Solved

Disable Win 7 Firewall using GPO

Posted on 2013-01-29
4
393 Views
Last Modified: 2013-02-04
Trying to disable Win 7 Firewall through AD and GPO. Normal settings in GPO do not seem to be working.

Disabling Administrative templates, Network, Network connections, Windows firewall, Domain and Standard profiles to "Prohibit all network connections" should do it, correct? What am I missing? AD is on a Win 2003 server....
0
Comment
Question by:ocantrell
  • 3
4 Comments
 
LVL 29

Expert Comment

by:becraig
ID: 38832713
Go to Start > Administrative Tools > Policies
    Select the policy to edit (Usually: the default policy), right-click and choose “edit”.
    Go to Administrative Templates > Network > Network connections > Windows Firewall > Domain Profile.
    Disable the “Protect All Network connections” rule.  Just to be sure, you can do the same for the “Standard Profile”, as well.
0
 

Author Comment

by:ocantrell
ID: 38834834
That's what I had originally tried.......Just tried again and still does not work (??) I must be missing something like another setting overiding?
0
 

Accepted Solution

by:
ocantrell earned 0 total points
ID: 38834907
A local engineer, Joe Blanchard, provided a solution that worked for me. Here are his steps.

  1.  This must be done from a Windows 2008 server, or a Windows 7 PC. Their policies look a little different, but will link just fine to 2000 and up Domain controllers.
  2.  Win 7 is a little more involved since you have to have RSAT installed for GPMC to show up. (I take the easy way and use a 2008 server if available.)
  3.  Be sure GPMC is installed on Server 2008, (Under Server Manager- Add Roles) I can't remember if it is a role or feature, but it will be under one of those.
  4.  Be sure to create a New Policy instead of editing an old one, that way you have more options if things go to pot.
  5.  Add the firewall settings you need under >Computer Config > Windows Settings > Security Settings > Windows Firewall with Advanced Security
  6.  Close the editor
  7.  Review settings of the Policy via the settings tab
  8.  Link the Policy object to the OU that contains the machines you need the Policy applied to.
  9.  Either wait, or run a gpupdate /force on the PC you are testing on.
  10. Troubleshoot with RSOP if available.
0
 

Author Closing Comment

by:ocantrell
ID: 38850414
Solution provided by a local MS engineer
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Learn how to create flexible layouts using relative units in CSS.  New relative units added in CSS3 include vw(viewports width), vh(viewports height), vmin(minimum of viewports height and width), and vmax (maximum of viewports height and width).

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now