4 Replies Latest reply on Jul 23, 2012 4:00 PM by nonusedname

    Exclusion Question

      Hi i am looking at implementing a Domain Controller policy, i got he following recommendation from the Microsoft website:

       

      Turn off scanning of files in the Sysvol\Sysvol folder.


      The current location of the Sysvol\Sysvol folder and all its subfolders is the file system reparse target of the replica set root. The Sysvol\Sysvol folder uses the following location:

      %systemroot%\Sysvol\Domain

      Exclude the following files from this folder and all its subfolders:

      • *.adm
      • *.admx
      • *.adml
      • Registry.pol
      • *.aas
      • *.inf
      • Fdeploy.inf
      • Scripts.ini
      • *.ins
      • Oscfilter.ini


      So i jsut want to know if the following exclusions would work:

       

      c:\windows\sysvol\domain\**\*.adm

      c:\windows\sysvol\domain\**\*.admx

      c:\windows\sysvol\domain\**\*.adml

      c:\windows\sysvol\domain\**\registry.pol

      c:\windows\sysvol\domain\**\*.aas

      c:\windows\sysvol\domain\**\*.inf

      c:\windows\sysvol\domain\**\fdepoly.inf

      c:\windows\sysvol\domain\**\scripts.ini

      c:\windows\sysvol\domain\**\*.adm

      c:\windows\sysvol\domain\**\*.ins

      c:\windows\sysvol\domain\**\Oscfilter.ini

       

      With exclude all sub folders turned on. I looked at the exclusion KB but it didn't seem that clear on excluding folders paths and then any and all filetypes like that under the folders...

       

      Sorry if this is a stupid question im still learning. Thanks inadvance