Windows Sicherheitseinschränkung Appkonfiguration über GPO
15. Juni 2018
App-Datenschutz
Benachrichtigungen
Gruppenrichtlinie
In den folgenden Punkten werden verscchiedene Konfigurationen für Apps und Datenschutz vorgenommen.
Durch diese Konfiguration wird der Zugriff auf die verschiedenen Bereich verweigert. Die Verwendung von z.B. Mircrofon, Bluetooth-Geräten kann nicht verwendet werden.
Nachverfolgung von Apps
So deaktivieren Sie „Windows erlauben, das Starten von Apps nachzuverfolgen, um Start und Suchergebnisse zu verbessern“.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced!Start_TrackProgs REG_DWORD: 0
App-Datenschutz
Computerkonfiguration\Richtlinien\Administrative Vorlagen\Windows-Komponenten\App-Datenschutz
Ausführung von Windows-Apps im Hintergrund zulassen
Ausführung von Windows-Apps im Hintergrund zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsRunInBackground REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsRunInBackground_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsRunInBackground_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsRunInBackground_UserInControlOfTheseApps REG_MULTI_SZ: ""
Funksteuerung durch Windows-Apps zulassen
Funksteuerung durch Windows-Apps zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessRadios REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessRadios_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessRadios_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessRadios_UserInControlOfTheseApps REG_MULTI_SZ: ""
Kommunikation von Windows-Apps mit entkoppelten Geräten zulassen
Kommunikation von Windows-Apps mit entkoppelten Geräten zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsSyncWithDevices REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsSyncWithDevices_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsSyncWithDevices_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsSyncWithDevices_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps Telefonanrufe gestatten
Windows-Apps Telefonanrufe gestatten HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessPhone REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessPhone_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessPhone_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessPhone_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Aufgaben zulassen
Windows-Apps-Zugriff auf Aufgaben zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTasks REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTasks_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTasks_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTasks_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Benachrichtigungen zulassen
Windows-Apps-Zugriff auf Benachrichtigungen zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessNotifications REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessNotifications_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessNotifications_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessNotifications_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Bewegungsdaten zulassen
Deaktivierung für den Zugriff auf Bewegungsdaten
Windows-Apps-Zugriff auf Bewegungsdaten zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMotion REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMotion_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMotion_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMotion_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Microfon zulassen
Windows-Apps-Zugriff auf Microfon zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMicrophone REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMicrophone_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMicrophone_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMicrophone_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf den Kalender zulassen
Windows-Apps-Zugriff auf den Kalender zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCalendar REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCalendar_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCalendar_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCalendar_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Diagnoseinformationen anderer Apps zulassen
Zugriff anderer Apps auf Diagnosedaten deaktivieren
Windows-Apps-Zugriff auf Diagnoseinformationen anderer Apps zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsGetDiagnosticInfo REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsGetDiagnosticInfo_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsGetDiagnosticInfo_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsGetDiagnosticInfo_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf die Anrufliste zulassen
Windows-Apps-Zugriff auf die Anrufliste zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCallHistory REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCallHistory_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCallHistory_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCallHistory_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Kamera zulassen
Windows-Apps-Zugriff auf Kamera zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCamera REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCamera_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCamera_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessCamera_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf E-Mail zulassen
Windows-Apps-Zugriff auf E-Mail zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessEmail REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessEmail_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessEmail_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessEmail_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Eyetrackinggeräte zulassen
Windows-Apps-Zugriff auf Eyetrackinggeräte zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessGazeInput REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessGazeInput_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessGazeInput_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessGazeInput_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Kontakte zulassen
Windows-Apps-Zugriff auf Kontakte zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessContacts REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessContacts_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessContacts_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessContacts_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Kontoinformationen zulassen
Zugriff der Apps auf Namen, Bild und Kontoinformationen verweigern
Windows-Apps-Zugriff auf Kontoinformationen zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessAccountInfo REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessAccountInfo_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessAccountInfo_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessAccountInfo_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Nachrichten zulassen
Windows-Apps-Zugriff auf Nachrichten zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMessaging REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMessaging_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMessaging_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessMessaging_UserInControlOfTheseApps REG_MULTI_SZ: ""
Windows-Apps-Zugriff auf Positionsdaten zulassen
Deaktivierung für den Zugriff der Positionsdaten der Apps zulassen
Windows-Apps-Zugriff auf Positionsdaten zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessLocation REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessLocation_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessLocation_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessLocation_UserInControlOfTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors!DisableLocation REG_DWORD: 1
Windows-Apps-Zugriff auf vertrauenswürdige Geräte zulassen
Windows-Apps-Zugriff auf vertrauenswürdige Geräte zulassen HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTrustedDevices REG_DWORD: 2 HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTrustedDevices_ForceAllowTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTrustedDevices_ForceDenyTheseApps REG_MULTI_SZ: "" HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy!LetAppsAccessTrustedDevices_UserInControlOfTheseApps REG_MULTI_SZ: ""
Benachrichtigungen
Computerkonfiguration\Richtlinien\Administrative Vorlagen\Startmenüp und Titelleiste\Benachrichtigungen
Netzwerkverwendung für Benachrichtigungen deaktivieren
Netzwerkverwendung für Benachrichtigungen deaktivieren HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications!NoCloudApplicationNotification REG_DWORD: 1
Gruppenrichtlinie
Computerkonfiguration\Richtlinien\Administrative Vorlagen\System\Gruppenrichtlinie
Web-zu-App-Verknüpfung mit App-URI-Handlern konfigurieren
Starten von Apps auf denen die zugehörtige App registriert ist verhindern.
Web-zu-App-Verknüpfung mit App-URI-Handlern konfigurieren HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\System!EnableAppUriHandlers REG_DWORD: 0
Skript für vorherige Konfiguration
# Registry eintraege - deaktivieren
$reg = @(
# Apps
[PSCustomObject]@{path="HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced";name="Start_TrackProgs";value="0";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsRunInBackground";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsRunInBackground_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsRunInBackground_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsRunInBackground_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessRadios";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessRadios_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessRadios_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessRadios_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsSyncWithDevices";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsSyncWithDevices_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsSyncWithDevices_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsSyncWithDevices_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessPhone";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessPhone_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessPhone_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessPhone_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTasks";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTasks_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTasks_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTasks_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessNotifications";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessNotifications_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessNotifications_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessNotifications_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMotion";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMotion_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMotion_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMotion_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMicrophone";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMicrophone_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMicrophone_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMicrophone_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCalendar";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCalendar_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCalendar_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCalendar_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsGetDiagnosticInfo";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsGetDiagnosticInfo_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsGetDiagnosticInfo_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsGetDiagnosticInfo_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCallHistory";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCallHistory_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCallHistory_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCallHistory_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCamera";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCamera_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCamera_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessCamera_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessEmail";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessEmail_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessEmail_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessEmail_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessGazeInput";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessGazeInput_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessGazeInput_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessGazeInput_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessContacts";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessContacts_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessContacts_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessContacts_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessAccountInfo";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessAccountInfo_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessAccountInfo_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessAccountInfo_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMessaging";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMessaging_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMessaging_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessMessaging_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessLocation";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessLocation_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessLocation_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\LocationAndSensors";name="DisableLocation";value="1";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessLocation_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTrustedDevices";value="2";type="DWord"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTrustedDevices_ForceAllowTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTrustedDevices_ForceDenyTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\AppPrivacy";name="LetAppsAccessTrustedDevices_UserInControlOfTheseApps";value="";type="MultiString"}
[PSCustomObject]@{path="HKLM:\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications";name="NoCloudApplicationNotification";value="1";type="DWord"}
[PSCustomObject]@{path="HKLM:\Software\Policies\Microsoft\Windows\System";name="EnableAppUriHandlers";value="0";type="DWord"}
)
# Reg-Eintraege schreiben
foreach($r in $reg){
if(Test-Path $r.path){
New-ItemProperty -Path $r.path -Name $r.name -Value $r.value -PropertyType $r.type -Force | Out-Null
}
else{
New-Item -Path $r.path -Force | Out-Null
New-ItemProperty -Path $r.path -Name $r.name -Value $r.value -PropertyType $r.type -Force | Out-Null
}
}
Weitere Links
https://intermundien.de/deaktivierung-der-datensammlung-und-weitergabe-an-microsoft-ueber-gpo
Ein Kommentar
Pingback: