Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [Unicode]
- Unicode=yes
- [System Access]
- MinimumPasswordAge = 15
- MaximumPasswordAge = 90
- MinimumPasswordLength = 8
- PasswordComplexity = 1
- PasswordHistorySize = 24
- LockoutBadCount = 5
- ResetLockoutCount = 30
- LockoutDuration = 30
- RequireLogonToChangePassword = 0
- ForceLogoffWhenHourExpire = 1
- NewAdministratorName = "Notadmin"
- NewGuestName = "Notguest"
- ClearTextPassword = 0
- LSAAnonymousNameLookup = 0
- EnableAdminAccount = 0
- EnableGuestAccount = 0
- [Event Audit]
- AuditSystemEvents = 3
- AuditLogonEvents = 3
- AuditObjectAccess = 3
- AuditPrivilegeUse = 3
- AuditPolicyChange = 3
- AuditAccountManage = 3
- AuditProcessTracking = 3
- AuditDSAccess = 3
- AuditAccountLogon = 3
- [Version]
- signature="$CHICAGO$"
- Revision=1
- [Registry Values]
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Setup\RecoveryConsole\SecurityLevel=4,0
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Setup\RecoveryConsole\SetCommand=4,0
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AllocateCDRoms=1,"1"
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AllocateDASD=1,"0"
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AllocateFloppies=1,"1"
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\CachedLogonsCount=1,"0"
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ForceUnlockLogon=4,0
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\PasswordExpiryWarning=4,14
- MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ScRemoveOption=1,"0"
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorAdmin=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\ConsentPromptBehaviorUser=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\DisableCAD=4,0
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\DontDisplayLastUserName=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\DontDisplayLockedUserId=4,2
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\DontDisplayUserName=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\EnableInstallerDetection=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\EnableSecureUIAPaths=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\EnableUIADesktopToggle=4,0
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\EnableVirtualization=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\FilterAdministratorToken=4,0
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\InactivityTimeoutSecs=4,300
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\Parameters\SupportedEncryptionTypes=4,2147483644
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\LegalNoticeCaption=1,"WARNING"
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\LegalNoticeText=7,This computer is for authorized use only!
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\MaxDevicePasswordFailedAttempts=4,5
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\NoConnectedUser=4,3
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\PromptOnSecureDesktop=4,1
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\ScForceOption=4,0
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\ShutdownWithoutLogon=4,0
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\UndockWithoutLogon=4,0
- MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\ValidateAdminCodeSignatures=4,1
- MACHINE\Software\Policies\Microsoft\Cryptography\ForceKeyProtection=4,2
- MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers\AuthenticodeEnabled=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\AuditBaseObjects=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\CrashOnAuditFail=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\DisableDomainCreds=4,1
- MACHINE\System\CurrentControlSet\Control\Lsa\EveryoneIncludesAnonymous=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\FIPSAlgorithmPolicy\Enabled=4,1
- MACHINE\System\CurrentControlSet\Control\Lsa\ForceGuest=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\FullPrivilegeAuditing=3,0
- MACHINE\System\CurrentControlSet\Control\Lsa\LimitBlankPasswordUse=4,1
- MACHINE\System\CurrentControlSet\Control\Lsa\LmCompatibilityLevel=4,5
- MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0\allownullsessionfallback=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0\AuditReceivingNTLMTraffic=4,2
- MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0\NTLMMinClientSec=4,537395200
- MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0\NTLMMinServerSec=4,537395200
- MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0\RestrictReceivingNTLMTraffic=4,2
- MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0\RestrictSendingNTLMTraffic=4,2
- MACHINE\System\CurrentControlSet\Control\Lsa\NoLMHash=4,1
- MACHINE\System\CurrentControlSet\Control\Lsa\pku2u\AllowOnlineID=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\RestrictAnonymous=4,1
- MACHINE\System\CurrentControlSet\Control\Lsa\RestrictAnonymousSAM=4,1
- MACHINE\System\CurrentControlSet\Control\Lsa\RestrictRemoteSAM=1,"O:BAG:BAD:(A;;RC;;;BA)"
- MACHINE\System\CurrentControlSet\Control\Lsa\SCENoApplyLegacyAuditPolicy=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\SubmitControl=4,0
- MACHINE\System\CurrentControlSet\Control\Lsa\UseMachineId=4,1
- MACHINE\System\CurrentControlSet\Control\Print\Providers\LanMan Print Services\Servers\AddPrinterDrivers=4,1
- MACHINE\System\CurrentControlSet\Control\SecurePipeServers\Winreg\AllowedExactPaths\Machine=7,
- MACHINE\System\CurrentControlSet\Control\SecurePipeServers\Winreg\AllowedPaths\Machine=7,
- MACHINE\System\CurrentControlSet\Control\Session Manager\Kernel\ObCaseInsensitive=4,1
- MACHINE\System\CurrentControlSet\Control\Session Manager\Memory Management\ClearPageFileAtShutdown=4,1
- MACHINE\System\CurrentControlSet\Control\Session Manager\ProtectionMode=4,1
- MACHINE\System\CurrentControlSet\Control\Session Manager\SubSystems\optional=7,
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\AutoDisconnect=4,15
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\EnableForcedLogOff=4,1
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\EnableS4U2SelfForClaims=4,0
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\EnableSecuritySignature=4,1
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\NullSessionPipes=7,
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\NullSessionShares=7,
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\RequireSecuritySignature=4,1
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\RestrictNullSessAccess=4,1
- MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters\SmbServerNameHardeningLevel=4,1
- MACHINE\System\CurrentControlSet\Services\LanmanWorkstation\Parameters\EnablePlainTextPassword=4,0
- MACHINE\System\CurrentControlSet\Services\LanmanWorkstation\Parameters\EnableSecuritySignature=4,1
- MACHINE\System\CurrentControlSet\Services\LanmanWorkstation\Parameters\RequireSecuritySignature=4,1
- MACHINE\System\CurrentControlSet\Services\LDAP\LDAPClientIntegrity=4,1
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\AuditNTLMInDomain=4,7
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\DisablePasswordChange=4,0
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\MaximumPasswordAge=4,30
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\RefusePasswordChange=4,0
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\RequireSignOrSeal=4,1
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\RequireStrongKey=4,1
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\RestrictNTLMInDomain=4,7
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\SealSecureChannel=4,1
- MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\SignSecureChannel=4,1
- MACHINE\System\CurrentControlSet\Services\NTDS\Parameters\LDAPServerIntegrity=4,2
- [Privilege Rights]
- SeTrustedCredManAccessPrivilege =
- SeNetworkLogonRight = *S-1-5-32-544
- SeTcbPrivilege =
- SeMachineAccountPrivilege = *S-1-5-32-544
- SeBackupPrivilege = *S-1-5-32-544
- SeChangeNotifyPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544
- SeSystemtimePrivilege = *S-1-5-19,*S-1-5-32-544
- SeCreatePagefilePrivilege = *S-1-5-32-544
- SeCreateTokenPrivilege =
- SeDebugPrivilege = *S-1-5-32-544
- SeEnableDelegationPrivilege =
- SeRemoteShutdownPrivilege =
- SeAuditPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544
- SeIncreaseQuotaPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544
- SeIncreaseBasePriorityPrivilege = *S-1-5-32-544
- SeLoadDriverPrivilege = *S-1-5-32-544
- SeLockMemoryPrivilege =
- SeBatchLogonRight =
- SeServiceLogonRight =
- SeInteractiveLogonRight = *S-1-5-32-544,*S-1-5-32-545
- SeSecurityPrivilege = *S-1-5-32-544
- SeRelabelPrivilege =
- SeSystemEnvironmentPrivilege = *S-1-5-32-544
- SeProfileSingleProcessPrivilege = *S-1-5-32-544
- SeSystemProfilePrivilege = *S-1-5-32-544
- SeAssignPrimaryTokenPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544
- SeRestorePrivilege = *S-1-5-32-544
- SeShutdownPrivilege = *S-1-5-32-544,*S-1-5-32-545
- SeSyncAgentPrivilege =
- SeTakeOwnershipPrivilege = *S-1-5-32-544
- SeDenyNetworkLogonRight = *S-1-5-32-546
- SeDenyBatchLogonRight = *S-1-5-32-546
- SeDenyServiceLogonRight = *S-1-5-32-546
- SeDenyInteractiveLogonRight = *S-1-5-32-546
- SeUndockPrivilege = *S-1-5-32-544
- SeManageVolumePrivilege = *S-1-5-32-544
- SeRemoteInteractiveLogonRight =
- SeDenyRemoteInteractiveLogonRight = *S-1-1-0,*S-1-5-32-546
- SeImpersonatePrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544,*S-1-5-6
- SeCreateGlobalPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544
- SeTimeZonePrivilege = *S-1-5-19,*S-1-5-32-544
- SeCreateSymbolicLinkPrivilege = *S-1-5-32-544
- SeDelegateSessionUserImpersonatePrivilege = *S-1-5-32-544
- SeIncreaseWorkingSetPrivilege = *S-1-5-32-544
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement