Tips-Of-Mine/PAW
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

update

Browse Source
This commit is contained in:
Hubert Cornet 2023-11-29 17:01:08 +01:00
parent ad3ec73749
commit a4fa9cb5ab
73 changed files with 774 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
AdminGroups.csv Normal file
View File

@ -0,0 +1,21 @@
Name,samAccountName,GroupCategory,GroupScope,DisplayName,OU,Description,Membership
Tier 0 PAW Users,Tier0PAWUsers,Security,Global,Tier 0 PAW Users,"OU=Groups,OU=Tier0,OU=Admin",Members of this group are permitted to log onto Tier0 Privileged Access Workstations using normal accounts,
Tier 0 PAW Maintenance,Tier0PAWMaint,Security,Global,Tier 0 PAW Maintenance,"OU=Groups,OU=Tier0,OU=Admin",Members of this group maintain and support Tier0 Privileged Access Workstations,
Tier 0 Replication Maintenance,Tier0ReplicationMaintenance,Security,Global,Tier 0 Replication Maintenance,"OU=Groups,OU=Tier0,OU=Admin",Members of this group are Tier 0 Replication Maintenance,
Tier 0 Servers,Tier0Servers,Security,Global,Tier 0 Servers,"OU=Groups,OU=Tier0,OU=Admin",Group that contain all Tier 0 servers,
Tier 0 Sync Servers,Tier0SyncServers,Security,Global,Tier 0 Sync Servers,"OU=Groups,OU=Tier0,OU=Admin",Group that contain all Tier 0 synchronisation servers,
Tier 0 Physical Access,Tier0PhysicalAccess,Security,Global,Tier 0 PhysicalAccess,"OU=Groups,OU=Tier0,OU=Admin",Group that contain users allowed to access physical domain controller,
Tier 0 Physical DC,Tier0PhysicalDC,Security,Global,Tier 0 PhysicalDC,"OU=Groups,OU=Tier0,OU=Admin",Group that contain physical domain controller computer object,
Tier 0 Service Accounts,Tier0serviceaccounts,Security,Global,Tier 0 Service Accounts,"OU=Groups,OU=Tier0,OU=Admin",Group that contain all Tier 0 svc accouts,
Tier 0 PAW Computers,Tier0PAWComputers,Security,Global,Tier 0 PAW Computers,"OU=Groups,OU=Tier0,OU=Admin",Group with members of the tier 0 devices servers and domaincontrollers,
Tier 1 Admins,tier1admins,Security,Global,Tier 1 Admins,"OU=Groups,OU=Tier1,OU=Admin",Members of this group are Tier 1 Administrators,
Tier 1 Server Maintenance,Tier1ServerMaintenance,Security,Global,Tier 1 Server Maintenance,"OU=Groups,OU=Tier1,OU=Admin",Members of this group perform Tier 1 Server Maintenance,
Tier 1 PAW Users,Tier1PAWUsers,Security,Global,Tier 1 PAW Users,"OU=Groups,OU=Tier1,OU=Admin",Members of this group are permitted to log onto Tier1 Privileged Access Workstations using normal accounts,
Tier 1 PAW Computers,Tier1PAWComputers,Security,Global,Tier 1 PAW Computers,"OU=Groups,OU=Tier1,OU=Admin",Group with members of the Tier 1 devices and servers,
Tier 1 PAW Maintenance,Tier1PAWMaint,Security,Global,Tier1 PAW Maintenance,"OU=Groups,OU=Tier1,OU=Admin",Members of this group maintain and support Tier0 Privileged Access Workstations,
Tier 1 Servers,Tier1Servers,Security,Global,Tier 1 Servers,"OU=Groups,OU=Tier1,OU=Admin",Group that contain all Tier 1 servers,
Tier 1 Service Accounts,Tier1serviceaccounts,Security,Global,Tier 1serviceaccounts,"OU=Groups,OU=Tier1,OU=Admin",Group that contain all Tier 1 svc accouts,
Tier 2 Admins,tier2admins,Security,Global,Tier 2 Admins,"OU=Groups,OU=Tier2,OU=Admin",Members of this group are Tier 2 Administrators,
Tier 2 Service Desk Operators,Tier2ServiceDeskOperators,Security,Global,Tier 2 Service Desk Operators,"OU=Groups,OU=Tier2,OU=Admin",Members of this group are Service Desk Operators,
Tier 2 Workstation Maintenance,Tier2WorkstationMaintenance,Security,Global,Tier 2 Workstation Maintenance,"OU=Groups,OU=Tier2,OU=Admin",Members of this group perform Workstation Maintenance,
Tier 2 Service Accounts,Tier2serviceaccounts,Security,Global,Tier 2 Service Accounts,"OU=Groups,OU=Tier2,OU=Admin",Group that contain all Tier 2 svc accouts,
1 Name samAccountName GroupCategory GroupScope DisplayName OU Description Membership
2 Tier 0 PAW Users Tier0PAWUsers Security Global Tier 0 PAW Users OU=Groups,OU=Tier0,OU=Admin Members of this group are permitted to log onto Tier0 Privileged Access Workstations using normal accounts
3 Tier 0 PAW Maintenance Tier0PAWMaint Security Global Tier 0 PAW Maintenance OU=Groups,OU=Tier0,OU=Admin Members of this group maintain and support Tier0 Privileged Access Workstations
4 Tier 0 Replication Maintenance Tier0ReplicationMaintenance Security Global Tier 0 Replication Maintenance OU=Groups,OU=Tier0,OU=Admin Members of this group are Tier 0 Replication Maintenance
5 Tier 0 Servers Tier0Servers Security Global Tier 0 Servers OU=Groups,OU=Tier0,OU=Admin Group that contain all Tier 0 servers
6 Tier 0 Sync Servers Tier0SyncServers Security Global Tier 0 Sync Servers OU=Groups,OU=Tier0,OU=Admin Group that contain all Tier 0 synchronisation servers
7 Tier 0 Physical Access Tier0PhysicalAccess Security Global Tier 0 PhysicalAccess OU=Groups,OU=Tier0,OU=Admin Group that contain users allowed to access physical domain controller
8 Tier 0 Physical DC Tier0PhysicalDC Security Global Tier 0 PhysicalDC OU=Groups,OU=Tier0,OU=Admin Group that contain physical domain controller computer object
9 Tier 0 Service Accounts Tier0serviceaccounts Security Global Tier 0 Service Accounts OU=Groups,OU=Tier0,OU=Admin Group that contain all Tier 0 svc accouts
10 Tier 0 PAW Computers Tier0PAWComputers Security Global Tier 0 PAW Computers OU=Groups,OU=Tier0,OU=Admin Group with members of the tier 0 devices servers and domaincontrollers
11 Tier 1 Admins tier1admins Security Global Tier 1 Admins OU=Groups,OU=Tier1,OU=Admin Members of this group are Tier 1 Administrators
12 Tier 1 Server Maintenance Tier1ServerMaintenance Security Global Tier 1 Server Maintenance OU=Groups,OU=Tier1,OU=Admin Members of this group perform Tier 1 Server Maintenance
13 Tier 1 PAW Users Tier1PAWUsers Security Global Tier 1 PAW Users OU=Groups,OU=Tier1,OU=Admin Members of this group are permitted to log onto Tier1 Privileged Access Workstations using normal accounts
14 Tier 1 PAW Computers Tier1PAWComputers Security Global Tier 1 PAW Computers OU=Groups,OU=Tier1,OU=Admin Group with members of the Tier 1 devices and servers
15 Tier 1 PAW Maintenance Tier1PAWMaint Security Global Tier1 PAW Maintenance OU=Groups,OU=Tier1,OU=Admin Members of this group maintain and support Tier0 Privileged Access Workstations
16 Tier 1 Servers Tier1Servers Security Global Tier 1 Servers OU=Groups,OU=Tier1,OU=Admin Group that contain all Tier 1 servers
17 Tier 1 Service Accounts Tier1serviceaccounts Security Global Tier 1serviceaccounts OU=Groups,OU=Tier1,OU=Admin Group that contain all Tier 1 svc accouts
18 Tier 2 Admins tier2admins Security Global Tier 2 Admins OU=Groups,OU=Tier2,OU=Admin Members of this group are Tier 2 Administrators
19 Tier 2 Service Desk Operators Tier2ServiceDeskOperators Security Global Tier 2 Service Desk Operators OU=Groups,OU=Tier2,OU=Admin Members of this group are Service Desk Operators
20 Tier 2 Workstation Maintenance Tier2WorkstationMaintenance Security Global Tier 2 Workstation Maintenance OU=Groups,OU=Tier2,OU=Admin Members of this group perform Workstation Maintenance
21 Tier 2 Service Accounts Tier2serviceaccounts Security Global Tier 2 Service Accounts OU=Groups,OU=Tier2,OU=Admin Group that contain all Tier 2 svc accouts

40
Create-Group.ps1 Normal file
View File

@ -0,0 +1,40 @@
<#
.Example
$csv = Read-Host -Prompt "Please provide full path to Groups csv file"
.\Create-Group.ps1 -CSVfile $csv -Verbose
PS C:\Tools> $csv = Read-Host -Prompt "Please provide full path to Groups csv file"
Please provide full path to Groups csv file: c:\tools\groups.csv
PS C:\Tools> .\Create-Group.ps1 -CSVfile $csv -Verbose
VERBOSE: Creating new Group 'Tier0ReplicationMaintenance' under 'OU=Groups,OU=Tier0,OU=Admin,DC=azureblog,DC=pl'
VERBOSE: Creating new Group 'Tier1ServerMaintenance' under 'OU=Groups,OU=Tier1,OU=Admin,DC=azureblog,DC=pl'
VERBOSE: Creating new Group 'ServiceDeskOperators' under 'OU=Groups,OU=Tier2,OU=Admin,DC=azureblog,DC=pl'
VERBOSE: Creating new Group 'WorkstationMaintenance' under 'OU=Groups,OU=Tier2,OU=Admin,DC=azureblog,DC=pl'
VERBOSE: Group 'tier1admins'already exists.
VERBOSE: Group 'tier2admins'already exists.
#>
[CmdletBinding()]
param(
[string] $CSVfile
)
$dNC = (Get-ADRootDSE).defaultNamingContext
$groups = Import-Csv $CSVfile
foreach ($group in $groups) {
$groupName = $group.Name
$groupOUPrefix = $group.OU
$destOU = $group.OU + "," + $dNC
$groupDN = "CN=" + $groupName + "," + $destOU
$checkForGroup = Get-ADGroup -filter 'Name -eq $groupName' -ErrorAction SilentlyContinue
If ($checkForGroup.count -eq 0 ) {
Write-Verbose "Creating new Group '$($Group.samAccountName)' under '$destOU'"
New-ADGroup -Name $Group.Name -SamAccountName $Group.samAccountName -GroupCategory $Group.GroupCategory -GroupScope $Group.GroupScope -DisplayName $Group.DisplayName -Path $destOU -Description $Group.Description
If ($Group.Membership -ne "") {
Write-Verbose "Adding Group Membership '$($Group.Membership)' for group '$($Group.samAccountName)'"
Add-ADPrincipalGroupMembership -Identity $Group.samAccountName -MemberOf $Group.Membership
}
$error.Clear()
}
Else {
Write-Verbose "Group '$($Group.samAccountName)'already exists."
}
}

40
Create-User.ps1 Normal file
View File

@ -0,0 +1,40 @@
<#
.Example
$csv = Read-Host -Prompt "Please provide full path to Groups csv file"
.\Create-User.ps1 -CSVfile $csv -Password zaq12WSXcde3 -Verbose
#>
[CmdletBinding()]
param(
[Parameter(Mandatory=$True)][string] $CSVfile,
[Parameter(Mandatory=$True)][string] $Password
)
$DNSRoot = (Get-ADDomain).DNSRoot
$DSN = (Get-ADDomain).DistinguishedName
$users = Import-Csv $CSVfile
foreach ($user in $users) {
$name = $user.name
$samAccountName = $user.samAccountName
$UserPrincipalName = $samAccountName + '@' + $DNSRoot
$parentOU = $user.ParentOU + ',' + $DSN
$groupMembership = $user.GroupMembership
$enabled = [bool]$user.enabled
$checkForUser = [bool]( Get-ADUSer -Filter {SamAccountname -eq $samaccountname})
If ($checkForUser -eq $false) {
Write-Verbose "Creating new user '$samAccountName' under '$parentOU'"
New-ADUser -Name $name -Path $ParentOU -SamAccountName $samAccountName -UserPrincipalName $UserPrincipalName -AccountPassword (ConvertTo-SecureString $password -AsPlainText -Force) -ChangePasswordAtLogon $false -Enabled $enabled -EmailAddress $UserPrincipalName
start-sleep -Seconds 5
if ($groupMembership -ne "") {
$groupMembership = ($user.GroupMembership) -split ','
foreach ($group in $groupMembership){
Write-Verbose "Adding User '$samAccountName' to Group '$group'"
Add-ADGroupMember -Identity $group -Members $samAccountName
}
}
$error.Clear()
}
Else {
Write-Verbose "User '$samAccountName' already exists."
}
}

1
GPO Backup/manifest.xml Normal file
View File

File diff suppressed because one or more lines are too long

20
GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/Backup.xml Normal file
View File

@ -0,0 +1,20 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[393222]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{17D89FEC-5C44-4972-B12D-241CAEF74509}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{B05566AC-FE9C-4368-BE01-7A4CBB6CBA11}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\registry.pol" bkp:Location="DomainSysvol\GPO\Machine\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences" bkp:Location="DomainSysvol\GPO\Machine\Preferences"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups"/><FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups\Groups.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups\Groups.xml" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups\Groups.xml"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

9
GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml Normal file
View File

@ -0,0 +1,9 @@
<?xml version="1.0" encoding="utf-8"?>
<Groups clsid="{3125E937-EB16-4b4c-9934-544FC6D24D26}"><Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Administrators (built-in)" image="2" changed="2020-05-23 18:51:34" uid="{96B7D7C0-A660-4851-8C1E-6B6CC858531D}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-544" groupName="Administrators (built-in)"><Members><Member name="Administrator" action="ADD" sid=""/><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/></Members></Properties></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Backup Operators (built-in)" image="2" changed="2020-05-02 19:51:51" uid="{8EF6A831-772A-44E7-8C06-F989A132A915}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-551" groupName="Backup Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Cryptographic Operators (built-in)" image="2" changed="2020-05-02 19:52:09" uid="{8921DB1D-B0EA-47C0-939A-DE8EC751F0A6}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-569" groupName="Cryptographic Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Network Configuration Operators (built-in)" image="2" changed="2020-05-02 19:52:31" uid="{C0487B91-76A7-46E0-A1AE-E98C0E3A4DB3}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-556" groupName="Network Configuration Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Power Users (built-in)" image="2" changed="2020-05-03 15:15:33" uid="{360BD30A-D2C3-486E-BA52-EE9142B89A76}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-547" groupName="Power Users (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Remote Desktop Users (built-in)" image="2" changed="2020-05-23 18:55:35" uid="{9305EF9F-7D6D-4D42-9040-90A170FCFFD0}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-555" groupName="Remote Desktop Users (built-in)"><Members><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/><Member name="AZUREBLOG\Tier0 PAW Users" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3101"/></Members></Properties></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Replicators (built-in)" image="2" changed="2020-05-02 19:52:59" uid="{252820B0-356C-4E4B-940C-66A74C87B0F2}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-552" groupName="Replicators (built-in)"/></Group>
</Groups>

BIN
GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

BIN
GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/DomainSysvol/GPO/Machine/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:45]]></BackupTime><ID><![CDATA[{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{1E6B6CED-E567-4E62-84F4-C8322ED42DE6}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/Backup.xml Normal file
View File

@ -0,0 +1,20 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Do Not Display Logon Information]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

BIN
GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

1
GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{B7EDE9FA-A78D-40A3-AE49-C391F54856C2}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:22]]></BackupTime><ID><![CDATA[{1EF41186-1E2A-4F8E-A60C-41DC5627A442}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Do Not Display Logon Information]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{1EF41186-1E2A-4F8E-A60C-41DC5627A442}/gpreport.xml Normal file
View File

Binary file not shown.

18
GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/Backup.xml Normal file
View File

@ -0,0 +1,18 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 PAW Configuration - User]]></DisplayName><Options><![CDATA[2]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Applications" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Applications" bkp:Location="DomainSysvol\GPO\Machine\Applications"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

4
GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml Normal file
View File

@ -0,0 +1,4 @@
<?xml version="1.0" encoding="utf-8"?>
<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyEnable" status="ProxyEnable" image="6" changed="2020-05-03 14:15:57" uid="{B2EA82FA-1969-41A7-8AC3-4CFCF18AE633}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyEnable" type="REG_SZ" value="1"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier1PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2603" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyServer" status="ProxyServer" image="6" changed="2020-05-03 14:15:45" uid="{EFD6E1D2-70E6-43E9-B8A0-8FA7993FE076}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyServer" type="REG_SZ" value="127.0.0.1:80"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier1PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2603" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
</RegistrySettings>

12
GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/comment.cmtx Normal file
View File

@ -0,0 +1,12 @@
<?xml version='1.0' encoding='utf-8'?>
<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
<policyNamespaces>
<using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
</policyNamespaces>
<comments>
<admTemplate></admTemplate>
</comments>
<resources minRequiredRevision="1.0">
<stringTable></stringTable>
</resources>
</policyComments>

BIN
GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/DomainSysvol/GPO/User/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{A37BE34E-A3FE-4DEE-AA1E-A3BC81CDCED3}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:08]]></BackupTime><ID><![CDATA[{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - User]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{2BF9F766-27CB-47C5-AEAC-6804D6DECB29}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/Backup.xml Normal file
View File

File diff suppressed because one or more lines are too long

BIN
GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

1
GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{9269F0B1-AA82-46BD-A6BA-8E675B616336}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:16]]></BackupTime><ID><![CDATA[{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 Restrict Server Logon]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{32565ECB-4024-45FB-AC4C-32D1B7E3DBEA}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/Backup.xml Normal file
View File

File diff suppressed because one or more lines are too long

BIN
GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

1
GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{3FDF7BD3-C493-48A9-BD09-D2AA3C19521B}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:59]]></BackupTime><ID><![CDATA[{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 Restrict Server Logon]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{46966231-C83D-42F6-88B5-0B1EBDBD5DC2}/gpreport.xml Normal file
View File

Binary file not shown.

18
GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/Backup.xml Normal file
View File

@ -0,0 +1,18 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{4375EFBD-38B3-4E79-91BE-197A34B8B892}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - User PAC]]></DisplayName><Options><![CDATA[0]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4375EFBD-38B3-4E79-91BE-197A34B8B892}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

3
GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml Normal file
View File

@ -0,0 +1,3 @@
<?xml version="1.0" encoding="utf-8"?>
<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="AutoConfigURL" status="AutoConfigURL" image="6" changed="2020-05-23 17:19:42" uid="{C9B7F6A8-F9F9-4529-84A2-820A6C4EF291}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="1" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="AutoConfigURL" type="REG_SZ" value="file://azureblog.pl/SYSVOL/azureblog.pl/scripts/proxy.pac"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier0PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-3101" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
</RegistrySettings>

12
GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/comment.cmtx Normal file
View File

@ -0,0 +1,12 @@
<?xml version='1.0' encoding='utf-8'?>
<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
<policyNamespaces>
<using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
</policyNamespaces>
<comments>
<admTemplate></admTemplate>
</comments>
<resources minRequiredRevision="1.0">
<stringTable></stringTable>
</resources>
</policyComments>

BIN
GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/DomainSysvol/GPO/User/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{4375EFBD-38B3-4E79-91BE-197A34B8B892}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:54]]></BackupTime><ID><![CDATA[{4C7033E4-5408-452F-8EA8-820089B6DC10}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - User PAC]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{4C7033E4-5408-452F-8EA8-820089B6DC10}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/Backup.xml Normal file
View File

File diff suppressed because one or more lines are too long

BIN
GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

1
GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{57494173-6721-4C0F-A2CB-BE6083AD5991}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:20]]></BackupTime><ID><![CDATA[{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier2 Restrict Workstation Logon]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{5D3DCD2C-CD5D-4A26-AEAC-659556F43D13}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/Backup.xml Normal file
View File

File diff suppressed because one or more lines are too long

BIN
GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

1
GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{1DE541AF-4F8D-42BD-9D21-CBFEC42D8262}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:31]]></BackupTime><ID><![CDATA[{70E9154D-9966-41C1-8A4E-CC12DE13690A}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Restrict Quarantine Logon]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{70E9154D-9966-41C1-8A4E-CC12DE13690A}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/Backup.xml Normal file
View File

@ -0,0 +1,20 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3103]]></Sid><SamAccountName><![CDATA[Tier1PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3104]]></Sid><SamAccountName><![CDATA[Tier1PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier1PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{4CC70DA5-BB28-4651-8394-F719F99FD7B9}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 PAW Configuration - Computer]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{17D89FEC-5C44-4972-B12D-241CAEF74509}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{B05566AC-FE9C-4368-BE01-7A4CBB6CBA11}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\registry.pol" bkp:Location="DomainSysvol\GPO\Machine\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Applications" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Applications" bkp:Location="DomainSysvol\GPO\Machine\Applications"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Preferences" bkp:Location="DomainSysvol\GPO\Machine\Preferences"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Preferences\Groups" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups"/><FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups\Groups.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Preferences\Groups\Groups.xml" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups\Groups.xml"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{4CC70DA5-BB28-4651-8394-F719F99FD7B9}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

9
GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml Normal file
View File

@ -0,0 +1,9 @@
<?xml version="1.0" encoding="utf-8"?>
<Groups clsid="{3125E937-EB16-4b4c-9934-544FC6D24D26}"><Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Administrators (built-in)" image="2" changed="2020-05-03 10:24:35" uid="{69D13DA4-35EF-4306-B21B-8945B0B074FB}" userContext="0" removePolicy="0"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-544" groupName="Administrators (built-in)"><Members><Member name="Administrator" action="ADD" sid=""/><Member name="AZUREBLOG\Tier1 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-2604"/></Members></Properties></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Backup Operators (built-in)" image="2" changed="2020-05-02 19:51:51" uid="{8EF6A831-772A-44E7-8C06-F989A132A915}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-551" groupName="Backup Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Cryptographic Operators (built-in)" image="2" changed="2020-05-02 19:52:09" uid="{8921DB1D-B0EA-47C0-939A-DE8EC751F0A6}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-569" groupName="Cryptographic Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Network Configuration Operators (built-in)" image="2" changed="2020-05-02 19:52:31" uid="{C0487B91-76A7-46E0-A1AE-E98C0E3A4DB3}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-556" groupName="Network Configuration Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Power Users (built-in)" image="2" changed="2020-05-02 19:52:40" uid="{641914FE-D604-44BE-9D86-937EE0A21B0C}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-547" groupName="Power Users (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Remote Desktop Users (built-in)" image="2" changed="2020-05-03 17:55:32" uid="{6AD9FE21-6AEE-441D-9BDF-1B5CD8632002}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-555" groupName="Remote Desktop Users (built-in)"><Members><Member name="AZUREBLOG\Tier1 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-2604"/><Member name="AZUREBLOG\Tier1 PAW Users" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-2603"/></Members></Properties></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Replicators (built-in)" image="2" changed="2020-05-02 19:52:59" uid="{252820B0-356C-4E4B-940C-66A74C87B0F2}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-552" groupName="Replicators (built-in)"/></Group>
</Groups>

BIN
GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

BIN
GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/DomainSysvol/GPO/Machine/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{4CC70DA5-BB28-4651-8394-F719F99FD7B9}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:04]]></BackupTime><ID><![CDATA[{7C6FC4CB-65C0-4A96-936D-9A62801368CE}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - Computer]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{7C6FC4CB-65C0-4A96-936D-9A62801368CE}/gpreport.xml Normal file
View File

Binary file not shown.

18
GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/Backup.xml Normal file
View File

@ -0,0 +1,18 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier1 PAW Configuration - User PAC]]></DisplayName><Options><![CDATA[0]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

3
GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml Normal file
View File

@ -0,0 +1,3 @@
<?xml version="1.0" encoding="utf-8"?>
<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="AutoConfigURL" status="AutoConfigURL" image="6" changed="2020-05-23 17:22:16" uid="{D3FABB9E-0DA8-41F7-A3EB-28B129A99E0C}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="1" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="AutoConfigURL" type="REG_SZ" value="file://azureblog.pl/SYSVOL/azureblog.pl/scripts/proxy.pac"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier1PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-3103" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
</RegistrySettings>

12
GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/comment.cmtx Normal file
View File

@ -0,0 +1,12 @@
<?xml version='1.0' encoding='utf-8'?>
<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
<policyNamespaces>
<using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
</policyNamespaces>
<comments>
<admTemplate></admTemplate>
</comments>
<resources minRequiredRevision="1.0">
<stringTable></stringTable>
</resources>
</policyComments>

BIN
GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/DomainSysvol/GPO/User/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{E4C3FEFE-B3DF-4433-B2C5-04066B87C1E7}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:06:12]]></BackupTime><ID><![CDATA[{B9E332A3-0175-460E-8816-57E2C77551E3}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier1 PAW Configuration - User PAC]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{B9E332A3-0175-460E-8816-57E2C77551E3}/gpreport.xml Normal file
View File

Binary file not shown.

18
GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/Backup.xml Normal file
View File

@ -0,0 +1,18 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{28C9499C-9866-481D-94C2-BCBD9E99C135}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - User]]></DisplayName><Options><![CDATA[2]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[131074]]></MachineVersionNumber><MachineExtensionGuids/><UserExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{D02B1F73-3407-48AE-BA88-E8213C6761F1}][{B087BE9D-ED37-454F-AF9C-04291E351182}{BEE07A6A-EC9F-4659-B8C9-0B1937907C83}]]]></UserExtensionGuids><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_USER_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\registry.pol" bkp:Location="DomainSysvol\GPO\User\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\comment.cmtx" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\comment.cmtx" bkp:Location="DomainSysvol\GPO\User\comment.cmtx"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Documents &amp; Settings" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Documents &amp; Settings" bkp:Location="DomainSysvol\GPO\User\Documents &amp; Settings"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Preferences" bkp:Location="DomainSysvol\GPO\User\Preferences"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Preferences\Registry" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry"/><FSObjectFile bkp:Path="%GPO_USER_FSPATH%\Preferences\Registry\Registry.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Preferences\Registry\Registry.xml" bkp:Location="DomainSysvol\GPO\User\Preferences\Registry\Registry.xml"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Scripts" bkp:Location="DomainSysvol\GPO\User\Scripts"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logoff" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Scripts\Logoff" bkp:Location="DomainSysvol\GPO\User\Scripts\Logoff"/><FSObjectDir bkp:Path="%GPO_USER_FSPATH%\Scripts\Logon" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{28C9499C-9866-481D-94C2-BCBD9E99C135}\User\Scripts\Logon" bkp:Location="DomainSysvol\GPO\User\Scripts\Logon"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

4
GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/Preferences/Registry/Registry.xml Normal file
View File

@ -0,0 +1,4 @@
<?xml version="1.0" encoding="utf-8"?>
<RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}"><Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyEnable" status="ProxyEnable" image="6" changed="2020-05-03 09:38:46" uid="{99494A1E-EBB1-4A93-9037-1C0C43661B39}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyEnable" type="REG_SZ" value="1"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier0PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2601" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
<Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="ProxyServer" status="ProxyServer" image="6" changed="2020-05-03 09:38:29" uid="{B553DABF-BECC-41E6-ADDA-AC6DFA3BAD78}" removePolicy="1" bypassErrors="1"><Properties action="R" displayDecimal="0" default="0" hive="HKEY_CURRENT_USER" key="Software\Microsoft\Windows\CurrentVersion\Internet Settings" name="ProxyServer" type="REG_SZ" value="127.0.0.1:80"/><Filters><FilterGroup bool="AND" not="0" name="AZUREBLOG\Tier0PAWUsers" sid="S-1-5-21-657827913-1895599540-1755036276-2601" userContext="1" primaryGroup="0" localGroup="0"/></Filters></Registry>
</RegistrySettings>

12
GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/comment.cmtx Normal file
View File

@ -0,0 +1,12 @@
<?xml version='1.0' encoding='utf-8'?>
<policyComments xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://www.microsoft.com/GroupPolicy/CommentDefinitions">
<policyNamespaces>
<using prefix="ns0" namespace="Microsoft.Policies.InternetExplorer"></using>
</policyNamespaces>
<comments>
<admTemplate></admTemplate>
</comments>
<resources minRequiredRevision="1.0">
<stringTable></stringTable>
</resources>
</policyComments>

BIN
GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/DomainSysvol/GPO/User/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{28C9499C-9866-481D-94C2-BCBD9E99C135}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:49]]></BackupTime><ID><![CDATA[{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - User]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{DCBEE54D-0B0F-44CD-B9F4-532EF947E519}/gpreport.xml Normal file
View File

Binary file not shown.

20
GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/Backup.xml Normal file
View File

@ -0,0 +1,20 @@
<?xml version="1.0" encoding="utf-8"?><!-- Copyright (c) Microsoft Corporation. All rights reserved. --><GroupPolicyBackupScheme bkp:version="2.0" bkp:type="GroupPolicyBackupTemplate" xmlns:bkp="http://www.microsoft.com/GroupPolicy/GPOOperations" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations">
<GroupPolicyObject><SecurityGroups><Group><Sid/><SamAccountName><![CDATA[Administrators]]></SamAccountName><Type><![CDATA[Unknown]]></Type><NetBIOSDomainName/><DnsDomainName/><UPN/></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-519]]></Sid><SamAccountName><![CDATA[Enterprise Admins]]></SamAccountName><Type><![CDATA[UniversalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Enterprise Admins@azureblog.pl]]></UPN></Group><Group bkp:Source="FromDACL"><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-512]]></Sid><SamAccountName><![CDATA[Domain Admins]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Domain Admins@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3101]]></Sid><SamAccountName><![CDATA[Tier0PAWUsers]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWUsers@azureblog.pl]]></UPN></Group><Group><Sid><![CDATA[S-1-5-21-657827913-1895599540-1755036276-3102]]></Sid><SamAccountName><![CDATA[Tier0PAWMaint]]></SamAccountName><Type><![CDATA[GlobalGroup]]></Type><NetBIOSDomainName><![CDATA[AZUREBLOG]]></NetBIOSDomainName><DnsDomainName><![CDATA[azureblog.pl]]></DnsDomainName><UPN><![CDATA[Tier0PAWMaint@azureblog.pl]]></UPN></Group></SecurityGroups><FilePaths/><GroupPolicyCoreSettings><ID><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></ID><Domain><![CDATA[azureblog.pl]]></Domain><SecurityDescriptor>01 00 04 9c 00 00 00 00 00 00 00 00 00 00 00 00 14 00 00 00 04 00 ec 00 08 00 00 00 05 02 28 00 00 01 00 00 01 00 00 00 8f fd ac ed b3 ff d1 11 b4 1d 00 a0 c9 68 f9 39 01 01 00 00 00 00 00 05 0b 00 00 00 00 00 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 00 02 00 00 00 02 24 00 ff 00 0f 00 01 05 00 00 00 00 00 05 15 00 00 00 49 a8 35 27 b4 8d fc 70 74 ba 9b 68 07 02 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 09 00 00 00 00 02 14 00 94 00 02 00 01 01 00 00 00 00 00 05 0b 00 00 00 00 02 14 00 ff 00 0f 00 01 01 00 00 00 00 00 05 12 00 00 00 00 0a 14 00 ff 00 0f 00 01 01 00 00 00 00 00 03 00 00 00 00</SecurityDescriptor><DisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></DisplayName><Options><![CDATA[1]]></Options><UserVersionNumber><![CDATA[131074]]></UserVersionNumber><MachineVersionNumber><![CDATA[393222]]></MachineVersionNumber><MachineExtensionGuids><![CDATA[[{00000000-0000-0000-0000-000000000000}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{17D89FEC-5C44-4972-B12D-241CAEF74509}{79F92669-4224-476C-9C5C-6EFB4D87DF4A}][{35378EAC-683F-11D2-A89A-00C04FBBCFA2}{B05566AC-FE9C-4368-BE01-7A4CBB6CBA11}][{827D319E-6EAC-11D2-A4EA-00C04F79F83A}{803E14A0-B4FB-11D0-A0D0-00A0C90F574B}]]]></MachineExtensionGuids><UserExtensionGuids/><WMIFilter/></GroupPolicyCoreSettings>
<GroupPolicyExtension bkp:ID="{35378EAC-683F-11D2-A89A-00C04FBBCFA2}" bkp:DescName="Registry">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\registry.pol" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\registry.pol" bkp:Location="DomainSysvol\GPO\Machine\registry.pol"/>
<FSObjectFile bkp:Path="%GPO_FSPATH%\Adm\*.*" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Adm\*.*"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{827D319E-6EAC-11D2-A4EA-00C04F79F83A}" bkp:DescName="Security">
<FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf" bkp:ReEvaluateFunction="SecurityValidateSettings" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit\GptTmpl.inf"/>
</GroupPolicyExtension>
<GroupPolicyExtension bkp:ID="{F15C46CD-82A0-4C2D-A210-5D0D3182A418}" bkp:DescName="Unknown Extension"><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft" bkp:Location="DomainSysvol\GPO\Machine\microsoft"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\microsoft\windows nt\SecEdit" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\microsoft\windows nt\SecEdit" bkp:Location="DomainSysvol\GPO\Machine\microsoft\windows nt\SecEdit"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences" bkp:Location="DomainSysvol\GPO\Machine\Preferences"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups"/><FSObjectFile bkp:Path="%GPO_MACH_FSPATH%\Preferences\Groups\Groups.xml" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Preferences\Groups\Groups.xml" bkp:Location="DomainSysvol\GPO\Machine\Preferences\Groups\Groups.xml"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts" bkp:Location="DomainSysvol\GPO\Machine\Scripts"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Shutdown" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Shutdown" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Shutdown"/><FSObjectDir bkp:Path="%GPO_MACH_FSPATH%\Scripts\Startup" bkp:SourceExpandedPath="\\DC01.azureblog.pl\sysvol\azureblog.pl\Policies\{221C15F2-D130-431A-B557-B3793AABCDDE}\Machine\Scripts\Startup" bkp:Location="DomainSysvol\GPO\Machine\Scripts\Startup"/></GroupPolicyExtension></GroupPolicyObject>
</GroupPolicyBackupScheme>

9
GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/Preferences/Groups/Groups.xml Normal file
View File

@ -0,0 +1,9 @@
<?xml version="1.0" encoding="utf-8"?>
<Groups clsid="{3125E937-EB16-4b4c-9934-544FC6D24D26}"><Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Administrators (built-in)" image="2" changed="2020-05-23 18:51:34" uid="{96B7D7C0-A660-4851-8C1E-6B6CC858531D}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-544" groupName="Administrators (built-in)"><Members><Member name="Administrator" action="ADD" sid=""/><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/></Members></Properties></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Backup Operators (built-in)" image="2" changed="2020-05-02 19:51:51" uid="{8EF6A831-772A-44E7-8C06-F989A132A915}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-551" groupName="Backup Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Cryptographic Operators (built-in)" image="2" changed="2020-05-02 19:52:09" uid="{8921DB1D-B0EA-47C0-939A-DE8EC751F0A6}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-569" groupName="Cryptographic Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Network Configuration Operators (built-in)" image="2" changed="2020-05-02 19:52:31" uid="{C0487B91-76A7-46E0-A1AE-E98C0E3A4DB3}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-556" groupName="Network Configuration Operators (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Power Users (built-in)" image="2" changed="2020-05-03 15:15:33" uid="{360BD30A-D2C3-486E-BA52-EE9142B89A76}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-547" groupName="Power Users (built-in)"/></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Remote Desktop Users (built-in)" image="2" changed="2020-05-23 18:55:35" uid="{9305EF9F-7D6D-4D42-9040-90A170FCFFD0}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-555" groupName="Remote Desktop Users (built-in)"><Members><Member name="AZUREBLOG\Tier0 PAW Maintenance" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3102"/><Member name="AZUREBLOG\Tier0 PAW Users" action="ADD" sid="S-1-5-21-657827913-1895599540-1755036276-3101"/></Members></Properties></Group>
<Group clsid="{6D4A79E4-529C-4481-ABD0-F5BD7EA93BA7}" name="Replicators (built-in)" image="2" changed="2020-05-02 19:52:59" uid="{252820B0-356C-4E4B-940C-66A74C87B0F2}"><Properties action="U" newName="" description="" deleteAllUsers="1" deleteAllGroups="1" removeAccounts="0" groupSid="S-1-5-32-552" groupName="Replicators (built-in)"/></Group>
</Groups>

BIN
GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.inf Normal file
View File

Binary file not shown.

BIN
GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/DomainSysvol/GPO/Machine/registry.pol Normal file
View File

Binary file not shown.

1
GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/bkupInfo.xml Normal file
View File

@ -0,0 +1 @@
<BackupInst xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/Manifest"><GPOGuid><![CDATA[{221C15F2-D130-431A-B557-B3793AABCDDE}]]></GPOGuid><GPODomain><![CDATA[azureblog.pl]]></GPODomain><GPODomainGuid><![CDATA[{88ed5944-7d81-4c63-9643-bc4d2b6d95d5}]]></GPODomainGuid><GPODomainController><![CDATA[DC01.azureblog.pl]]></GPODomainController><BackupTime><![CDATA[2020-05-23T19:05:37]]></BackupTime><ID><![CDATA[{F596D010-C445-4AC5-BCCF-6E7A2503CE78}]]></ID><Comment><![CDATA[]]></Comment><GPODisplayName><![CDATA[Tier0 PAW Configuration - Computer]]></GPODisplayName></BackupInst>

BIN
GPO Backup/{F596D010-C445-4AC5-BCCF-6E7A2503CE78}/gpreport.xml Normal file
View File

Binary file not shown.

34
Import-GPO.ps1 Normal file
View File

@ -0,0 +1,34 @@
<#
.Example
$BackupPath = Read-Host -Prompt "Please provide full path to GPO backups"
.\Import-GPO.ps1 -BackupPath $BackupPath -Verbose
#>
[CmdletBinding()]
param(
[Parameter(Mandatory = $True)][string] $BackupPath,
[string] $GPOMigrationTable
)
$backupList = Get-ChildItem -Path $BackupPath -Exclude "manifest.xml"
Set-Location $BackupPath
$location = Get-Location
foreach ($item in $backupList){
$backupID = $null
$xmlFilePath = $null
$gpoName = $null
$backupID = $item.name -replace "{","" -replace "}",""
$xmlFilePath = ".\$($item.name)\gpreport.xml"
[xml]$xmlFile = Get-Content -Path $xmlFilePath
$gpoName = $xmlFile.GPO.Name
Write-Verbose "Importing new GPO '$gpoName' with GUID '$backupID'"
Write-Verbose "Please remember to update proper groups in GPO settings"
if ($GPOMigrationTable -eq $null) {
Import-GPO -BackupId $backupID -TargetName $gpoName -Path $BackupPath -CreateIfNeeded
}
else {
Import-GPO -BackupId $backupID -TargetName $gpoName -Path $BackupPath -MigrationTable $GPOMigrationTable -CreateIfNeeded
}
Set-Location $location
}

31
Link-GpoToOU.ps1 Normal file
View File

@ -0,0 +1,31 @@
<#
.EXAMPLE
$GpoLinks = @(
$(New-Object PSObject -Property @{ Name = "POLICYNAME" ; OU = "OUPATH"; Order = 1; LinkEnabled = 'YES'}),
)
.\Link-GpoToOU.ps1 -GpoLinks $GpoLinks -Verbose
#>
[CmdletBinding()]
param(
[Parameter(Mandatory = $True)][PSObject] $GpoLinks
)
Import-Module ActiveDirectory
$DC = (Get-ADDomain).DistinguishedName
$GpoLinks | foreach-Object {
$name = $_.Name
$OU = $_.ou
$order = $_.Order
$LinkEnabled = $_.LinkEnabled
if ($OU -eq "") {
$ouPath = $DC
}
else {
$ouPath = "$OU,$DC"
}
Write-Verbose "Linking GPO '$name' into OU '$ouPath'"
New-GPLink -Name $name -Target $ouPath -LinkEnabled $LinkEnabled -Order $order
}

76
PAW_steps.ps1 Normal file
View File

@ -0,0 +1,76 @@
Throw "this is not a robust file"
$location = Get-Location
Set-Location C:\Tools\PAW
#Region create Groups
$csv = Read-Host -Prompt "Please provide full path to Admin Groups csv file"
.\Create-Group.ps1 -CSVfile $csv -Verbose
$csv = Read-Host -Prompt "Please provide full path to Standard Groups csv file"
.\Create-Group.ps1 -CSVfile $csv -Verbose
#endRegion
#Region create Users
$csv = Read-Host -Prompt "Please provide full path to Users csv file"
.\Create-User.ps1 -CSVfile $csv -password zaq12WSXcde3 -Verbose
#endRegion
#region import GPO
Throw "Please update migration table file"
$BackupPath = Read-Host -Prompt "Please provide full path to GPO backups"
$GPOMigrationTable = Read-Host -Prompt "Please provide full path to GPO Migration Table"
.\Import-GPO.ps1 -BackupPath $BackupPath -GPOMigrationTable $GPOMigrationTable -Verbose
Set-Location C:\Tools\PAW
Write-Host "!!!!!!!!!!!!!!!! Please copy proxy.pac file to the Sysvol\Scripts\" -ForegroundColor Green
#endregion
#region Link gpo
$GpoLinks = @(
$(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Devices,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Tier0 Servers,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Devices,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Devices,OU=Tier2,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Tier 1 Servers"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Do Not Display Logon Information" ; OU = "OU=Workstations"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Restrict Quarantine Logon" ; OU = "OU=Quarantine"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier0 Restrict Server Logon" ; OU = "OU=Devices,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier0 Restrict Server Logon" ; OU = "OU=Tier0 Servers,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier1 Restrict Server Logon" ; OU = "OU=Devices,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier1 Restrict Server Logon" ; OU = "OU=Tier 1 Servers"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier2 Restrict Workstation Logon" ; OU = "OU=Devices,OU=Tier2,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier2 Restrict Workstation Logon" ; OU = "OU=Workstations"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier0 PAW Configuration - Computer" ; OU = "OU=Devices,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier0 PAW Configuration - User" ; OU = "OU=Accounts,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'No'}),
$(New-Object PSObject -Property @{ Name = "Tier0 PAW Configuration - User PAC" ; OU = "OU=Accounts,OU=Tier0,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier1 PAW Configuration - Computer" ; OU = "OU=Devices,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'}),
$(New-Object PSObject -Property @{ Name = "Tier1 PAW Configuration - User" ; OU = "OU=Accounts,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'NO'})
$(New-Object PSObject -Property @{ Name = "Tier1 PAW Configuration - User PAC" ; OU = "OU=Accounts,OU=Tier1,OU=Admin"; Order = 1 ;LinkEnabled = 'YES'})
)
.\Link-GpoToOU.ps1 -GpoLinks $GpoLinks -Verbose
dsa.msc
gpmc.msc
#endregion
#region Setup Computer Objects
Get-ADComputer -Identity W10 | Move-ADObject -TargetPath "OU=Quarantine,DC=Azureblog,DC=pl"
Get-ADComputer -Identity SRV01 | Move-ADObject -TargetPath "OU=Devices,OU=Tier0,OU=Admin,DC=Azureblog,DC=pl"
Get-ADCOmputer -Identity W10
Get-ADComputer -Identity SRV01
#endregion
#region Tier0PAWUser on SRV01
whoami /groups
net user testuser zaq12WSX /add
[System.Net.WebProxy]::GetDefaultProxy() | select address
#endregion
#region Tier0PAWMAintenancer on SRV01
whoami /groups
net user testuser zaq12WSX /add
net user testuser
net user testuser /del
[System.Net.WebProxy]::GetDefaultProxy() | select address
#endregion
Set-Location $location

5
StandardGroups.csv Normal file
View File

@ -0,0 +1,5 @@
Name,samAccountName,GroupCategory,GroupScope,DisplayName,OU,Description,Membership
Test Group 1,testgroup1,Security,Global,Test Group 1,"ou=Security Groups,OU=Groups",Group with random members,
Test Group 2,testgroup2,Security,Global,Test Group 2,"ou=Security Groups,OU=Groups",Group with random members,
Test Group 3,testgroup3,Security,Global,Test Group 3,"ou=Security Groups,OU=Groups",Group with random members,
Test Group 4,testgroup4,Security,Global,Test Group 4,"ou=Security Groups,OU=Groups",Group with random members,
1 Name samAccountName GroupCategory GroupScope DisplayName OU Description Membership
2 Test Group 1 testgroup1 Security Global Test Group 1 ou=Security Groups,OU=Groups Group with random members
3 Test Group 2 testgroup2 Security Global Test Group 2 ou=Security Groups,OU=Groups Group with random members
4 Test Group 3 testgroup3 Security Global Test Group 3 ou=Security Groups,OU=Groups Group with random members
5 Test Group 4 testgroup4 Security Global Test Group 4 ou=Security Groups,OU=Groups Group with random members

28
Users.csv Normal file
View File

@ -0,0 +1,28 @@
Name,samAccountName,ParentOU,GroupMembership,Enabled
Robert Przybylski,robert.przybylski,"OU=Accounts,OU=Tier0,OU=Admin","Domain Admins",True
Tier0 PAW Maintenancer,tier0pawmaintenancer,"OU=Accounts,OU=Tier0,OU=Admin",Tier0PAWMaint,True
Tier1 PAW Maintenancer,tier1pawmaintenancer,"OU=Accounts,OU=Tier1,OU=Admin",Tier1PAWMaint,True
Tier0 PAW User,tier0pawuser,"OU=Accounts,OU=Tier0,OU=Admin","Tier0PAWUsers,Domain Admins",True
Tier1 PAW User,tier1pawuser,"OU=Accounts,OU=Tier1,OU=Admin","Tier1PAWUsers,Tier1ServerMaintenance",True
Tier2 SD User,tier2sduser,"OU=Accounts,OU=Tier2,OU=Admin","Tier2ServiceDeskOperators",True
Tier2 WM User,tier2wmuser,"OU=Accounts,OU=Tier2,OU=Admin","Tier2WorkstationMaintenance",True
Bruce Banner,brucebanner,"ou=Enabled Users,ou=User Accounts","testGroup1",True
Iron Man,ironman,"OU=Accounts,OU=Tier2,OU=Admin","Tier2ServiceDeskOperators,Tier2WorkstationMaintenance,Tier2Admins",True
Capitan America,capitanamerica,"ou=Enabled Users,ou=User Accounts","testGroup3",True
Spider Man,spiderman,"ou=Disabled Users,ou=User Accounts","testGroup4",False
Black Widow,blackwidow,"ou=Enabled Users,ou=User Accounts","testGroup1,DNSAdmins",True
Thor,thor,"ou=Disabled Users,ou=User Accounts","testGroup2",False
BlackPanter,blackpanter,"ou=Enabled Users,ou=User Accounts","testGroup3",True
Clint Barton,clintbarton,"ou=Disabled Users,ou=User Accounts","testGroup4",False
Im Groot,imgroot,"ou=Enabled Users,ou=User Accounts","testGroup1",True
Doctor Strange,doctorstrange,"ou=Disabled Users,ou=User Accounts","testGroup2",False
Star Lord,starlord,"OU=Accounts,OU=Tier1,OU=Admin","Tier1PAWUsers,Tier1ServerMaintenance,Tier1Admins",True
Vision,vision,"ou=Disabled Users,ou=User Accounts","testGroup4",False
Loki,loki,"ou=Enabled Users,ou=User Accounts","testGroup1",True
Bucky Barnes,buckybarnes,"ou=Disabled Users,ou=User Accounts","testGroup2",False
Rocket Raccoon,rocketraccoon,"ou=Enabled Users,ou=User Accounts","testGroup3",True
Nick Fury,nickfurry,"ou=Disabled Users,ou=User Accounts","testGroup4",False
Drax,drax,"ou=Enabled Users,ou=User Accounts","testGroup1",True
Sam Wilson,samwilson,"ou=Disabled Users,ou=User Accounts","testGroup2",False
Justin Case,justincase,"ou=Enabled Users,ou=User Accounts","testGroup3,Tier0PhysicalAccess",True
Replication Service,svc_replicator,"OU=Service Accounts,OU=Tier0,OU=Admin","Tier0ReplicationMaintenance",True
1 Name samAccountName ParentOU GroupMembership Enabled
2 Robert Przybylski robert.przybylski OU=Accounts,OU=Tier0,OU=Admin Domain Admins True
3 Tier0 PAW Maintenancer tier0pawmaintenancer OU=Accounts,OU=Tier0,OU=Admin Tier0PAWMaint True
4 Tier1 PAW Maintenancer tier1pawmaintenancer OU=Accounts,OU=Tier1,OU=Admin Tier1PAWMaint True
5 Tier0 PAW User tier0pawuser OU=Accounts,OU=Tier0,OU=Admin Tier0PAWUsers,Domain Admins True
6 Tier1 PAW User tier1pawuser OU=Accounts,OU=Tier1,OU=Admin Tier1PAWUsers,Tier1ServerMaintenance True
7 Tier2 SD User tier2sduser OU=Accounts,OU=Tier2,OU=Admin Tier2ServiceDeskOperators True
8 Tier2 WM User tier2wmuser OU=Accounts,OU=Tier2,OU=Admin Tier2WorkstationMaintenance True
9 Bruce Banner brucebanner ou=Enabled Users,ou=User Accounts testGroup1 True
10 Iron Man ironman OU=Accounts,OU=Tier2,OU=Admin Tier2ServiceDeskOperators,Tier2WorkstationMaintenance,Tier2Admins True
11 Capitan America capitanamerica ou=Enabled Users,ou=User Accounts testGroup3 True
12 Spider Man spiderman ou=Disabled Users,ou=User Accounts testGroup4 False
13 Black Widow blackwidow ou=Enabled Users,ou=User Accounts testGroup1,DNSAdmins True
14 Thor thor ou=Disabled Users,ou=User Accounts testGroup2 False
15 BlackPanter blackpanter ou=Enabled Users,ou=User Accounts testGroup3 True
16 Clint Barton clintbarton ou=Disabled Users,ou=User Accounts testGroup4 False
17 Im Groot imgroot ou=Enabled Users,ou=User Accounts testGroup1 True
18 Doctor Strange doctorstrange ou=Disabled Users,ou=User Accounts testGroup2 False
19 Star Lord starlord OU=Accounts,OU=Tier1,OU=Admin Tier1PAWUsers,Tier1ServerMaintenance,Tier1Admins True
20 Vision vision ou=Disabled Users,ou=User Accounts testGroup4 False
21 Loki loki ou=Enabled Users,ou=User Accounts testGroup1 True
22 Bucky Barnes buckybarnes ou=Disabled Users,ou=User Accounts testGroup2 False
23 Rocket Raccoon rocketraccoon ou=Enabled Users,ou=User Accounts testGroup3 True
24 Nick Fury nickfurry ou=Disabled Users,ou=User Accounts testGroup4 False
25 Drax drax ou=Enabled Users,ou=User Accounts testGroup1 True
26 Sam Wilson samwilson ou=Disabled Users,ou=User Accounts testGroup2 False
27 Justin Case justincase ou=Enabled Users,ou=User Accounts testGroup3,Tier0PhysicalAccess True
28 Replication Service svc_replicator OU=Service Accounts,OU=Tier0,OU=Admin Tier0ReplicationMaintenance True

113
gpo_backup.migtable Normal file
View File

@ -0,0 +1,113 @@
<?xml version="1.0" encoding="utf-16"?>
<MigrationTable xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="http://www.microsoft.com/GroupPolicy/GPOOperations/MigrationTable">
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier0ReplicationMaintenance@azureblog.pl</Source>
<Destination>Tier0ReplicationMaintenance@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Domain Admins@azureblog.pl</Source>
<Destination>Domain Admins@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>Unknown</Type>
<Source>Administrators</Source>
<Destination>Administrators</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Domain Controllers@azureblog.pl</Source>
<Destination>Domain Controllers@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>UniversalGroup</Type>
<Source>Enterprise Admins@azureblog.pl</Source>
<Destination>Enterprise Admins@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier0PAWUsers@azureblog.pl</Source>
<Destination>Tier0PAWUsers@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Group Policy Creator Owners@azureblog.pl</Source>
<Destination>Group Policy Creator Owners@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier1PAWUsers@azureblog.pl</Source>
<Destination>Tier1PAWUsers@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>tier2admins@azureblog.pl</Source>
<Destination>tier2admins@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>Unknown</Type>
<Source>Backup Operators</Source>
<Destination>Backup Operators</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Read-only Domain Controllers@azureblog.pl</Source>
<Destination>Read-only Domain Controllers@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier1PAWMaint@azureblog.pl</Source>
<Destination>Tier1PAWMaint@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier2ServiceDeskOperators@azureblog.pl</Source>
<Destination>Tier2ServiceDeskOperators@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier1ServerMaintenance@azureblog.pl</Source>
<Destination>Tier1ServerMaintenance@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier2WorkstationMaintenance@azureblog.pl</Source>
<Destination>Tier2WorkstationMaintenance@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>Unknown</Type>
<Source>Server Operators</Source>
<Destination>Server Operators</Destination>
</Mapping>
<Mapping>
<Type>Unknown</Type>
<Source>Account Operators</Source>
<Destination>Account Operators</Destination>
</Mapping>
<Mapping>
<Type>Unknown</Type>
<Source>Print Operators</Source>
<Destination>Print Operators</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>Tier0PAWMaint@azureblog.pl</Source>
<Destination>Tier0PAWMaint@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>GlobalGroup</Type>
<Source>tier1admins@azureblog.pl</Source>
<Destination>tier1admins@azureblog.pl</Destination>
</Mapping>
<Mapping>
<Type>Unknown</Type>
<Source>Cryptographic Operators</Source>
<Destination>Cryptographic Operators</Destination>
</Mapping>
<Mapping>
<Type>UniversalGroup</Type>
<Source>Schema Admins@azureblog.pl</Source>
<Destination>Schema Admins@azureblog.pl</Destination>
</Mapping>
</MigrationTable>

52
proxy.pac Normal file
View File

@ -0,0 +1,52 @@
function FindProxyForURL(url, host) {
if (shExpMatch(host, "*.aspnetcdn.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.aadrm.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.appex.bing.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.appex-rf.msn.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.assets-yammer.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.azure.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.azurecomcdn.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.cloudappsecurity.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.c.bing.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.gfx.ms")) { return "DIRECT"; }
if (shExpMatch(host, "*.live.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.live.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.lync.com")) { return "DIRECT"; }
if (shExpMatch(host, "maodatafeedsservice.cloudapp.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.microsoft.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.microsoftonline.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.microsoftonline-p.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.microsoftonline-p.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.microsoftonlineimages.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.microsoftonlinesupport.net")) { return "DIRECT"; }
if (shExpMatch(host, "ms.tific.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.msecnd.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.msedge.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.msft.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.msocdn.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.onenote.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.outlook.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.office365.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.office.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.office.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.onmicrosoft.com")) { return "DIRECT"; }
if (shExpMatch(host, "partnerservices.getmicrosoftkey.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.passport.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.phonefactor.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.s-microsoft.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.s-msn.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.sharepoint.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.sharepointonline.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.s-msn.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.symcb.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.yammer.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.yammerusercontent.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.verisign.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.windows.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.windows.net")) { return "DIRECT"; }
if (shExpMatch(host, "*.windowsazure.com")) { return "DIRECT"; }
if (shExpMatch(host, "*.windowsupdate.com")) { return "DIRECT"; }
return "PROXY 127.0.0.2:8080";
}