I have a very secure Windows 10 setup where I use SRP (software restriction policies) with a lot of additional rules (that @Andy Ful helped me setup, e.g. see this thread), some disallowing programs and other disallowed paths.
It's been a long while since I set this up, and I've run into some issues with upgrading the Win 10 box. I recalled that I should sometimes turn off SRP policies before applying major Windows upgrades.
So, I went to temporarily turn off SRP and found one step is very easy: set Seciurity Levels -> Unrestricted as default (later reset to Disallowed)
However, do I also need to switch all of my Disallowed *additional rules* to Unrestricted?
I tried to select a bunch of them in gpedit.msc but there does not appear to be an option to switch all selected ones from Disallowed to Unrestricted (or back).
So, is my best bet to manually do this, one rule at a time?
Thank you!
It's been a long while since I set this up, and I've run into some issues with upgrading the Win 10 box. I recalled that I should sometimes turn off SRP policies before applying major Windows upgrades.
So, I went to temporarily turn off SRP and found one step is very easy: set Seciurity Levels -> Unrestricted as default (later reset to Disallowed)
However, do I also need to switch all of my Disallowed *additional rules* to Unrestricted?
I tried to select a bunch of them in gpedit.msc but there does not appear to be an option to switch all selected ones from Disallowed to Unrestricted (or back).
So, is my best bet to manually do this, one rule at a time?
Thank you!