[System Access]
MinimumPasswordAge = 1
MaximumPasswordAge = 90
MinimumPasswordLength = 12
PasswordComplexity = 1
PasswordHistorySize = 24
LockoutBadCount = 3
ResetLockoutCount = 15
LockoutDuration = 15
RequireLogonToChangePassword = 1
ForceLogoffWhenHourExpire = 1

[System Log]
MaximumLogSize = 4194240
AuditLogRetentionPeriod = 2
RestrictGuestAccess = 1
[Security Log]
MaximumLogSize = 4194240
AuditLogRetentionPeriod = 2
RestrictGuestAccess = 1
[Application Log]
MaximumLogSize = 4194240
AuditLogRetentionPeriod = 2
RestrictGuestAccess = 1


[Event Audit]
AuditSystemEvents = 3
AuditLogonEvents = 3
AuditObjectAccess = 2
AuditPrivilegeUse = 2
AuditPolicyChange = 3
AuditAccountManage = 3
AuditProcessTracking = 0
CrashOnAuditFull = 1


[Version]
signature="$CHICAGO$"


[Group Membership]



[Registry Values]
MACHINE\System\CurrentControlSet\Control\Lsa\AuditBaseObjects=4,1
MACHINE\System\CurrentControlSet\Services\Rdr\Parameters\EnablePlainTextPassword=4,0
MACHINE\System\CurrentControlSet\Control\Session Manager\ProtectionMode=4,1
MACHINE\System\CurrentControlSet\Control\Session Manager\Memory Management\ClearPageFileAtShutdown=4,1
MACHINE\System\CurrentControlSet\Control\Print\Providers\LanMan Print Services\AddPrintDrivers=4,1
MACHINE\System\CurrentControlSet\Control\Lsa\LmCompatibilityLevel=4,2
MACHINE\System\CurrentControlSet\Control\Lsa\CrashOnAuditFail=4,1
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\ShutdownWithoutLogon=1,0
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\LegalNoticeText=1,....   <<<   Message Text for Users Logging on  >>>  ....
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\LegalNoticeCaption=1,.... <<<< Message Title for Users Loging on  >>>>  ....
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\DontDisplayLastUserName=1,1
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\CachedLogonsCount=1,0
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AllocateFloppies=1,1
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AllocateCDRoms=1,1
MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\PasswordExpiryWarning=15
MACHINE\System\CurrentControlSet\Control\Lsa\RestrictAnonymous=4,1
MACHINE\System\CurrentControlSet\Control\Lsa\FullPrivilegeAuditing=3,31
[Registry Keys]
"MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"CLASSES_ROOT\.hlp",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x0003001f;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Protected Storage System Provider",1,""
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Compatibility",2,"D:P(A;CI;0xc0000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;CO)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Program Groups",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Secure",2,"D:P(A;CI;0x10000000;;;CO)(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"USERS\.DEFAULT\SOFTWARE\Microsoft\Protected Storage System Provider",1,""
"MACHINE\SYSTEM\CurrentControlSet\Services\UPS",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SYSTEM\CurrentControlSet\Services\Schedule",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Shares",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"CLASSES_ROOT",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x0002001f;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"CLASSES_ROOT\helpfile",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Classes",1,""
"MACHINE\SOFTWARE\Microsoft\Cryptography",2,"D:P(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)(A;CI;0x80000000;;;AU)"
"MACHINE\SOFTWARE\Microsoft\NetDDE",2,"D:P(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Ole",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;CO)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Rpc",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Secure",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x0002001f;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Font Drivers",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\FontMapper",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Perflib",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"USERS\.DEFAULT",2,"D:P(A;CI;0x80000000;;;AU)(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"USERS\.DEFAULT\SOFTWARE\Microsoft\NetDDE",2,"D:P(A;CI;0x10000000;;;DA)(A;CI;0x10000000;;;SY)"
"USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\OS/2 Subsystem for NT",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;SY)"
"MACHINE\SOFTWARE\Windows 3.1 Migration Status",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x00020019;;;AU)(A;CI;0x000f003f;;;CO)(A;CI;0x000f003f;;;SY)"
"MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg",2,"D:P(A;CI;0x000f003f;;;DA)(A;CI;0x000f003f;;;SY)"
[Service General Setting]
Schedule,4,"D:(A;;0x000200ad;;;DA)(A;;0x000201fd;;;SY)S:(SA;FA;0x000f01ff;;;WD)"
[File Security]
"%SystemRoot%\SendTo",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\Temporary Internet Files",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\History",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\COOKIES",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\Help",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\Security",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Regedt32.cnt",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Regedt32.hlp",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Regedt32.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Rexec.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Rsh.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Rcp.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Ntbackup.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\Rdisk.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\pagefile.sys",1,"D:P(A;CIOI;0x001200a9;;;SY)"
"%SystemRoot%\Regedit.exe",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\NTReskit",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Autoexec.bat",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\boot.ini",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Ntdetect.com",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Msdos.sys",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Config.sys",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\ntldr",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Io.sys",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\Profiles",1,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;S-0x1-0x000000000005-0x15-0x3b1e46f5-0x69bf70fb-0x253b7c20-0x200)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Win32app",1,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;S-0x1-0x000000000005-0x15-0x3b1e46f5-0x69bf70fb-0x253b7c20-0x200)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Users",1,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;S-0x1-0x000000000005-0x15-0x3b1e46f5-0x69bf70fb-0x253b7c20-0x200)(A;CIOI;0x001f01ff;;;SY)"
"c:\boot.ini",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"c:\ntdetect.com",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"c:\ntldr",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"c:\autoexec.bat",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;SY)"
"c:\config.sys",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Program Files",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\repair",2,"D:P(A;CIOI;0x10000000;;;DA)(A;CIOI;0x10000000;;;SY)"
"%SystemDirectory%\config",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\repl\import",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001301bf;;;RP)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\repl\export",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001200a9;;;RP)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDrive%\Temp",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001201bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\$NtServicePackUninstall$",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;;0x001201bf;;;AU)(A;CIOIIO;0x001200a9;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemDirectory%\spool\Printers",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001301bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001301bf;;;RP)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\nsreg.dat",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001301bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\drwtsn32.log",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001301bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
"%SystemRoot%\mapiuid.ini",2,"D:P(A;CIOI;0x001f01ff;;;DA)(A;CIOI;0x001301bf;;;AU)(A;CIOI;0x001f01ff;;;CO)(A;CIOI;0x001f01ff;;;SY)"
[Privilege Rights]
SeAssignPrimaryTokenPrivilege =
SeAuditPrivilege =
SeBackupPrivilege = Administrators,Backup Operators
SeChangeNotifyPrivilege =
SeCreatePagefilePrivilege = Administrators
SeCreatePermanentPrivilege =
SeCreateTokenPrivilege =
SeDebugPrivilege =
SeIncreaseBasePriorityPrivilege = Administrators
SeIncreaseQuotaPrivilege =
SeInteractiveLogonRight = Administrators,Backup Operators
SeLoadDriverPrivilege = Administrators
SeLockMemoryPrivilege =
SeMachineAccountPrivilege =
SeNetworkLogonRight = Administrators,Authenticated Users
SeProfileSingleProcessPrivilege = Administrators
SeRemoteShutdownPrivilege = Administrators
SeRestorePrivilege = Administrators,Backup Operators
SeSecurityPrivilege = Administrators
SeShutdownPrivilege = Administrators
SeSystemEnvironmentPrivilege = Administrators
SeSystemProfilePrivilege = Administrators
SeSystemTimePrivilege = Administrators
SeTakeOwnershipPrivilege = Administrators
SeBatchLogonRight =
SeServiceLogonRight =
SeTcbPrivilege =