Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1306
  • Last Modified:

XPSP2 Firewall - How to prevent users from changing the settings in Windows Firewall?

I would like to prevent users from 'playing around' with the Windows Firewall interface. For example, in some computers I don't want to enable the Windows Firewall. But users think that they are smart, and they enable the firewall.
I would like the 'On' radio button in the Control Panel > Windows firewall to be dimmed, unclickable.

Any idea how do I do that?

thanks,
ItayM
0
itaym
Asked:
itaym
  • 2
1 Solution
 
sramesh2kCommented:
Hi ItayM,

Is it a Domain Environment or stand-alone system?

You may use the Group Policy Editor in either case (for XP Pro)

Policy: Protect all network connections

Turns on Windows Firewall, which replaces Internet Connection Firewall on all computers that are running Windows XP Service Pack 2.

If you enable this policy setting, Windows Firewall runs and ignores the "Computer Configuration\Administrative Templates\Network\Network Connections\Prohibit use of Internet Connection Firewall on your DNS domain network" policy setting.

If you disable this policy setting, Windows Firewall does not run. This is the only way to ensure that Windows Firewall does not run and administrators who log on locally cannot start it.

If you do not configure this policy setting, administrators can use the Windows Firewall component in Control Panel to turn Windows Firewall on or off, unless the "Prohibit use of Internet Connection Firewall on your DNS domain network" policy setting overrides.

Managing Windows XP Service Pack 2 Features Using Group Policy:Windows Firewall:
http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/mangxpsp2/mngwfw.mspx
0
 
itaymAuthor Commented:
It's a stand-alone system. Can I still use this Group Policy on the machine?
Let's assume that the user itself logs on as administrator.
0
 
sramesh2kCommented:
It works for stand-alone machines as well. But, if your users are administrators, then they can again goto GPEdit and disable this policy.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now