<div>
Hi there! :)<br />
<br />
I think you also need to review the firewall advanced rules for file sharing. You mar refer to the following link on how to allow the connections.<br />
<br />
Reference: <a href="https://www.hammer-software.com/how-to-enable-file-and-printer-sharing-through-the-windows-firewall-with-advanced-security-using-group-policy/" rel="ugc">https://www.hammer-software.com/how-to-enable-file-and-printer-sharing-through-the-windows-firewall-with-advanced-security-using-group-policy/</a><br />
<br />
<a href="https://filedb.experts-exchange.com/incoming/2019/12_w50/1438719/1.png" target="_blank" title="1.png (56 KB)"><img alt="1.png" class="file-block lazyload" style="max-width: 760px;" data-src="https://filedb.experts-exchange.com/incoming/2019/12_w50/1438719/1.png" /></a>
</div>


1.png

<div>
Noah: &nbsp;Thank you! &nbsp;I've been setting special File and Printer Sharing Firewall rules to accomodate multiple subnet sharing so I'm pretty familiar with that part. &nbsp;And, I have reviewed them. &nbsp;They look OK.<br />
<br />
What I don't know is where to find the apparent GPO(?) that's setting this one computer in Allow Apps. &nbsp;Where to look for that GPO? &nbsp;I can't find one in AD that looks at all likely. &nbsp;I've not set any firewall GPOs (yet).
</div>


Consultant

hypercube

<div>
Noah,<br />
<br />
Thank you again! &nbsp;I'm afraid that setting isn't what's doing it.... it's not configured. &nbsp;Presumably if it were set by Group Policy then that would show differently.
</div>


<div>
I believe that I found it. &nbsp;<br />
gpedit.msc:<br />
<i>Local Computer Policy \ Computer Configuration \ Administrative Templates \ Network \ Network Connections \ Domain Profile \ <br />
Windows Defender Firewall: <b>Allow inbound file and printer sharing exception</b></i><br />
was *configured* and listed the allowed subnets (which were listed correctly).<br />
<br />
Changing the setting to &quot;Not configured&quot;, seems to have fixed the problem.<br />
It also did away with the double-line entry in Allowed apps in Windows Defender Firewall for File and Printer Sharing.<br />
<br />
I don't recall we set it in the first place but if the subnets were listed as they were, then we must have.<br />
<b>I don't understand why this setting would somehow limit the behavior and block what is expressly being allowed by it.</b><br />
<br />
The fix survives a reboot which I believe means this didn't come from a GPO in AD.<br />
<br />
Thanks for helping me sleuth this out!!
</div>


<div>
Not &quot;exactly&quot; the same setting but close enough to put me on the path to finding it!!
</div>


<div>
I see! Yes, that would be the one other possible location. Glad you found it.
</div>


<div>
<div class="content wysiwyg-content">
I have a workstation domain-joined that has a Windows unshared C: drive and a shared D: drive.<br />
<br />
The D: drive isn't reachable by permissioned group members.<br />
<br />
I find that the Windows firewall is blocking access.<br />
I find that there's a Domain enforced rule in the firewall but I can't figure out what is affected.<br />
<br />
Here is all that I can see:<br />
<a href="https://filedb.experts-exchange.com/incoming/2019/12_w50/1438709/Group-Policy-Firewall-Setting.jpg" target="_blank" title="Allowed apps (81 KB)"><img alt="Allowed apps" class="file-block lazyload" style="max-width: 800px;" data-src="https://filedb.experts-exchange.com/incoming/2019/12_w50/800_1438709/Group-Policy-Firewall-Setting.jpg" /></a><br />
How to know where this comes from in better details than this?<br />
I've reviewed the few GPOs and nothing pops out as obvious.<br />
Surely nothing that I've done!<br />
Other workstations don't seem to have this same thing at all.
</div>
</div>


Group-Policy-Firewall-Setting.jpg

I have a workstation domain-joined that has a Windows unshared C: drive and a shared D: drive.

The D: drive isn't reachable by permissioned group members.

I find that the Windows firewall is blocking access.
I find that there's a Domain enforced rule in the firewall but I can't figure out what is affected.

Here is all that I can see:


How to know where this comes from in better details than this?
I've reviewed the few GPOs and nothing pops out as obvious.
Surely nothing that I've done!
Other workstations don't seem to have this same thing at all.

Group Policy affects Allowed Apps in Windows Firewall / stops file sharing in one workstation

file sharing

Windows Server 2019

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.