It seems no matter what I do, Network Threat Protection is enabled on clients. I've created a new MSI package by right-clicking the latest 32bit Client Install Package and choosing Export. There I have selected our custom Client Install Settings and custom Client Install Feature Set. The feature set is configured to include everything except Network Threat Protection and the Lotus Notes stuff. The result is an MSI that I deploy via group policy.
However, after deploying the client and letting it reboot and settle down for half an hour or so, when I login and double-click the icon in the systray, Network Threat Protection is enabled. I googled this and found out that I should have a look in setAid.ini. I did and the relevant parts are as follows:
SAVMain=1
EMailTools=1
OutlookSnapin=1
NotesSnapin=0
Pop3Smtp=1
ITPMain=0
Firewall=0
PTPMain=1
COHMain=1
DCMain=0
As you can see, the firewall is disabled so it should get installed.
There is a firewall policy on the server, but it isn't assigned to any groups, so I shouldn't apply. I haven't tried unchecking "Enable this policy" because it doesn't make any sense to do so since it isn't assigned to any groups.
I don't want NTP to be installed AT ALL on any clients. Anyone?
Cheers,
Rickard