We can't verify who created this file
I am getting this warning
We can't verify who created this file
I have an exe file which I need to run on startup using GPO.
I found how to either exclude the whole server where the file is or either exclude the filetype (.exe) from the check. UAC is already set to not notify.
I just want to exclude from the check just this single file not the whole server or all the EXEs. Any ideas how to do that?
windows security group-policy
add a comment |
I am getting this warning
We can't verify who created this file
I have an exe file which I need to run on startup using GPO.
I found how to either exclude the whole server where the file is or either exclude the filetype (.exe) from the check. UAC is already set to not notify.
I just want to exclude from the check just this single file not the whole server or all the EXEs. Any ideas how to do that?
windows security group-policy
What exactly is your question? If you want to trust this file, you need to unblock it, go into the properties of the file in order to do that.
– Ramhound
Oct 5 '17 at 16:38
I am in a business environment this is not possible and either way it's already unblocked.
– Sonamor
Oct 5 '17 at 16:58
If you cannot do it then you will have to have an Administrator trust the file, because it currently isn't trusted, hence the reason you are getting the security warning. If you are an administrator, or are not authorized to make the change, then you will be unable to resolve the security miss configuration causing this warning.
– Ramhound
Oct 5 '17 at 17:00
add a comment |
I am getting this warning
We can't verify who created this file
I have an exe file which I need to run on startup using GPO.
I found how to either exclude the whole server where the file is or either exclude the filetype (.exe) from the check. UAC is already set to not notify.
I just want to exclude from the check just this single file not the whole server or all the EXEs. Any ideas how to do that?
windows security group-policy
I am getting this warning
We can't verify who created this file
I have an exe file which I need to run on startup using GPO.
I found how to either exclude the whole server where the file is or either exclude the filetype (.exe) from the check. UAC is already set to not notify.
I just want to exclude from the check just this single file not the whole server or all the EXEs. Any ideas how to do that?
windows security group-policy
windows security group-policy
asked Oct 5 '17 at 16:01
SonamorSonamor
281312
281312
What exactly is your question? If you want to trust this file, you need to unblock it, go into the properties of the file in order to do that.
– Ramhound
Oct 5 '17 at 16:38
I am in a business environment this is not possible and either way it's already unblocked.
– Sonamor
Oct 5 '17 at 16:58
If you cannot do it then you will have to have an Administrator trust the file, because it currently isn't trusted, hence the reason you are getting the security warning. If you are an administrator, or are not authorized to make the change, then you will be unable to resolve the security miss configuration causing this warning.
– Ramhound
Oct 5 '17 at 17:00
add a comment |
What exactly is your question? If you want to trust this file, you need to unblock it, go into the properties of the file in order to do that.
– Ramhound
Oct 5 '17 at 16:38
I am in a business environment this is not possible and either way it's already unblocked.
– Sonamor
Oct 5 '17 at 16:58
If you cannot do it then you will have to have an Administrator trust the file, because it currently isn't trusted, hence the reason you are getting the security warning. If you are an administrator, or are not authorized to make the change, then you will be unable to resolve the security miss configuration causing this warning.
– Ramhound
Oct 5 '17 at 17:00
What exactly is your question? If you want to trust this file, you need to unblock it, go into the properties of the file in order to do that.
– Ramhound
Oct 5 '17 at 16:38
What exactly is your question? If you want to trust this file, you need to unblock it, go into the properties of the file in order to do that.
– Ramhound
Oct 5 '17 at 16:38
I am in a business environment this is not possible and either way it's already unblocked.
– Sonamor
Oct 5 '17 at 16:58
I am in a business environment this is not possible and either way it's already unblocked.
– Sonamor
Oct 5 '17 at 16:58
If you cannot do it then you will have to have an Administrator trust the file, because it currently isn't trusted, hence the reason you are getting the security warning. If you are an administrator, or are not authorized to make the change, then you will be unable to resolve the security miss configuration causing this warning.
– Ramhound
Oct 5 '17 at 17:00
If you cannot do it then you will have to have an Administrator trust the file, because it currently isn't trusted, hence the reason you are getting the security warning. If you are an administrator, or are not authorized to make the change, then you will be unable to resolve the security miss configuration causing this warning.
– Ramhound
Oct 5 '17 at 17:00
add a comment |
2 Answers
2
active
oldest
votes
I've created a script where I do the following
add a registry key which adds a specific server into the trusted zone
launch the software
remove the registry key
reg add "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains*domainName*servername" /v * /t REG_DWORD /d 1
sleep 2
pushd \servername.domain.namenetlogonsoftware
& .Software.exe
popd
sleep 2
reg delete "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet
SettingsZoneMapDomainsdomainName" /f
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
add a comment |
There are a bunch of options online describing how to fix the issue. Here's the link so hopefully you can find what you need my friend.
Windows: Disable “Publisher Could Not Be Verified” Messages
Option 1 – Group Policy Editor
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “gpedit.msc“, then select “OK“. Go to “User Configuration” >
Administrative Templates” > “Windows Components” > “Attachment
Manager“.
- Open the “Inclusion list for moderate risk file types”
setting. Set the policy to “Enabled“, then add “*.exe;” or whatever
the file extension you are using to the “Specify high risk
extensions” box.
- Open the “Inclusion list for moderate risk file types”
Option 2 – Registry Tweak
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “regedit“, then select “OK“.
- Navigate to the following: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAssociations
- Look for an entry on the right side for “LowRiskFileTypes“. If it doesn’t exist, you will need to create it. To do so, right-click on “FileSystem” and select “New” > “String Value“. Give the value a name of “LowRiskFileTypes“.
- Press the “Enter” key when you are done.
- Right-click the “LowRiskFileTypes” entry and click “Modify“.
- Modify the value by including file extensions, with periods, separated by semi-colons .bat;.exe would add batch and executable files.
This should disable the “Publisher Could Not Be Verified” messages from appearing for that file type in the future.
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1256560%2fwe-cant-verify-who-created-this-file%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
I've created a script where I do the following
add a registry key which adds a specific server into the trusted zone
launch the software
remove the registry key
reg add "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains*domainName*servername" /v * /t REG_DWORD /d 1
sleep 2
pushd \servername.domain.namenetlogonsoftware
& .Software.exe
popd
sleep 2
reg delete "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet
SettingsZoneMapDomainsdomainName" /f
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
add a comment |
I've created a script where I do the following
add a registry key which adds a specific server into the trusted zone
launch the software
remove the registry key
reg add "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains*domainName*servername" /v * /t REG_DWORD /d 1
sleep 2
pushd \servername.domain.namenetlogonsoftware
& .Software.exe
popd
sleep 2
reg delete "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet
SettingsZoneMapDomainsdomainName" /f
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
add a comment |
I've created a script where I do the following
add a registry key which adds a specific server into the trusted zone
launch the software
remove the registry key
reg add "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains*domainName*servername" /v * /t REG_DWORD /d 1
sleep 2
pushd \servername.domain.namenetlogonsoftware
& .Software.exe
popd
sleep 2
reg delete "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet
SettingsZoneMapDomainsdomainName" /f
I've created a script where I do the following
add a registry key which adds a specific server into the trusted zone
launch the software
remove the registry key
reg add "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet SettingsZoneMapDomains*domainName*servername" /v * /t REG_DWORD /d 1
sleep 2
pushd \servername.domain.namenetlogonsoftware
& .Software.exe
popd
sleep 2
reg delete "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet
SettingsZoneMapDomainsdomainName" /f
edited Oct 5 '17 at 17:33
answered Oct 5 '17 at 16:59
SonamorSonamor
281312
281312
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
add a comment |
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
@Ramhound Added thanks for the feedback.
– Sonamor
Oct 5 '17 at 17:36
add a comment |
There are a bunch of options online describing how to fix the issue. Here's the link so hopefully you can find what you need my friend.
Windows: Disable “Publisher Could Not Be Verified” Messages
Option 1 – Group Policy Editor
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “gpedit.msc“, then select “OK“. Go to “User Configuration” >
Administrative Templates” > “Windows Components” > “Attachment
Manager“.
- Open the “Inclusion list for moderate risk file types”
setting. Set the policy to “Enabled“, then add “*.exe;” or whatever
the file extension you are using to the “Specify high risk
extensions” box.
- Open the “Inclusion list for moderate risk file types”
Option 2 – Registry Tweak
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “regedit“, then select “OK“.
- Navigate to the following: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAssociations
- Look for an entry on the right side for “LowRiskFileTypes“. If it doesn’t exist, you will need to create it. To do so, right-click on “FileSystem” and select “New” > “String Value“. Give the value a name of “LowRiskFileTypes“.
- Press the “Enter” key when you are done.
- Right-click the “LowRiskFileTypes” entry and click “Modify“.
- Modify the value by including file extensions, with periods, separated by semi-colons .bat;.exe would add batch and executable files.
This should disable the “Publisher Could Not Be Verified” messages from appearing for that file type in the future.
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
add a comment |
There are a bunch of options online describing how to fix the issue. Here's the link so hopefully you can find what you need my friend.
Windows: Disable “Publisher Could Not Be Verified” Messages
Option 1 – Group Policy Editor
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “gpedit.msc“, then select “OK“. Go to “User Configuration” >
Administrative Templates” > “Windows Components” > “Attachment
Manager“.
- Open the “Inclusion list for moderate risk file types”
setting. Set the policy to “Enabled“, then add “*.exe;” or whatever
the file extension you are using to the “Specify high risk
extensions” box.
- Open the “Inclusion list for moderate risk file types”
Option 2 – Registry Tweak
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “regedit“, then select “OK“.
- Navigate to the following: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAssociations
- Look for an entry on the right side for “LowRiskFileTypes“. If it doesn’t exist, you will need to create it. To do so, right-click on “FileSystem” and select “New” > “String Value“. Give the value a name of “LowRiskFileTypes“.
- Press the “Enter” key when you are done.
- Right-click the “LowRiskFileTypes” entry and click “Modify“.
- Modify the value by including file extensions, with periods, separated by semi-colons .bat;.exe would add batch and executable files.
This should disable the “Publisher Could Not Be Verified” messages from appearing for that file type in the future.
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
add a comment |
There are a bunch of options online describing how to fix the issue. Here's the link so hopefully you can find what you need my friend.
Windows: Disable “Publisher Could Not Be Verified” Messages
Option 1 – Group Policy Editor
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “gpedit.msc“, then select “OK“. Go to “User Configuration” >
Administrative Templates” > “Windows Components” > “Attachment
Manager“.
- Open the “Inclusion list for moderate risk file types”
setting. Set the policy to “Enabled“, then add “*.exe;” or whatever
the file extension you are using to the “Specify high risk
extensions” box.
- Open the “Inclusion list for moderate risk file types”
Option 2 – Registry Tweak
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “regedit“, then select “OK“.
- Navigate to the following: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAssociations
- Look for an entry on the right side for “LowRiskFileTypes“. If it doesn’t exist, you will need to create it. To do so, right-click on “FileSystem” and select “New” > “String Value“. Give the value a name of “LowRiskFileTypes“.
- Press the “Enter” key when you are done.
- Right-click the “LowRiskFileTypes” entry and click “Modify“.
- Modify the value by including file extensions, with periods, separated by semi-colons .bat;.exe would add batch and executable files.
This should disable the “Publisher Could Not Be Verified” messages from appearing for that file type in the future.
There are a bunch of options online describing how to fix the issue. Here's the link so hopefully you can find what you need my friend.
Windows: Disable “Publisher Could Not Be Verified” Messages
Option 1 – Group Policy Editor
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “gpedit.msc“, then select “OK“. Go to “User Configuration” >
Administrative Templates” > “Windows Components” > “Attachment
Manager“.
- Open the “Inclusion list for moderate risk file types”
setting. Set the policy to “Enabled“, then add “*.exe;” or whatever
the file extension you are using to the “Specify high risk
extensions” box.
- Open the “Inclusion list for moderate risk file types”
Option 2 – Registry Tweak
- Hold the Windows Key, then press “R” to bring up the Run dialog box.
- Type “regedit“, then select “OK“.
- Navigate to the following: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesAssociations
- Look for an entry on the right side for “LowRiskFileTypes“. If it doesn’t exist, you will need to create it. To do so, right-click on “FileSystem” and select “New” > “String Value“. Give the value a name of “LowRiskFileTypes“.
- Press the “Enter” key when you are done.
- Right-click the “LowRiskFileTypes” entry and click “Modify“.
- Modify the value by including file extensions, with periods, separated by semi-colons .bat;.exe would add batch and executable files.
This should disable the “Publisher Could Not Be Verified” messages from appearing for that file type in the future.
edited Oct 5 '17 at 18:45
answered Oct 5 '17 at 16:51
r0car0ca
4,96993563
4,96993563
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
add a comment |
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
I don't want to do that for all exe files.
– Sonamor
Oct 5 '17 at 16:58
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1256560%2fwe-cant-verify-who-created-this-file%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
What exactly is your question? If you want to trust this file, you need to unblock it, go into the properties of the file in order to do that.
– Ramhound
Oct 5 '17 at 16:38
I am in a business environment this is not possible and either way it's already unblocked.
– Sonamor
Oct 5 '17 at 16:58
If you cannot do it then you will have to have an Administrator trust the file, because it currently isn't trusted, hence the reason you are getting the security warning. If you are an administrator, or are not authorized to make the change, then you will be unable to resolve the security miss configuration causing this warning.
– Ramhound
Oct 5 '17 at 17:00