We can't verify who created this file

I am getting this warning

We can't verify who created this file

enter image description here

I have an exe file which I need to run on startup using GPO.

I found how to either exclude the whole server where the file is or either exclude the filetype (.exe) from the check. UAC is already set to not notify.

I just want to exclude from the check just this single file not the whole server or all the EXEs. Any ideas how to do that?

3

2 Answers

I've created a script where I do the following

add a registry key which adds a specific server into the trusted zone launch the software remove the registry key

reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\*domainName*\servername" /v * /t REG_DWORD /d 1
sleep 2
pushd \\servername.domain.name\netlogon\software
& .\Software.exe
popd
sleep 2
reg delete "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
Settings\ZoneMap\Domains\domainName" /f
1

There are a bunch of options online describing how to fix the issue. Here's the link so hopefully you can find what you need my friend.

Windows: Disable “Publisher Could Not Be Verified” Messages

Option 1 – Group Policy Editor

  • Hold the Windows Key, then press “R” to bring up the Run dialog box.
  • Type gpedit.msc, then select “OK“. Go to “User Configuration” > Administrative Templates” > “Windows Components” > “Attachment Manager“.
    • Open the “Inclusion list for moderate risk file types” setting. Set the policy to “Enabled“, then add *.exe; or whatever the file extension you are using to the “Specify high risk extensions” box.

Option 2 – Registry Tweak

  • Hold the Windows Key, then press “R” to bring up the Run dialog box.
  • Type regedit, then select “OK“.
  • Navigate to the following: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Associations
  • Look for an entry on the right side for LowRiskFileTypes. If it doesn’t exist, you will need to create it. To do so, right-click on FileSystem and select “New” > “String Value“. Give the value a name of LowRiskFileTypes.
  • Press the “Enter” key when you are done.
  • Right-click the LowRiskFileTypes entry and click “Modify“.
  • Modify the value by including file extensions, with periods, separated by semi-colons .bat;.exe would add batch and executable files.

This should disable the Publisher Could Not Be Verified messages from appearing for that file type in the future.

1

Your Answer

Sign up or log in

Sign up using Google Sign up using Facebook Sign up using Email and Password

Post as a guest

By clicking “Post Your Answer”, you agree to our terms of service, privacy policy and cookie policy

You Might Also Like