Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?xml version="1.0" encoding="utf-8"?>
- <SiPolicy xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" PolicyType="Base Policy" xmlns="urn:schemas-microsoft-com:sipolicy">
- <VersionEx>10.0.0.0</VersionEx>
- <PlatformID>{2E07F7E4-194C-4D20-B7C9-6F44A6C5A234}</PlatformID>
- <PolicyID>{0B277716-B381-41AE-9B81-99FAC1C72798}</PolicyID>
- <BasePolicyID>{0B277716-B381-41AE-9B81-99FAC1C72798}</BasePolicyID>
- <Rules>
- <Rule>
- <Option>Enabled:Unsigned System Integrity Policy</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Advanced Boot Options Menu</Option>
- </Rule>
- <Rule>
- <Option>Enabled:UMCI</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Inherit Default Policy</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Update Policy No Reboot</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Dynamic Code Security</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Revoked Expired As Unsigned</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Allow Supplemental Policies</Option>
- </Rule>
- <Rule>
- <Option>Enabled:Managed Installer</Option>
- </Rule>
- <Rule>
- <Option>Required:Enforce Store Applications</Option>
- </Rule>
- </Rules>
- <EKUs>
- <EKU ID="ID_EKU_WINDOWS" Value="010A2B0601040182370A0306" FriendlyName="" />
- <EKU ID="ID_EKU_ELAM" Value="010A2B0601040182373D0401" FriendlyName="" />
- <EKU ID="ID_EKU_HAL_EXT" Value="010A2B0601040182373D0501" FriendlyName="" />
- <EKU ID="ID_EKU_WHQL" Value="010A2B0601040182370A0305" FriendlyName="" />
- <EKU ID="ID_EKU_STORE" Value="010A2B0601040182374C0301" FriendlyName="Windows Store EKU - 1.3.6.1.4.1.311.76.3.1 Windows Store" />
- <EKU ID="ID_EKU_RT_EXT" Value="010A2B0601040182370A0315" FriendlyName="" />
- <EKU ID="ID_EKU_DCODEGEN" Value="010A2B0601040182374C0501" FriendlyName="Dynamic Code Generation EKU - 1.3.6.1.4.1.311.76.5.1" />
- <EKU ID="ID_EKU_AM" Value="010A2B0601040182374C0B01" FriendlyName="AntiMalware EKU -1.3.6.1.4.1.311.76.11.1 " />
- </EKUs>
- <FileRules>
- <FileAttrib ID="ID_FILEATTRIB_REFRESH_POLICY_0" FriendlyName="RefreshPolicy.exe FileAttribute" FileName="RefreshPolicy.exe" MinimumFileVersion="10.0.19042.0" />
- </FileRules>
- <Signers>
- <Signer Name="Microsoft Product Root 2010 Windows EKU" ID="ID_SIGNER_WINDOWS_PRODUCTION_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_WINDOWS" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 ELAM EKU" ID="ID_SIGNER_ELAM_PRODUCTION_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_ELAM" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 HAL EKU" ID="ID_SIGNER_HAL_PRODUCTION_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_HAL_EXT" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 WHQL EKU" ID="ID_SIGNER_WHQL_SHA2_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft Product Root WHQL EKU SHA1" ID="ID_SIGNER_WHQL_SHA1_0">
- <CertRoot Type="Wellknown" Value="05" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft Product Root WHQL EKU MD5" ID="ID_SIGNER_WHQL_MD5_0">
- <CertRoot Type="Wellknown" Value="04" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 Windows EKU" ID="ID_SIGNER_WINDOWS_FLIGHT_ROOT_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_WINDOWS" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 ELAM EKU" ID="ID_SIGNER_ELAM_FLIGHT_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_ELAM" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 HAL EKU" ID="ID_SIGNER_HAL_FLIGHT_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_HAL_EXT" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 WHQL EKU" ID="ID_SIGNER_WHQL_FLIGHT_SHA2_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="MincryptKnownRootMicrosoftTestRoot2010" ID="ID_SIGNER_TEST2010_0">
- <CertRoot Type="Wellknown" Value="0A" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 Windows EKU" ID="ID_SIGNER_WINDOWS_PRODUCTION_USER_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_WINDOWS" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 ELAM EKU" ID="ID_SIGNER_ELAM_PRODUCTION_USER_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_ELAM" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 HAL EKU" ID="ID_SIGNER_HAL_PRODUCTION_USER_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_HAL_EXT" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 WHQL EKU" ID="ID_SIGNER_WHQL_SHA2_USER_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft Product Root WHQL EKU SHA1" ID="ID_SIGNER_WHQL_SHA1_USER_0">
- <CertRoot Type="Wellknown" Value="05" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft Product Root WHQL EKU MD5" ID="ID_SIGNER_WHQL_MD5_USER_0">
- <CertRoot Type="Wellknown" Value="04" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 Windows EKU" ID="ID_SIGNER_WINDOWS_FLIGHT_ROOT_USER_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_WINDOWS" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 ELAM EKU" ID="ID_SIGNER_ELAM_FLIGHT_USER_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_ELAM" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 HAL EKU" ID="ID_SIGNER_HAL_FLIGHT_USER_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_HAL_EXT" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 WHQL EKU" ID="ID_SIGNER_WHQL_FLIGHT_SHA2_USER_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_WHQL" />
- </Signer>
- <Signer Name="Microsoft MarketPlace PCA 2011" ID="ID_SIGNER_STORE_0">
- <CertRoot Type="TBS" Value="FC9EDE3DCCA09186B2D3BF9B738A2050CB1A554DA2DCADB55F3F72EE17721378" />
- <CertEKU ID="ID_EKU_STORE" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 Store EKU" ID="ID_SIGNER_STORE_FLIGHT_ROOT_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_STORE" />
- </Signer>
- <Signer Name="Microsoft Product Root 2010 RT EKU" ID="ID_SIGNER_RT_PRODUCTION_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_RT_EXT" />
- </Signer>
- <Signer Name="MincryptKnownRootMicrosoftDMDRoot2005" ID="ID_SIGNER_DRM_0">
- <CertRoot Type="Wellknown" Value="0C" />
- </Signer>
- <Signer Name="MincryptKnownRootMicrosoftProductRoot2010" ID="ID_SIGNER_DCODEGEN_0">
- <CertRoot Type="Wellknown" Value="06" />
- <CertEKU ID="ID_EKU_DCODEGEN" />
- </Signer>
- <Signer Name="MincryptKnownRootMicrosoftStandardRoot2011" ID="ID_SIGNER_AM_0">
- <CertRoot Type="Wellknown" Value="07" />
- <CertEKU ID="ID_EKU_AM" />
- </Signer>
- <Signer Name="Microsoft Flighting Root 2014 RT EKU" ID="ID_SIGNER_RT_FLIGHT_0">
- <CertRoot Type="Wellknown" Value="0E" />
- <CertEKU ID="ID_EKU_RT_EXT" />
- </Signer>
- <Signer Name="Microsoft Standard Root 2011 RT EKU" ID="ID_SIGNER_RT_STANDARD_0">
- <CertRoot Type="Wellknown" Value="07" />
- <CertEKU ID="ID_EKU_RT_EXT" />
- </Signer>
- <Signer Name="Microsoft Code Signing PCA 2011" ID="ID_SIGNER_MICROSOFT_REFRESH_POLICY_0">
- <CertRoot Type="TBS" Value="F6F717A43AD9ABDDC8CEFDDE1C505462535E7D1307E630F9544A2D14FE8BF26E" />
- <CertPublisher Value="Microsoft Corporation" />
- <FileAttribRef RuleID="ID_FILEATTRIB_REFRESH_POLICY_0" />
- </Signer>
- <Signer Name="MincryptKnownRootMicrosoftTestRoot2010" ID="ID_SIGNER_TEST2010_USER_0">
- <CertRoot Type="Wellknown" Value="0A" />
- </Signer>
- </Signers>
- <SigningScenarios>
- <SigningScenario ID="ID_SIGNINGSCENARIO_DRIVERS_1" FriendlyName="Auto generated policy on 04-16-2024" Value="131">
- <ProductSigners>
- <AllowedSigners>
- <AllowedSigner SignerId="ID_SIGNER_WINDOWS_PRODUCTION_0" />
- <AllowedSigner SignerId="ID_SIGNER_ELAM_PRODUCTION_0" />
- <AllowedSigner SignerId="ID_SIGNER_HAL_PRODUCTION_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA2_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA1_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_MD5_0" />
- <AllowedSigner SignerId="ID_SIGNER_WINDOWS_FLIGHT_ROOT_0" />
- <AllowedSigner SignerId="ID_SIGNER_ELAM_FLIGHT_0" />
- <AllowedSigner SignerId="ID_SIGNER_HAL_FLIGHT_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_FLIGHT_SHA2_0" />
- <AllowedSigner SignerId="ID_SIGNER_TEST2010_0" />
- </AllowedSigners>
- </ProductSigners>
- </SigningScenario>
- <SigningScenario ID="ID_SIGNINGSCENARIO_WINDOWS" FriendlyName="Auto generated policy on 04-16-2024" Value="12">
- <ProductSigners>
- <AllowedSigners>
- <AllowedSigner SignerId="ID_SIGNER_WINDOWS_PRODUCTION_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_ELAM_PRODUCTION_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_HAL_PRODUCTION_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA2_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_SHA1_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_MD5_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_WINDOWS_FLIGHT_ROOT_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_ELAM_FLIGHT_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_HAL_FLIGHT_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_WHQL_FLIGHT_SHA2_USER_0" />
- <AllowedSigner SignerId="ID_SIGNER_STORE_0" />
- <AllowedSigner SignerId="ID_SIGNER_STORE_FLIGHT_ROOT_0" />
- <AllowedSigner SignerId="ID_SIGNER_RT_PRODUCTION_0" />
- <AllowedSigner SignerId="ID_SIGNER_DRM_0" />
- <AllowedSigner SignerId="ID_SIGNER_DCODEGEN_0" />
- <AllowedSigner SignerId="ID_SIGNER_AM_0" />
- <AllowedSigner SignerId="ID_SIGNER_RT_FLIGHT_0" />
- <AllowedSigner SignerId="ID_SIGNER_RT_STANDARD_0" />
- <AllowedSigner SignerId="ID_SIGNER_MICROSOFT_REFRESH_POLICY_0" />
- <AllowedSigner SignerId="ID_SIGNER_TEST2010_USER_0" />
- </AllowedSigners>
- </ProductSigners>
- </SigningScenario>
- </SigningScenarios>
- <UpdatePolicySigners />
- <CiSigners>
- <CiSigner SignerId="ID_SIGNER_STORE_0" />
- <CiSigner SignerId="ID_SIGNER_MICROSOFT_REFRESH_POLICY_0" />
- </CiSigners>
- <HvciOptions>0</HvciOptions>
- <Settings>
- <Setting Provider="PolicyInfo" Key="Information" ValueName="Name">
- <Value>
- <String>NewEXCPolicy</String>
- </Value>
- </Setting>
- <Setting Provider="PolicyInfo" Key="Information" ValueName="Id">
- <Value>
- <String>2024-04-16</String>
- </Value>
- </Setting>
- </Settings>
- </SiPolicy>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement