We have a Citrix XenApp 6.5 Farm running on Windows 2008 R2 systems. We have found through an audit there have been certain printers that when installed via the Auto-Client printer installation allow "Open command window here" if you go to this printer which is Microsoft Print to PDF (for instance) will then bring up the file locations which is ok, but the issue is the fact it is allowing "Open command window here".
I'm looking to see where in Citrix policies or Windows GPO's I can remove this option. I can't remove command prompt access from the system all together as some of our published applications execute/launch via command prompt/batch script.
Any thoughts are appreciated.