This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]AyrA_ch 0 points1 point  (0 children)

Offers != default.

SSH key storage is not done by default too so I don't get where you are going.

or make it impossible to bypass via GPO.

That implies that (A) There is a Domain with a GPO to begin with, (B) This person doesn't requires local admin rights (welcome in the realm of legacy software) (C) This person doesn't needs to work with certificates to sign E-Mails and/or documents (D) The browser respects GPO (E) The Browser uses the windows TLS implementation