API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 17th, 2024
169
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 12.93 KB | None | 0 0
raw download clone embed print report
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <SiPolicy xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" PolicyType="Base Policy" xmlns="urn:schemas-microsoft-com:sipolicy">
  3. <VersionEx>10.0.0.5</VersionEx>
  4. <PlatformID>{2E07F7E4-194C-4D20-B7C9-6F44A6C5A234}</PlatformID>
  5. <PolicyID>{C6990F81-CC77-4313-9D4A-8DD6103A7035}</PolicyID>
  6. <BasePolicyID>{C6990F81-CC77-4313-9D4A-8DD6103A7035}</BasePolicyID>
  7. <Rules>
  8. <Rule>
  9. <Option>Enabled:Unsigned System Integrity Policy</Option>
  10. </Rule>
  11. <Rule>
  12. <Option>Enabled:Advanced Boot Options Menu</Option>
  13. </Rule>
  14. <Rule>
  15. <Option>Enabled:UMCI</Option>
  16. </Rule>
  17. <Rule>
  18. <Option>Enabled:Inherit Default Policy</Option>
  19. </Rule>
  20. <Rule>
  21. <Option>Enabled:Update Policy No Reboot</Option>
  22. </Rule>
  23. <Rule>
  24. <Option>Enabled:Dynamic Code Security</Option>
  25. </Rule>
  26. <Rule>
  27. <Option>Enabled:Revoked Expired As Unsigned</Option>
  28. </Rule>
  29. <Rule>
  30. <Option>Enabled:Allow Supplemental Policies</Option>
  31. </Rule>
  32. <Rule>
  33. <Option>Required:Enforce Store Applications</Option>
  34. </Rule>
  35. <Rule>
  36. <Option>Enabled:Managed Installer</Option>
  37. </Rule>
  38. <Rule>
  39. <Option>Disabled:Runtime FilePath Rule Protection</Option>
  40. </Rule>
  41. </Rules>
  42. <EKUs>
  43. <EKU ID="ID_EKU_WINDOWS" Value="010A2B0601040182370A0306" FriendlyName="" />
  44. <EKU ID="ID_EKU_ELAM" Value="010A2B0601040182373D0401" FriendlyName="" />
  45. <EKU ID="ID_EKU_HAL_EXT" Value="010A2B0601040182373D0501" FriendlyName="" />
  46. <EKU ID="ID_EKU_WHQL" Value="010A2B0601040182370A0305" FriendlyName="" />
  47. <EKU ID="ID_EKU_STORE" Value="010A2B0601040182374C0301" FriendlyName="Windows Store EKU - 1.3.6.1.4.1.311.76.3.1 Windows Store" />
  48. <EKU ID="ID_EKU_RT_EXT" Value="010A2B0601040182370A0315" FriendlyName="" />
  49. <EKU ID="ID_EKU_DCODEGEN" Value="010A2B0601040182374C0501" FriendlyName="Dynamic Code Generation EKU - 1.3.6.1.4.1.311.76.5.1" />
  50. <EKU ID="ID_EKU_AM" Value="010A2B0601040182374C0B01" FriendlyName="AntiMalware EKU -1.3.6.1.4.1.311.76.11.1 " />
  51. </EKUs>
  52. <FileRules>
  53. <FileAttrib ID="ID_FILEATTRIB_REFRESH_POLICY_1_1" FriendlyName="RefreshPolicy.exe FileAttribute" FileName="RefreshPolicy.exe" MinimumFileVersion="10.0.19042.0" />
  54. <Allow ID="ID_ALLOW_PATH_0_0_1_3_0" FriendlyName="Allow by path: %OSDRIVE%\IT" FilePath="%OSDRIVE%\IT" />
  55. <Allow ID="ID_ALLOW_PATH_1_0_1_4_0" FriendlyName="Allow by path: %OSDRIVE%\Users\*\AppData\Local\tana\*" FilePath="%OSDRIVE%\Users\*\AppData\Local\tana\*" />
  56. <Allow ID="ID_ALLOW_PATH_2_0_1_5_0" FriendlyName="Allow by path: %OSDRIVE%\Users\*\AppData\Local\Programs\Vimcal\*" FilePath="%OSDRIVE%\Users\*\AppData\Local\Programs\Vimcal\*" />
  57. <Allow ID="ID_ALLOW_PATH_0_0_1_0_0" FriendlyName="Allow by path: %WINDIR%\*" FilePath="%WINDIR%\*" />
  58. <Allow ID="ID_ALLOW_PATH_1_0_1_0_0" FriendlyName="Allow by path: %OSDRIVE%\Program Files\*" FilePath="%OSDRIVE%\Program Files\*" />
  59. <Allow ID="ID_ALLOW_PATH_2_0_1_0_0" FriendlyName="Allow by path: %OSDRIVE%\Program Files (x86)\*" FilePath="%OSDRIVE%\Program Files (x86)\*" />
  60. </FileRules>
  61. <Signers>
  62. <Signer Name="Microsoft Product Root 2010 Windows EKU" ID="ID_SIGNER_WINDOWS_PRODUCTION_1_0">
  63. <CertRoot Type="Wellknown" Value="06" />
  64. <CertEKU ID="ID_EKU_WINDOWS" />
  65. </Signer>
  66. <Signer Name="Microsoft Product Root 2010 ELAM EKU" ID="ID_SIGNER_ELAM_PRODUCTION_1_1_0_0">
  67. <CertRoot Type="Wellknown" Value="06" />
  68. <CertEKU ID="ID_EKU_ELAM" />
  69. </Signer>
  70. <Signer Name="Microsoft Product Root 2010 HAL EKU" ID="ID_SIGNER_HAL_PRODUCTION_1_2_0_0">
  71. <CertRoot Type="Wellknown" Value="06" />
  72. <CertEKU ID="ID_EKU_HAL_EXT" />
  73. </Signer>
  74. <Signer Name="Microsoft Product Root 2010 WHQL EKU" ID="ID_SIGNER_WHQL_SHA2_1_3_0_0">
  75. <CertRoot Type="Wellknown" Value="06" />
  76. <CertEKU ID="ID_EKU_WHQL" />
  77. </Signer>
  78. <Signer Name="Microsoft Product Root WHQL EKU SHA1" ID="ID_SIGNER_WHQL_SHA1_1_4_0_0">
  79. <CertRoot Type="Wellknown" Value="05" />
  80. <CertEKU ID="ID_EKU_WHQL" />
  81. </Signer>
  82. <Signer Name="Microsoft Product Root WHQL EKU MD5" ID="ID_SIGNER_WHQL_MD5_1_5_0_0">
  83. <CertRoot Type="Wellknown" Value="04" />
  84. <CertEKU ID="ID_EKU_WHQL" />
  85. </Signer>
  86. <Signer Name="Microsoft Flighting Root 2014 Windows EKU" ID="ID_SIGNER_WINDOWS_FLIGHT_ROOT_1_6_0_0">
  87. <CertRoot Type="Wellknown" Value="0E" />
  88. <CertEKU ID="ID_EKU_WINDOWS" />
  89. </Signer>
  90. <Signer Name="Microsoft Flighting Root 2014 ELAM EKU" ID="ID_SIGNER_ELAM_FLIGHT_1_7_0_0">
  91. <CertRoot Type="Wellknown" Value="0E" />
  92. <CertEKU ID="ID_EKU_ELAM" />
  93. </Signer>
  94. <Signer Name="Microsoft Flighting Root 2014 HAL EKU" ID="ID_SIGNER_HAL_FLIGHT_1_8_0_0">
  95. <CertRoot Type="Wellknown" Value="0E" />
  96. <CertEKU ID="ID_EKU_HAL_EXT" />
  97. </Signer>
  98. <Signer Name="Microsoft Flighting Root 2014 WHQL EKU" ID="ID_SIGNER_WHQL_FLIGHT_SHA2_1_9_0_0">
  99. <CertRoot Type="Wellknown" Value="0E" />
  100. <CertEKU ID="ID_EKU_WHQL" />
  101. </Signer>
  102. <Signer Name="MincryptKnownRootMicrosoftTestRoot2010" ID="ID_SIGNER_TEST2010_1_10_0_0">
  103. <CertRoot Type="Wellknown" Value="0A" />
  104. </Signer>
  105. <Signer Name="Microsoft Product Root 2010 Windows EKU" ID="ID_SIGNER_WINDOWS_PRODUCTION_USER_1_11_0_0">
  106. <CertRoot Type="Wellknown" Value="06" />
  107. <CertEKU ID="ID_EKU_WINDOWS" />
  108. </Signer>
  109. <Signer Name="Microsoft Product Root 2010 ELAM EKU" ID="ID_SIGNER_ELAM_PRODUCTION_USER_1_12_0_0">
  110. <CertRoot Type="Wellknown" Value="06" />
  111. <CertEKU ID="ID_EKU_ELAM" />
  112. </Signer>
  113. <Signer Name="Microsoft Product Root 2010 HAL EKU" ID="ID_SIGNER_HAL_PRODUCTION_USER_1_13_0_0">
  114. <CertRoot Type="Wellknown" Value="06" />
  115. <CertEKU ID="ID_EKU_HAL_EXT" />
  116. </Signer>
  117. <Signer Name="Microsoft Product Root 2010 WHQL EKU" ID="ID_SIGNER_WHQL_SHA2_USER_1_14_0_0">
  118. <CertRoot Type="Wellknown" Value="06" />
  119. <CertEKU ID="ID_EKU_WHQL" />
  120. </Signer>
  121. <Signer Name="Microsoft Product Root WHQL EKU SHA1" ID="ID_SIGNER_WHQL_SHA1_USER_1_15_0_0">
  122. <CertRoot Type="Wellknown" Value="05" />
  123. <CertEKU ID="ID_EKU_WHQL" />
  124. </Signer>
  125. <Signer Name="Microsoft Product Root WHQL EKU MD5" ID="ID_SIGNER_WHQL_MD5_USER_1_16_0_0">
  126. <CertRoot Type="Wellknown" Value="04" />
  127. <CertEKU ID="ID_EKU_WHQL" />
  128. </Signer>
  129. <Signer Name="Microsoft Flighting Root 2014 Windows EKU" ID="ID_SIGNER_WINDOWS_FLIGHT_ROOT_USER_1_17_0_0">
  130. <CertRoot Type="Wellknown" Value="0E" />
  131. <CertEKU ID="ID_EKU_WINDOWS" />
  132. </Signer>
  133. <Signer Name="Microsoft Flighting Root 2014 ELAM EKU" ID="ID_SIGNER_ELAM_FLIGHT_USER_1_18_0_0">
  134. <CertRoot Type="Wellknown" Value="0E" />
  135. <CertEKU ID="ID_EKU_ELAM" />
  136. </Signer>
  137. <Signer Name="Microsoft Flighting Root 2014 HAL EKU" ID="ID_SIGNER_HAL_FLIGHT_USER_1_19_0_0">
  138. <CertRoot Type="Wellknown" Value="0E" />
  139. <CertEKU ID="ID_EKU_HAL_EXT" />
  140. </Signer>
  141. <Signer Name="Microsoft Flighting Root 2014 WHQL EKU" ID="ID_SIGNER_WHQL_FLIGHT_SHA2_USER_1_20_0_0">
  142. <CertRoot Type="Wellknown" Value="0E" />
  143. <CertEKU ID="ID_EKU_WHQL" />
  144. </Signer>
  145. <Signer Name="Microsoft MarketPlace PCA 2011" ID="ID_SIGNER_STORE_1_21_0_0">
  146. <CertRoot Type="TBS" Value="FC9EDE3DCCA09186B2D3BF9B738A2050CB1A554DA2DCADB55F3F72EE17721378" />
  147. <CertEKU ID="ID_EKU_STORE" />
  148. </Signer>
  149. <Signer Name="Microsoft Flighting Root 2014 Store EKU" ID="ID_SIGNER_STORE_FLIGHT_ROOT_1_22_0_0">
  150. <CertRoot Type="Wellknown" Value="0E" />
  151. <CertEKU ID="ID_EKU_STORE" />
  152. </Signer>
  153. <Signer Name="Microsoft Product Root 2010 RT EKU" ID="ID_SIGNER_RT_PRODUCTION_1_23_0_0">
  154. <CertRoot Type="Wellknown" Value="06" />
  155. <CertEKU ID="ID_EKU_RT_EXT" />
  156. </Signer>
  157. <Signer Name="MincryptKnownRootMicrosoftDMDRoot2005" ID="ID_SIGNER_DRM_1_24_0_0">
  158. <CertRoot Type="Wellknown" Value="0C" />
  159. </Signer>
  160. <Signer Name="MincryptKnownRootMicrosoftProductRoot2010" ID="ID_SIGNER_DCODEGEN_1_25_0_0">
  161. <CertRoot Type="Wellknown" Value="06" />
  162. <CertEKU ID="ID_EKU_DCODEGEN" />
  163. </Signer>
  164. <Signer Name="MincryptKnownRootMicrosoftStandardRoot2011" ID="ID_SIGNER_AM_1_26_0_0">
  165. <CertRoot Type="Wellknown" Value="07" />
  166. <CertEKU ID="ID_EKU_AM" />
  167. </Signer>
  168. <Signer Name="Microsoft Flighting Root 2014 RT EKU" ID="ID_SIGNER_RT_FLIGHT_1_27_0_0">
  169. <CertRoot Type="Wellknown" Value="0E" />
  170. <CertEKU ID="ID_EKU_RT_EXT" />
  171. </Signer>
  172. <Signer Name="Microsoft Standard Root 2011 RT EKU" ID="ID_SIGNER_RT_STANDARD_1_28_0_0">
  173. <CertRoot Type="Wellknown" Value="07" />
  174. <CertEKU ID="ID_EKU_RT_EXT" />
  175. </Signer>
  176. <Signer Name="Microsoft Code Signing PCA 2011" ID="ID_SIGNER_MICROSOFT_REFRESH_POLICY_1_29_0_0">
  177. <CertRoot Type="TBS" Value="F6F717A43AD9ABDDC8CEFDDE1C505462535E7D1307E630F9544A2D14FE8BF26E" />
  178. <CertPublisher Value="Microsoft Corporation" />
  179. <FileAttribRef RuleID="ID_FILEATTRIB_REFRESH_POLICY_1_1" />
  180. </Signer>
  181. <Signer Name="MincryptKnownRootMicrosoftTestRoot2010" ID="ID_SIGNER_TEST2010_USER_1_30_0_0">
  182. <CertRoot Type="Wellknown" Value="0A" />
  183. </Signer>
  184. </Signers>
  185. <SigningScenarios>
  186. <SigningScenario ID="ID_SIGNINGSCENARIO_DRIVERS_1" FriendlyName="Auto generated policy on 03-17-2024" Value="131">
  187. <ProductSigners>
  188. <AllowedSigners>
  189. <AllowedSigner SignerId="ID_SIGNER_WINDOWS_PRODUCTION_1_0" />
  190. <AllowedSigner SignerId="ID_SIGNER_ELAM_PRODUCTION_1_1_0_0" />
  191. <AllowedSigner SignerId="ID_SIGNER_HAL_PRODUCTION_1_2_0_0" />
  192. <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA2_1_3_0_0" />
  193. <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA1_1_4_0_0" />
  194. <AllowedSigner SignerId="ID_SIGNER_WHQL_MD5_1_5_0_0" />
  195. <AllowedSigner SignerId="ID_SIGNER_WINDOWS_FLIGHT_ROOT_1_6_0_0" />
  196. <AllowedSigner SignerId="ID_SIGNER_ELAM_FLIGHT_1_7_0_0" />
  197. <AllowedSigner SignerId="ID_SIGNER_HAL_FLIGHT_1_8_0_0" />
  198. <AllowedSigner SignerId="ID_SIGNER_WHQL_FLIGHT_SHA2_1_9_0_0" />
  199. <AllowedSigner SignerId="ID_SIGNER_TEST2010_1_10_0_0" />
  200. </AllowedSigners>
  201. </ProductSigners>
  202. </SigningScenario>
  203. <SigningScenario ID="ID_SIGNINGSCENARIO_WINDOWS" FriendlyName="Auto generated policy on 03-17-2024" Value="12">
  204. <ProductSigners>
  205. <AllowedSigners>
  206. <AllowedSigner SignerId="ID_SIGNER_WINDOWS_PRODUCTION_USER_1_11_0_0" />
  207. <AllowedSigner SignerId="ID_SIGNER_ELAM_PRODUCTION_USER_1_12_0_0" />
  208. <AllowedSigner SignerId="ID_SIGNER_HAL_PRODUCTION_USER_1_13_0_0" />
  209. <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA2_USER_1_14_0_0" />
  210. <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA1_USER_1_15_0_0" />
  211. <AllowedSigner SignerId="ID_SIGNER_WHQL_MD5_USER_1_16_0_0" />
  212. <AllowedSigner SignerId="ID_SIGNER_WINDOWS_FLIGHT_ROOT_USER_1_17_0_0" />
  213. <AllowedSigner SignerId="ID_SIGNER_ELAM_FLIGHT_USER_1_18_0_0" />
  214. <AllowedSigner SignerId="ID_SIGNER_HAL_FLIGHT_USER_1_19_0_0" />
  215. <AllowedSigner SignerId="ID_SIGNER_WHQL_FLIGHT_SHA2_USER_1_20_0_0" />
  216. <AllowedSigner SignerId="ID_SIGNER_STORE_1_21_0_0" />
  217. <AllowedSigner SignerId="ID_SIGNER_STORE_FLIGHT_ROOT_1_22_0_0" />
  218. <AllowedSigner SignerId="ID_SIGNER_RT_PRODUCTION_1_23_0_0" />
  219. <AllowedSigner SignerId="ID_SIGNER_DRM_1_24_0_0" />
  220. <AllowedSigner SignerId="ID_SIGNER_DCODEGEN_1_25_0_0" />
  221. <AllowedSigner SignerId="ID_SIGNER_AM_1_26_0_0" />
  222. <AllowedSigner SignerId="ID_SIGNER_RT_FLIGHT_1_27_0_0" />
  223. <AllowedSigner SignerId="ID_SIGNER_RT_STANDARD_1_28_0_0" />
  224. <AllowedSigner SignerId="ID_SIGNER_MICROSOFT_REFRESH_POLICY_1_29_0_0" />
  225. <AllowedSigner SignerId="ID_SIGNER_TEST2010_USER_1_30_0_0" />
  226. </AllowedSigners>
  227. <FileRulesRef>
  228. <FileRuleRef RuleID="ID_ALLOW_PATH_0_0_1_3_0" />
  229. <FileRuleRef RuleID="ID_ALLOW_PATH_1_0_1_4_0" />
  230. <FileRuleRef RuleID="ID_ALLOW_PATH_2_0_1_5_0" />
  231. <FileRuleRef RuleID="ID_ALLOW_PATH_0_0_1_0_0" />
  232. <FileRuleRef RuleID="ID_ALLOW_PATH_1_0_1_0_0" />
  233. <FileRuleRef RuleID="ID_ALLOW_PATH_2_0_1_0_0" />
  234. </FileRulesRef>
  235. </ProductSigners>
  236. </SigningScenario>
  237. </SigningScenarios>
  238. <UpdatePolicySigners />
  239. <CiSigners>
  240. <CiSigner SignerId="ID_SIGNER_STORE_1_21_0_0" />
  241. <CiSigner SignerId="ID_SIGNER_MICROSOFT_REFRESH_POLICY_1_29_0_0" />
  242. </CiSigners>
  243. <HvciOptions>0</HvciOptions>
  244. <Settings>
  245. <Setting Provider="PolicyInfo" Key="Information" ValueName="Name">
  246. <Value>
  247. <String>ExcelaPolicy</String>
  248. </Value>
  249. </Setting>
  250. <Setting Provider="PolicyInfo" Key="Information" ValueName="Id">
  251. <Value>
  252. <String>2024-03-16</String>
  253. </Value>
  254. </Setting>
  255. </Settings>
  256. </SiPolicy>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!