Share via

2 policy conflict with each other in Active Directory

Anonymous
2024-10-30T10:08:08+00:00

I have an Active Directory environment. where Configured 2 policy

  1. allow Windows to run Specified Programs only
  2. show only specified items in the control panel policy

But showing only specified items in the control panel policy is working as expected but allows Windows to run the Specified Programs only policywhen enabled**.** After that Control panel policy not working.

Now How do allow or whitelist the control panel all options in allow Windows to run Specified Programs only policy

Windows for business | Windows Server | Directory services | Active Directory

Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.

0 comments

5 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-10-30T10:42:15+00:00

    Hello Nasir Uddin3,

    Thank you for posting in Microsoft Community forum.

    I find the two policy settings you mentioned are under User Configurations.

    1.What did you define in "allow Windows to run Specified Programs only"?

    2.What did you define in "show only specified items in the control panel policy"?

    3.If you only set policy "show only specified items in the control panel policy" and remove "allows Windows to run the Specified Programs only policy", does it work?

    If you have any question or concern, please feel free to let us know.

    Best Regards,

    Daisy Zhou

    1 person found this answer helpful.
    0 comments
  2. Anonymous
    2024-10-30T12:07:26+00:00

    Dear Daisy Zhou,

    Here's list of programs that are allowed "allow Windows to run Specified Programs only" in this policy

    1. 3dsmax.exe
    2. 3dviaplayer.exe
    3. 3dviasync.exe
    4. Able2ExtractPro.exe
    5. acad.exe
    6. acadlt.exe
    7. AcBrowserHost.exe
    8. accumark.cpl
    9. ACDSee.exe
    10. ACDSee10.exe
    11. ACDSee5.exe
    12. ACDSeeQV11.exe
    13. Acrobat.exe
    14. AcroRd32.exe
    15. acrotray.exe
    16. advanced_ip_scanner.exe
    17. ALMon.exe
    18. Amxplore.exe
    19. Animate.exe
    20. AnyDesk.exe
    21. arduino.exe
    22. Assistant.exe
    23. avp.exe
    24. Avro Keyboard.exe
    25. Bangla Dictionary.exe
    26. Barcode.exe
    27. bastmcvt.exe
    28. Bijoy Bayaonno 2009.exe
    29. Bijoy.exe
    30. BijoyBayanno.exe
    31. BijoyEkushe.exe
    32. BioStar.exe
    33. calc.exe
    34. Calculator.exe
    35. CamtasiaStudio.exe
    36. Character Animator.exe
    37. chrome.exe
    38. Client.exe
    39. Control.exe
    40. controller.exe
    41. Convertor.exe
    42. CorelDRAW.exe
    43. CorelDRW.exe
    44. CsPrem.exe
    45. Ctex DAM.exe
    46. DataDownloader.exe
    47. DataLoad.exe
    48. DataScan.exe
    49. demoocx.exe
    50. DESLOADR.EXE
    51. DHLEasyShipGlobal.exe
    52. DocuAction.exe
    53. Dpqwin32.exe
    54. Dreamweaver.exe
    55. dsgnedit.exe
    56. dvrclient.exe
    57. DWFViewer.exe
    58. dwgviewr.exe
    59. dxfconverter.exe
    60. EDC.exe
    61. EdrawMax.exe
    62. edvrclient.exe
    63. Entry.exe
    64. eplayer.exe
    65. es.exe
    66. escndv.exe
    67. excel.exe
    68. explorer.exe
    69. filezilla.exe
    70. firefox.exe
    71. FlukeConnect.exe
    72. FormatFactory.exe
    73. FotoCanvasLite2.exe
    74. Foxit Reader.exe
    75. FoxitReader.exe
    76. FR4.exe
    77. FRLaunch.exe
    78. GoldenLaser.exe
    79. HD2018 V1.0.5.exe
    80. HD2018.exe
    81. Honeyview.exe
    82. HP Deskjet 3520 series.exe
    83. HP Deskjet 3540 series.exe
    84. HP LaserJet MFP M129-M134.exe
    85. hpiscnapp.exe
    86. Hpqdirec.exe
    87. hpqdstcp.exe
    88. hpqkygrp.exe
    89. hpqpse.exe
    90. HPScan.exe
    91. hpsjrreg.exe
    92. hxpds.exe
    93. iexplore.exe
    94. iexplorer.exe
    95. ifbld60.exe
    96. ifdbg60.exe
    97. ifrun60.exe
    98. Illustrator.exe
    99. Illustrator-CS3.exe
    100. Illview02.exe
    101. ImageReady.exe
    102. InterprocessController.exe
    103. ipscan.exe
    104. javacpl.exe
    105. javaw.exe
    106. KDS-Pattern.exe
    107. KnitPaint.exe
    108. KYzhdDSJ3.exe
    109. LabelBuilder.exe
    110. launcher.bat
    111. LConvert.exe
    112. LOGOComfort.exe
    113. lppa.exe
    114. LWS.exe
    115. lync.exe
    116. m1.exe
    117. MasterPDFEditor.exe
    118. medpro.exe
    119. Microsoft.StickyNotes.exe
    120. MM.exe
    121. MovieMaker.exe
    122. mplayerc.exe
    123. MSACCESS.exe
    124. msedge.exe
    125. mshta.exe
    126. msoctl.exe
    127. mspaint.exe
    128. mstsc.exe
    129. MUCAD.exe
    130. navicat.exe
    131. NitroPDF.exe
    132. notepad.exe
    133. nvcplui.exe
    134. OIS.EXE
    135. OneDrive.exe
    136. outlook.exe
    137. OverAll.exe
    138. PackOne.Client.Startup.exe
    139. PaintRettilinee.exe
    140. PCMPLUS.exe
    141. PhotoResize1024.exe
    142. Photoshop.exe
    143. Photoshp.exe
    144. pixillion.exe
    145. pod.exe
    146. PowerCut.exe
    147. PowerLed.exe
    148. POWERPNT.exe
    149. PrimoPDF.exe
    150. PS300B.exe
    151. qdic.exe
    152. QuarkXPress.exe
    153. quickassist.exe
    154. Quilting.exe
    155. RAVCpl64.exe
    156. rise_wh.exe
    157. rta600.exe
    158. rundll32.exe
    159. rwbld60.exe
    160. RWRUN60.EXE
    161. SCANUTILITY.exe
    162. SecurityManagementSystemClient.exe
    163. SigToolImagerPlus.exe
    164. sil2000.exe
    165. Silverlight.Configuration.exe
    166. SK_KIOKU_64E.exe
    167. Skype.exe
    168. sldBgDwld.exe
    169. sldProcMon.exe
    170. SLDWORKS.exe
    171. sldworks_fs.exe
    172. SmartPSS.exe
    173. SmartView.exe
    174. SMSwatchdog.exe
    175. SndVol.exe
    176. SnippingTool.exe
    177. SolidWorksElectrical.exe
    178. solidworksexplorer.exe
    179. Sophos UI.exe
    180. SPaint.NET.exe
    181. SPaintG.exe
    182. Sprint.exe
    183. ssp.exe
    184. startup.exe
    185. stats.exe
    186. StikyNot.exe
    187. svSMSPlayer.exe
    188. tcDesktopApp.exe
    189. Teams.exe
    190. Tipard Video Converter Ultimate.exe
    191. tmaster.exe
    192. TradeCardDesktop.exe
    193. Typing Test TQ.exe
    194. TypingMasterPro.exe
    195. UIMain.exe
    196. UnifiedUi.exe
    197. update.exe
    198. uWebCam.exe
    199. VideoViewer.exe
    200. viewer.exe
    201. visio.exe
    202. vlc.exe
    203. VMSLiveClient.exe
    204. VMSPlayback.exe
    205. vncviewer.exe
    206. VStitcher.exe
    207. WashClient.exe
    208. WhatsApp.exe
    209. wiaacmgr.exe
    210. winDecrypt.exe
    211. WINPROJ.EXE
    212. WinRAR.exe
    213. winvnc4.exe
    214. winword.exe
    215. WINZIP32.EXE
    216. wordpad.exe
    217. xampp-control.exe
    218. XNetPlay.exe
    219. Zoom.exe
    220. adobeARM.exe
    221. TeamViewer.exe
    222. xl.exe
    223. TypingMaster.exe
    224. ACDSee-10-0-238-en.exe
    225. IllustratorCS6Portable.exe
    226. Illustrator__16.0.0_en_US.exe

    "show only specified items in the control panel policy" in this policy only show four items, Mail ,Device,printer, Date & time, Index.

    .If you only set policy "show only specified items in the control panel policy" and remove "allows Windows to run the Specified Programs only policy", does it work? yest it worked.

    1 person found this answer helpful.
    0 comments
  3. Anonymous
    2024-10-31T08:04:54+00:00

    Hello

    In your case, it seems you cannot set the two policy settings at the same time.

    You can try to set "Do not run specific Windows applications" instead of "allows Windows to run the Specified Programs only" policy.

    Best Regards,
    Daisy Zhou

    1 person found this answer helpful.
    0 comments
  4. Anonymous
    2024-11-05T05:10:11+00:00

    Hi Daisy Zhou,

    If I run "allow Windows to run Specified Programs only" this policy.

    What does exe need to allow for control panel setting?

    1 person found this answer helpful.
    0 comments
  5. Anonymous
    2024-11-05T08:53:27+00:00

    Hello

    Greetings!

    I mean you remove all the lists within "allows Windows to run the Specified Programs only".

    Then you can configure the lists within "Do not run specific Windows applications" policy, you can add the lists what you do not want to run by the domain users.

    Please test it in lab first if needed.

    Best Regards,
    Daisy Zhou

    1 person found this answer helpful.
    0 comments