Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
Ugrad User Group Policy
Data collected on: 2/27/2013 3:05:33 PM
General
Details
Domainphas.ubc.ca
OwnerPHAS\Domain Admins
Created8/30/2006 9:20:24 AM
Modified2/26/2013 4:22:10 PM
User Revisions98 (AD), 98 (sysvol)
Computer Revisions14 (AD), 14 (sysvol)
Unique ID{D4140769-CE6B-49ED-BAE2-C9F06A9E1373}
GPO StatusEnabled
Links
LocationEnforcedLink StatusPath
UgradsNoEnabledphas.ubc.ca/User Accounts/Ugrads

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
PHAS\Ugrads
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
PHAS\Domain AdminsEdit settings, delete, modify securityNo
PHAS\Enterprise AdminsEdit settings, delete, modify securityNo
PHAS\UgradsRead (from Security Filtering)No
Computer Configuration (Enabled)
Policies
Windows Settings
Security Settings
Local Policies/User Rights Assignment
PolicySetting
Load and unload device driversPHAS\Domain Users, NT AUTHORITY\Authenticated Users, BUILTIN\Administrators
Local Policies/Security Options
Interactive Logon
PolicySetting
Interactive logon: Do not display last user nameEnabled
Administrative Templates
Policy definitions (ADMX files) retrieved from the local machine.
System/User Profiles
PolicySettingComment
Add the Administrators security group to roaming user profilesEnabled
Extra Registry Settings
Display names for some settings cannot be found. You might be able to resolve this issue by updating the .ADM files used by Group Policy Management.

SettingState
SYSTEM\CurrentControlSet\Services\USBSTOR\Start3
User Configuration (Enabled)
Policies
Windows Settings
Security Settings
Software Restriction Policies
Enforcement
PolicySetting
Apply software restriction policies to the followingAll software files except libraries (such as DLLs)
Apply software restriction policies to the following usersAll users
When applying software restriction policiesIgnore certificate rules
Designated File Types
File ExtensionFile Type
ADEMicrosoft Access Project Extension
ADPMicrosoft Access Project
BASBAS File
BATWindows Batch File
CHMCompiled HTML Help file
CMDWindows Command Script
COMMS-DOS Application
CPLControl panel item
CRTSecurity Certificate
EXEApplication
HLPHelp file
HTAHTML Application
INFSetup Information
INSINS File
ISPISP File
LNKShortcut
MDBMicrosoft Access Database
MDEMicrosoft Access MDE Database
MSCMicrosoft Common Console Document
MSIWindows Installer Package
MSPWindows Installer Patch
MSTMST File
OCXActiveX control
PCDPCD File
PIFShortcut to MS-DOS Program
REGRegistration Entries
SCRScreen saver
SHSSHS File
URLInternet Shortcut
VBVisual Basic Source file
WSCWindows Script Component
Trusted Publishers
Trusted publisher managementAllow all administrators and users to manage user's own Trusted Publishers
Certificate verificationNone
Software Restriction Policies/Security Levels
PolicySetting
Default Security LevelUnrestricted
Software Restriction Policies/Additional Rules
Path Rules
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%
Security LevelUnrestricted
Description
Date last modified8/10/2006 12:58:03 PM
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%\*.exe
Security LevelUnrestricted
Description
Date last modified8/10/2006 12:58:03 PM
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%\System32\*.exe
Security LevelUnrestricted
Description
Date last modified8/10/2006 12:58:03 PM
%HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir%
Security LevelUnrestricted
Description
Date last modified8/10/2006 12:58:03 PM
Folder Redirection
AppData(Roaming)
Setting: Not configured
Desktop
Setting: Basic (Redirect everyone's folder to the same location)
Path: c:\progs\Desktop
Options
Grant user exclusive rights to DesktopDisabled
Move the contents of Desktop to the new locationDisabled
Also apply redirection policy to Windows 2000, Windows 2000 server, Windows XP, and Windows Server 2003 operating systemsEnabled
Policy Removal BehaviorRestore contents
Documents
Setting: Not configured
Music
Setting: Not configured
Pictures
Setting: Not configured
Start Menu
Setting: Basic (Redirect everyone's folder to the same location)
Path: c:\progs
Options
Grant user exclusive rights to Start MenuDisabled
Move the contents of Start Menu to the new locationDisabled
Also apply redirection policy to Windows 2000, Windows 2000 server, Windows XP, and Windows Server 2003 operating systemsEnabled
Policy Removal BehaviorLeave contents
Videos
Setting: Not configured
Internet Explorer Maintenance (Preference Mode)
URLs/Important URLs
NameURL
Home page URLhttp://www.phas.ubc.ca
Search bar URLNot configured
Online support page URLNot configured
Security/Security Zones and Content Ratings
Security Zones and Privacy (Enhanced Security Configuration Enabled)
These settings will only apply to users when they log on to computers that have the Internet Explorer Enhanced Security Configuration enabled.
Internet (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeDisable
Run components signed with AuthenticodeDisable
ActiveX controls and plug-ins
Download signed ActiveX controlsDisable
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insDisable
Script ActiveX controls marked safe for scriptingDisable
Downloads
File downloadDisable
Font downloadDisable
Microsoft VM
Java permissionsDisable Java
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHDisable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesDisable
Installation of desktop itemsDisable
Launching applications and unsafe filesDisable
Launching programs and files in an IFRAMEDisable
Navigate sub-frames across different domainsDisable
Software channel permissionsHigh safety
Submit nonencrypted form dataEnable
Userdata persistenceDisable
Scripting
Active scriptingDisable
Allow paste operations via scriptDisable
Scripting of Java appletsDisable
User Authentication
LogonPrompt for user name and password
Local intranet (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsMedium safety
Miscellaneous
Access data sources across domainsPrompt
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsEnable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesEnable
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsEnable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptEnable
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Sites
Require server verification (https:) for all sites in this zoneDisabled
Include all local (intranet) sites not listed in other zonesDisabled
Include all sites that bypass the proxy serverDisabled
Include all network paths (UNCs)Disabled
Sites in this zone
hcp:////system/
http://localhost/
https://localhost/
Trusted sites (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsHigh safety
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesPrompt
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsEnable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptEnable
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Sites
Require server verification (https:) for all sites in this zoneDisabled
Sites in this zone
about://*.security_mmc.exe/
http://*.ubc.ca/
http://*.update.microsoft.com/
http://*.windowsupdate.com/
http://*.windowsupdate.microsoft.com/
http://downloadfinder.intel.com/
http://downloadmirror.intel.com/
http://go.microsoft.com/
http://msdn.microsoft.com/
http://mysearch.intel.com/
http://oca.microsoft.com/
http://search.it.ubc.ca/
http://support.intel.com/
http://support.microsoft.com/
http://technet.microsoft.com/
http://windowsupdate.microsoft.com/
http://www.intel.com/
http://www.it.ubc.ca/
http://www.microsoft.com/
http://www.ubc.ca/
http://www.webct.com/
https://*.update.microsoft.com/
https://*.windowsupdate.microsoft.com/
https://my.ubc.ca/
https://oca.microsoft.com/
https://windowsupdate.microsoft.com/
Restricted sites (Security Level: Custom)
.NET Framework-reliant components
Run components not signed with AuthenticodeDisable
Run components signed with AuthenticodeDisable
ActiveX controls and plug-ins
Download signed ActiveX controlsDisable
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insDisable
Script ActiveX controls marked safe for scriptingDisable
Downloads
File downloadDisable
Font downloadPrompt
Microsoft VM
Java permissionsDisable Java
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHDisable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesPrompt
Installation of desktop itemsDisable
Launching applications and unsafe filesDisable
Launching programs and files in an IFRAMEDisable
Navigate sub-frames across different domainsDisable
Software channel permissionsHigh safety
Submit nonencrypted form dataPrompt
Userdata persistenceDisable
Scripting
Active scriptingDisable
Allow paste operations via scriptDisable
Scripting of Java appletsDisable
User Authentication
LogonPrompt for user name and password
Sites
Sites in this zone
None
Privacy
Privacy LevelMedium
Web Sites
Always allowNone
Always blockNone
Programs/Programs
PolicySetting
Import the current program settingsEnabled
HTML EditorMicrosoft Office Word
E-mailMicrosoft Outlook
NewsgroupsOutlook Express
Internet CallMicrosoft NetMeeting
CalendarMicrosoft Outlook
Contact ListMicrosoft Outlook
Internet Explorer should check to see whether it is the default browserDisabled
Administrative Templates
Policy definitions (ADMX files) retrieved from the local machine.
Control Panel
PolicySettingComment
Prohibit access to the Control PanelEnabled
Control Panel/Add or Remove Programs
PolicySettingComment
Remove Add or Remove ProgramsEnabled
Control Panel/Display
PolicySettingComment
Disable the Display Control PanelEnabled
Hide Settings tabEnabled
Control Panel/Personalization
PolicySettingComment
Enable screen saverDisabled
Force a specific visual style file or force Windows ClassicEnabled
Path to Visual Style:
To select Aero type:
%windir%\resources\Themes\Aero\aero.msstyles
To select a different visual style, type:
ie: \\<server>\share\Corp.msstyles
To select Windows Classic, leave the box
above blank and enable this setting
PolicySettingComment
Password protect the screen saverDisabled
Prevent changing desktop backgroundEnabled
Prevent changing desktop iconsEnabled
Prevent changing screen saverEnabled
Prevent changing window color and appearanceEnabled
Screen saver timeoutDisabled
Control Panel/Printers
PolicySettingComment
Browse the network to find printersDisabled
Prevent addition of printersEnabled
Control Panel/Regional and Language Options
PolicySettingComment
Restrict selection of Windows menus and dialogs languageEnabled
Restrict users to the following language:English
Desktop
PolicySettingComment
Don't save settings at exitEnabled
Hide Internet Explorer icon on desktopEnabled
Hide Network Locations icon on desktopEnabled
Prevent adding, dragging, dropping and closing the Taskbar's toolbarsEnabled
Prohibit adjusting desktop toolbarsEnabled
Remove My Documents icon on the desktopEnabled
Remove Properties from the Computer icon context menuEnabled
Remove Properties from the Documents icon context menuEnabled
Remove the Desktop Cleanup WizardEnabled
Desktop/Desktop
PolicySettingComment
Disable Active DesktopEnabled
Disallows HTML and Jpg Wallpaper
PolicySettingComment
Prohibit adding itemsEnabled
Prohibit changesEnabled
Prohibit closing itemsEnabled
Prohibit deleting itemsEnabled
Prohibit editing itemsEnabled
Network/Network Connections
PolicySettingComment
Prohibit access to properties of a LAN connectionEnabled
Prohibit access to properties of components of a LAN connectionEnabled
Prohibit access to properties of components of a remote access connectionEnabled
Prohibit access to the Advanced Settings item on the Advanced menuEnabled
Prohibit access to the New Connection WizardEnabled
Prohibit access to the Remote Access Preferences item on the Advanced menuEnabled
Prohibit adding and removing components for a LAN or remote access connectionEnabled
Prohibit changing properties of a private remote access connectionEnabled
Prohibit connecting and disconnecting a remote access connectionEnabled
Prohibit deletion of remote access connectionsEnabled
Prohibit Enabling/Disabling components of a LAN connectionEnabled
Prohibit renaming private remote access connectionsEnabled
Prohibit TCP/IP advanced configurationEnabled
Network/Offline Files
PolicySettingComment
Prevent use of Offline Files folderEnabled
Prohibit user configuration of Offline FilesEnabled
Prevents users from changing any cache configuration settings.
PolicySettingComment
Remove 'Make Available Offline'Enabled
Synchronize all offline files before logging offDisabled
Synchronize all offline files when logging onDisabled
Synchronize offline files before suspendDisabled
Start Menu and Taskbar
PolicySettingComment
Add Logoff to the Start MenuEnabled
Clear history of recently opened documents on exitEnabled
Do not display any custom toolbars in the taskbarEnabled
Do not keep history of recently opened documentsEnabled
Force classic Start MenuEnabled
Gray unavailable Windows Installer programs Start Menu shortcutsEnabled
Hide the notification areaEnabled
Lock the TaskbarEnabled
Prevent changes to Taskbar and Start Menu SettingsEnabled
Remove access to the context menus for the taskbarEnabled
Remove and prevent access to the Shut Down, Restart, Sleep, and Hibernate commandsEnabled
Remove Balloon Tips on Start Menu itemsEnabled
Remove Clock from the system notification areaDisabled
Remove common program groups from Start MenuEnabled
Remove Default Programs link from the Start menu.Enabled
Remove Documents icon from Start MenuEnabled
Remove drag-and-drop and context menus on the Start MenuEnabled
Remove Favorites menu from Start MenuEnabled
Remove frequent programs list from the Start MenuEnabled
Remove Help menu from Start MenuEnabled
Remove links and access to Windows UpdateEnabled
Remove Music icon from Start MenuEnabled
Remove Network Connections from Start MenuEnabled
Remove Network icon from Start MenuEnabled
Remove Pictures icon from Start MenuEnabled
Remove pinned programs list from the Start MenuEnabled
Remove programs on Settings menuEnabled
Remove Recent Items menu from Start MenuEnabled
Remove Run menu from Start MenuEnabled
Remove Search Computer linkEnabled
Remove Search link from Start MenuEnabled
Remove the "Undock PC" button from the Start MenuEnabled
Turn off personalized menusEnabled
System
PolicySettingComment
Don't display the Getting Started welcome screen at logonEnabled
Don't run specified Windows applicationsEnabled
List of disallowed applications
bitcomet
bitcomet.exe
msimn.exe
outlook.exe
PolicySettingComment
Prevent access to registry editing toolsEnabled
Disable regedit from running silently?No
PolicySettingComment
Prevent access to the command promptEnabled
Disable the command prompt script processing also?No
System/Ctrl+Alt+Del Options
PolicySettingComment
Remove Change PasswordEnabled
Remove Lock ComputerEnabled
Remove Task ManagerEnabled
System/Folder Redirection
PolicySettingComment
Do not automatically make redirected folders available offlineEnabled
System/Internet Communication Management/Internet Communication settings
PolicySettingComment
Turn off Internet download for Web publishing and online ordering wizardsEnabled
Turn off the "Order Prints" picture taskEnabled
Turn off the "Publish to Web" task for files and foldersEnabled
System/Scripts
PolicySettingComment
Run logon scripts synchronouslyEnabled
System/User Profiles
PolicySettingComment
Exclude directories in roaming profileEnabled
Prevent the following directories from roaming with the profile:My Pictures;Application Data;Cookies;Favorites;History;NetHood;Recent;SendTo;Temporary Internet Files;Temp;Templates;Desktop; My Documents
You can enter multiple directory names, semi-colon separated,
all relative to the root of the user's profile
PolicySettingComment
Limit profile sizeEnabled
Custom MessageYou have exceeded your profile storage space. Before you can log off, you need to move some items from your profile to network or local storage.
Max Profile size (KB)50000
Show registry files in the file listDisabled
Notify user when profile storage space is exceeded.Enabled
Remind user every X minutes:15
Windows Components/AutoPlay Policies
PolicySettingComment
Turn off AutoplayEnabled
Turn off Autoplay on:CD-ROM and removable media drives
Windows Components/Internet Explorer
PolicySettingComment
Disable changing accessibility settingsEnabled
Disable changing Advanced page settingsEnabled
Disable changing Automatic Configuration settingsEnabled
Disable changing Calendar and Contact settingsEnabled
Disable changing certificate settingsEnabled
Disable changing color settingsEnabled
Disable changing connection settingsEnabled
Disable changing default browser checkEnabled
Disable changing font settingsEnabled
Disable changing home page settingsEnabled
Home Page 
PolicySettingComment
Disable changing language settingsEnabled
Disable changing link color settingsEnabled
Disable changing Messaging settingsEnabled
Disable changing Profile Assistant settingsEnabled
Disable changing proxy settingsEnabled
Disable changing ratings settingsEnabled
Disable changing Temporary Internet files settingsEnabled
Disable the Reset Web Settings featureEnabled
Do not allow users to enable or disable add-onsEnabled
Windows Components/Internet Explorer/Browser menus
PolicySettingComment
Disable Context menuEnabled
Disable Open in New Window menu optionEnabled
Disable Save this program to disk optionEnabled
File menu: Disable New menu optionEnabled
File menu: Disable Open menu optionEnabled
File menu: Disable Save As Web Page CompleteEnabled
File menu: Disable Save As... menu optionEnabled
Help menu: Remove 'For Netscape Users' menu optionEnabled
Help menu: Remove 'Send Feedback' menu optionEnabled
Help menu: Remove 'Tip of the Day' menu optionEnabled
Help menu: Remove 'Tour' menu optionEnabled
Hide Favorites menuEnabled
Tools menu: Disable Internet Options... menu optionEnabled
View menu: Disable Source menu optionEnabled
Windows Components/Internet Explorer/Delete Browsing History
PolicySettingComment
Disable "Configuring History"Enabled
Days to keep pages in History 
Windows Components/Internet Explorer/Internet Control Panel
PolicySettingComment
Disable the Advanced pageEnabled
Disable the Connections pageEnabled
Disable the Content pageEnabled
Disable the General pageEnabled
Disable the Privacy pageEnabled
Disable the Programs pageEnabled
Disable the Security pageEnabled
Windows Components/Internet Explorer/Internet Control Panel/Advanced Page
PolicySettingComment
Empty Temporary Internet Files folder when browser is closedEnabled
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Internet Zone
PolicySettingComment
Java permissionsEnabled
Java permissionsHigh safety
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsPrompt
Windows Components/Internet Explorer/Offline Pages
PolicySettingComment
Disable adding channelsEnabled
Disable adding schedules for offline pagesEnabled
Disable all scheduled offline pagesEnabled
Disable channel user interface completelyEnabled
Disable downloading of site subscription contentEnabled
Disable editing and creating of schedule groupsEnabled
Disable editing schedules for offline pagesEnabled
Disable offline page hit loggingEnabled
Disable removing channelsEnabled
Disable removing schedules for offline pagesEnabled
Windows Components/Internet Explorer/Security Features/Add-on Management
PolicySettingComment
Deny all add-ons unless specifically allowed in the Add-on ListEnabled
Windows Components/Internet Explorer/Toolbars
PolicySettingComment
Configure Toolbar ButtonsEnabled
Show Back buttonEnabled
Show Forward buttonEnabled
Show Stop buttonEnabled
Show Refresh buttonEnabled
Show Home buttonEnabled
Show Search buttonDisabled
Show Favorites buttonDisabled
Show History buttonDisabled
Show Folders buttonDisabled
Show Fullscreen buttonDisabled
Show Tools buttonDisabled
Show Mail buttonDisabled
Show Font size buttonDisabled
Show Print buttonEnabled
Show Edit buttonDisabled
Show Discussions buttonDisabled
Show Cut buttonEnabled
Show Copy buttonEnabled
Show Paste buttonEnabled
Show Encoding buttonDisabled
PolicySettingComment
Disable customizing browser toolbar buttonsEnabled
Disable customizing browser toolbarsEnabled
Windows Components/Microsoft Management Console
PolicySettingComment
Restrict the user from entering author modeEnabled
Restrict users to the explicitly permitted list of snap-insEnabled
Windows Components/NetMeeting
PolicySettingComment
Disable ChatEnabled
Disable Directory servicesEnabled
Disable NetMeeting 2.x WhiteboardEnabled
Disable WhiteboardEnabled
Prevent adding Directory serversEnabled
Prevent viewing Web directoryEnabled
Windows Components/Task Scheduler
PolicySettingComment
Hide Advanced Properties Checkbox in Add Scheduled Task WizardEnabled
Hide Property PagesEnabled
Prevent Task Run or EndEnabled
Prohibit BrowseEnabled
Prohibit Drag-and-DropEnabled
Prohibit New Task CreationEnabled
Prohibit Task DeletionEnabled
Windows Components/Windows Explorer
PolicySettingComment
Display confirmation dialog when deleting filesEnabled
Do not move deleted files to the Recycle BinEnabled
Hide these specified drives in My ComputerEnabled
Pick one of the following combinationsRestrict C drive only
PolicySettingComment
Hides the Manage item on the Windows Explorer context menuEnabled
Maximum allowed Recycle Bin sizeEnabled
Value represents percentage of hard disk that can be used (0 - 100).
Maximum Recycle Bin size: 1
PolicySettingComment
Prevent access to drives from My ComputerEnabled
Pick one of the following combinationsRestrict C drive only
PolicySettingComment
Remove "Map Network Drive" and "Disconnect Network Drive"Enabled
Remove CD Burning featuresEnabled
Remove DFS tabEnabled
Remove File menu from Windows ExplorerEnabled
Remove Hardware tabEnabled
Remove Search button from Windows ExplorerEnabled
Remove Security tabEnabled
Remove Shared Documents from My ComputerEnabled
Remove UI to change keyboard navigation indicator settingEnabled
Remove UI to change menu animation settingEnabled
Removes the Folder Options menu item from the Tools menuEnabled
Turn off caching of thumbnail picturesEnabled
Turn off Windows+X hotkeysEnabled
Turn on Classic ShellEnabled
Windows Components/Windows Explorer/Common Open File Dialog
PolicySettingComment
Hide the common dialog back buttonEnabled
Hide the common dialog places barEnabled
Hide the dropdown list of recent filesEnabled
Items displayed in Places BarDisabled
Windows Components/Windows Installer
PolicySettingComment
Prevent removable media source for any installEnabled
Windows Components/Windows Messenger
PolicySettingComment
Do not allow Windows Messenger to be runEnabled
Do not automatically start Windows Messenger initiallyEnabled
Windows Components/Windows Update
PolicySettingComment
Remove access to use all Windows Update featuresEnabled
Configure notifications: 
Extra Registry Settings
Display names for some settings cannot be found. You might be able to resolve this issue by updating the .ADM files used by Group Policy Management.

SettingState
Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Btn_Media2
Software\Policies\Microsoft\PCHealth\HelpSvc\Headlines1