Yeah it looks like... HKLM\SOFTWARE\Microsoft\Security Center\FirewallOverride is the setting I am looking for. Was hoping Security Center was more policy aware than simply off or on. Since it apparently is not, I went ahead and wrote an ADM for these few settings. It is attached if anyone is interested. Just remember you'll have to manually add the template in and uncheck the "Only show policy settings that can be fully managed" in the Filtering dialog before you'll see the settings under Computer Configuration > Administrative Templates > Windows Components > Security Center. For whatever reason, it also seems to take a reboot before the settings show up correctly in Security Center. Those registry keys apparently aren't volatile and just a restart of the service was not enough to kick things in gear. Jamie Nelson | Systems Engineer | Systems Support, Information Technology | I N T E G R I S Health | Phone 405.552.0903 | http://www.integrisok.com <http://www.integrisok.com/> From: gptalk-bounce@xxxxxxxxxxxxx [mailto:gptalk-bounce@xxxxxxxxxxxxx] On Behalf Of Darren Mar-Elia Sent: Tuesday, January 29, 2008 3:53 PM To: gptalk@xxxxxxxxxxxxx Subject: [gptalk] Re: Disable Security Center Monitoring Jamie- I've never seen any references to this. I tried running my GP Spy against the Security Center and it didn't turn up anything under the policy keys. You might try Regmon as that would show all registry I/O against the security center. Darren From: gptalk-bounce@xxxxxxxxxxxxx [mailto:gptalk-bounce@xxxxxxxxxxxxx] On Behalf Of Nelson, Jamie R Sent: Tuesday, January 29, 2008 12:49 PM To: gptalk@xxxxxxxxxxxxx Subject: [gptalk] Disable Security Center Monitoring Does anyone know if I can selectively enable/disable monitoring of the individual components in Security Center via Group Policy (ie. Automatic Updates, Windows Firewall, Virus Protection)? I want to enable Security Center on my domain PCs, but I don't want it to monitor the Windows Firewall. I found a site saying it can be disabled via the following registry keys, but was wondering if there is a corresponding policy-aware key for the same thing. HKLM\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify HKLM\SOFTWARE\Microsoft\Security Center\FirewallOverride Don't want to tattoo those settings unless I have to. Jamie Nelson | Systems Engineer | Systems Support, Information Technology | I N T E G R I S Health | Phone 405.552.0903 | http://www.integrisok.com <http://www.integrisok.com/> ________________________________ This e-mail may contain identifiable health information that is subject to protection under state and federal law. This information is intended to be for the use of the individual named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited and may be punishable by law. If you have received this electronic transmission in error, please notify us immediately by electronic mail (reply). ________________________________ This e-mail may contain identifiable health information that is subject to protection under state and federal law. This information is intended to be for the use of the individual named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited and may be punishable by law. If you have received this electronic transmission in error, please notify us immediately by electronic mail (reply). ********************************************************************** This e-mail may contain identifiable health information that is subject to protection under state and federal law. This information is intended to be for the use of the individual named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited and may be punishable by law. If you have received this electronic transmission in error, please notify us immediately by electronic mail (reply). This e-mail may contain identifiable health information that is subject to protection under state and federal law. This information is intended to be for the use of the individual named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited and may be punishable by law. If you have received this electronic transmission in error, please notify us immediately by electronic mail (reply).