Whereas a policy file includes the actual implemented changes for systems and users on the network, template files include the possible changes to be made. Each Registry change is listed in the file with the same information you would need to edit the Registry directly. System Policy Editor reads the template and translates the difficult language into a Windows-based, Explorer-like list of changes that can be made.
The templates for Windows NT are located in the \WINNT\Inf directory and all have an .ADM extension. (See Figure 29.1.) They are text files that can be viewed and edited with Notepad or WordPad.
Figure 29.1. The .ADM files in the \WINNT\Inf directory.
In Windows 95, the System Policy Editor uses the template called
ADMIN.ADM
by default. Any additions or changes are normally made to that file. It is a little
more difficult to troubleshoot if there are any errors because all settings are in
one file, and it is quite lengthy. You may use any template file
with the 95 System
Policy Editor, but you can only use one file. To change the template file, select
Options | Template | Open template, and browse for the desired file.
TIP: The option to use a different template file is a great help in preparing template files for use in Windows 95. Rather than putting all the new settings directly into ADMIN.ADM and having to edit a large file, simply put the settings in a new small file. Open the template, test it, and when it is exactly correct, append it to the ADMIN.ADM file.
Windows NT System Policy Editor seems to have learned from that limitation, because it allows you to use as many templates as you like, and they can be named anything you desire. That seemingly small difference makes a huge difference in actual day-to-day use.
TIP: When you create your own template files, make them as small as possible. Small template files load more quickly and are easier to troubleshoot. If you are going to use Windows 95, append the small file onto the end of the current ADMIN.ADM file.
By default, NT looks for .ADM files in the \WINNT\Inf directory. If you put them elsewhere, it may take you longer to find them, particularly if you have to go to multiple places to retrieve them.
To import a template file into System Policy Editor, select Options | Policy Template. In Windows NT, the dialog box shown in Figure 29.2 appears, giving you options to add or remove templates from the list of currently loading templates.
Figure 29.2. The Policy Template Options dialog box in Windows NT.
You can add as many files as you like. Even if the files you add are not valid template
files, they will show in the list.
In Windows 95, with its limitation of a single template file, the dialog box is slightly different, as shown in Figure 29.3.
Figure 29.3. The Template Options dialog box in Windows 95.
When you click OK at the Policy Template Options dialog box, System Policy Editor
imports the template file. If the syntax is correct in the entries, System Policy
Editor imports them, showing you the status of the file
update on the status line.
(See Figure 29.4.)
The template files are not case-sensitive, but it is critical to have the correct syntax, or structure. Incorrect syntax prevents the file from loading (as shown in Figure 29.5) and returns an error message regarding the type of error and the line on which it occurred.
Figure 29.4. The template files loading into System Policy Editor.
Figure 29.5. Faulty template files do not load into System Policy Editor.
TIP: Imagine the challenge associated with finding an error on line 126. Make short template files for easier editing
The template file loads into System Policy Editor if the syntax is correct. If the keys or values are not in the Registry when System Policy Editor updates it, they are created. If the entries have no validity for the operating system, they are ignored by the Registry.
After the templates are loaded, you can use them by opening a current policy file or by creating a new one. The only available entries are those that are from the template. When you save the policy file over the top of an existing file, it does not save all the entries, just the ones that relate to the current template file.
TIP: To ensure that your policy will always be in place, add template files but don't remove them. If you remove a template file, the settings associated with that template are not saved.
Three default templates come with Windows NT 4.0: COMMON.ADM, WINNT.ADM, and WINDOWS.ADM. Because the System Policy Editor does not work with Windows 95 systems, the WINDOWS.ADM file will not be discussed in depth here. It was developed so it could be used in creating a single policy for both NT and 95. It actually has no value now because the policies are not compatible.
SOLUTIONS: If the policy files in Windows NT and Windows 95 are not compatible, why did Microsoft supply us with the WINDOWS.ADM file? I am sure it was the original intent of the developers to make one System Policy Editor (the one released with NT 4.0) that could manage all the policies for NT and 95. It appears as though they finished the project, and then someone else came in and imposed changes on them. It would be just as easy as forcing the policies to be in Unicode. Unicode policies could be used in a multilanguage environment and are also more difficult to edit directly, giving a tiny bit of additional security. If the policies could have been retained as ASCII, one editor and one policy file could have done it all.
COMMON.ADM is the template file for Registry entries that are the same for Windows NT 4.0 and Windows 95. Placing these entries in a single file reduces the likelihood of error and duplication. In the System Policy Editor, these entries are shown with no designation for the operating system.
The entries in COMMON.ADM (shown in Figure 29.6) that affect the computer system settings are limited to the location of the policy file, SNMP (Simple Network Management Protocol), and executable files to run at startup.
NOTE: Even though the COMMON.ADM file includes settings that would work for Windows 95, the policy files created by System Policy Editor in NT 4.0 are not compatible with Windows 95.
As you can see in Figures 29.7 and 29.8, many more entries are associated with users than with the computers in COMMON.ADM. Most of the system-specific entries are also associated directly with the operating system.
Figure 29.6. System-specific entries in COMMON.ADM.
Figure 29.7. User-specific entries in COMMON.ADM.
Figure 29.8. User-specific Shell Restriction entries in COMMON.ADM.
The common entries in the user-specific listing illustrate the great
similarity of
the user interfaces for NT 4.0 and 95. Most of these entries deal with restrictions
placed on users. Of course, how completely you implement these restrictions depends
on the experience level of users in your organization.
WINNT.ADM is the template file that holds the Windows NT-specific entries for users and computer systems. These entries, even if written into the Windows 95 Registry, would have no effect on the Windows 95 Registry. Certainly, the requirement for separate files, and differences in the locations and types of entries in the files, indicate that there are still many significant differences between the operating systems and Registries. The focus and implementation of NT 4.0 and 95 are significantly different even though, from the outside, NT 4.0 and 95 look the same. Also, notice that the number of system-specific entries far outpaces the user options. (See Figures 29.9 through 29.11.)
Figure 29.9. Some system-specific entries in WINNT.ADM.
Figure 29.10. More system-specific entries in WINNT.ADM.
Figure 29.11. The last of the system-specific entries in WINNT.ADM.
The ability to customize the NT systems on your network is fabulous. Compared to
the customization options available in NT 3.5x,
you have tremendous control.
The best part is that it all comes in System Policy Editor, allowing you to make
all these network-system changes from one location.
The options for managing and restricting users through System Policy Editor are shown in Figures 29.12 and 29.13.
NOTE: Chapter 31, "Managing Domain Computers with System Policy Editor," and Chapter 30, "Managing the Local Registry with System Policy Editor," discuss these entries in more detail and make recommendations for implementation.
Together, COMMON.ADM and WINNT.ADM provide the framework for settings for system and user restrictions with System Policy Editor.
Figure 29.12. User options in WINNT.ADM.
Figure 29.13. More user options in WINNT.ADM.
Windows 95 uses the template called ADMIN.ADM. It has the same entries as COMMON.ADM in Windows NT, plus more. Those additional entries were included in Windows NT as WINDOWS.ADM. Like the template files in NT, ADMIN.ADM contains settings for both system and user Registries.
ADMIN.ADM was the first of the template files for the System Policy Editor. It is exclusive to Windows 95, although there are some overlapping entries![Ydieresis]th the COMMON.ADM template in NT 4.0. This template is critical to proper management of Windows 95 systems in organizations where any sort of standardization and security is required. Without the imposition of a policy, Windows 95 users can do nearly anything they want to, much to the chagrin of system administrators and technical support.
The options for computer-based system policies are illustrated in Figures 29.14 through Figure 29.17. Additional detail about each of the settings is in Chapter 33, "Managing Windows 95 Users with System Policy Editor." Figure 29.14 shows the available policies for Network access control, logon functions, and the NetWare client.
Figure 29.15 shows the Microsoft client policy options, plus the options for File and Print sharing for NetWare networking, passwords, and dial-up network restrictions.
Sharing functions in Microsoft networking, SNMP, and policy file location (Remote Update) functions are shown in Figure 29.16.
Figure 29.14. Some of the computer policies in ADMIN.ADM.
Figure 29.15. Computer policies in ADMIN.ADM affect client policy options.
Figure 29.16. Computer policies in ADMIN.ADM affect sharing and SNMP.
System policy modifications are
shown in Figure 29.17.
Figure 29.17. System options from ADMIN.ADM computer policies .
The basic premise
of user-based settings in the policies for Windows 95 is restrictions.
As a stand-alone system, if the user takes liberties with his system, it may mean
that the user is down, if the system crashes. Attach that same system to a network,
and the
potential problems are magnified. Figure 29.18 shows some of the restrictions
that could be imposed on users with System Policy Editor. Additional detail is available
in Chapter 33.
Figure 29.18. Some of the user restriction policies in ADMIN.ADM.
Figure 29.19 shows the desktop and network sharing restrictions in the ADMIN.ADM
template and
System Policy Editor.
Figure 29.19. Additional user restriction policies in ADMIN.ADM.
Changing what the
users will see in their Windows 95 desktop is the purpose of the
template options in Figure 29.20.
Figure 29.20. Customization options in ADMIN.ADM.
Shell restrictions (shown in Figure 29.21) can radically change the available options
for the Windows 95 user.
Some of the harsher restrictions are shown in Figure 29.22 as the administrator can remove many options from the user with System Policy Editor.
Together, the policies available for Windows 95 systems and users can create quite a tight policy, and make 95 systems very acceptable systems for working on a network as part of a standards-based organization.
Figure 29.21. Shell restriction policies in ADMIN.ADM.
Figure 29.22. Additional restriction policies in ADMIN.ADM.
SOLUTIONS: Why are there so many more policies for Windows 95 systems than for Windows NT systems? I thought they were almost the same thing. Windows NT systems were designed from the ground up with the capability for system administrators to manage and control them. Windows 95 was designed as a single-user system, with networking and standards compliance features "tacked on." In order to effectively manage Windows 95 systems in an organization, more is required, hence the greater number of policies available.
The required syntax for a template file is critical for understanding current files and for creating new files. CLASS, KEYNAME, and VALUENAME hold the actual information that will change the Registry. CATEGORY, POLICY, and PART are used to create the interface of the System Policy Editor.
This setting determines whether the change affects HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER (for the named user). As many categories as desired can be under this heading.
This setting sets the text for initial headings and groups multiple policies for ease of use and editing. CATEGORY settings are shown in the System Policy Editor as a book. There can be as many layers of categories as desired, because they are used to create the hierarchical structure in the interface. An END CATEGORY entry is required to close the CATEGORY.
POLICY entries are the actual selections that you can choose. They are shown with a check box. An END POLICY entry is required to close the POLICY.
For each of the policies, there needs to be a key name and at least one value. The KEYNAME entry does not include the handle key name.
TIP: Do not start the KEYNAME with a backslash (\). Instead, start with the key below the handle key. If you start with a backslash, the setting will not be recognized in the Registry even though an error will not occur in the importing of the file.
The VALUENAME is the same as in the Registry.
The data for the values and the type of System Policy Editor entry desired are listed in PART. An END PART entry is required to close the PART.
Strings are shown in the .ADM file starting with a double exclamation (!!). The text following the double exclamation cannot include a space. The text listed in the [Strings] section replaces the entry in System Policy Editor. An alternative is to simply put the text in quotation marks.
Figure 29.23 shows all the syntax components of a template file. Note that the CATEGORY, POLICY, and PART entries all have a corresponding END component as well.
Figure 29.23. Syntax for .ADM files.
Each of the corresponding parts of the System Policy Editor screen is generated by
the .ADM file. An example from the WINNT.ADM file is shown in Figure
29.24.
TIP: One of the most common mistakes for creators of template files is the omission of the closing entry. For every CATEGORY, there must be an END CATEGORY. For every POLICY, there must be an END POLICY. For every PART, there must be an END PART.
Figure 29.24. Each section of the .ADM file affects the System Policy Editor screen.
With these standard template files, it is possible to learn a great deal about the Registry and entries that can be made. Use these steps to find the actual Registry setting being made by the System Policy Editor.
TIP: The text around the found text is the actual change in the Registry.
After the desired policy has been found, note the KEYNAME, the VALUENAME, and the action that will happen when the policy is activated.
COMMON.ADM has just a few settings for the computer. Because these functions were designed to work with both Windows NT and Windows 95, the criteria for inclusion in COMMON.ADM are stringent. Only functions that both can use and only Registry settings that are exactly the same can be included.
NOTE: The fact that the System Policy Editor for NT cannot prepare or edit policies for Windows 95 makes COMMON.ADM peculiar. Obviously, in the design phase of System Policy Editor, there was the full intention of making the policies compatible. Somewhere along the line, a decision was made to change the policy file to Unicode, and all the collaboration and partnership work was for naught.
There are many more settings in COMMON.ADM for the user because of the shared interface with Windows NT and Windows 95. Note that many of the Registry changes simply add values. Those values are just some of the undocumented items that can be placed in the Registry.
Of course, one of the most important parts of the policies is the restrictions that can be placed on users. In Listing 29.1, all the Registry locations and values are listed. If a restricted user was to get access to this file, he could read the entries, and make changes to remove restrictions. The .ADM files are stored in the \WINNT\INF folder. Restrict access to increase security.
CLASS MACHINE
CATEGORY !!Network
CATEGORY !!Update
POLICY !!RemoteUpdate
KEYNAME System\CurrentControlSet\Control\Update
ACTIONLISTOFF
VALUENAME "UpdateMode" VALUE NUMERIC 0
END ACTIONLISTOFF
PART !!UpdateMode DROPDOWNLIST REQUIRED
VALUENAME "UpdateMode"
ITEMLIST
NAME !!UM_Automatic VALUE NUMERIC 1
NAME !!UM_Manual VALUE NUMERIC 2
END ITEMLIST
END PART
PART !!UM_Manual_Path EDITTEXT
VALUENAME "NetworkPath"
END PART
PART !!DisplayErrors CHECKBOX
VALUENAME "Verbose"
END PART
PART !!LoadBalance CHECKBOX
VALUENAME "LoadBalance"
END PART
END POLICY
END CATEGORY ; Update
END CATEGORY ; Network
CATEGORY !!System
CATEGORY !!SNMP
POLICY !!Communities
KEYNAME
System\CurrentControlSet\Services\SNMP\Parameters\
ValidCommunities
PART !!CommunitiesListbox LISTBOX
VALUEPREFIX ""
END PART
END POLICY
POLICY !!PermittedManagers
KEYNAME System\CurrentControlSet\Services\SNMP\Parameters\
PermittedManagers
PART !!PermittedManagersListbox LISTBOX
VALUEPREFIX ""
END PART
END POLICY
POLICY
!!Traps_Public
KEYNAME System\CurrentControlSet\Services\SNMP\Parameters\
TrapConfiguration\Public
PART !!Traps_PublicListbox LISTBOX
VALUEPREFIX ""
END PART
END
POLICY
END CATEGORY ; SNMP
CATEGORY !!Run
POLICY !!Run
KEYNAME Software\Microsoft\Windows\CurrentVersion\Run
PART !!RunListbox LISTBOX EXPLICITVALUE
END PART
END
POLICY
END CATEGORY
END CATEGORY ; System
CLASS USER
CATEGORY !!ControlPanel
CATEGORY !!CPL_Display
POLICY !!CPL_Display_Restrict
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\System
PART
!!CPL_Display_Disable CHECKBOX
VALUENAME NoDispCPL
END PART
PART !!CPL_Display_HideBkgnd CHECKBOX
VALUENAME NoDispBackgroundPage
END PART
PART
!!CPL_Display_HideScrsav CHECKBOX
VALUENAME NoDispScrSavPage
END PART
PART !!CPL_Display_HideAppearance CHECKBOX
VALUENAME NoDispAppearancePage
END PART
PART
!!CPL_Display_HideSettings CHECKBOX
VALUENAME NoDispSettingsPage
END PART
END POLICY
END CATEGORY ; Display
END CATEGORY ; Control Panel
CATEGORY !!Desktop
KEYNAME "Control
Panel\Desktop"
POLICY !!Wallpaper
PART !!WallpaperName EDITTEXT
VALUENAME "Wallpaper"
END PART
PART !!WALLPAPER_
TIP 1 TEXT END PART
PART !!WALLPAPER_
TIP 2 TEXT END PART
PART !!TileWallpaper CHECKBOX DEFCHECKED
VALUENAME "TileWallpaper"
VALUEON "1" VALUEOFF "0"
END PART
END
POLICY
POLICY !!ColorScheme
PART !!SchemeName DROPDOWNLIST
KEYNAME "Control Panel\Appearance"
VALUENAME Current REQUIRED
ITEMLIST
NAME !!Lavender
VALUE !!Lavender
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "174 168 217"
VALUENAME ActiveTitle VALUE "128 128
128"
VALUENAME AppWorkspace VALUE "90 78 177"
VALUENAME Background VALUE "128 128 192"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "174 168 217"
VALUENAME ButtonHilight VALUE "216 213 236"
VALUENAME ButtonLight VALUE "174 168 217"
VALUENAME ButtonShadow
VALUE "90 78 177"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "90 78 177"
VALUENAME Hilight VALUE "128 128 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "174 168 217"
VALUENAME InactiveTitle VALUE "90 78 177"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "174 168 217"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"174 168 217"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "174 168 217"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Tan256 VALUE !!Tan256
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "202 184 149"
VALUENAME ActiveTitle VALUE "0 0
0"
VALUENAME AppWorkspace VALUE "156 129 78"
VALUENAME Background VALUE "128 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "202 184 149"
VALUENAME ButtonHilight VALUE "228 220 203"
VALUENAME ButtonLight VALUE "202 184 149"
VALUENAME ButtonShadow
VALUE "156 129 78"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "156 129 78"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "202 184 149"
VALUENAME InactiveTitle VALUE "156 129 78"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "202 184 149"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"202 184 149"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "202 184 149"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Wheat256 VALUE !!Wheat256
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "215 213 170"
VALUENAME ActiveTitle VALUE "0
0 0"
VALUENAME AppWorkspace VALUE "173 169 82"
VALUENAME Background VALUE "0 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "215 213 170"
VALUENAME ButtonHilight VALUE "235 234 214"
VALUENAME ButtonLight VALUE "215 213 170"
VALUENAME ButtonShadow
VALUE "173 169 82"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "173 169 82"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "215 213 170"
VALUENAME InactiveTitle VALUE "173 169 82"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "215 213 170"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"215 213 170"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "215 213 170"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Celery VALUE !!Celery
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "168 215 170"
VALUENAME ActiveTitle VALUE "0 0
0"
VALUENAME AppWorkspace VALUE "80 175 85"
VALUENAME Background VALUE "32 18 46"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "168 215 170"
VALUENAME ButtonHilight VALUE "211 235 213"
VALUENAME ButtonLight VALUE "168 215 170"
VALUENAME ButtonShadow
VALUE "85 175 85"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "80 175 85"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "168 215 170"
VALUENAME InactiveTitle VALUE "80 175 75"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "168 215 170"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"168 215 170"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "168 215 170"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Rose VALUE !!Rose
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "207 175 183"
VALUENAME ActiveTitle VALUE "128 128
128"
VALUENAME AppWorkspace VALUE "159 96 112"
VALUENAME Background VALUE "128 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "207 175 183"
VALUENAME ButtonHilight VALUE "231 216 220"
VALUENAME ButtonLight VALUE "207 175 183"
VALUENAME ButtonShadow
VALUE "159 96 112"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "159 96 112"
VALUENAME Hilight VALUE "128 128 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "207 175 183"
VALUENAME InactiveTitle VALUE "159 96 112"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "207 175 183"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"207 175 183"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "207 175 183"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Evergreen VALUE !!Evergreen
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "47 151 109"
VALUENAME ActiveTitle VALUE "0
0 0"
VALUENAME AppWorkspace VALUE "31 101 73"
VALUENAME Background VALUE "48 63 48"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "47 151 109"
VALUENAME ButtonHilight VALUE "137 218 186"
VALUENAME ButtonLight VALUE "47 151 109"
VALUENAME ButtonShadow
VALUE "31 101 73"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "31 101 73"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "47 151 109"
VALUENAME InactiveTitle VALUE "31 101 73"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "47 151 109"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"47 151 109"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "47 151 109"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Blues VALUE !!Blues
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "161 198 221"
VALUENAME ActiveTitle VALUE "0 0
0"
VALUENAME AppWorkspace VALUE "69 139 186"
VALUENAME Background VALUE "0 0 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "164 198 221"
VALUENAME ButtonHilight VALUE "210 227 238"
VALUENAME ButtonLight VALUE "164 198 221"
VALUENAME ButtonShadow
VALUE "69 139 186"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "69 139 186"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "164 198 221"
VALUENAME InactiveTitle VALUE "69 139 186"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "164 198 221"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"164 198 221"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "164 198 221"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!Teal VALUE !!Teal
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "0 128
128"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "0 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow
VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "0 128 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "0 0 0"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!TheReds VALUE !!TheReds
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "128
0 0"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "64 0 0"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow
VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "128 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!WindowsDefault VALUE !!WindowsDefault
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle
VALUE "0 0 128"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "0 128 128"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow
VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "0 0 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME
InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE
"192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME
!!BlueAndBlack VALUE !!BlueAndBlack
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE
"0 0 0"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "0 0 128"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow
VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "255 255 0"
VALUENAME HilightText VALUE "0 0 0"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME InactiveTitleText
VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window
VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Wheat VALUE !!Wheat
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "128 128 0"
VALUENAME
AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "128 128 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE
"192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "128 128 0"
VALUENAME HilightText VALUE
"0 0 0"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "192 192 192"
VALUENAME InfoWindow
VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "0 0 0"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
END ITEMLIST
END PART
END POLICY
END CATEGORY ; Desktop
CATEGORY
!!Shell
CATEGORY !!Restrictions
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
POLICY !!RemoveRun
VALUENAME "NoRun"
END POLICY
POLICY
!!RemoveFolders
VALUENAME "NoSetFolders"
END POLICY
POLICY !!RemoveTaskbar
VALUENAME "NoSetTaskbar"
END POLICY
POLICY !!RemoveFind
VALUENAME "NoFind"
END POLICY
POLICY !!HideDrives
VALUENAME "NoDrives"
VALUEON NUMERIC 67108863 ; low 26 bits on (1 bit per drive)
END POLICY
POLICY !!HideNetHood
VALUENAME "NoNetHood"
END POLICY
POLICY !!NoEntireNetwork
KEYNAME Software\Microsoft\Windows\CurrentVersion\
Policies\Network
VALUENAME
"NoEntireNetwork"
END POLICY
POLICY !!NoWorkgroupContents
KEYNAME Software\Microsoft\Windows\CurrentVersion\
Policies\Network
VALUENAME "NoWorkgroupContents"
END POLICY
POLICY !!HideDesktop
VALUENAME "NoDesktop"
END POLICY
POLICY !!DisableClose
VALUENAME "NoClose"
END POLICY
POLICY
!!NoSaveSettings
VALUENAME "NoSaveSettings"
END POLICY
END CATEGORY
END CATEGORY ; Shell
CATEGORY !!System
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\System
CATEGORY !!Restrictions
POLICY !!DisableRegedit
VALUENAME DisableRegistryTools
END POLICY
POLICY !!RestrictApps
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
VALUENAME RestrictRun
PART
!!RestrictAppsList LISTBOX
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies
\Explorer\RestrictRun
VALUEPREFIX ""
END PART
PART !!RestrictApps_Tip1 TEXT END PART
PART !!RestrictApps_Tip2 TEXT END PART
PART !!RestrictApps_Tip3 TEXT END PART
PART !!RestrictApps_Tip4 TEXT END PART
END POLICY
END CATEGORY
END CATEGORY ;
System
[strings]
Network="Network"
Update="System policies update"
RemoteUpdate="Remote update"
UpdateMode="Update mode"
UM_Automatic="Automatic (use default path)"
UM_Manual="Manual (use specific
path)"
UM_Manual_Path="Path for manual update"
DisplayErrors="Display error messages"
LoadBalance="Load balancing"
System="System"
DisableFileSharing="Disable file sharing"
DisablePrintSharing="Disable print sharing"
ControlPanel="Control Panel"
CPL_Display="Display"
CPL_Display_Restrict="Restrict display"
CPL_Display_Disable="Deny access to display icon"
CPL_Display_HideBkgnd="Hide Background tab"
CPL_Display_HideScrsav="Hide Screen Saver tab"
CPL_Display_HideAppearance="Hide Appearance tab"
CPL_Display_HideSettings="Hide Settings tab"
Desktop="Desktop"
Wallpaper="Wallpaper"
WallpaperName="Wallpaper Name"
TileWallpaper="Tile Wallpaper"
Wallpaper_Tip1="Specifiy location and name (e.g. c:\winnt\winnt256.bmp)"
Wallpaper_Tip2="
"
ColorScheme="Color scheme"
SchemeName="Scheme name"
Lavender="Lavender 256"
Celery="Celery 256"
Rose="Rose 256"
Evergreen="Evergreen 256"
Blues="Blues 256"
WindowsDefault="Windows Default"
BlueAndBlack="Blue and Black"
Teal="Teal"
TheReds="The Reds"
Wheat="Wheat"
Wheat256="Wheat 256"
Tan256="Tan 256"
Shell="Shell"
RemoveRun="Remove Run command from Start menu"
RemoveFolders="Remove folders from Settings on Start menu"
RemoveTaskbar="Remove Taskbar from Settings on Start menu"
RemoveFind="Remove Find command from Start
menu"
HideDrives="Hide drives in My Computer"
HideNetHood="Hide Network Neighborhood"
NoEntireNetwork="No Entire Network in Network Neighborhood"
HideDesktop="Hide all items on desktop"
DisableClose="Disable Shut Down command"
NoSaveSettings="Don't save settings at exit"
SNMP="SNMP"
Communities="Communities"
CommunitiesListbox="Communities"
PermittedManagers="Permitted
managers"
PermittedManagersListbox="Permitted managers"
Traps_Public="Traps for Public community"
Traps_PublicListbox="Trap configuration"
Restrictions="Restrictions"
DisableRegedit="Disable Registry
editing tools"
Run="Run"
RunServices="Run services"
RunListbox="Items to run at startup"
RunServicesListbox="Services to run at startup"
NoWorkgroupContents="No workgroup contents in Network
Neighborhood"
RestrictApps="Run only allowed Windows applications"
RestrictAppsList="List of allowed applications"
RestrictApps_Tip1=" "
RestrictApps_Tip2="To create a list of allowed applications, click
Show,"
RestrictApps_Tip3="then Add, and enter the application executable name"
RestrictApps_Tip4="(e.g., Winword.exe, Poledit.exe, Powerpnt.exe)."
DomainLogonConfirmation="Display domain logon confirmation"
NoDomainPwdCaching="Disable caching of domain password"
The policies in WINNT.ADM are specific to Windows NT 4.0. Even though many of the actual Registry settings under the CLASS MACHINE section are also usable under NT 3.5x, NT 3.5x does not look for or use policies. You can, however, use many of the Registry settings directly and modify your 3.5x environment.
Most of the entries in WINNT.ADM (shown in Listing 29.2) are associated with system functions because most of the interface/user functions are included with COMMON.ADM. Using the system functions can significantly increase security by limiting access to sensitive areas of Windows NT.
CLASS MACHINE
CATEGORY !!Network
CATEGORY !!Sharing
KEYNAME System\CurrentControlSet\Services\LanManServer\Parameters
POLICY !!WorkstationShareAutoCreate
VALUENAME "AutoShareWks"
VALUEOFF NUMERIC 0
PART
!!ShareWks_Tip1 TEXT END PART
PART !!ShareWks_Tip2 TEXT END PART
END POLICY
POLICY !!ServerShareAutoCreate
VALUENAME
"AutoShareServer"
VALUEOFF NUMERIC 0
PART !!ShareServer_Tip1 TEXT END PART
PART !!ShareServer_Tip2 TEXT END PART
END POLICY
END
CATEGORY ; Sharing
END CATEGORY ; Network
CATEGORY !!Printers
KEYNAME System\CurrentControlSet\Control\Print
POLICY !!PrintManager_Browser_Restrict
VALUENAME DisableServerThread
PART !!Disable_Server_Tip1
TEXT
END PART
PART !!Disable_Server_Tip2 TEXT
END PART
END POLICY
POLICY !!Scheduler_Thread_Priority
PART !!Scheduler_Priority DROPDOWNLIST
VALUENAME SchedulerThreadPriority
ITEMLIST
NAME "Above Normal" VALUE NUMERIC 1
NAME "Normal" VALUE NUMERIC 0
NAME "Below Normal" VALUE
NUMERIC -1
END ITEMLIST
END PART
END POLICY
POLICY !!Beep_Enabled
VALUENAME BeepEnabled
VALUEOFF NUMERIC 0
PART !!Beep_Tip1 TEXT END PART
PART !!Beep_Tip2 TEXT END PART
END POLICY
END CATEGORY
CATEGORY !!RemoteAccess
KEYNAME System\CurrentControlSet\Services\RemoteAccess\Parameters
POLICY !!MaximumRetries
PART !!RAS_Length
NUMERIC REQUIRED
MIN 1 MAX 10 DEFAULT 2
VALUENAME AuthenticateRetries
END PART
END POLICY
POLICY !!MaximumTime
PART !!RAS_Time NUMERIC REQUIRED
MIN 20 MAX 600 DEFAULT 120
VALUENAME AuthenticateTime
END PART
END POLICY
POLICY !!CallBackTime
PART !!INT_Time NUMERIC REQUIRED
MIN 2 MAX 12
DEFAULT 2
VALUENAME CallbackTime
END PART
END POLICY
POLICY !!Auto_Disconnect
PART !!Autodisconnect_Time NUMERIC REQUIRED
MIN 0 DEFAULT 20
VALUENAME AutoDisconnect
END PART
END POLICY
END CATEGORY
CATEGORY !!Shell
CATEGORY !!CustomSharedFolders
KEYNAME "Software\Microsoft\Windows\CurrentVersion\
Explorer\User Shell Folders"
POLICY !!CustomFolders_SharedPrograms
PART !!CustomFolders_SharedProgramsPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_SharedProgramsDefault
VALUENAME "Common Programs"
END PART
END POLICY
POLICY !!CustomFolders_SharedDesktop
PART !!CustomFolders_SharedDesktopPath
EDITTEXT
REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_SharedDesktopDefault
VALUENAME "Common Desktop"
END PART
END POLICY
POLICY
!!CustomFolders_SharedStartMenu
PART !!CustomFolders_SharedStartMenuPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_SharedStartMenuDefault
VALUENAME "Common Start Menu"
END PART
END POLICY
POLICY !!CustomFolders_SharedStartup
PART !!CustomFolders_SharedStartupPath
EDITTEXT
REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_SharedStartupDefault
VALUENAME "Common Startup"
END PART
END POLICY
END CATEGORY
END CATEGORY
; Shell
CATEGORY !!System
CATEGORY !!Login_Policies
POLICY !!LogonBanner
KEYNAME "Software\Microsoft\Windows NT\CurrentVersion\Winlogon"
PART !!LogonBanner_Caption
EDITTEXT
VALUENAME "LegalNoticeCaption"
MAXLEN 255
DEFAULT !!LogonBanner_DefCaption
END PART
PART !!LogonBanner_Text
EDITTEXT
VALUENAME "LegalNoticeText"
MAXLEN 255
DEFAULT !!LogonBanner_DefText
END PART
END POLICY
POLICY
!!Shutdown_Restrict
KEYNAME "Software\Microsoft\Windows NT\CurrentVersion\Winlogon"
VALUENAME ShutdownWithoutLogon
VALUEON "1" VALUEOFF "0"
PART !!Shutd_Tip1 TEXT END PART
PART !!Shutd_Tip2 TEXT END PART
PART !!Shutd_Tip3 TEXT END PART
END POLICY
POLICY !!LastUserName_Restrict
KEYNAME "Software\Microsoft\Windows NT\CurrentVersion\Winlogon"
VALUENAME DontDisplayLastUserName
VALUEON "1" VALUEOFF "0"
PART !!Dont_Display_Tip1
TEXT END PART
PART !!Dont_Display_Tip2 TEXT END PART
PART !!Dont_Display_Tip3 TEXT END PART
END POLICY
POLICY !!Run_Logon_Script_Sync
KEYNAME "Software\Microsoft\Windows NT\CurrentVersion\Winlogon"
VALUENAME RunLogonScriptSync
PART !!Script_Tip1 TEXT END PART
PART !!Script_Tip2 TEXT END
PART
PART !!Script_Tip4 TEXT END PART
END POLICY
END CATEGORY ; Login Policies
CATEGORY !!FileSystem
KEYNAME System\CurrentControlSet\Control\FileSystem
POLICY !!Disable8dot3Names
VALUENAME "NtfsDisable8dot3NameCreation"
END POLICY
POLICY !!AllowExtCharsIn8dot3
VALUENAME "NtfsAllowExtendedCharacterIn8dot3Name"
PART !!ExtChars_Tip1 TEXT END PART
PART !!ExtChars_Tip2 TEXT END PART
END POLICY
POLICY !!DisableLastUpdate
VALUENAME "NtfsDisableLastAccessUpdate"
PART !!LastAccess_Tip1 TEXT END PART
PART !!LastAccess_Tip2 TEXT END PART
END POLICY
END CATEGORY ; File system
END CATEGORY ; System
CATEGORY !!UserProfiles
KEYNAME
"Software\Microsoft\Windows NT\CurrentVersion\winlogon"
POLICY !!DeleteRoamingCachedProfiles
VALUENAME "DeleteRoamingCache"
PART !!DeleteCache_Tip1 TEXT END PART
PART !!DeleteCache_Tip2 TEXT END PART
END POLICY
POLICY !!EnableSlowLinkDetect
VALUENAME "SlowLinkDetectEnabled"
END POLICY
POLICY !!SlowLinkTimeOut
PART !!SlowLinkWaitInterval NUMERIC REQUIRED
MIN 1 MAX 20000 DEFAULT 2000
VALUENAME SlowLinkTimeOut
END PART
END POLICY
POLICY !!ProfileDlgTimeOut
PART !!ProfileDlgWaitInterval NUMERIC REQUIRED
MIN 0 MAX 600 DEFAULT 30
VALUENAME ProfileDlgTimeOut
END PART
END POLICY
END CATEGORY
CLASS USER
CATEGORY !!Shell
CATEGORY !!CustomFolders
KEYNAME "Software\Microsoft\Windows\CurrentVersion\
Explorer\User Shell Folders"
POLICY !!CustomFolders_Programs
PART !!CustomFolders_ProgramsPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_ProgramsDefault
VALUENAME "Programs"
END PART
END POLICY
POLICY
!!CustomFolders_Desktop
PART !!CustomFolders_DesktopPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_DesktopDefault
VALUENAME
"Desktop"
END PART
END POLICY
POLICY !!HideStartMenuSubfolders
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
VALUENAME NoStartMenuSubFolders
PART !!HideStartMenuSubfolders_Tip1 TEXT END PART
PART !!HideStartMenuSubfolders_Tip2 TEXT END PART
END POLICY
POLICY
!!CustomFolders_Startup
PART !!CustomFolders_StartupPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_StartupDefault
VALUENAME
"Startup"
END PART
END POLICY
POLICY !!CustomFolders_NetHood
PART !!CustomFolders_NetHoodPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_NetHoodDefault
VALUENAME "NetHood"
END PART
END POLICY
POLICY !!CustomFolders_StartMenu
PART
!!CustomFolders_StartMenuPath
EDITTEXT REQUIRED EXPANDABLETEXT
DEFAULT !!CustomFolders_StartMenuDefault
VALUENAME "Start Menu"
END PART
END POLICY
END CATEGORY
CATEGORY !!Restrictions
KEYNAME Software\Microsoft\Windows\CurrentVersion\
Policies\Explorer
POLICY !!ApprovedShellExt
VALUENAME
"EnforceShellExtensionSecurity"
END POLICY
POLICY !!NoCommonGroups
VALUENAME "NoCommonGroups"
END POLICY
END CATEGORY
END
CATEGORY ; Shell
CATEGORY !!System
POLICY !!Parse_Autoexec
KEYNAME "Software\Microsoft\Windows NT\CurrentVersion\Winlogon"
VALUENAME ParseAutoexec
VALUEON "1" VALUEOFF "0"
PART
!!Parse_Tip1 TEXT END PART
PART !!Parse_Tip2 TEXT END PART
END POLICY
POLICY !!Run_Logon_Script_Sync
KEYNAME "Software\Microsoft\Windows NT\CurrentVersion\Winlogon"
VALUENAME RunLogonScriptSync
VALUEOFF NUMERIC 0
PART !!Script_Tip1 TEXT END PART
PART !!Script_Tip2 TEXT END PART
PART !!Script_Tip3 TEXT END
PART
END POLICY
END CATEGORY
[strings]
Network="Windows NT Network"
Sharing="Sharing"
WorkstationShareAutoCreate="Create hidden drive shares (workstation)"
ServerShareAutoCreate="Create hidden drive shares
(server)"
ShareWks_Tip1=Automatically create <drive letter>$ and Admin$ shares
ShareWks_Tip2=when Windows NT Workstation starts.
ShareServer_Tip1=Automatically create <drive letter>$ and Admin$ shares
ShareServer_Tip2=when Windows NT
Server starts.
System="Windows NT System"
Login_Policies="Logon"
LogonBanner="Logon banner"
LogonBanner_Caption="Caption"
LogonBanner_Text="Text"
LogonBanner_DefCaption="Important Notice:"
LogonBanner_DefText="Do not attempt to log on unless you are an authorized user."
Shutdown_Restrict="Enable shutdown from Authentication dialog box"
Shutd_Tip1="When this box is checked, you can click Shut Down"
Shutd_Tip2="in the Authentication dialog box to select options."
Shutd_Tip3="Default: NT Server = Off, NT Workstation = On"
LastUserName_Restrict="Do not display last logged on user name"
Dont_Display_Tip1="When this
box is checked, Windows NT does not"
Dont_Display_Tip2="automatically display the user name of the last person"
Dont_Display_Tip3="to log on in the Authentication dialog box."
Printers="Windows NT Printers"
PrintManager_Browser_Restrict="Disable browse thread on this computer"
Disable_Server_Tip1="When this box is checked, the print spooler does not"
Disable_Server_Tip2="send shared printer information to other print
servers."
Scheduler_Thread_Priority="Scheduler priority"
Scheduler_Priority="Priority"
Thread_Priority_Above_Normal="Scheduler priority above normal"
Thread_Priority_Below_Normal="Scheduler priority below
normal"
Thread_Priority_Normal="Scheduler priority normal"
Beep_Enabled="Beep for error enabled"
Beep_Tip1="A check in this box enables beeping (every 10 seconds) when a remote"
Beep_Tip2="job error occurs on a
print server."
RemoteAccess="Windows NT Remote Access"
MaximumRetries="Max number of unsuccessful authentication retries"
RAS_Length="Number of retries"
MaximumTime="Max time limit for authentication"
RAS_Time="Length in seconds"
CallBackTime="Wait interval for callback"
INT_Time="Length in seconds"
Auto_Disconnect="Auto Disconnect"
Autodisconnect_Time="Disconnect after (minutes)"
UserProfiles="Windows NT User Profiles"
DeleteRoamingCachedProfiles="Delete cached copies of roaming profiles"
DeleteCache_Tip1="When users with roaming profiles log off,"
DeleteCache_Tip2="delete the locally cached
profile (to save disk space)."
EnableSlowLinkDetect="Automatically detect slow network connections"
SlowLinkTimeOut="Slow network connection timeout"
SlowLinkWaitInterval="Time (milliseconds)"
ProfileDlgTimeOut="Timeout for dialog boxes"
ProfileDlgWaitInterval="Time (seconds)"
Parse_Autoexec="Parse Autoexec.bat"
Parse_Tip1="When this box is checked, environment variables declared"
Parse_Tip2="in
autoexec.bat are included in the users environment."
Shell="Windows NT Shell"
CustomFolders="Custom folders"
CustomFolders_Programs="Custom Programs folder"
CustomFolders_ProgramsPath="Path to location of
Programs items"
CustomFolders_ProgramsDefault="%USERPROFILE%\Start Menu\Programs"
CustomFolders_Desktop="Custom desktop icons"
CustomFolders_DesktopPath="Path to location of desktop icons"
CustomFolders_DesktopDefault="%USERPROFILE%\Desktop"
HideStartMenuSubfolders="Hide Start menu subfolders"
HideStartMenuSubfolders_Tip1="Check this if you use a custom Programs folder"
HideStartMenuSubfolders_Tip2="or
custom desktop icons."
CustomFolders_Startup="Custom Startup folder"
CustomFolders_StartupPath="Path to location of Startup items"
CustomFolders_StartupDefault="%USERPROFILE%\Start Menu\Programs\Startup"
CustomFolders_NetHood="Custom Network Neighborhood"
CustomFolders_NetHoodPath="Path to location of Network Neighborhood items"
CustomFolders_NetHoodDefault="%USERPROFILE%\NetHood"
CustomFolders_StartMenu="Custom
Start menu"
CustomFolders_StartMenuPath="Path to location of Start menu items"
CustomFolders_StartMenuDefault="%USERPROFILE%\Start Menu"
CustomSharedFolders="Custom shared folders"
CustomFolders_SharedPrograms="Custom shared Programs folder"
CustomFolders_SharedProgramsPath="Path to location of shared Programs items"
CustomFolders_SharedProgramsDefault="%SystemRoot%\Profiles\All Users\Start
Menu\Programs"
CustomFolders_SharedDesktop="Custom shared desktop icons"
CustomFolders_SharedDesktopPath="Path to location of shared desktop icons"
CustomFolders_SharedDesktopDefault="%SystemRoot%\Profiles\All
Users\Desktop"
CustomFolders_SharedStartMenu="Custom shared Start menu"
CustomFolders_SharedStartMenuPath="Path to location of shared Start menu items"
CustomFolders_SharedStartMenuDefault="%SystemRoot%\Profiles\All
Users\Start Menu"
CustomFolders_SharedStartup="Custom shared Startup folder"
CustomFolders_SharedStartupPath="Path to location of shared Startup items"
CustomFolders_SharedStartupDefault="%SystemRoot%\Profiles\All
Users\Start Menu\Programs\Startup"
Restrictions="Restrictions"
ApprovedShellExt="Only use approved shell extensions"
NoCommonGroups="Remove common program groups from Start menu"
FileSystem="File system"
Disable8dot3Names="Do not create 8.3 file names for long file names"
AllowExtCharsIn8dot3="Allow extended characters in 8.3 file names"
ExtChars_Tip1="Short file names with extended characters may not be viewable"
ExtChars_Tip2="on computers that do not have same character code page."
DisableLastUpdate="Do not update last access time"
LastAccess_Tip1="For files that are only being read, do not update the last"
LastAccess_Tip2="access time. This will increase the file system's performance."
Run_Logon_Script_Sync="Run logon scripts synchronously."
Script_Tip1="Wait for the logon scripts to complete before starting"
Script_Tip2="the users's shell. If this value is also set in the"
Script_Tip3="Computer section, that value takes precedence."
Script_Tip4="User section, this value takes precedence."
The policies in ADMIN.ADM are for use in Windows 95. Most of the entries in ADMIN.ADM are associated with user functions because that is where most of the benefit comes in creating policies for Windows 95. Listing 29.3 shows the entire contents of ADMIN.ADM.
CLASS MACHINE
CATEGORY !!Network
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Network
CATEGORY !!AccessControl
POLICY !!AccessControl_User
KEYNAME System\CurrentControlSet\Services\VxD\FILESEC
VALUENAME Start
VALUEON NUMERIC 0 VALUEOFF DELETE
ACTIONLISTON
KEYNAME System\CurrentControlSet\Services\VxD\FILESEC
VALUENAME StaticVxD VALUE filesec.vxd
END ACTIONLISTON
ACTIONLISTOFF
KEYNAME Security\Provider
VALUENAME Platform_Type VALUE NUMERIC 0
KEYNAME System\CurrentControlSet\Services\VxD\FILESEC
VALUENAME StaticVxD VALUE DELETE
KEYNAME
System\CurrentControlSet\Services\VxD\NWSP
VALUENAME Start VALUE DELETE
VALUENAME StaticVxD VALUE DELETE
KEYNAME System\CurrentControlSet\Services\VxD\MSSP
VALUENAME Start VALUE DELETE
VALUENAME StaticVxD VALUE DELETE
END ACTIONLISTOFF
PART !!AuthenticatorName EDITTEXT
KEYNAME Security\Provider
VALUENAME Container
END PART
PART !!AuthenticatorType DROPDOWNLIST
KEYNAME Security\Provider
VALUENAME Platform_Type REQUIRED
ITEMLIST
NAME !!AT_NetWare VALUE NUMERIC 3
ACTIONLIST
KEYNAME System\CurrentControlSet\Services\VxD\NWSP
VALUENAME StaticVxD VALUE nwsp.vxd
VALUENAME Start VALUE NUMERIC 0
KEYNAME Security\Provider
VALUENAME Address_Book VALUE nwab32.dll
END ACTIONLIST
NAME !!AT_NTAS VALUE NUMERIC 2
ACTIONLIST
KEYNAME System\CurrentControlSet\Services\VxD\MSSP
VALUENAME StaticVxD VALUE mssp.vxd
VALUENAME Start VALUE NUMERIC 0
KEYNAME Security\Provider
VALUENAME Address_Book VALUE msab32.dll
END ACTIONLIST
NAME !!AT_NT VALUE NUMERIC 1
ACTIONLIST
KEYNAME
System\CurrentControlSet\Services\VxD\MSSP
VALUENAME StaticVxD VALUE mssp.vxd
VALUENAME Start VALUE NUMERIC 0
KEYNAME Security\Provider
VALUENAME Address_Book
VALUE msab32.dll
END ACTIONLIST
END ITEMLIST
END PART
END POLICY
END CATEGORY ; User-Level Security
CATEGORY !!Logon
POLICY !!LogonBanner
KEYNAME
Software\Microsoft\Windows\CurrentVersion\Winlogon
PART !!LogonBanner_Caption EDITTEXT
VALUENAME "LegalNoticeCaption"
MAXLEN 255
DEFAULT !!LogonBanner_DefCaption
END PART
PART !!LogonBanner_Text EDITTEXT
VALUENAME "LegalNoticeText"
MAXLEN 255
DEFAULT !!LogonBanner_DefText
END PART
END POLICY
POLICY !!ValidatedLogon
KEYNAME Network\Logon
VALUENAME "MustBeValidated"
END POLICY
END CATEGORY
CATEGORY !!NWClient
KEYNAME System\CurrentControlSet\Services\VxD\NWREDIR
POLICY !!PrefServer
KEYNAME
System\CurrentControlSet\Services\NWNP32\NetworkProvider
PART !!PrefServerName EDITTEXT REQUIRED
VALUENAME "AuthenticatingAgent"
MAXLEN 48
END PART
END POLICY
POLICY
!!SupportLFN
PART !!SupportLFNsOn DROPDOWNLIST REQUIRED
VALUENAME "SupportLFN"
ITEMLIST
NAME !!LFN_No311 VALUE NUMERIC 1
NAME !!LFN_All VALUE NUMERIC 2
END ITEMLIST
END PART
END POLICY
POLICY !!SearchMode
PART !!SearchMode1 NUMERIC
VALUENAME SearchMode
MIN 0 MAX 7 DEFAULT 0
END PART
END POLICY
POLICY
!!DisableAutoNWLogin
KEYNAME System\CurrentControlSet\Services\NWNP32\NetworkProvider
VALUENAME DisableDefaultPasswords
END POLICY
END CATEGORY ; Microsoft Netware-Compatible Network
CATEGORY !!MSClient
POLICY !!LogonDomain
KEYNAME Network\Logon
VALUENAME "LMLogon"
PART !!DomainName EDITTEXT REQUIRED
MAXLEN 15
KEYNAME System\CurrentControlSet\Services\MSNP32\NetworkProvider
VALUENAME AuthenticatingAgent
END PART
PART !!DomainLogonConfirmation CHECKBOX
KEYNAME Network\Logon
VALUENAME DomainLogonMessage
END PART
PART !!NoDomainPwdCaching CHECKBOX
KEYNAME Network\Logon
VALUENAME NoDomainPwdCaching
END PART
END POLICY
POLICY !!Workgroup
KEYNAME System\CurrentControlSet\Services\VxD\VNETSUP
PART !!WorkgroupName EDITTEXT REQUIRED
VALUENAME "Workgroup"
MAXLEN 15
END PART
END POLICY
POLICY !!AlternateWorkgroup
KEYNAME System\CurrentControlSet\Services\VxD\VREDIR
PART !!WorkgroupName EDITTEXT REQUIRED
VALUENAME "Workgroup"
MAXLEN 15
END PART
END POLICY
END CATEGORY ; Microsoft Network
CATEGORY !!NWServer
POLICY !!DisableSAP
KEYNAME
System\CurrentControlSet\Services\NcpServer\Parameters
VALUENAME Use_Sap
VALUEON "0" VALUEOFF "1"
ACTIONLISTON
KEYNAME System\CurrentControlSet\Services\NcpServer\
Parameters\Ndi\Params\Use_Sap
VALUENAME "" VALUE "0"
END ACTIONLISTON
ACTIONLISTOFF
KEYNAME System\CurrentControlSet\Services\NcpServer\Parameters\Ndi\Params\Use_Sap
VALUENAME "" VALUE "1"
END ACTIONLISTOFF
END POLICY
END CATEGORY
CATEGORY !!Passwords
POLICY !!HideSharePasswords
VALUENAME "HideSharePwds"
END POLICY
POLICY
!!DisablePasswordCaching
VALUENAME "DisablePwdCaching"
END POLICY
POLICY !!RequireAlphaNum
VALUENAME "AlphanumPwds"
END POLICY
POLICY !!MinimumPwdLen
PART !!MPL_Length
NUMERIC REQUIRED
MIN 1 MAX 8 DEFAULT 3
VALUENAME MinPwdLen
END PART
END POLICY
END CATEGORY ; Passwords
CATEGORY !!RemoteAccess
POLICY !!RemoteAccess_Disable
VALUENAME
"NoDialIn"
END POLICY
END CATEGORY ; Remote Access
CATEGORY !!Sharing
POLICY !!DisableFileSharing
VALUENAME "NoFileSharing"
END POLICY
POLICY !!DisablePrintSharing
VALUENAME "NoPrintSharing"
END POLICY
END CATEGORY
CATEGORY !!SNMP
POLICY !!Communities
KEYNAME System\CurrentControlSet\Services\SNMP\
Parameters\ValidCommunities
PART !!CommunitiesListbox LISTBOX
VALUEPREFIX ""
END PART
END POLICY
POLICY !!PermittedManagers
KEYNAME System\CurrentControlSet\Services\SNMP\Parameters\
PermittedManagers
PART !!PermittedManagersListbox LISTBOX
VALUEPREFIX ""
END PART
END POLICY
POLICY !!Traps_Public
KEYNAME System\CurrentControlSet\Services\SNMP\Parameters\
TrapConfiguration\Public
PART !!Traps_PublicListbox LISTBOX
VALUEPREFIX ""
END PART
END POLICY
POLICY !!InternetMIB
KEYNAME System\CurrentControlSet\Services\SNMP\Parameters\RFC1156Agent
PART !!ContactName EDITTEXT REQUIRED
VALUENAME
sysContact
END PART
PART !!Location EDITTEXT REQUIRED
VALUENAME sysLocation
END PART
END POLICY
END CATEGORY
CATEGORY !!Update
POLICY !!RemoteUpdate
KEYNAME
System\CurrentControlSet\Control\Update
ACTIONLISTOFF
VALUENAME "UpdateMode" VALUE NUMERIC 0
END ACTIONLISTOFF
PART !!UpdateMode DROPDOWNLIST REQUIRED
VALUENAME "UpdateMode"
ITEMLIST
NAME !!UM_Automatic VALUE NUMERIC 1
NAME !!UM_Manual VALUE NUMERIC 2
END ITEMLIST
END PART
PART !!UM_Manual_Path EDITTEXT
VALUENAME "NetworkPath"
END PART
PART !!DisplayErrors CHECKBOX
VALUENAME "Verbose"
END PART
PART !!LoadBalance CHECKBOX
VALUENAME "LoadBalance"
END PART
END POLICY
END
CATEGORY ; Update
END CATEGORY ; Network
CATEGORY !!System
KEYNAME Software\Microsoft\Windows\CurrentVersion\Setup
POLICY !!EnableUserProfiles
KEYNAME Network\Logon
VALUENAME UserProfiles
END POLICY
POLICY
!!NetworkSetupPath
PART !!NetworkSetupPath_Path EDITTEXT REQUIRED
VALUENAME "SourcePath"
END PART
END POLICY
POLICY !!NetworkTourPath
PART !!NetworkTourPath_Path EDITTEXT REQUIRED
VALUENAME
"TourPath"
END PART
PART !!NetworkTourPath_
TIP TEXT END PART
END POLICY
POLICY !!Run
KEYNAME Software\Microsoft\Windows\CurrentVersion\Run
PART !!RunListbox LISTBOX EXPLICITVALUE
END
PART
END POLICY
POLICY !!RunOnce
KEYNAME Software\Microsoft\Windows\CurrentVersion\RunOnce
PART !!RunOnceListbox LISTBOX EXPLICITVALUE
END PART
END POLICY
POLICY !!RunServices
KEYNAME
Software\Microsoft\Windows\CurrentVersion\RunServices
PART !!RunServicesListbox LISTBOX EXPLICITVALUE
END PART
END POLICY
END CATEGORY
CLASS USER
CATEGORY !!ControlPanel
CATEGORY !!CPL_Display
POLICY
!!CPL_Display_Restrict
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\System
PART !!CPL_Display_Disable CHECKBOX
VALUENAME NoDispCPL
END PART
PART !!CPL_Display_HideBkgnd CHECKBOX
VALUENAME NoDispBackgroundPage
END PART
PART !!CPL_Display_HideScrsav CHECKBOX
VALUENAME NoDispScrSavPage
END PART
PART !!CPL_Display_HideAppearance CHECKBOX
VALUENAME
NoDispAppearancePage
END PART
PART !!CPL_Display_HideSettings CHECKBOX
VALUENAME NoDispSettingsPage
END PART
END POLICY
END CATEGORY ; Display
CATEGORY !!CPL_Network
POLICY
!!CPL_Network_Restrict
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Network
PART !!CPL_Network_Disable CHECKBOX
VALUENAME NoNetSetup
END PART
PART !!CPL_Network_HideID CHECKBOX
VALUENAME NoNetSetupIDPage
END PART
PART !!CPL_Network_HideAccessCtrl CHECKBOX
VALUENAME NoNetSetupSecurityPage
END PART
END POLICY
END CATEGORY ; Network
CATEGORY !!CPL_Security
POLICY !!CPL_Security_Restrict
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\System
PART !!CPL_Security_Disable CHECKBOX
VALUENAME NoSecCPL
END PART
PART !!CPL_Security_HideSetPwds
CHECKBOX
VALUENAME NoPwdPage
END PART
PART !!CPL_Security_HideRemoteAdmin CHECKBOX
VALUENAME NoAdminPage
END PART
PART !!CPL_Security_HideProfiles CHECKBOX
VALUENAME
NoProfilePage
END PART
END POLICY
END CATEGORY ; Security
CATEGORY !!CPL_Printers
POLICY !!CPL_Printers_Restrict
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
PART
!!CPL_Printers_HidePages CHECKBOX
VALUENAME NoPrinterTabs
END PART
PART !!CPL_Printers_DisableRemoval CHECKBOX
VALUENAME NoDeletePrinter
END PART
PART !!CPL_Printers_DisableAdd
CHECKBOX
VALUENAME NoAddPrinter
END PART
END POLICY
END CATEGORY ; Printers
CATEGORY !!CPL_System
POLICY !!CPL_System_Restrict
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\System
PART !!CPL_System_HideDevMgr CHECKBOX
VALUENAME NoDevMgrPage
END PART
PART !!CPL_System_HideConfig CHECKBOX
VALUENAME NoConfigPage
END PART
PART !!CPL_System_NoFileSys CHECKBOX
VALUENAME NoFileSysPage
END PART
PART !!CPL_System_NoVirtMem CHECKBOX
VALUENAME NoVirtMemPage
END PART
END POLICY
END CATEGORY ; System
END CATEGORY ; Control Panel
CATEGORY !!Desktop
KEYNAME "Control Panel\Desktop"
POLICY !!Wallpaper
PART !!WallpaperName COMBOBOX REQUIRED
SUGGESTIONS
!!Wallpaper1 !!Wallpaper2 !!Wallpaper3 !!Wallpaper4 !!Wallpaper5
!!Wallpaper6 !!Wallpaper7
!!Wallpaper8 !!Wallpaper9 !!Wallpaper10
END SUGGESTIONS
VALUENAME "Wallpaper"
END PART
PART !!TileWallpaper CHECKBOX DEFCHECKED
VALUENAME "TileWallpaper"
VALUEON "1"
VALUEOFF "0"
END PART
END POLICY
POLICY !!ColorScheme
PART !!SchemeName DROPDOWNLIST
KEYNAME "Control Panel\Appearance"
VALUENAME Current REQUIRED
ITEMLIST
NAME !!Lavender
VALUE !!Lavender
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "174 168 217"
VALUENAME ActiveTitle VALUE "128 128 128"
VALUENAME AppWorkspace VALUE "90 78 177"
VALUENAME Background VALUE "128 128 192"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "174 168
217"
VALUENAME ButtonHilight VALUE "216 213 236"
VALUENAME ButtonLight VALUE "174 168 217"
VALUENAME ButtonShadow VALUE "90 78 177"
VALUENAME
ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "90 78 177"
VALUENAME Hilight VALUE "128 128 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "174 168 217"
VALUENAME InactiveTitle VALUE "90 78 177"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "174
168 217"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "174 168 217"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar
VALUE "174 168 217"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Tan256 VALUE !!Tan256
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE
"202 184 149"
VALUENAME ActiveTitle VALUE "0 0 0"
VALUENAME AppWorkspace VALUE "156 129 78"
VALUENAME Background VALUE "128 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "202 184 149"
VALUENAME ButtonHilight VALUE "228 220 203"
VALUENAME ButtonLight VALUE "202
184 149"
VALUENAME ButtonShadow VALUE "156 129 78"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "156 129 78"
VALUENAME
Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "202 184 149"
VALUENAME InactiveTitle VALUE "156 129 78"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "202 184 149"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "202 184
149"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "202 184 149"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window
VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Wheat256 VALUE !!Wheat256
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "215 213 170"
VALUENAME ActiveTitle VALUE "0 0 0"
VALUENAME AppWorkspace VALUE
"173 169 82"
VALUENAME Background VALUE "0 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "215 213 170"
VALUENAME
ButtonHilight VALUE "235 234 214"
VALUENAME ButtonLight VALUE "215 213 170"
VALUENAME ButtonShadow VALUE "173 169 82"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "173 169 82"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "215 213
170"
VALUENAME InactiveTitle VALUE "173 169 82"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "215 213 170"
VALUENAME
MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "215 213 170"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "215 213 170"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0
0"
END ACTIONLIST
NAME !!Celery VALUE !!Celery
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "168 215 170"
VALUENAME ActiveTitle VALUE "0 0 0"
VALUENAME AppWorkspace VALUE "80 175 85"
VALUENAME Background VALUE "32 18 46"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "168 215 170"
VALUENAME ButtonHilight VALUE "211 235 213"
VALUENAME ButtonLight VALUE "168 215 170"
VALUENAME ButtonShadow VALUE
"85 175 85"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "80 175 85"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME
HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "168 215 170"
VALUENAME InactiveTitle VALUE "80 175 75"
VALUENAME InactiveTitleText VALUE "0 0
0"
VALUENAME Menu VALUE "168 215 170"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "168 215 170"
VALUENAME InfoWindow
VALUE "0 0 0"
VALUENAME Scrollbar VALUE "168 215 170"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Rose VALUE !!Rose
ACTIONLIST
KEYNAME "Control
Panel\Colors"
VALUENAME ActiveBorder VALUE "207 175 183"
VALUENAME ActiveTitle VALUE "128 128 128"
VALUENAME AppWorkspace VALUE "159 96 112"
VALUENAME Background VALUE "128 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "207 175 183"
VALUENAME ButtonHilight VALUE "231 216
220"
VALUENAME ButtonLight VALUE "207 175 183"
VALUENAME ButtonShadow VALUE "159 96 112"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText
VALUE "159 96 112"
VALUENAME Hilight VALUE "128 128 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "207 175 183"
VALUENAME InactiveTitle VALUE "159 96 112"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "207 175 183"
VALUENAME MenuText VALUE "0 0
0"
VALUENAME InfoText VALUE "207 175 183"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "207 175 183"
VALUENAME TitleText
VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END
ACTIONLIST
NAME !!Evergreen VALUE !!Evergreen
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "47 151 109"
VALUENAME ActiveTitle
VALUE "0 0 0"
VALUENAME AppWorkspace VALUE "31 101 73"
VALUENAME Background VALUE "48 63 48"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME
ButtonFace VALUE "47 151 109"
VALUENAME ButtonHilight VALUE "137 218 186"
VALUENAME ButtonLight VALUE "47 151 109"
VALUENAME ButtonShadow VALUE "31 101
73"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "31 101 73"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText
VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "47 151 109"
VALUENAME InactiveTitle VALUE "31 101 73"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "47 151 109"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "47 151 109"
VALUENAME InfoWindow VALUE "0 0
0"
VALUENAME Scrollbar VALUE "47 151 109"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME
WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Blues VALUE !!Blues
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "161 198 221"
VALUENAME ActiveTitle VALUE "0 0 0"
VALUENAME AppWorkspace VALUE "69 139 186"
VALUENAME Background VALUE "0 0
64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "164 198 221"
VALUENAME ButtonHilight VALUE "210 227 238"
VALUENAME
ButtonLight VALUE "164 198 221"
VALUENAME ButtonShadow VALUE "69 139 186"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "69 139 186"
VALUENAME Hilight VALUE "0 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "164 198 221"
VALUENAME InactiveTitle VALUE "69 139
186"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "164 198 221"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText
VALUE "164 198 221"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "164 198 221"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Teal VALUE !!Teal
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "0 128 128"
VALUENAME AppWorkspace
VALUE "128 128 128"
VALUENAME Background VALUE "0 64 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow VALUE "128 128 128"
VALUENAME ButtonText VALUE
"0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "0 128 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192
192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar
VALUE "192 192 192"
VALUENAME TitleText VALUE "0 0 0"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!TheReds VALUE !!TheReds
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE
"192 192 192"
VALUENAME ActiveTitle VALUE "128 0 0"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "64 0 0"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192
192 192"
VALUENAME ButtonShadow VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME
Hilight VALUE "128 0 0"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192
192"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText
VALUE "192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!WindowsDefault VALUE
!!WindowsDefault
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "0 0 128"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "0 128 128"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192
192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow VALUE "128 128 128"
VALUENAME
ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "0 0 128"
VALUENAME HilightText VALUE "255 255 255"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192
192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar
VALUE "192 192 192"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!BlueAndBlack VALUE !!BlueAndBlack
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder
VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "0 0 0"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "0 0 128"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255 255"
VALUENAME ButtonLight VALUE "192
192 192"
VALUENAME ButtonShadow VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME GrayText VALUE "128 128 128"
VALUENAME
Hilight VALUE "255 255 0"
VALUENAME HilightText VALUE "0 0 0"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0 0"
VALUENAME InfoText VALUE "192 192
192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText VALUE "255 255 255"
VALUENAME Window
VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
NAME !!Wheat VALUE !!Wheat
ACTIONLIST
KEYNAME "Control Panel\Colors"
VALUENAME ActiveBorder VALUE "192 192 192"
VALUENAME ActiveTitle VALUE "128 128 0"
VALUENAME AppWorkspace VALUE "128 128 128"
VALUENAME Background VALUE "128 128 64"
VALUENAME ButtonDkShadow VALUE "0 0 0"
VALUENAME ButtonFace VALUE "192 192 192"
VALUENAME ButtonHilight VALUE "255 255
255"
VALUENAME ButtonLight VALUE "192 192 192"
VALUENAME ButtonShadow VALUE "128 128 128"
VALUENAME ButtonText VALUE "0 0 0"
VALUENAME
GrayText VALUE "128 128 128"
VALUENAME Hilight VALUE "128 128 0"
VALUENAME HilightText VALUE "0 0 0"
VALUENAME InactiveBorder VALUE "192 192 192"
VALUENAME InactiveTitle VALUE "192 192 192"
VALUENAME InactiveTitleText VALUE "0 0 0"
VALUENAME Menu VALUE "192 192 192"
VALUENAME MenuText VALUE "0 0
0"
VALUENAME InfoText VALUE "192 192 192"
VALUENAME InfoWindow VALUE "0 0 0"
VALUENAME Scrollbar VALUE "192 192 192"
VALUENAME TitleText
VALUE "0 0 0"
VALUENAME Window VALUE "255 255 255"
VALUENAME WindowFrame VALUE "0 0 0"
VALUENAME WindowText VALUE "0 0 0"
END ACTIONLIST
END ITEMLIST
END PART
END POLICY
END CATEGORY ; desktop
CATEGORY !!Network
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Network
CATEGORY !!Sharing
POLICY !!DisableFileSharingCtrl
VALUENAME
NoFileSharingControl
END POLICY
POLICY !!DisablePrintSharingCtrl
VALUENAME NoPrintSharingControl
END POLICY
END CATEGORY ; Sharing
END CATEGORY ; Network
CATEGORY !!Shell
KEYNAME
"Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders"
CATEGORY !!CustomFolders
POLICY !!CustomFolders_Programs
PART !!CustomFolders_ProgramsPath EDITTEXT REQUIRED
VALUENAME
"Programs"
END PART
END POLICY
POLICY !!CustomFolders_Desktop
PART !!CustomFolders_DesktopPath EDITTEXT REQUIRED
VALUENAME "Desktop"
END PART
END POLICY
POLICY !!HideStartMenuSubfolders
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
VALUENAME NoStartMenuSubFolders
PART !!HideStartMenuSubfolders_Tip1 TEXT END PART
PART
!!HideStartMenuSubfolders_Tip2 TEXT END PART
END POLICY
POLICY !!CustomFolders_Startup
PART !!CustomFolders_StartupPath EDITTEXT REQUIRED
VALUENAME "Startup"
END PART
END POLICY
PART !!CustomFolders_NetHoodPath EDITTEXT REQUIRED
VALUENAME "NetHood"
END PART
END POLICY
POLICY !!CustomFolders_StartMenu
PART !!CustomFolders_StartMenuPath EDITTEXT REQUIRED
VALUENAME "Start Menu"
END PART
END POLICY
END CATEGORY
CATEGORY !!Restrictions
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
POLICY !!RemoveRun
VALUENAME
"NoRun"
END POLICY
POLICY !!RemoveFolders
VALUENAME "NoSetFolders"
END POLICY
POLICY !!RemoveTaskbar
VALUENAME "NoSetTaskbar"
END POLICY
POLICY !!RemoveFind
VALUENAME "NoFind"
END POLICY
POLICY !!HideDrives
VALUENAME "NoDrives"
VALUEON NUMERIC 67108863 ; low 26 bits on (1 bit per drive)
END
POLICY
POLICY !!HideNetHood
VALUENAME "NoNetHood"
END POLICY
POLICY !!NoEntireNetwork
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\
Network
VALUENAME "NoEntireNetwork"
END POLICY
POLICY !!NoWorkgroupContents
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\
Network
VALUENAME "NoWorkgroupContents"
END POLICY
POLICY !!HideDesktop
VALUENAME "NoDesktop"
END POLICY
POLICY !!DisableClose
VALUENAME "NoClose"
END POLICY
POLICY !!NoSaveSettings
VALUENAME "NoSaveSettings"
END POLICY
END CATEGORY
END CATEGORY ; Shell
CATEGORY !!System
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\System
CATEGORY !!Restrictions
POLICY !!DisableRegedit
VALUENAME DisableRegistryTools
END POLICY
POLICY !!RestrictApps
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
VALUENAME RestrictRun
PART !!RestrictAppsList LISTBOX
KEYNAME
Software\Microsoft\Windows\CurrentVersion\Policies\
Explorer\RestrictRun
VALUEPREFIX ""
END PART
END POLICY
POLICY !!DisableMSDOS
KEYNAME
Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp
VALUENAME Disabled
END POLICY
POLICY !!DisableSingleMSDOS
KEYNAME Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp
VALUENAME NoRealMode
END POLICY
END CATEGORY
END CATEGORY
[strings]
System="System"
NetworkSetupPath="Network path for Windows Setup"
NetworkSetupPath_Path="Path:"
NetworkTourPath="Network path for Windows Tour"
NetworkTourPath_Path="Path:"
NetworkTourPath_Tip="Note: the path must end in TOUR.EXE"
EnableUserProfiles="Enable User Profiles"
Network="Network"
Logon="Logon"
LogonBanner="Logon Banner"
LogonBanner_Caption="Caption:"
LogonBanner_Text="Text:"
LogonBanner_DefCaption="Important Notice:"
LogonBanner_DefText="Do not attempt to log on unless you are an authorized user."
ValidatedLogon="Require
Validation by Network for Windows Access"
Sharing="Sharing"
DisableFileSharing="Disable file sharing"
DisablePrintSharing="Disable print sharing"
AccessControl="Access Control"
AccessControl_User="User-level Access Control"
AuthenticatorName="Authenticator Name:"
AuthenticatorType="Authenticator Type:"
AT_NetWare="NetWare 3.x or 4.x"
AT_NT="Windows NT Server or Workstation"
AT_NTAS="Windows NT Domain"
Passwords="Passwords"
HideSharePasswords="Hide share passwords with asterisks"
DisablePasswordCaching="Disable password caching"
RequireAlphaNum="Require alphanumeric Windows
password"
MinimumPwdLen="Minimum Windows password length"
MPL_Length="Length:"
RemoteAccess="Dial-Up Networking"
RemoteAccess_Disable="Disable dial-in"
Update="Update"
RemoteUpdate="Remote
Update"
UpdateMode="Update Mode:"
UM_Automatic="Automatic (use default path)"
UM_Manual="Manual (use specific path)"
UM_Manual_Path="Path for manual update:"
DisplayErrors="Display error messages"
LoadBalance="Load-balance"
MSClient="Microsoft Client for Windows Networks"
NWServer="File and printer sharing for NetWare Networks"
LogonDomain="Log on to Windows NT"
DomainName="Domain name:"
Workgroup="Workgroup"
AlternateWorkgroup="Alternate Workgroup"
WorkgroupName="Workgroup name:"
NWClient="Microsoft Client for NetWare Networks"
PrefServer="Preferred server"
PrefServerName="Server
name:"
SupportLFN="Support long file names"
SupportLFNsOn="Support long file names on:"
LFN_No311="NetWare 3.12 and above"
LFN_All="All NetWare servers that support LFNs"
SearchMode="Search Mode"
SearchMode1="Search Mode:"
DisableAutoNWLogin="Disable Automatic NetWare Login"
DisableSAP="Disable SAP Advertising"
ControlPanel="Control Panel"
CPL_Display="Display"
CPL_Display_Restrict="Restrict Display Control Panel"
CPL_Display_Disable="Disable Display Control Panel"
CPL_Display_HideBkgnd="Hide Background page"
CPL_Display_HideScrsav="Hide Screen Saver page"
CPL_Display_HideAppearance="Hide Appearance page"
CPL_Display_HideSettings="Hide Settings page"
CPL_Network="Network"
CPL_Network_Restrict="Restrict Network Control Panel"
CPL_Network_Disable="Disable
Network Control Panel"
CPL_Network_HideID="Hide Identification Page"
CPL_Network_HideAccessCtrl="Hide Access Control Page"
CPL_Printers="Printers"
CPL_Printers_Restrict="Restrict Printer Settings"
CPL_Printers_HidePages="Hide General and Details pages"
CPL_Printers_DisableRemoval="Disable Deletion of Printers"
CPL_Printers_DisableAdd="Disable Addition of Printers"
CPL_System="System"
CPL_System_Restrict="Restrict System Control Panel"
CPL_System_HideDevMgr="Hide Device Manager page"
CPL_System_HideConfig="Hide Hardware Profiles Page"
CPL_System_NoFileSys="Hide File System button"
CPL_System_NoVirtMem="Hide Virtual Memory button"
CPL_Security="Passwords"
CPL_Security_Restrict="Restrict Passwords Control Panel"
CPL_Security_Disable="Disable Passwords Control Panel"
CPL_Security_HideSetPwds="Hide Change Passwords page"
CPL_Security_HideRemoteAdmin="Hide Remote Administration page"
CPL_Security_HideProfiles="Hide User Profiles page"
Desktop="Desktop"
Wallpaper="Wallpaper"
WallpaperName="Wallpaper name:"
Wallpaper1="Black Thatch.bmp"
Wallpaper2="Blue Rivets.bmp"
Wallpaper3="Bubbles.bmp"
Wallpaper4="Circles.bmp"
Wallpaper5="Egypt.bmp"
Wallpaper6="Houndstooth.bmp"
Wallpaper7="Pinstripe.bmp"
Wallpaper8="Straw Mat.bmp"
Wallpaper9="Tiles.bmp"
Wallpaper10="Triangles.bmp"
TileWallpaper="Tile
wallpaper"
ColorScheme="Color scheme"
SchemeName="Scheme name:"
Lavender="Lavender 256"
Celery="Celery 256"
Rose="Rose 256"
Evergreen="Evergreen 256"
Blues="Blues 256"
WindowsDefault="Windows Default"
BlueAndBlack="Blue and Black"
Teal="Teal"
TheReds="The Reds"
Wheat="Wheat"
Wheat256="Wheat 256"
Tan256="Tan 256"
DisableFileSharingCtrl="Disable file sharing controls"
DisablePrintSharingCtrl="Disable print sharing controls"
Shell="Shell"
CustomFolders="Custom Folders"
CustomFolders_Programs="Custom Programs
Folder"
CustomFolders_ProgramsPath="Path to get Programs items from:"
CustomFolders_Desktop="Custom Desktop Icons"
CustomFolders_DesktopPath="Path to get Desktop icons from:"
HideStartMenuSubfolders="Hide Start
Menu subfolders"
HideStartMenuSubfolders_Tip1="Check this if you use a custom Programs Folder or"
HideStartMenuSubfolders_Tip2="custom Desktop icons."
CustomFolders_Startup="Custom Startup Folder"
CustomFolders_StartupPath="Path to get Startup items from:"
CustomFolders_NetHood="Custom Network Neighborhood"
CustomFolders_NetHoodPath="Path to get Network Neighborhood items from:"
CustomFolders_StartMenu="Custom
Start Menu"
CustomFolders_StartMenuPath="Path to get Start Menu items from:"
Restrictions="Restrictions"
RemoveRun="Remove `Run' command"
RemoveFolders="Remove folders from `Settings' on Start Menu"
RemoveTaskbar="Remove Taskbar from `Settings' on Start Menu"
RemoveFind="Remove `Find' command"
HideDrives="Hide Drives in `My Computer'"
HideNetHood="Hide Network Neighborhood"
HideDesktop="Hide all items
on Desktop"
DisableClose="Disable Shut Down command"
NoSaveSettings="Don't save settings at exit"
DisableRegedit="Disable Registry editing tools"
DisableMSDOS="Disable MS-DOS prompt"
DisableSingleMSDOS="Disable single-mode MS-DOS applications"
Run="Run"
RunOnce="Run Once"
RunServices="Run Services"
RunListbox="Items to run at startup:"
RunOnceListbox="Items to run once at
startup:"
RunServicesListbox="Services to run at startup:"
SNMP="SNMP"
Communities="Communities"
CommunitiesListbox="Communities:"
PermittedManagers="Permitted managers"
PermittedManagersListbox="Permitted managers:"
Traps_Public="Traps for `Public' community"
Traps_PublicListbox="Trap configuration:"
NoEntireNetwork="No `Entire Network' in Network Neighborhood"
NoWorkgroupContents="No workgroup contents in Network Neighborhood"
RestrictApps="Only run allowed Windows applications"
RestrictAppsList="List of allowed applications:"
DomainLogonConfirmation="Display domain logon
confirmation"
InternetMIB="Internet MIB (RFC1156)"
ContactName="Contact Name:"
Location="Location:"
NoDomainPwdCaching="Disable caching of domain password"
Template files give you the settings possible for the policy. Windows NT System Policy Editor allows you to use multiple template files, and modify the current files, or even to add your own (see Chapter 34, "Creating Custom Policies"). Its capability to use multiple template files makes the System Policy Editor stand out in its ease of use and performance. Understanding what changes you want to make and the effect those changes will have is critical; otherwise, you may damage the systems, and the troubleshooting may be difficult.
© Copyright, Macmillan Computer Publishing. All rights reserved.