LGPO and system services

%3CLINGO-SUB%20id%3D%22lingo-sub-1358075%22%20slang%3D%22en-US%22%3ELGPO%20and%20system%20services%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1358075%22%20slang%3D%22en-US%22%3E%3CP%3ESo%20i'm%20probably%20missing%20something%20rudimentary%20here%2C%20that%20being%20said%2C%20my%20bing'fu%20is%20failing%20me.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHere%20is%20the%20scenario%3A%3CBR%20%2F%3EOffline%20Client%3C%2FP%3E%3CP%3EClean%20install%20of%20%3CSTRONG%3EWindows%2010%201909%20x64%20Enterprise%3C%2FSTRONG%3E%20En-US%3C%2FP%3E%3CP%3E%3CSTRONG%3ELGPO%202.2%3C%2FSTRONG%3E%20and%20a%20clean%20download%20of%20the%20Security%20baseline%20from%20security%20compliance%26nbsp%3B%20toolkit.%3C%2FP%3E%3CP%3E%3CBR%20%2F%3EExecuting%20the%20following%20as%20administrator%3CSTRONG%3E%3A%20BaselineLocalInstall.ps1%20-Win10NonDomainJoined%3C%2FSTRONG%3E%20and%20it%20looks%20ok%20from%20the%20output.%20Looking%20at%20the%20Baseinstall%20logfile%20nothing%20stands%20out.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ELooking%20at%20the%20result%2C%20registry%20settings%20are%20applied%20for%20user%20and%20computer%2C%20advanced%20audit%20policy%20applies%20fine%2C%20however%2C%20the%20security%20templates%20seems%20off.%3C%2FP%3E%3CP%3E%3CBR%20%2F%3EFor%20instance%2C%20none%20of%20the%20services%20configured%20in%20MSFT%20Windows%2010%201909%20-%20Computer%20GPO%20are%20applied.%3C%2FP%3E%3CP%3ERunning%20a%20gpresult%20%2Fh%20test.htm%20has%20no%20settings%20reported%20in%3A%3C%2FP%3E%3CP%3E%3CSTRONG%3ELocal%20Policies%2Fsecurity%20settings%2FSecurity%3C%2FSTRONG%3E%20%3CSTRONG%3EOptions%3C%2FSTRONG%3E%20or%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSTRONG%3ELocal%20Policies%2Fsecurity%20settings%2FUser%20Rights%20assignment%3C%2FSTRONG%3E%20but%20looking%20at%20secpol%20they%20seem%20applied.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Ec%3A%5Cwindows%5Csystem32%5Cgroup%20policy%5Csystem32%5CGroupPolicy%5CMachine%5CMicrosoft%5CWindows%20NT%5CSecPol%20is%20not%20there%20(while%20the%20Audit%20folder%20is).%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI've%20been%20trying%20to%20add%20for%20instance%20AppID.svc%20to%20start%20automatically%2C%20also%20tried%20with%20%2FS%20for%20a%20specific%20policy%20to%20configure%20just%20services%2C%20but%20it%20doesnt%20seem%20to%20fly.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnyone%20got%20some%20recommendations%20on%20what%20i%20need%20to%20read%20up%20on%3F%3C%2FP%3E%3CP%3EAm%20i%20missing%20something%20obvious%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20a%20bunch%2C%3C%2FP%3E%3CP%3ECheers%2C%20Trax%3C%2FP%3E%3C%2FLINGO-BODY%3E
New Contributor

So i'm probably missing something rudimentary here, that being said, my bing'fu is failing me.

 

Here is the scenario:
Offline Client

Clean install of Windows 10 1909 x64 Enterprise En-US

LGPO 2.2 and a clean download of the Security baseline from security compliance  toolkit.


Executing the following as administrator: BaselineLocalInstall.ps1 -Win10NonDomainJoined and it looks ok from the output. Looking at the Baseinstall logfile nothing stands out.

 

Looking at the result, registry settings are applied for user and computer, advanced audit policy applies fine, however, the security templates seems off.


For instance, none of the services configured in MSFT Windows 10 1909 - Computer GPO are applied.

Running a gpresult /h test.htm has no settings reported in:

Local Policies/security settings/Security Options or 

Local Policies/security settings/User Rights assignment but looking at secpol they seem applied.

 

c:\windows\system32\group policy\system32\GroupPolicy\Machine\Microsoft\Windows NT\SecPol is not there (while the Audit folder is).

 

I've been trying to add for instance AppID.svc to start automatically, also tried with /S for a specific policy to configure just services, but it doesnt seem to fly.

 

Anyone got some recommendations on what i need to read up on?

Am i missing something obvious?

 

Thanks a bunch,

Cheers, Trax

0 Replies
www.000webhost.com