Solved

Disable Win 7 Firewall using GPO

Posted on 2013-01-29
4
397 Views
Last Modified: 2013-02-04
Trying to disable Win 7 Firewall through AD and GPO. Normal settings in GPO do not seem to be working.

Disabling Administrative templates, Network, Network connections, Windows firewall, Domain and Standard profiles to "Prohibit all network connections" should do it, correct? What am I missing? AD is on a Win 2003 server....
0
Comment
Question by:ocantrell
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 29

Expert Comment

by:becraig
ID: 38832713
Go to Start > Administrative Tools > Policies
    Select the policy to edit (Usually: the default policy), right-click and choose “edit”.
    Go to Administrative Templates > Network > Network connections > Windows Firewall > Domain Profile.
    Disable the “Protect All Network connections” rule.  Just to be sure, you can do the same for the “Standard Profile”, as well.
0
 

Author Comment

by:ocantrell
ID: 38834834
That's what I had originally tried.......Just tried again and still does not work (??) I must be missing something like another setting overiding?
0
 

Accepted Solution

by:
ocantrell earned 0 total points
ID: 38834907
A local engineer, Joe Blanchard, provided a solution that worked for me. Here are his steps.

  1.  This must be done from a Windows 2008 server, or a Windows 7 PC. Their policies look a little different, but will link just fine to 2000 and up Domain controllers.
  2.  Win 7 is a little more involved since you have to have RSAT installed for GPMC to show up. (I take the easy way and use a 2008 server if available.)
  3.  Be sure GPMC is installed on Server 2008, (Under Server Manager- Add Roles) I can't remember if it is a role or feature, but it will be under one of those.
  4.  Be sure to create a New Policy instead of editing an old one, that way you have more options if things go to pot.
  5.  Add the firewall settings you need under >Computer Config > Windows Settings > Security Settings > Windows Firewall with Advanced Security
  6.  Close the editor
  7.  Review settings of the Policy via the settings tab
  8.  Link the Policy object to the OU that contains the machines you need the Policy applied to.
  9.  Either wait, or run a gpupdate /force on the PC you are testing on.
  10. Troubleshoot with RSOP if available.
0
 

Author Closing Comment

by:ocantrell
ID: 38850414
Solution provided by a local MS engineer
0

Featured Post

Transaction Monitoring Vs. Real User Monitoring

Synthetic Transaction Monitoring Vs. Real User Monitoring: When To Use Each Approach? In this article, we will discuss two major monitoring approaches: Synthetic Transaction and Real User Monitoring.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
Learn about cloud computing and its benefits for small business owners.
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question