Software Restriction Policies..arghhhhhh!
I am being driven insane by my first SRP that i am trying to implement on our student group.
For group policy testing -I have set up a test user group and i have a test student in there.
I want to dis-allow .exe and .bat from any drive other than C:/
I have tried many ways, but what seems to happen is that i end up blocking the .bat on logon and then all apps on the C: drive.
If we take this one step at a time;
I should be setting the Software restriction to 'Disallowed'. then specifiying the extensions i want to disallow, then specify the drives i want to disallow?
Is that correct so far?
This is driving me mad, i am so pleased i am working on a test group!