Group Policy Reference
A comprehensive Microsoft Windows Group Policy reference — searchable database of GPO settings with registry paths, supported OS versions, configuration steps, security implications, and real-world use cases. Built for sysadmins managing Active Directory, Intune, and standalone Windows.
What is a Group Policy?
A Group Policy Object (GPO) is a configuration setting in Windows that defines how computers and user accounts behave. Each policy maps to one or more registry values, applies to a specific scope (Computer or User), and is bundled in an ADMX (Administrative Template) file. This reference indexes Microsoft's ADMX catalog with detailed explanations, registry mappings, and operational guidance you won't find on the official Microsoft Learn pages.
Windows Firewall: Private Profile: Firewall State
Ensures Windows Firewall is enabled for private network connections.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Private Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Domain Profile: Allow Local Policy Merge
Controls whether local firewall rules can be merged with GPO rules. No enforces GPO rules only.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Domain Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Public Profile: Inbound Connections
Default action for inbound connections on public networks.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Public Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Domain Profile: Firewall State
Ensures Windows Firewall is enabled for domain-joined connections.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Domain Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Public Profile: Firewall State
Ensures Windows Firewall is enabled for public network connections.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Public Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Domain Profile: Inbound Connections
Default action for inbound connections not matching any rule.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Domain Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Public Profile: Inbound Connections
Blocks all unsolicited inbound connections on public networks. Critical for endpoint protection on untrusted networks.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Public Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Configure Windows Firewall: Log Successful Connections (Domain Profile)
Logs successful inbound and outbound connections. Enables detection of C2 beaconing and lateral movement.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall with Advanced Security > Domain Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Configure Windows Firewall: Log Dropped Packets (Domain Profile)
Logs all dropped packets to the Windows Firewall log. Essential for network-based threat detection.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall with Advanced Security > Domain Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall Log File Maximum Size (Domain Profile)
Maximum size for the Windows Firewall log file. Increase to retain more connection history.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall with Advanced Security > Domain Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Private Profile: Firewall State
Ensures Windows Firewall is enabled for private network connections.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Private Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Public Profile: Firewall State
Ensures Windows Firewall is enabled for public network connections. Critical for laptops on untrusted networks.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Public Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →Windows Firewall: Public Profile: Allow Local Policy Merge
Controls whether local firewall rules can be merged with GPO rules on public networks. Disable to enforce GPO rules only.
Computer Configuration > Windows Settings > Security Settings > Windows Defender Firewall > Public Profile
Supported on Windows 10, Windows 11, Windows Server 2016 and later
Read reference →