Group Policy Objects and file protection

James Michael Stewart, Contributor

Windows File Protection (WFP) automatically maintains the integrity of system files. If any unauthorized changes are detected, the affected file is removed and replaced with a CRC verified backup. This feature is enabled by default, but depending on your environment you may wish to control WFP centrally throughout your domain.

The controls that manage WFP are found in the Computer Configuration section of an Active Directory group policy object in the Administrative Templates, System, Windows File Protection folder.

The Set Windows File Protection scanning control specifies whether WFP performs its scans only during setup or during both setup and startup.

The Hide the file scan progress window control hides or displays the scanning progress window of WFP. Novice users may be confused by this window.

The Limit Windows File Protection cache size control sets the size of the file cache where CRC verified backup versions of system files are stored. By default, the cache is 50 MB. This control increases or decreases the size of this cache. The larger the cache, the more files can be protected by WFP.

The Specify Windows File Protection cache location control defines the path where the WFP cache will be located. By default, it is located in %systemroot%system32dllcache. It's not a good idea to place the cache directory on a network drive; use a local hard drive with sufficient free space.


Requires Free Membership to View

Michael Stewart is a partner and researcher for ITinfo Pros, a technology-focused writing and training organization.

This was first published in December 2002

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.