Allows you to remove the Run command from the Start menu, Internet Explorer, and Task Manager. If you enable this setting, ...

Windows Server 2003

"Allows you to remove the Run command from the Start menu, Internet Explorer, and Task Manager.

If you enable this setting, the following changes occur:

(1) The Run command is removed from the Start menu.

(2) The New Task (Run) command is removed from Task Manager.

(3) The user will be blocked from entering the following into the Internet Explorer Address Bar:

--- A UNC path: \\\ 

---Accessing local drives:  e.g., C:

--- Accessing local folders: e.g., 	emp>

Also, users with extended keyboards will no longer be able to display the Run dialog box by pressing the Application key (the key with the Windows logo) + R.

If you disable or do not configure this setting, users will be able to access the Run command in the Start menu and in Task Manager and use the Internet Explorer Address Bar.



Note:This setting affects the specified interface only. It does not prevent users from using other methods to run programs.

Note: It is a requirement for third-party applications with Windows 2000 or later certification to adhere to this setting."

Allows you to import a security template into a database so that the settings specified in the template can be applied to ... Allows you to permit and prohibit the use of Microsoft Management Console (MMC) extension snap-ins. These snap-ins include ... Allows you to permit and prohibit the use of MMC snap-ins. These snap-ins include Active Directory, Disk Management, IP Security, ... Allows you to permit and prohibit the use of the Group Policy Object Editor snap-in and its extensions, as well as the Resultant ... Allows you to remove the Run command from the Start menu, Internet Explorer, and Task Manager. If you enable this setting, ... Allows you to restrict programs from being run from online Help. If you enable this setting, you can prevent programs that ... Allows you to specify that local computer administrators can supplement the "Define Activation Security Check exemptions" ... Allows you to turn off the Configuration Interface for System Restore. System Restore enables users, in the event of a problem, ... Allows you to validate the syntax of a security template. The syntax of this command is: secedit /validate filename /cfg ...