Somtimes you just need the comprehensive list of things to reverse-lookup something. Some folks just like to read every page of the manual. For both groups, and IT Pros with a strong CYA sensibility, there is the Group Policy Settings Reference for Windows Server 2008 and Windows Vista SP1.

splogscreen: if you are reading this on some site other than http://blogs.technet.com/tonyso, why not come on over to the orginal blog?

This spreadsheet lists the policy settings for computer and user configurations included in the Administrative template files (.admx/.adml) delivered with Windows Server 2008 Windows Vista Service Pack 1 (SP1). The policy settings included in this spreadsheet cover Windows Server 2008, Windows Vista SP1, Windows Server 2003, Windows XP Professional, and Windows 2000. You can configure these policy settings when you edit Group Policy objects (GPOs).
In addition, this spreadsheet includes the following categories of security policy settings:
  • Account Policies (Password Policy, Account Lockout Policy, and Kerberos Policy)
  • Local Policies (Audit Policy, User Rights Assignment, and Security Options)
  • Event Log
  • Restricted Groups
  • System Services
  • Registry
  • File System policy settings.


Note: This does not include security settings that exist outside of the Security Settings extension (scecli.dll), such as Wireless Network extension, Public Key Policies, or Software Restriction Policies.

The Group Policy Settings Reference for Windows Vista is here. Read more about Group Policy on the TechNet page. You can use The Microsoft Group Policy Diagnostic Best Practice Analyzer (GPDBPA) for Windows XP and Windows Server 2003 to help identify Group Policy configuration errors or other dependency failures that may prevent settings or features from functioning as expected.

You may also want to read Information about new Group Policy preferences in Windows Server 2008.