How would I go about getting a listing of all computers that have AntiHacker enabled? Somehow a policy that had it enabled (for only 3 machines) got copied to another group in the Admin Kit affecting 400+ computers. I caught the issue before all computers ran the policy, but it's like pulling teeth trying to locate the ones that were. Even though I've deleted the bad policy, it appears that the only way to correct the issue is to manually disable AntiHacker on each machine. Synchronizing does not fix. Unless I'm missing something.

I guess I should have added that I am using Admin Kit 6.0.1565 and KAV 6.0.3.830. Moving to a newer version (7 / 8) is not an option.

Hello,

If synchronizing does not work, it's probably because you have not locked this option in the policy.
After use the enforcement tab to force application of the policy.

D.

Thanks for the help on that. I am managing a slave server. It turns out that someone had duplicated my "firewall" policy that I was testing over to the group that was outside of my test group. It seems that it is necessary to have the same policy in place with opposite settings (AntiHacker & Firewall disabled) for the groups that I am not testing. Otherwise Antihacker was turned on by default.

I'm assuming...that having Antihacker unlocked in the top level policy (necessary so that I can make changes in group policy) requires each group to have it's own explicit policy settings (can't make changes to inherited policies inside the group).

I'd still like to be able to query on settings enabled/disabled. It would help testing working/non-working policies greatly.