Most applications that you try to install pop up a UAC dialog that asks for user credentials with admin rights.
We have a Windows domain where the users do not have local admin rights on the PC. If there is an installer, why not to behave like a good bad google boys and limit all the installs through installer instead of this exotic download/install/registryless (chrome hell) way? Question is, can we deploy this policies local without any influece of corporate AD policy ? So that to circumvent this issue, in our PC we force manual disable of this AV part, sad but true. I must say, Active Directory is in the HQ hands which are in US, we don´t have rights for changes in AD, and ask them to made this changes is an impossible dream, actually we send a ticket some time ago in order to put spiceworks in white lists in corporate AntiVirus tool, we don´t have any answer. I guess those are Jeff says, and for a formal install, google has the windows installer in: Http:/ / administrators/ policy-templates google has gpo files policies which are in: However it does mean that any vendor can hide their application from this type of scan by not having entries in those keys.įabricio, have you tried a software restricion GPO as suggested by Brandon? It would certainly stop Chrome from running and with a bit of investigation you should be able to find out which website the updater downloads from and either block it or if you don't have that kind of filtering available you could always create a local hosts file with an entry pointing the update ip addresses to 127.0.0.1, that would stop the updates. I can understand Spiceworks using the Uninstall registry keys as the alternatives would be a lot more invasive and lengthy.
0 kommentar(er)
