From 2f4689d094f99df8d240bce9f75883ff454dee0f Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Fri, 19 Jan 2024 03:37:43 -0700
Subject: [PATCH] Add 10 more Windows Policies

Signed-off-by: Tommy <contact@tommytran.io>
---
 Windows/Content Settings.md          | 5 +++--
 Windows/Experimentation.md           | 7 +++++++
 Windows/Extensions.md                | 8 ++++++++
 Windows/Game settings.md             | 7 +++++++
 Windows/HTTP Authentication          | 7 +++++++
 Windows/Immersive Reader settings.md | 8 ++++++++
 Windows/Manageability.md             | 8 ++++++++
 7 files changed, 48 insertions(+), 2 deletions(-)
 create mode 100644 Windows/Experimentation.md
 create mode 100644 Windows/Extensions.md
 create mode 100644 Windows/Game settings.md
 create mode 100644 Windows/HTTP Authentication
 create mode 100644 Windows/Immersive Reader settings.md
 create mode 100644 Windows/Manageability.md

diff --git a/Windows/Content Settings.md b/Windows/Content Settings.md
index e911792..762f848 100644
--- a/Windows/Content Settings.md	
+++ b/Windows/Content Settings.md	
@@ -2,7 +2,7 @@
 
 `Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Content Settings`
 
-| Group Policy                                   | JSON equivalent                           |
+| Group Policy                                   | Policy equivalent                           |
 |------------------------------------------------|-------------------------------------------|
 | Block cookies on specific sites -> ntp.msn.com | CookiesBlockedForUrls": [ "ntp.msn.com" ] |
 | Default geolocation setting -> Enabled -> Don't allow any site to track users' physical location | DefaultGeolocationSetting: 2 |
@@ -13,4 +13,5 @@
 | Control the use of File System API for writing -> Don't allow any site to request and write access to files and directories via the File System API | DefaultFileSystemWriteGuardSetting: 2 |
 | Control use of the Web Bluetooth API -> Don't allow any site to request access to Bluetooth devices via the Web Bluetooth API |DefaultWebBluetoothGuardSetting: 2 |
 | Control use of WebHID API -> Enabled -> Don't allow any site to request access to HID devices via the WebHID API | DefaultWebHidGuardSetting: 2 |
-| Allow notifications to set Microsoft Edge as default PDF reader -> Disabled | ShowPDFDefaultRecommendationsEnabled: false |
\ No newline at end of file
+| Allow notifications to set Microsoft Edge as default PDF reader -> Disabled | ShowPDFDefaultRecommendationsEnabled: false |
+| Choose whether users can recieve customized background images and text, suggestions, notifications, and tips for Microsoft services -> Disabled | SpotlightExperiencesAndRecommendationsEnabled |
\ No newline at end of file
diff --git a/Windows/Experimentation.md b/Windows/Experimentation.md
new file mode 100644
index 0000000..5ec6d29
--- /dev/null
+++ b/Windows/Experimentation.md
@@ -0,0 +1,7 @@
+# Experimentation
+
+`Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Experimentation`
+
+| Group Policy                                   | Policy equivalent                           |
+|------------------------------------------------|-------------------------------------------|
+| Configure users ability to override feature flags -> Enabled -> Allow users to override feature flags | FeatureFlagOverridesControl 1 |
\ No newline at end of file
diff --git a/Windows/Extensions.md b/Windows/Extensions.md
new file mode 100644
index 0000000..2ce5206
--- /dev/null
+++ b/Windows/Extensions.md
@@ -0,0 +1,8 @@
+# Extensions
+
+`Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Extensions`
+
+| Group Policy                                                         | Policy equivalent                     |
+|----------------------------------------------------------------------|-------------------------------------|
+| Control which extensions cannot be installed -> Enabled -> Show -> * | ExtensionInstallBlocklist": [ "*" ] |
+| Configure extension management settings -> Enabled -> {"ddkjiahejlhfcafbddmgiahcphecmpfh": {"installation_mode": "allowed", "update_url": "https://clients2.google.com/service/update2/crx", "override_update_url": true, "sidebar_auto_open_blocked": true}} |   ExtensionSettings: {"ddkjiahejlhfcafbddmgiahcphecmpfh": {"installation_mode": "allowed", "update_url": "https://clients2.google.com/service/update2/crx", "override_update_url": true, "sidebar_auto_open_blocked": true}}
\ No newline at end of file
diff --git a/Windows/Game settings.md b/Windows/Game settings.md
new file mode 100644
index 0000000..26ff79b
--- /dev/null
+++ b/Windows/Game settings.md	
@@ -0,0 +1,7 @@
+# Game settings
+
+`Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Game settings`
+
+| Group Policy                   | Policy equivalent        |
+|--------------------------------|--------------------------|
+| Enabled Gamer Mode -> Disabled | GamerModeEnabled: false  |
\ No newline at end of file
diff --git a/Windows/HTTP Authentication b/Windows/HTTP Authentication
new file mode 100644
index 0000000..fa9f154
--- /dev/null
+++ b/Windows/HTTP Authentication	
@@ -0,0 +1,7 @@
+# HTTP authentication
+
+`Computer Configuration\Policies\Administrative Templates\Microsoft Edge\HTTP authentication`
+
+| Group Policy                                    | Policy equivalent                      |
+|-------------------------------------------------|----------------------------------------|
+| Windows Hello for HTTP Auth Enabled -> Disabled | WindowsHelloForHTTPAuthEnabled: false  |
\ No newline at end of file
diff --git a/Windows/Immersive Reader settings.md b/Windows/Immersive Reader settings.md
new file mode 100644
index 0000000..65858fd
--- /dev/null
+++ b/Windows/Immersive Reader settings.md	
@@ -0,0 +1,8 @@
+# Immersive Reader settings
+
+`Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Immersive Reader settings`
+
+| Group Policy                    | Policy equivalent         |
+|---------------------------------|---------------------------|
+| Enable Grammar Tools feature within Immersive Reader in Microsoft Edge -> Disabled | ImmersiveReaderGrammarToolsEnabled: false  |
+| Enable Picture Dictionary feature within Immersive Reader in Microsoft Edge -> Disabled | ImmersiveReaderPictureDictionaryEnabled: false |
\ No newline at end of file
diff --git a/Windows/Manageability.md b/Windows/Manageability.md
new file mode 100644
index 0000000..ab3cb29
--- /dev/null
+++ b/Windows/Manageability.md
@@ -0,0 +1,8 @@
+# Managability
+
+`Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Managability`
+
+| Group Policy                                  | JSON equivalent              |
+|-----------------------------------------------|------------------------------|
+| Microsoft Edge management enabled -> Disabled | EdgeManagementEnabled: false |
+| Mobile App Management Enabled -> Disabled     | MAMEnabled: false            |
\ No newline at end of file