home *** CD-ROM | disk | FTP | other *** search
/ PC World 2005 December (Special) / PCWorld_2005-12_Special_cd.bin / Windows / trikyxp / trikyxp.exe / scesp4i.exe / mssce.cab / sceregvl.inf < prev    next >
Encoding:
Windows Setup INFormation  |  1998-09-30  |  5.8 KB  |  91 lines
  1. ; (c) Microsoft Corporation 1997-2000
  2. ;
  3. ; Security Configuration Template for Security Configuration Editor
  4. ;
  5. ; Template Name:     SCEReg.INF
  6. ; Template Version:    05.00.DR.0000
  7. ;
  8. ; SCE Registry Information Template For Windows NT 5.0 W,S,DC
  9. ; Used to register Display Values for UI
  10. ;
  11. ; Revision History
  12. ; 0000    -    Initial Defs from Securing Windows NT Installations whitepaper
  13.  
  14.  
  15. ; Please DO NOT EDIT version section.
  16. ;
  17. [version]
  18. signature="$CHICAGO$"
  19.  
  20. ;----------------------------------------------------------------
  21. ;Registry Value Information
  22. ;----------------------------------------------------------------
  23. [Register Registry Values]
  24. ; First field: Registry value name in full path with / as the delimiter
  25. ; Second field: value type
  26. ;        ; REG_SZ                      ( 1 )
  27. ;        ; REG_EXPAND_SZ               ( 2 )  // with environment variables to expand
  28. ;        ; REG_BINARY                  ( 3 )
  29. ;        ; REG_DWORD                   ( 4 )
  30. ;        ; REG_MULTI_SZ                ( 7 )
  31. ; third field: Display Name (localizable string),
  32. ; fourth field: Display type 0 - boolean, 1 - number, 2 - string, 3 - choices
  33.  
  34. MACHINE/System/CurrentControlSet/Control/Lsa/AuditBaseObjects, 4, %AuditBaseObjects%, 0
  35. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/AllocateCDRoms, 1, %AllocateCDRoms%, 0
  36. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/AllocateFloppies, 1, %AllocateFloppies%, 0
  37. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/CachedLogonsCount, 1, %CachedLogonsCount%, 1
  38. MACHINE/System/CurrentControlSet/Control/Session Manager/Memory Management/ClearPageFileAtShutdown, 4, %ClearPageFileAtShutdown%, 0
  39. MACHINE/System/CurrentControlSet/Control/Lsa/CrashOnAuditFail, 4, %CrashOnAuditFail%, 0
  40. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/DontDisplayLastUserName, 1, %DontDisplayLastUserName%, 0
  41. MACHINE/System/CurrentControlSet/Control/Lsa/FullPrivilegeAuditing,3,%FullPrivilegeAuditing%, 0
  42. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/LegalNoticeCaption, 1, %LegalNoticeCaption%, 2
  43. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/LegalNoticeText, 1, %LegalNoticeText%, 2
  44. MACHINE/System/CurrentControlSet/Control/Lsa/LmCompatibilityLevel,4, %LmCompatibilityLevel%, 3
  45. MACHINE/System/CurrentControlSet/Control/Session Manager/ProtectionMode, 4, %ProtectionMode%, 0
  46. MACHINE/System/CurrentControlSet/Control/Lsa/RestrictAnonymous,4,%RestrictAnonymous%, 0
  47. MACHINE/Software/Microsoft/Windows NT/CurrentVersion/Winlogon/ShutdownWithoutLogon,1,%ShutdownWithoutLogon%, 0
  48. MACHINE/System/CurrentControlSet/Services/Netlogon/Parameters/SignSecureChannel,4,%SignSecureChannel%, 0
  49. MACHINE/System/CurrentControlSet/Services/Netlogon/Parameters/SealSecureChannel,4,%SealSecureChannel%, 0
  50. MACHINE/System/CurrentControlSet/Services/Netlogon/Parameters/RequireSignOrSeal,4,%SignOrSeal%, 0
  51. MACHINE/System/CurrentControlSet/Services/LanManServer/Parameters/EnableSecuritySignature,4,%EnableSMBSignServer%, 0
  52. MACHINE/System/CurrentControlSet/Services/LanManServer/Parameters/RequireSecuritySignature,4,%RequireSMBSignServer%, 0
  53. MACHINE/System/CurrentControlSet/Services/Rdr/Parameters/EnableSecuritySignature,4,%EnableSMBSignRdr%, 0
  54. MACHINE/System/CurrentControlSet/Services/Rdr/Parameters/RequireSecuritySignature,4,%RequireSMBSignRdr%, 0
  55. MACHINE/System/CurrentControlSet/Services/LanManServer/Parameters/EnableForcedLogOff,4,%EnableForcedLogoff%, 0
  56. MACHINE/System/CurrentControlSet/Services/LanManServer/Parameters/AutoDisconnect,4,%AutoDisconnect%, 1
  57. MACHINE/System/CurrentControlSet/Services/Rdr/Parameters/EnablePlainTextPassword,4,%EnablePlainTextPassword%, 0
  58. MACHINE/System/CurrentControlSet/Control/Lsa/SubmitControl,4,%SubmitControl%, 0
  59. MACHINE/System/CurrentControlSet/Control/Print/Providers/LanMan Print Services/AddPrintDrivers,4,%AddPrintDrivers%, 0
  60.  
  61.  
  62.  
  63. [Strings]
  64.  
  65. SubmitControl = Allow Server Operators to schedule tasks (Domain Controllers Only)
  66. ShutdownWithoutLogon = Allow system to be shutdown without having to log on
  67. AuditBaseObjects = Audit access to internal system objects
  68. FullPrivilegeAuditing = Audit use of all user rights including Backup and Restore
  69. EnableForcedLogoff = AutoDisconnect: Allow sessions to be disconnected when they are idle
  70. AutoDisconnect = AutoDisconnect: Amount of idle time required before disconnecting session
  71. ClearPageFileAtShutdown = Clear virtual memory pagefile when system shuts down
  72. RequireSMBSignRdr = Digitally sign client-side communication always
  73. EnableSMBSignRdr = Digitally sign client-side communication when possible
  74. RequireSMBSignServer = Digitally sign server-side communication always
  75. EnableSMBSignServer = Digitally sign server-side communication when possible
  76. RestrictAnonymous = Disallow enumeration of account names and shares by anonymous users
  77. DontDisplayLastUserName = Do not display last username in logon screen
  78. LegalNoticeText = Message text for users attempting to log on
  79. LegalNoticeCaption = Message title for users attempting to log on
  80. CachedLogonsCount = Number of previous logons to cache in case Domain Controller not available
  81. AddPrintDrivers = Prevent users from installing print drivers
  82. AllocateCDRoms = Restrict CD ROM access to locally logged on user only
  83. AllocateFloppies = Restrict Floppy access to locally logged on user only
  84. ProtectionMode = Restrict management of shared resources such as Com1
  85. SignOrSeal = Secure Channel: Digitally encrypt or sign secure channel data always
  86. SealSecureChannel = Secure Channel: Digitally encrypt secure channel data when possible
  87. SignSecureChannel = Secure Channel: Digitally sign secure channel data when possible
  88. CrashOnAuditFail = Shutdown system immediately if unable to log security audits
  89. LmCompatibilityLevel = Send downlevel LanMan compatible password
  90. EnablePlainTextPassword = Send unencrypted password in order to connect to 3rd Party SMB servers.
  91.