Connector GPO parameters

The PSM_CPM GPO hardening package is applied to the Connector server as part of the machine installation and upgrade:

All parameters displayed in this topic apply to both PSM and CPM, unless where specifically noted otherwise.

GPO hardening settings location

The GPO hardening settings are defined within the computer configuration in the following locations:

Hardening settings for

Path

Windows settings Computer Configuration>Policies>Windows settings>Security settings
Administrative templates Computer Configuration>Policies>Windows settings>Administrative templates policy definition
User Configuration Computer Configuration>User configuration

GPO hardening for Windows settings

GPO hardening for Windows settings is defined under:

Computer Configuration>Policies>Windows settings>Security settings.

Account policies>Account lockout policy

Local policies>User rights assignment

Local policies>Security options

Event log

System Services

This group of hardening parameters applies to the CPM only.

File system

This group of hardening parameters applies to the CPM only.

Registry

This group of hardening parameters applies to the CPM only.

Advanced audit configuration

GPO hardening for Administrative templates

GPO hardening is defined under:

Computer Configuration>Policies>Windows settings>Administrative templates policy definition.

Policy definitions (ADMX files) are retrieved from the local computer.

The hardening for the Chrome settings takes place on the local machine (upon enabling the SupportWebApplications parameter during the hardening stage, as described in Hardening activities ). You can configure Chrome settings in the in-domain GPO if you want to set other values to all the machines in the domain.

GPO hardening for User configuration

This group of hardening parameters applies to the CPM only.

GPO hardening is defined under Computer Configuration>User configuration.

Policies