A good way to do this would be with a DCM rule. You could write a rule to
detect if the GPO is enabled by query this class in WMI
class RSOP_GPO
{
string id;
string name = "";
string guidName = "";
uint32 version = 0;
boolean enabled = TRUE;
uint8 securityDescriptor[];
string fileSystemPath = "";
boolean accessDenied = FALSE;
string filterId = "";
boolean filterAllowed = TRUE;
string extensionIds[];
};
You'll need the GUID of the GPO and enabled, properties of RSOP_GPO.
Mike D-
From: [email protected]
To: [email protected]
Subject: [mssms] inventory firewall rules?
Date: Tue, 10 Nov 2015 22:34:54 +0000
Can SCCM do it?
Discovered today that local any-any RDP rules apply even when domain GPO RDP
rules are applied at the same time. I was able to RDP to a resource from
someplace I should not have been able to. With the exit of XP/2003 we can now
write
policies for just the advanced firewall, but I need to know where local rules
are in place, and what they are. How can I collect them/report on them?
Compliance items?
Todd
Todd Mote, MCP, MCSA+Messaging, MCSE | [email protected]
Enterprise Systems Management | Information Technology Services | The
University of Texas at Austin
