserver.md
- - name: ADMX_LanmanWorkstation
- href: policy-csp-admx-lanmanworkstation.md
- - name: ADMX_LeakDiagnostic
- href: policy-csp-admx-leakdiagnostic.md
- - name: ADMX_LinkLayerTopologyDiscovery
- href: policy-csp-admx-linklayertopologydiscovery.md
- - name: ADMX_LocationProviderAdm
- href: policy-csp-admx-locationprovideradm.md
- - name: ADMX_Logon
- href: policy-csp-admx-logon.md
- - name: ADMX_MicrosoftDefenderAntivirus
- href: policy-csp-admx-microsoftdefenderantivirus.md
- - name: ADMX_MMC
- href: policy-csp-admx-mmc.md
- - name: ADMX_MMCSnapins
- href: policy-csp-admx-mmcsnapins.md
- - name: ADMX_MobilePCMobilityCenter
- href: policy-csp-admx-mobilepcmobilitycenter.md
- - name: ADMX_MobilePCPresentationSettings
- href: policy-csp-admx-mobilepcpresentationsettings.md
- - name: ADMX_MSAPolicy
- href: policy-csp-admx-msapolicy.md
- - name: ADMX_msched
- href: policy-csp-admx-msched.md
- - name: ADMX_MSDT
- href: policy-csp-admx-msdt.md
- - name: ADMX_MSI
- href: policy-csp-admx-msi.md
- - name: ADMX_MsiFileRecovery
- href: policy-csp-admx-msifilerecovery.md
- - name: ADMX_nca
- href: policy-csp-admx-nca.md
- - name: ADMX_NCSI
- href: policy-csp-admx-ncsi.md
- - name: ADMX_Netlogon
- href: policy-csp-admx-netlogon.md
- - name: ADMX_NetworkConnections
- href: policy-csp-admx-networkconnections.md
- - name: ADMX_OfflineFiles
- href: policy-csp-admx-offlinefiles.md
- - name: ADMX_pca
- href: policy-csp-admx-pca.md
- - name: ADMX_PeerToPeerCaching
- href: policy-csp-admx-peertopeercaching.md
- - name: ADMX_PenTraining
- href: policy-csp-admx-pentraining.md
- - name: ADMX_PerformanceDiagnostics
- href: policy-csp-admx-performancediagnostics.md
- - name: ADMX_Power
- href: policy-csp-admx-power.md
- - name: ADMX_PowerShellExecutionPolicy
- href: policy-csp-admx-powershellexecutionpolicy.md
- - name: ADMX_PreviousVersions
- href: policy-csp-admx-previousversions.md
- - name: ADMX_Printing
- href: policy-csp-admx-printing.md
- - name: ADMX_Printing2
- href: policy-csp-admx-printing2.md
- - name: ADMX_Programs
- href: policy-csp-admx-programs.md
- - name: ADMX_Reliability
- href: policy-csp-admx-reliability.md
- - name: ADMX_RemoteAssistance
- href: policy-csp-admx-remoteassistance.md
- - name: ADMX_RemovableStorage
- href: policy-csp-admx-removablestorage.md
- - name: ADMX_RPC
- href: policy-csp-admx-rpc.md
- - name: ADMX_Scripts
- href: policy-csp-admx-scripts.md
- - name: ADMX_sdiageng
- href: policy-csp-admx-sdiageng.md
- - name: ADMX_sdiagschd
- href: policy-csp-admx-sdiagschd.md
- - name: ADMX_Securitycenter
- href: policy-csp-admx-securitycenter.md
- - name: ADMX_Sensors
- href: policy-csp-admx-sensors.md
- - name: ADMX_ServerManager
- href: policy-csp-admx-servermanager.md
- - name: ADMX_Servicing
- href: policy-csp-admx-servicing.md
- - name: ADMX_SettingSync
- href: policy-csp-admx-settingsync.md
- - name: ADMX_SharedFolders
- href: policy-csp-admx-sharedfolders.md
- - name: ADMX_Sharing
- href: policy-csp-admx-sharing.md
- - name: ADMX_ShellCommandPromptRegEditTools
- href: policy-csp-admx-shellcommandpromptregedittools.md
- - name: ADMX_Smartcard
- href: policy-csp-admx-smartcard.md
- - name: ADMX_Snmp
- href: policy-csp-admx-snmp.md
- - name: ADMX_StartMenu
- href: policy-csp-admx-startmenu.md
- - name: ADMX_SystemRestore
- href: policy-csp-admx-systemrestore.md
- - name: ADMX_TabletShell
- href: policy-csp-admx-tabletshell.md
- - name: ADMX_Taskbar
- href: policy-csp-admx-taskbar.md
- - name: ADMX_tcpip
- href: policy-csp-admx-tcpip.md
- - name: ADMX_TerminalServer
- href: policy-csp-admx-terminalserver.md
- - name: ADMX_Thumbnails
- href: policy-csp-admx-thumbnails.md
- - name: ADMX_TouchInput
- href: policy-csp-admx-touchinput.md
- - name: ADMX_TPM
- href: policy-csp-admx-tpm.md
- - name: ADMX_UserExperienceVirtualization
- href: policy-csp-admx-userexperiencevirtualization.md
- - name: ADMX_UserProfiles
- href: policy-csp-admx-userprofiles.md
- - name: ADMX_W32Time
- href: policy-csp-admx-w32time.md
- - name: ADMX_WCM
- href: policy-csp-admx-wcm.md
- - name: ADMX_WDI
- href: policy-csp-admx-wdi.md
- - name: ADMX_WinCal
- href: policy-csp-admx-wincal.md
- - name: ADMX_WindowsConnectNow
- href: policy-csp-admx-windowsconnectnow.md
- - name: ADMX_WindowsExplorer
- href: policy-csp-admx-windowsexplorer.md
- - name: ADMX_WindowsMediaDRM
- href: policy-csp-admx-windowsmediadrm.md
- - name: ADMX_WindowsMediaPlayer
- href: policy-csp-admx-windowsmediaplayer.md
- - name: ADMX_WindowsRemoteManagement
- href: policy-csp-admx-windowsremotemanagement.md
- - name: ADMX_WindowsStore
- href: policy-csp-admx-windowsstore.md
- - name: ADMX_WinInit
- href: policy-csp-admx-wininit.md
- - name: ADMX_WinLogon
- href: policy-csp-admx-winlogon.md
- - name: ADMX-Winsrv
- href: policy-csp-admx-winsrv.md
- - name: ADMX_wlansvc
- href: policy-csp-admx-wlansvc.md
- - name: ADMX_WordWheel
- href: policy-csp-admx-wordwheel.md
- - name: ADMX_WorkFoldersClient
- href: policy-csp-admx-workfoldersclient.md
- - name: ADMX_WPN
- href: policy-csp-admx-wpn.md
- - name: ApplicationDefaults
- href: policy-csp-applicationdefaults.md
- - name: ApplicationManagement
- href: policy-csp-applicationmanagement.md
- - name: AppRuntime
- href: policy-csp-appruntime.md
- - name: AppVirtualization
- href: policy-csp-appvirtualization.md
- - name: AttachmentManager
- href: policy-csp-attachmentmanager.md
- - name: Audit
- href: policy-csp-audit.md
- - name: Authentication
- href: policy-csp-authentication.md
- - name: Autoplay
- href: policy-csp-autoplay.md
- - name: BitLocker
- href: policy-csp-bitlocker.md
- - name: BITS
- href: policy-csp-bits.md
- - name: Bluetooth
- href: policy-csp-bluetooth.md
- - name: Browser
- href: policy-csp-browser.md
- - name: Camera
- href: policy-csp-camera.md
- - name: Cellular
- href: policy-csp-cellular.md
- - name: Connectivity
- href: policy-csp-connectivity.md
- - name: ControlPolicyConflict
- href: policy-csp-controlpolicyconflict.md
- - name: CredentialsDelegation
- href: policy-csp-credentialsdelegation.md
- - name: CredentialProviders
- href: policy-csp-credentialproviders.md
- - name: CredentialsUI
- href: policy-csp-credentialsui.md
- - name: Cryptography
- href: policy-csp-cryptography.md
- - name: DataProtection
- href: policy-csp-dataprotection.md
- - name: DataUsage
- href: policy-csp-datausage.md
- - name: Defender
- href: policy-csp-defender.md
- - name: DeliveryOptimization
- href: policy-csp-deliveryoptimization.md
- - name: Desktop
- href: policy-csp-desktop.md
- - name: DesktopAppInstaller
- href: policy-csp-desktopappinstaller.md
- - name: DeviceGuard
- href: policy-csp-deviceguard.md
- - name: DeviceHealthMonitoring
- href: policy-csp-devicehealthmonitoring.md
- - name: DeviceInstallation
- href: policy-csp-deviceinstallation.md
- - name: DeviceLock
- href: policy-csp-devicelock.md
- - name: Display
- href: policy-csp-display.md
- - name: DmaGuard
- href: policy-csp-dmaguard.md
- - name: EAP
- href: policy-csp-eap.md
- - name: Education
- href: policy-csp-education.md
- - name: EnterpriseCloudPrint
- href: policy-csp-enterprisecloudprint.md
- - name: ErrorReporting
- href: policy-csp-errorreporting.md
- - name: EventLogService
- href: policy-csp-eventlogservice.md
- - name: Experience
- href: policy-csp-experience.md
- - name: ExploitGuard
- href: policy-csp-exploitguard.md
- - name: Federated Authentication
- href: policy-csp-federatedauthentication.md
- - name: Feeds
- href: policy-csp-feeds.md
- - name: FileExplorer
- href: policy-csp-fileexplorer.md
- - name: Games
- href: policy-csp-games.md
- - name: Handwriting
- href: policy-csp-handwriting.md
- - name: HumanPresence
- href: policy-csp-humanpresence.md
- - name: InternetExplorer
- href: policy-csp-internetexplorer.md
- - name: Kerberos
- href: policy-csp-kerberos.md
- - name: KioskBrowser
- href: policy-csp-kioskbrowser.md
- - name: LanmanWorkstation
- href: policy-csp-lanmanworkstation.md
- - name: Licensing
- href: policy-csp-licensing.md
- - name: LocalPoliciesSecurityOptions
- href: policy-csp-localpoliciessecurityoptions.md
- - name: LocalSecurityAuthority
- href: policy-csp-lsa.md
- - name: LocalUsersAndGroups
- href: policy-csp-localusersandgroups.md
- - name: LockDown
- href: policy-csp-lockdown.md
- - name: Maps
- href: policy-csp-maps.md
- - name: MemoryDump
- href: policy-csp-memorydump.md
- - name: Messaging
- href: policy-csp-messaging.md
- - name: MixedReality
- href: policy-csp-mixedreality.md
- - name: MSSecurityGuide
- href: policy-csp-mssecurityguide.md
- - name: MSSLegacy
- href: policy-csp-msslegacy.md
- - name: Multitasking
- href: policy-csp-multitasking.md
- - name: NetworkIsolation
- href: policy-csp-networkisolation.md
- - name: NetworkListManager
- href: policy-csp-networklistmanager.md
- - name: NewsAndInterests
- href: policy-csp-newsandinterests.md
- - name: Notifications
- href: policy-csp-notifications.md
- - name: Power
- href: policy-csp-power.md
- - name: Printers
- href: policy-csp-printers.md
- - name: Privacy
- href: policy-csp-privacy.md
- - name: RemoteAssistance
- href: policy-csp-remoteassistance.md
- - name: RemoteDesktop
- href: policy-csp-remotedesktop.md
- - name: RemoteDesktopServices
- href: policy-csp-remotedesktopservices.md
- - name: RemoteManagement
- href: policy-csp-remotemanagement.md
- - name: RemoteProcedureCall
- href: policy-csp-remoteprocedurecall.md
- - name: RemoteShell
- href: policy-csp-remoteshell.md
- - name: RestrictedGroups
- href: policy-csp-restrictedgroups.md
- - name: Search
- href: policy-csp-search.md
- - name: Security
- href: policy-csp-security.md
- - name: ServiceControlManager
- href: policy-csp-servicecontrolmanager.md
- - name: Settings
- href: policy-csp-settings.md
- - name: Speech
- href: policy-csp-speech.md
- - name: Start
- href: policy-csp-start.md
- - name: Storage
- href: policy-csp-storage.md
- - name: System
- href: policy-csp-system.md
- - name: SystemServices
- href: policy-csp-systemservices.md
- - name: TaskManager
- href: policy-csp-taskmanager.md
- - name: TaskScheduler
- href: policy-csp-taskscheduler.md
- - name: TextInput
- href: policy-csp-textinput.md
- - name: TimeLanguageSettings
- href: policy-csp-timelanguagesettings.md
- - name: Troubleshooting
- href: policy-csp-troubleshooting.md
- - name: Update
- href: policy-csp-update.md
- - name: UserRights
- href: policy-csp-userrights.md
- - name: VirtualizationBasedTechnology
- href: policy-csp-virtualizationbasedtechnology.md
- - name: WebThreatDefense
- href: policy-csp-webthreatdefense.md
- - name: Wifi
- href: policy-csp-wifi.md
- - name: WindowsAutoPilot
- href: policy-csp-windowsautopilot.md
- - name: WindowsConnectionManager
- href: policy-csp-windowsconnectionmanager.md
- - name: WindowsDefenderSecurityCenter
- href: policy-csp-windowsdefendersecuritycenter.md
- - name: WindowsDefenderSmartScreen
- href: policy-csp-smartscreen.md
- - name: WindowsInkWorkspace
- href: policy-csp-windowsinkworkspace.md
- - name: WindowsLogon
- href: policy-csp-windowslogon.md
- - name: WindowsPowerShell
- href: policy-csp-windowspowershell.md
- - name: WindowsSandbox
- href: policy-csp-windowssandbox.md
- - name: WirelessDisplay
- href: policy-csp-wirelessdisplay.md
- - name: AccountManagement
- href: accountmanagement-csp.md
- items:
- - name: AccountManagement DDF file
- href: accountmanagement-ddf.md
- - name: Accounts
- href: accounts-csp.md
- items:
- - name: Accounts DDF file
- href: accounts-ddf-file.md
- - name: ActiveSync
- href: activesync-csp.md
- items:
- - name: ActiveSync DDF file
- href: activesync-ddf-file.md
- - name: AllJoynManagement
- href: alljoynmanagement-csp.md
- items:
- - name: AllJoynManagement DDF
- href: alljoynmanagement-ddf.md
- - name: APPLICATION
- href: application-csp.md
- - name: ApplicationControl
- href: applicationcontrol-csp.md
- items:
- - name: ApplicationControl DDF file
- href: applicationcontrol-csp-ddf.md
- - name: AppLocker
- href: applocker-csp.md
- items:
- - name: AppLocker DDF file
- href: applocker-ddf-file.md
- - name: AppLocker XSD
- href: applocker-xsd.md
- - name: AssignedAccess
- href: assignedaccess-csp.md
- items:
- - name: AssignedAccess DDF file
- href: assignedaccess-ddf.md
- - name: BitLocker
- href: bitlocker-csp.md
- items:
- - name: BitLocker DDF file
- href: bitlocker-ddf-file.md
- - name: CellularSettings
- href: cellularsettings-csp.md
- - name: CertificateStore
- href: certificatestore-csp.md
- items:
- - name: CertificateStore DDF file
- href: certificatestore-ddf-file.md
- - name: CleanPC
- href: cleanpc-csp.md
- items:
- - name: CleanPC DDF
- href: cleanpc-ddf.md
- - name: ClientCertificateInstall
- href: clientcertificateinstall-csp.md
- items:
- - name: ClientCertificateInstall DDF file
- href: clientcertificateinstall-ddf-file.md
- - name: CM_CellularEntries
- href: cm-cellularentries-csp.md
- - name: CMPolicy
- href: cmpolicy-csp.md
- - name: CMPolicyEnterprise
- href: cmpolicyenterprise-csp.md
- items:
- - name: CMPolicyEnterprise DDF file
- href: cmpolicyenterprise-ddf-file.md
- - name: CustomDeviceUI
- href: customdeviceui-csp.md
- items:
- - name: CustomDeviceUI DDF file
- href: customdeviceui-ddf.md
- - name: Defender
- href: defender-csp.md
- items:
- - name: Defender DDF file
- href: defender-ddf.md
- - name: DevDetail
- href: devdetail-csp.md
- items:
- - name: DevDetail DDF file
- href: devdetail-ddf-file.md
- - name: DeveloperSetup
- href: developersetup-csp.md
- items:
- - name: DeveloperSetup DDF
- href: developersetup-ddf.md
- - name: DeviceLock
- href: devicelock-csp.md
- items:
- - name: DeviceLock DDF file
- href: devicelock-ddf-file.md
- - name: DeviceManageability
- href: devicemanageability-csp.md
- items:
- - name: DeviceManageability DDF
- href: devicemanageability-ddf.md
- - name: DeviceStatus
- href: devicestatus-csp.md
- items:
- - name: DeviceStatus DDF
- href: devicestatus-ddf.md
- - name: DevInfo
- href: devinfo-csp.md
- items:
- - name: DevInfo DDF file
- href: devinfo-ddf-file.md
- - name: DiagnosticLog
- href: diagnosticlog-csp.md
- items:
- - name: DiagnosticLog DDF file
- href: diagnosticlog-ddf.md
- - name: DMAcc
- href: dmacc-csp.md
- items:
- - name: DMAcc DDF file
- href: dmacc-ddf-file.md
- - name: DMClient
- href: dmclient-csp.md
- items:
- - name: DMClient DDF file
- href: dmclient-ddf-file.md
- - name: DMSessionActions
- href: dmsessionactions-csp.md
- items:
- - name: DMSessionActions DDF file
- href: dmsessionactions-ddf.md
- - name: DynamicManagement
- href: dynamicmanagement-csp.md
- items:
- - name: DynamicManagement DDF file
- href: dynamicmanagement-ddf.md
- - name: EMAIL2
- href: email2-csp.md
- items:
- - name: EMAIL2 DDF file
- href: email2-ddf-file.md
- - name: EnrollmentStatusTracking
- href: enrollmentstatustracking-csp.md
- items:
- - name: EnrollmentStatusTracking DDF file
- href: enrollmentstatustracking-csp-ddf.md
- - name: EnterpriseAPN
- href: enterpriseapn-csp.md
- items:
- - name: EnterpriseAPN DDF
- href: enterpriseapn-ddf.md
- - name: EnterpriseAppVManagement
- href: enterpriseappvmanagement-csp.md
- items:
- - name: EnterpriseAppVManagement DDF file
- href: enterpriseappvmanagement-ddf.md
- - name: EnterpriseDataProtection
- href: enterprisedataprotection-csp.md
- items:
- - name: EnterpriseDataProtection DDF file
- href: enterprisedataprotection-ddf-file.md
- - name: EnterpriseDesktopAppManagement
- href: enterprisedesktopappmanagement-csp.md
- items:
- - name: EnterpriseDesktopAppManagement DDF
- href: enterprisedesktopappmanagement-ddf-file.md
- - name: EnterpriseDesktopAppManagement XSD
- href: enterprisedesktopappmanagement2-xsd.md
- - name: EnterpriseModernAppManagement
- href: enterprisemodernappmanagement-csp.md
- items:
- - name: EnterpriseModernAppManagement DDF
- href: enterprisemodernappmanagement-ddf.md
- - name: EnterpriseModernAppManagement XSD
- href: enterprisemodernappmanagement-xsd.md
- - name: eUICCs
- href: euiccs-csp.md
- items:
- - name: eUICCs DDF file
- href: euiccs-ddf-file.md
- - name: Firewall
- href: firewall-csp.md
- items:
- - name: Firewall DDF file
- href: firewall-ddf-file.md
- - name: HealthAttestation
- href: healthattestation-csp.md
- items:
- - name: HealthAttestation DDF
- href: healthattestation-ddf.md
- - name: Local Administrator Password Solution
- href: laps-csp.md
- items:
- - name: Local Administrator Password Solution DDF
- href: laps-ddf-file.md
- - name: MultiSIM
- href: multisim-csp.md
- items:
- - name: MultiSIM DDF file
- href: multisim-ddf.md
- - name: NAP
- href: nap-csp.md
- - name: NAPDEF
- href: napdef-csp.md
- - name: NetworkProxy
- href: networkproxy-csp.md
- items:
- - name: NetworkProxy DDF file
- href: networkproxy-ddf.md
- - name: NetworkQoSPolicy
- href: networkqospolicy-csp.md
- items:
- - name: NetworkQoSPolicy DDF file
- href: networkqospolicy-ddf.md
- - name: NodeCache
- href: nodecache-csp.md
- items:
- - name: NodeCache DDF file
- href: nodecache-ddf-file.md
- - name: Office
- href: office-csp.md
- items:
- - name: Office DDF
- href: office-ddf.md
- - name: PassportForWork
- href: passportforwork-csp.md
- items:
- - name: PassportForWork DDF file
- href: passportforwork-ddf.md
- - name: PersonalDataEncryption
- href: personaldataencryption-csp.md
- items:
- - name: PersonalDataEncryption DDF file
- href: personaldataencryption-ddf-file.md
- - name: Personalization
- href: personalization-csp.md
- items:
- - name: Personalization DDF file
- href: personalization-ddf.md
- - name: Provisioning
- href: provisioning-csp.md
- - name: PXLOGICAL
- href: pxlogical-csp.md
- - name: Reboot
- href: reboot-csp.md
- items:
- - name: Reboot DDF file
- href: reboot-ddf-file.md
- - name: RemoteFind
- href: remotefind-csp.md
- items:
- - name: RemoteFind DDF file
- href: remotefind-ddf-file.md
- - name: RemoteWipe
- href: remotewipe-csp.md
- items:
- - name: RemoteWipe DDF file
- href: remotewipe-ddf-file.md
- - name: Reporting
- href: reporting-csp.md
- items:
- - name: Reporting DDF file
- href: reporting-ddf-file.md
- - name: RootCATrustedCertificates
- href: rootcacertificates-csp.md
- items:
- - name: RootCATrustedCertificates DDF file
- href: rootcacertificates-ddf-file.md
- - name: SecureAssessment
- href: secureassessment-csp.md
- items:
- - name: SecureAssessment DDF file
- href: secureassessment-ddf-file.md
- - name: SecurityPolicy
- href: securitypolicy-csp.md
- - name: SharedPC
- href: sharedpc-csp.md
- items:
- - name: SharedPC DDF file
- href: sharedpc-ddf-file.md
- - name: Storage
- href: storage-csp.md
- items:
- - name: Storage DDF file
- href: storage-ddf-file.md
- - name: SUPL
- href: supl-csp.md
- items:
- - name: SUPL DDF file
- href: supl-ddf-file.md
- - name: SurfaceHub
- href: surfacehub-csp.md
- items:
- - name: SurfaceHub DDF file
- href: surfacehub-ddf-file.md
- - name: TenantLockdown
- href: tenantlockdown-csp.md
- items:
- - name: TenantLockdown DDF file
- href: tenantlockdown-ddf.md
- - name: TPMPolicy
- href: tpmpolicy-csp.md
- items:
- - name: TPMPolicy DDF file
- href: tpmpolicy-ddf-file.md
- - name: UEFI
- href: uefi-csp.md
- items:
- - name: UEFI DDF file
- href: uefi-ddf.md
- - name: UnifiedWriteFilter
- href: unifiedwritefilter-csp.md
- items:
- - name: UnifiedWriteFilter DDF file
- href: unifiedwritefilter-ddf.md
- - name: UniversalPrint
- href: universalprint-csp.md
- items:
- - name: UniversalPrint DDF file
- href: universalprint-ddf-file.md
- - name: Update
- href: update-csp.md
- items:
- - name: Update DDF file
- href: update-ddf-file.md
- - name: VPN
- href: vpn-csp.md
- items:
- - name: VPN DDF file
- href: vpn-ddf-file.md
- - name: VPNv2
- href: vpnv2-csp.md
- items:
- - name: VPNv2 DDF file
- href: vpnv2-ddf-file.md
- - name: ProfileXML XSD
- href: vpnv2-profile-xsd.md
- - name: EAP configuration
- href: eap-configuration.md
- - name: w4 APPLICATION
- href: w4-application-csp.md
- - name: w7 APPLICATION
- href: w7-application-csp.md
- - name: WiFi
- href: wifi-csp.md
- items:
- - name: WiFi DDF file
- href: wifi-ddf-file.md
- - name: Win32AppInventory
- href: win32appinventory-csp.md
- items:
- - name: Win32AppInventory DDF file
- href: win32appinventory-ddf-file.md
- - name: Win32CompatibilityAppraiser
- href: win32compatibilityappraiser-csp.md
- items:
- - name: Win32CompatibilityAppraiser DDF file
- href: win32compatibilityappraiser-ddf.md
- - name: WindowsAdvancedThreatProtection
- href: windowsadvancedthreatprotection-csp.md
- items:
- - name: WindowsAdvancedThreatProtection DDF file
- href: windowsadvancedthreatprotection-ddf.md
- - name: WindowsAutopilot
- href: windowsautopilot-csp.md
- items:
- - name: WindowsAutopilot DDF file
- href: windowsautopilot-ddf-file.md
- - name: WindowsDefenderApplicationGuard
- href: windowsdefenderapplicationguard-csp.md
- items:
- - name: WindowsDefenderApplicationGuard DDF file
- href: windowsdefenderapplicationguard-ddf-file.md
- - name: WindowsLicensing
- href: windowslicensing-csp.md
- items:
- - name: WindowsLicensing DDF file
- href: windowslicensing-ddf-file.md
- - name: WiredNetwork
- href: wirednetwork-csp.md
- items:
- - name: WiredNetwork DDF file
- href: wirednetwork-ddf-file.md
+ - name: ActiveSync DDF file
+ href: activesync-ddf-file.md
+ - name: AllJoynManagement
+ href: alljoynmanagement-csp.md
+ items:
+ - name: AllJoynManagement DDF
+ href: alljoynmanagement-ddf.md
+ - name: APPLICATION
+ href: application-csp.md
+ - name: ApplicationControl
+ href: applicationcontrol-csp.md
+ items:
+ - name: ApplicationControl DDF file
+ href: applicationcontrol-csp-ddf.md
+ - name: AppLocker
+ href: applocker-csp.md
+ items:
+ - name: AppLocker DDF file
+ href: applocker-ddf-file.md
+ - name: AppLocker XSD
+ href: applocker-xsd.md
+ - name: AssignedAccess
+ href: assignedaccess-csp.md
+ items:
+ - name: AssignedAccess DDF file
+ href: assignedaccess-ddf.md
+ - name: BitLocker
+ href: bitlocker-csp.md
+ items:
+ - name: BitLocker DDF file
+ href: bitlocker-ddf-file.md
+ - name: CellularSettings
+ href: cellularsettings-csp.md
+ - name: CertificateStore
+ href: certificatestore-csp.md
+ items:
+ - name: CertificateStore DDF file
+ href: certificatestore-ddf-file.md
+ - name: CleanPC
+ href: cleanpc-csp.md
+ items:
+ - name: CleanPC DDF
+ href: cleanpc-ddf.md
+ - name: ClientCertificateInstall
+ href: clientcertificateinstall-csp.md
+ items:
+ - name: ClientCertificateInstall DDF file
+ href: clientcertificateinstall-ddf-file.md
+ - name: CM_CellularEntries
+ href: cm-cellularentries-csp.md
+ - name: CMPolicy
+ href: cmpolicy-csp.md
+ - name: CMPolicyEnterprise
+ href: cmpolicyenterprise-csp.md
+ items:
+ - name: CMPolicyEnterprise DDF file
+ href: cmpolicyenterprise-ddf-file.md
+ - name: CustomDeviceUI
+ href: customdeviceui-csp.md
+ items:
+ - name: CustomDeviceUI DDF file
+ href: customdeviceui-ddf.md
+ - name: Defender
+ href: defender-csp.md
+ items:
+ - name: Defender DDF file
+ href: defender-ddf.md
+ - name: DevDetail
+ href: devdetail-csp.md
+ items:
+ - name: DevDetail DDF file
+ href: devdetail-ddf-file.md
+ - name: DeveloperSetup
+ href: developersetup-csp.md
+ items:
+ - name: DeveloperSetup DDF
+ href: developersetup-ddf.md
+ - name: DeviceLock
+ href: devicelock-csp.md
+ items:
+ - name: DeviceLock DDF file
+ href: devicelock-ddf-file.md
+ - name: DeviceManageability
+ href: devicemanageability-csp.md
+ items:
+ - name: DeviceManageability DDF
+ href: devicemanageability-ddf.md
+ - name: DeviceStatus
+ href: devicestatus-csp.md
+ items:
+ - name: DeviceStatus DDF
+ href: devicestatus-ddf.md
+ - name: DevInfo
+ href: devinfo-csp.md
+ items:
+ - name: DevInfo DDF file
+ href: devinfo-ddf-file.md
+ - name: DiagnosticLog
+ href: diagnosticlog-csp.md
+ items:
+ - name: DiagnosticLog DDF file
+ href: diagnosticlog-ddf.md
+ - name: DMAcc
+ href: dmacc-csp.md
+ items:
+ - name: DMAcc DDF file
+ href: dmacc-ddf-file.md
+ - name: DMClient
+ href: dmclient-csp.md
+ items:
+ - name: DMClient DDF file
+ href: dmclient-ddf-file.md
+ - name: DMSessionActions
+ href: dmsessionactions-csp.md
+ items:
+ - name: DMSessionActions DDF file
+ href: dmsessionactions-ddf.md
+ - name: DynamicManagement
+ href: dynamicmanagement-csp.md
+ items:
+ - name: DynamicManagement DDF file
+ href: dynamicmanagement-ddf.md
+ - name: EMAIL2
+ href: email2-csp.md
+ items:
+ - name: EMAIL2 DDF file
+ href: email2-ddf-file.md
+ - name: EnrollmentStatusTracking
+ href: enrollmentstatustracking-csp.md
+ items:
+ - name: EnrollmentStatusTracking DDF file
+ href: enrollmentstatustracking-csp-ddf.md
+ - name: EnterpriseAPN
+ href: enterpriseapn-csp.md
+ items:
+ - name: EnterpriseAPN DDF
+ href: enterpriseapn-ddf.md
+ - name: EnterpriseAppVManagement
+ href: enterpriseappvmanagement-csp.md
+ items:
+ - name: EnterpriseAppVManagement DDF file
+ href: enterpriseappvmanagement-ddf.md
+ - name: EnterpriseDataProtection
+ href: enterprisedataprotection-csp.md
+ items:
+ - name: EnterpriseDataProtection DDF file
+ href: enterprisedataprotection-ddf-file.md
+ - name: EnterpriseDesktopAppManagement
+ href: enterprisedesktopappmanagement-csp.md
+ items:
+ - name: EnterpriseDesktopAppManagement DDF
+ href: enterprisedesktopappmanagement-ddf-file.md
+ - name: EnterpriseDesktopAppManagement XSD
+ href: enterprisedesktopappmanagement2-xsd.md
+ - name: EnterpriseModernAppManagement
+ href: enterprisemodernappmanagement-csp.md
+ items:
+ - name: EnterpriseModernAppManagement DDF
+ href: enterprisemodernappmanagement-ddf.md
+ - name: EnterpriseModernAppManagement XSD
+ href: enterprisemodernappmanagement-xsd.md
+ - name: eUICCs
+ href: euiccs-csp.md
+ items:
+ - name: eUICCs DDF file
+ href: euiccs-ddf-file.md
+ - name: Firewall
+ href: firewall-csp.md
+ items:
+ - name: Firewall DDF file
+ href: firewall-ddf-file.md
+ - name: HealthAttestation
+ href: healthattestation-csp.md
+ items:
+ - name: HealthAttestation DDF
+ href: healthattestation-ddf.md
+ - name: Local Administrator Password Solution
+ href: laps-csp.md
+ items:
+ - name: Local Administrator Password Solution DDF
+ href: laps-ddf-file.md
+ - name: MultiSIM
+ href: multisim-csp.md
+ items:
+ - name: MultiSIM DDF file
+ href: multisim-ddf.md
+ - name: NAP
+ href: nap-csp.md
+ - name: NAPDEF
+ href: napdef-csp.md
+ - name: NetworkProxy
+ href: networkproxy-csp.md
+ items:
+ - name: NetworkProxy DDF file
+ href: networkproxy-ddf.md
+ - name: NetworkQoSPolicy
+ href: networkqospolicy-csp.md
+ items:
+ - name: NetworkQoSPolicy DDF file
+ href: networkqospolicy-ddf.md
+ - name: NodeCache
+ href: nodecache-csp.md
+ items:
+ - name: NodeCache DDF file
+ href: nodecache-ddf-file.md
+ - name: Office
+ href: office-csp.md
+ items:
+ - name: Office DDF
+ href: office-ddf.md
+ - name: PassportForWork
+ href: passportforwork-csp.md
+ items:
+ - name: PassportForWork DDF file
+ href: passportforwork-ddf.md
+ - name: PersonalDataEncryption
+ href: personaldataencryption-csp.md
+ items:
+ - name: PersonalDataEncryption DDF file
+ href: personaldataencryption-ddf-file.md
+ - name: Personalization
+ href: personalization-csp.md
+ items:
+ - name: Personalization DDF file
+ href: personalization-ddf.md
+ - name: Provisioning
+ href: provisioning-csp.md
+ - name: PXLOGICAL
+ href: pxlogical-csp.md
+ - name: Reboot
+ href: reboot-csp.md
+ items:
+ - name: Reboot DDF file
+ href: reboot-ddf-file.md
+ - name: RemoteFind
+ href: remotefind-csp.md
+ items:
+ - name: RemoteFind DDF file
+ href: remotefind-ddf-file.md
+ - name: RemoteWipe
+ href: remotewipe-csp.md
+ items:
+ - name: RemoteWipe DDF file
+ href: remotewipe-ddf-file.md
+ - name: Reporting
+ href: reporting-csp.md
+ items:
+ - name: Reporting DDF file
+ href: reporting-ddf-file.md
+ - name: RootCATrustedCertificates
+ href: rootcacertificates-csp.md
+ items:
+ - name: RootCATrustedCertificates DDF file
+ href: rootcacertificates-ddf-file.md
+ - name: SecureAssessment
+ href: secureassessment-csp.md
+ items:
+ - name: SecureAssessment DDF file
+ href: secureassessment-ddf-file.md
+ - name: SecurityPolicy
+ href: securitypolicy-csp.md
+ - name: SharedPC
+ href: sharedpc-csp.md
+ items:
+ - name: SharedPC DDF file
+ href: sharedpc-ddf-file.md
+ - name: Storage
+ href: storage-csp.md
+ items:
+ - name: Storage DDF file
+ href: storage-ddf-file.md
+ - name: SUPL
+ href: supl-csp.md
+ items:
+ - name: SUPL DDF file
+ href: supl-ddf-file.md
+ - name: SurfaceHub
+ href: surfacehub-csp.md
+ items:
+ - name: SurfaceHub DDF file
+ href: surfacehub-ddf-file.md
+ - name: TenantLockdown
+ href: tenantlockdown-csp.md
+ items:
+ - name: TenantLockdown DDF file
+ href: tenantlockdown-ddf.md
+ - name: TPMPolicy
+ href: tpmpolicy-csp.md
+ items:
+ - name: TPMPolicy DDF file
+ href: tpmpolicy-ddf-file.md
+ - name: UEFI
+ href: uefi-csp.md
+ items:
+ - name: UEFI DDF file
+ href: uefi-ddf.md
+ - name: UnifiedWriteFilter
+ href: unifiedwritefilter-csp.md
+ items:
+ - name: UnifiedWriteFilter DDF file
+ href: unifiedwritefilter-ddf.md
+ - name: UniversalPrint
+ href: universalprint-csp.md
+ items:
+ - name: UniversalPrint DDF file
+ href: universalprint-ddf-file.md
+ - name: Update
+ href: update-csp.md
+ items:
+ - name: Update DDF file
+ href: update-ddf-file.md
+ - name: VPN
+ href: vpn-csp.md
+ items:
+ - name: VPN DDF file
+ href: vpn-ddf-file.md
+ - name: VPNv2
+ href: vpnv2-csp.md
+ items:
+ - name: VPNv2 DDF file
+ href: vpnv2-ddf-file.md
+ - name: ProfileXML XSD
+ href: vpnv2-profile-xsd.md
+ - name: EAP configuration
+ href: eap-configuration.md
+ - name: w4 APPLICATION
+ href: w4-application-csp.md
+ - name: w7 APPLICATION
+ href: w7-application-csp.md
+ - name: WiFi
+ href: wifi-csp.md
+ items:
+ - name: WiFi DDF file
+ href: wifi-ddf-file.md
+ - name: Win32AppInventory
+ href: win32appinventory-csp.md
+ items:
+ - name: Win32AppInventory DDF file
+ href: win32appinventory-ddf-file.md
+ - name: Win32CompatibilityAppraiser
+ href: win32compatibilityappraiser-csp.md
+ items:
+ - name: Win32CompatibilityAppraiser DDF file
+ href: win32compatibilityappraiser-ddf.md
+ - name: WindowsAdvancedThreatProtection
+ href: windowsadvancedthreatprotection-csp.md
+ items:
+ - name: WindowsAdvancedThreatProtection DDF file
+ href: windowsadvancedthreatprotection-ddf.md
+ - name: WindowsAutopilot
+ href: windowsautopilot-csp.md
+ items:
+ - name: WindowsAutopilot DDF file
+ href: windowsautopilot-ddf-file.md
+ - name: WindowsDefenderApplicationGuard
+ href: windowsdefenderapplicationguard-csp.md
+ items:
+ - name: WindowsDefenderApplicationGuard DDF file
+ href: windowsdefenderapplicationguard-ddf-file.md
+ - name: WindowsLicensing
+ href: windowslicensing-csp.md
+ items:
+ - name: WindowsLicensing DDF file
+ href: windowslicensing-ddf-file.md
+ - name: WiredNetwork
+ href: wirednetwork-csp.md
+ items:
+ - name: WiredNetwork DDF file
+ href: wirednetwork-ddf-file.md