Programming
Reader small image

You're reading from  Microsoft Exam MD-100 Windows 10 Certification Guide

Product typeBook
Published inMay 2020
PublisherPackt
ISBN-139781838822187
Edition1st Edition
Tools
Windows OS
Concepts
Desktop Applications
Right arrow
Author (1)
Jeroen Burgerhout
Jeroen Burgerhout
author image
Jeroen Burgerhout

Jeroen Burgerhout is a Microsoft Cloud Consultant at SKS Professionals with great technical experience in Microsoft products. He is specialized in Azure, Hyper-V, Intune, Office 365, EMS, Windows 10, and Windows Server. He is currently working for the government in the Netherlands, working on the migration to Microsoft 365 with Microsoft Endpoint Manager, Azure Active Directory, and security features such as Azure AD PIM, Azure AD MFA, and Azure AD Conditional Access. Later this year, he will start with the new Modern Workplace concept, which is entitled to Windows 10, Windows Autopilot, Microsoft Endpoint Management, Office 365, and Azure AD. His Twitter account is @BurgerhoutJ.
Read more about Jeroen Burgerhout

Right arrow

Chapter 6: Configuring and Implementing Local Policies

All settings in Windows 10 are stored in the registry. The registry is a database that contains details of all your settings, applications, device drivers, and many more. Without the registry, Windows will not work.

This chapter will introduce how to configure devices by using local policies, configure the local registry, and troubleshoot group policies in Windows 10. Group policy is a centrally managed technology that is designed to manage and control Windows 10 devices. The local group policy is the local implementation of these policies, and you need to know how you can configure local settings on a computer using these policies.

The following topics will be covered in this chapter:

  • Configuring the local registry
  • Configuring local policies
  • Implementing account policies
  • Troubleshooting group policies

This chapter will provide you with the skills to configure local policies and understand the registry...

Technical requirements

This chapter will use PowerShell code. This code is available on the GitHub page at https://github.com/PacktPublishing/Microsoft-Exam-MD-100-Windows-10-Certification-Guide/tree/master/Chapter06.

In this chapter, you will implement and configure local policies and registry keys. The steps that you will follow are also recorded. You can find these videos here: https://bit.ly/2LsQDqD

Configuring the local registry

The Windows registry is the heart of the Windows 10 Operating System (OS). All of the settings are stored in the registry. The registry is a database that contains all of the Windows settings, installed software, device drivers, and many more settings. Without this registry, Windows 10 would not work.

You should take care when working with or editing the registry. An incorrect change in the registry can result in an unreliable OS, with a reinstallation of the OS as a solution. You should always create a backup of the registry before editing the registry.

To better handle the registry, we must understand the registry structure first.

Understanding the registry structure

The registry is organized hierarchically. At the top level, there are five registry hives. These five hives are DEFAULT, SAM, SECURITY, SOFTWARE, and SYSTEM. These five hives are a distinct collection of related settings that are structured as a series of keys, subkeys, and...

Configuring local policies

A group policy controls the environment of user accounts and computer accounts. A set of group policies is called a Group Policy Object (GPO). And one set of a group policy is called a Local Group Policy (LGPO). The difference between group policy objects and the local group policy is that GPOs are managed centrally and distributed across the Active Directory members, and an LGPO is managed decentrally and is intended for members without Active Directory, for example, standalone computers.

GPOs are processed in the following order:

  • Local
  • Site
  • Domain
  • Organizational Unit

Local policies are becoming effective when a user is logging in to a Windows 10 device. In this local policy, you can configure user settings and/or computer settings. For example, you can configure policies that implement auditing, specify user rights, and set security options. These three settings will be handled in the next sections.

Configuring the Audit...

Implementing account policies

In the previous section, you learned how you could open the Local Security Editor to configure Local Policies to the user or computer. In the Local Security Editor, you can also configure Account Policies within this Local Security Editor.

Important Note

These policies only work for local accounts and not for Microsoft accounts.

With the Account Policies, you can configure policies such as password policies and account lockout policies.

Configuring a Password Policy

If you want to ensure that all users on a local device use secure passwords and these are changed after several days, you can configure a Password Policy. Follow the next steps to configure a Password Policy:

  1. Click Start and type Secpol.msc.
  2. Click on Local Security Policy.
  3. In the Local Security Policy window, click on the Account Policies | Password Policy tab:

    Figure 6.9 - The password policies settings

  4. We first double-click on Enforce password history.
    5. ...

Troubleshooting group policies

You should now be able to understand how to perform basic troubleshooting of Group group policies in Windows 10. We are not going to deep dive into every Group Policy because that is too much to cover in this book.

In general, when we refer to Group Policy, we are referring to Group Policy Objects (GPO) that contain Group Policy settings that are created by you as an IT administrator and are deployed to devices in a domain environment. Local Group Policy refers to policy settings that are locally administered and configured. A Group Policy can fail when applied to a Windows 10 device and there can be many reasons for this, such as incorrect GPO settings or a poor network connection.

Before you start investigating failed group policies, you can do a preliminary check in the following areas:

  • Group Policy Client Service: Check whether this service has the status Running or Automatic in the Services.msc utility.
  • Network Connection: Verify...

Summary

In this chapter, you learned the basics of the registry. The registry contains registry hives, keys, and values. You also learned about the different value types.

You also learned about configuring local policies, such as configuring the audit policy, to monitor, for example, failed login attempts. You also learned how to configure specific user rights to give users, for example, the right to change the system time. With configuring security options, you learned to allow or deny users access to specific sources, such as a CD-ROM drive.

With the implementation of account policies, you have learned how to configure a Password Policy for secure passwords and to configure an Account Lockout Policy to prevent brute-force attacks on a Windows 10 device.

In the next chapter, we will look at how we can secure data and applications within Windows 10 to make use of the features that Windows 10 offers.

Questions

  1. Is the USERDIFF binary file by default present in Windows 10?
  2. Can you import or export registry keys?
  3. Is REG_DWORD_SZ a valid value type?
  4. Can you set the Maximum password age setting to 123 days?
  5. Can you use the RSoP Planning Mode on a standalone Windows 10 device?
lock icon
The rest of the chapter is locked
Previous Chapter
Chapter 9 of 20
Next Chapter
You have been reading a chapter from
Microsoft Exam MD-100 Windows 10 Certification Guide
Published in: May 2020Publisher: PacktISBN-13: 9781838822187
© 2020 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
undefined
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at €14.99/month. Cancel anytime

Author (1)

author image
Jeroen Burgerhout

Jeroen Burgerhout is a Microsoft Cloud Consultant at SKS Professionals with great technical experience in Microsoft products. He is specialized in Azure, Hyper-V, Intune, Office 365, EMS, Windows 10, and Windows Server. He is currently working for the government in the Netherlands, working on the migration to Microsoft 365 with Microsoft Endpoint Manager, Azure Active Directory, and security features such as Azure AD PIM, Azure AD MFA, and Azure AD Conditional Access. Later this year, he will start with the new Modern Workplace concept, which is entitled to Windows 10, Windows Autopilot, Microsoft Endpoint Management, Office 365, and Azure AD. His Twitter account is @BurgerhoutJ.
Read more about Jeroen Burgerhout

Other recommended products

Related to this chapter

Installing and Configuring Windows 10: 70-698 Exam Guide

Installing and Configuring Windows 10: 70-698 Exam Guide

This guide provides an excellent collection of tips and tricks to get the job done in Windows 10. It is designed to confirm what you already know, while at the same time updating your knowledge of Windows 10. Although it provides usable content for everyone, at its heart it’s made for IT professionals seeking to strengthen their Windows 10 skills.

BookJan 2019490 pages
Windows 10 for Enterprise Administrators

Windows 10 for Enterprise Administrators

Microsoft’s launch of Windows 10 is a step toward satisfying the enterprise administrator’s needs for management and user experience customization. This book provides the enterprise administrator with the knowledge needed to fully utilize the advanced feature set of Windows 10 Enterprise.

BookSep 2017314 pages
Microsoft 365 Mobility and Security - Exam Guide MS-101

Microsoft 365 Mobility and Security - Exam Guide MS-101

The MS-101 exam is part of the Microsoft 365 Certified: Enterprise Administrator Expert certification path in which users learn to evaluate, plan, migrate, deploy, and manage Microsoft 365 services. This book offers complete, up-to-date coverage of the MS-101 exam so you can take them with confidence, fully equipped to pass the first time.

BookNov 2019312 pages
Mastering Windows Security and Hardening

Mastering Windows Security and Hardening

Securing and hardening your Windows environment will enhance protection to secure your company’s data and users. This book will provide the knowledge you need to secure the Windows environment. Windows Security and Hardening covers the best practices you can implement in real-world scenarios.

BookJul 2020572 pages
Windows Server 2019 Administration Fundamentals

Windows Server 2019 Administration Fundamentals

Windows Server 2019 is the latest version of the server operating system developed by Microsoft. It offers some unique features such as improved container services, storage, security, and administration. This book covers all the fundamental aspects of the Windows Server 2019 administration and also prepares you for the MTA 98-365 exam.

BookOct 2019426 pages
Installation, Storage, and Compute with Windows Server 2016: Microsoft 70-740 MCSA Exam Guide

Installation, Storage, and Compute with Windows Server 2016: Microsoft 70-740 MCSA Exam Guide

This practical guide covers 70-740 exam objectives required for MCSA: Windows Server 2016 certification. Additionally, this certification guide will come in handy when preparing to take the exam 70-743: Upgrading Your Skills to MCSA: Windows Server 2016.

BookFeb 2019330 pages
Windows Server 2016 Administration Fundamentals

Windows Server 2016 Administration Fundamentals

This book is designed to get you started with Windows Server 2016 and prepare you for your MTA 98-365 exam. With step-by-step instructions driven by targeted, easy-to-understand graphics, you will be able to understand the roles, features, functions, and quirks of Windows Server 2016.

BookDec 2017386 pages
Identity with Windows Server 2016: Microsoft 70-742 MCSA Exam Guide

Identity with Windows Server 2016: Microsoft 70-742 MCSA Exam Guide

This practical guide covers Identity with Windows Server 2016: 70-742 exam objectives required for MCSA: Windows Server 2016 certification.

BookJan 2019232 pages
Deploying Microsoft System Center Configuration Manager

Deploying Microsoft System Center Configuration Manager

It becomes important to plan, design, and deploy configurations when administrators know that Configuration Manager interacts with a number of infrastructure components such as Active Directory Domain Services, network protocols, Windows Server services, and so on.

BookSep 2017376 pages
Microsoft 365 Certified Fundamentals MS-900 Exam Guide

Microsoft 365 Certified Fundamentals MS-900 Exam Guide

Microsoft? ?365? ?Certified? ?Fundamentals certification demonstrates your knowledge of cloud services in general and the SaaS cloud model. This MS-900 exam guide, filled with practice questions, exam patterns, and mock tests, will help help you pass the exam on the first go and get to grips with adopting core Microsoft 365 services and cloud concepts.

BookFeb 2020342 pages
Active Directory Administration Cookbook

Active Directory Administration Cookbook

Active Directory and Azure Active Directory offer centralized administration possibilities to automate network, security and access management in Microsoft-oriented environments. This book will help you in deploying, administering, and automating Active Directory through a recipe-based approach.

BookMay 2019620 pages
Mastering Windows Group Policy

Mastering Windows Group Policy

Windows Group Policy has been one of the most powerful yet underutilized tools in our corporate networks for many years. It is an incredible centralized management tool, and almost everyone already has it up and running in their environments.This book will help you become familiar with what Group Policy has to offer and learn how to make better use of it in your day job.

BookNov 2018408 pages5

Personalised recommendations for you

Based on your interests and search pattern

C++ Programming for Linux Systems

C++ Programming for Linux Systems

This book covers the essential system programming tools and helps you explore the features of C++20. It emphasizes important details to maintain code quality and tackle everyday challenges of developing software for high performance, optimization, and more.

BookSep 2023288 pages
Expert C++

Expert C++

Discover advanced programming techniques, the latest features of C++17 and C++20, and best practices for memory management, debugging, testing, and large-scale application design with Expert C++. Ideal for experienced developers advancing to proficient programmers and building professional-grade C++ applications.

BookAug 2023604 pages
iOS 17 Programming for Beginners

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners, Eighth Edition is your comprehensive guide to learning the art of iOS app development. Whether you dream of creating the next chart-topping app or simply want to enhance your programming skills, this book is your trusted companion on this exciting journey.

BookOct 2023604 pages4
Developer Career Masterplan

Developer Career Masterplan

Written by industry experts that have spent the last 20+ years helping developers grow their career path towards senior developer positions and beyond. This book provides a comprehensive guide, sharing examples and stories from their global careers. By the end, you’ll have the knowledge to create a clear career progression plan as a technical professional.

BookSep 2023310 pages
Refactoring with C#

Refactoring with C#

In Refactoring with C#, you’ll explore the process of safely refactoring modern .NET code using Visual Studio features, advanced unit tests, AI assistance, and custom Roslyn analyzers.

BookNov 2023434 pages
Python Real-World Projects

Python Real-World Projects

Amplify your developer journey by curating a dynamic project portfolio that outshines traditional resumes. Delve into the Python realm through immersive projects, mastering core concepts while constructing comprehensive modules and applications. From data acquisition prowess to impactful data visualization, Python Real-World Projects arms you with essential skills to beat the competition.

BookSep 2023478 pages5
The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI enables developers to master MVVM principles and effectively apply them to .NET MAUI. This book uses real-life examples and covers complex problems to help you successfully apply MVVM with .NET MAUI to confidently develop robust and high-performing cross-platform apps.

BookNov 2023386 pages
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Quantum Computing Algorithms

Quantum Computing Algorithms

The book emphasizes intuitive ideas behind quantum algorithms in ways that other books don’t cover, striking a careful balance between no math and too much math. To get the most from this book, you should be comfortable with basic algebra and writing simple computer code. No prior understanding of quantum physics is needed to get started.

BookSep 2023342 pages
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5