Export (0) Print
Expand All
This topic has not yet been rated - Rate this topic

6 Appendix A: Product Behavior

The information in this specification is applicable to the following Microsoft products or supplemental software. References to product versions include released service packs:

  • Windows 2000 operating system

  • Windows XP operating system

  • Windows Server 2003 operating system

  • Windows Vista operating system

  • Windows Server 2008 operating system

  • Windows 7 operating system

  • Windows Server 2008 R2 operating system

  • Windows 8 operating system

  • Windows Server 2012 operating system

  • Windows 8.1 operating system

  • Windows Server 2012 R2 operating system

Exceptions, if any, are noted below. If a service pack or Quick Fix Engineering (QFE) number appears with the product version, behavior changed in that service pack or QFE. The new behavior also applies to subsequent service packs of the product unless otherwise specified. If a product edition appears with the product version, behavior is different in that product edition.

Unless otherwise specified, any statement of optional behavior in this specification that is prescribed using the terms SHOULD or SHOULD NOT implies product behavior in accordance with the SHOULD or SHOULD NOT prescription. Unless otherwise specified, the term MAY implies that the product does not follow the prescription.

<1> Section 2.2.1: The preferences policy settings "Drives", "InternetSettings", "Regional Options", "StartMenu" and all "FolderOptions" except for "FileTypes" are not implemented for computer policy mode because these settings are applicable only to the current user. The preferencespolicy settings "FileTypes", "NetworkShares" and "Services" are not implemented for user policy mode because these settings are generic to the computer and apply to all logged-on users.

<2> Section 2.2.1: ControlPanel.xml is currently not created during any editing sequence. It is documented here for completeness.

<3> Section 2.2.1.1.4: The seed value used to generate the key is the sequence of characters:

0x71 0x46 0x32 0x0f 0x64 0x10 0x00

Windows pseudocode for generating the key on the Windows Platform is as follows:

CryptAcquireContext( &amp;hCryptProv, NULL, NULL, 
   PROV_RSA_AES, CRYPT_VERIFYCONTEXT);

CryptCreateHash( hCryptProv, CALG_SHA1, 0, 0, &hHash );

CryptHashData(hHash, (BYTE *)szKey, strKey.GetLength(), 0);

CryptDeriveKey(hCryptProv, CALG_AES_256, hHash, 
    CRYPT_NO_SALT | CRYPT_EXPORTABLE, &hKey);
      

<4> Section 2.2.1.1.5: In this case "Windows" and "Microsoft" are not being used as a reference to the product or the company but as part of a path to a repository location. It is understood when reading the protocol that these paths are implementation specific and when implemented on any other platform, another path name MAY be used. The Licensee can and probably would, unless they were on the Windows platform, implement the repository using some other technology but the path and key values, for example "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion" and "SystemRoot", are the values that make those environment variables unique within whatever repository is used and unique within this document.

<5> Section 2.2.1.5.1: The PATH environment variable is a semi-colon delimited list of folder paths that is searched when a program is requested that is not in the current location. It first appeared in MS-DOS and is still used by many MS-DOS and Microsoft Windows command line utilities.

<6> Section 2.2.1.7.1: In this case "Windows" and "Microsoft" are not being used as a reference to the product or the company but as part of a path to a repository location. It is understood when reading the protocol that these paths are implementation specific and when implemented on any other platform, another path name MAY be used. The Licensee can and probably would, unless they were on the Windows platform, implement the repository using some other technology but the path and key values, for example "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion" and "SystemRoot", are the values that make those environment variables unique within whatever repository is used and unique within this document.

<7> Section 2.2.1.7.2: In this case "Windows" and "Microsoft" are not being used as a reference to the product or the company but as part of a path to a repository location. It is understood when reading the protocol that these paths are implementation specific and when implemented on any other platform, another path name MAY be used. The Licensee can and probably would, unless they were on the Windows platform, implement the repository using some other technology but the path and key values, for example "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion" and "SystemRoot", are the values that make those environment variables unique within whatever repository is used and unique within this document.

<8> Section 2.2.1.10: In this case "Windows" and "Microsoft" are not being used as a reference to the product or the company but as part of a path to a repository location. It is understood when reading the protocol that these paths are implementation specific and when implemented on any other platform, another path name MAY be used. The Licensee can and probably would, unless they were on the Windows platform, implement the repository using some other technology but the path and key values, for example "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion" and "SystemRoot", are the values that make those environment variables unique within whatever repository is used and unique within this document.

<9> Section 2.2.1.11.1: Windows assigns each group a security identifier (SID). Windows uses this information to determine if a group is allowed to access a particular resource. Use caution when using the Replace action as the newly created group will have a new SID. This may prevent groups from having access to resources.

<10> Section 2.2.1.11.2: Windows assigns each user a security identifier (SID). Windows uses this information to determine if a user is allowed to access a particular resource. Use caution when using the Replace action as the newly created user will have a new SID. This may prevent users from having access to resources.

<11> Section 2.2.1.12: For information on Windows client settings for VPN, see [MSDN-VPN].

<12> Section 2.2.1.12.2: For Windows Vista, Windows Server 2008, Windows 7 or Windows Server 2008 R2 which use IPv6, the process will not fail but will return "No Match".

<13> Section 2.2.1.19: For information on Windows services, see [MSDN-WINSVC].

<14> Section 2.2.1.21.1: In this case "Windows" and "Microsoft" are not being used as a reference to the product or the company but as part of a path to a repository location. It is understood when reading the protocol that these paths are implementation specific and when implemented on any other platform, another path name MAY be used. The Licensee can and probably would, unless they were on the Windows platform, implement the repository using some other technology but the path and key values, for example "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion" and "SystemRoot", are the values that make those environment variables unique within whatever repository is used and unique within this document.

<15> Section 2.2.1.21.2: In this case "Windows" and "Microsoft" are not being used as a reference to the product or the company but as part of a path to a repository location. It is understood when reading the protocol that these paths are implementation specific and when implemented on any other platform, another path name MAY be used. The Licensee can and probably would, unless they were on the Windows platform, implement the repository using some other technology but the path and key values, for example "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion" and "SystemRoot", are the values that make those environment variables unique within whatever repository is used and unique within this document.

<16> Section 2.2.1.22: The enumerated values are as follows:

  • NT refers to Windows XP, Windows Server 2003, Windows Server 2003 R2, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows 8.1, or Windows Server 2012 R2.

  • 9X refers to Windows 95, Windows 98, and Windows Millennium Edition.

  • NE refers to Any.

<17> Section 2.2.1.22: The enumerated values NE, 95, 98, ME, NT, 2K, XP, 2K3, 2K3R2, VISTA, 2K8, WIN7, 2K8R2, WIN8, WIN8S, WINBLUE, or WINBLUESRV refer to Any, Windows 95, Windows 98, Windows Millennium Edition, Windows NT, Windows 2000, Windows XP, Windows Server 2003, Windows Server 2003 R2, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8, Windows Server 2012, Windows 8.1, or Windows Server 2012 R2.

<18> Section 2.2.1.22: The enumerated values R2, SE, PRO, SV, DC, WS, PR, or NE refer to R2, Standard Edition, Professional, Server, Domain Controller, Workstation, Professional or Any. Please note that the values PR and PRO are equivalent and both refer to Professional.

<19> Section 2.2.1.22: The enumerated values 64, 64EP, 64DC, AS, DTC, EP, HM, MC, SRV, STD, TPC, TSE, WEB, SBS, PRO, 64STGSTD, 64STGWKGRP, 64MPSTD, 64MPPREM, 64ESSSOL, or NE refer to 64-bit, 64-bit Enterprise, 64-bit Datacenter, Advanced Server, Datacenter, Enterprise, Home, Media Center, Server, Standard, Tablet PC, Terminal Server, Web, Small Business Server, Professional, 64-bit Storage Server Standard, 64-bit Storage Server Premium, 64-bit MultiPoint Server Standard, 64-bit MultiPoint Server Premium, 64-bit Essentials, or Any.

<20> Section 2.2.1.22: The enumerated values NE, TS, or CONSOLE refer to the protocol type being used for the terminal server connection. This information is returned from the Windows API WTSQuerySessionInformation with the WTSInfoClass set to the constant "WTSClientProtocolType". NE equates to a value of 0 (the console session), 1 (retained for legacy purposes), or 2 (the RDP protocol). TS equates to a value of 2. CONSOLE equates to a value of 0. For more information, please see [MSDN-WTSQRYSESSINFO].

<21> Section 2.2.1.22: The enumerated values APPLICATION, PROGRAM, CLIENT, SESSION, DIRECTORY, or IP refers to query type being passed to the Windows API WTSQuerySessionInformation with the WTSInfoClass set to the constants WTSApplicationName, WTSInitialProgram, WTSClientProductId, WTSSessionInfo, WTSClientDirectory and WTSClientAddress respectively.

<22> Section 3.2.5.1.1: Windows ignores errors updating the local database and continues to the Group Policy: Preferences Extension sequence even when such failures occur. There is no surfacing of such ignored errors to other protocols, so the Group Policy: Core Protocol as a whole is unaffected by errors in updating the local database.

<23> Section 3.2.5.1.2: Windows ignores errors updating the local database and continues to the Group Policy: Preferences Extension sequence even when such failures occur. There is no surfacing of such ignored errors to other protocols, so the Group Policy: Core Protocol as a whole is unaffected by errors in updating the local database.

 
Show:
© 2014 Microsoft. All rights reserved.