|Data type||Range||Default value|
|REG_BINARY||00 | 01 | 02||01|
Determines how the system responds when a user tries to install device driver files that are not digitally signed.
|00||Ignore. The system proceeds with the installation even if it includes unsigned files.|
|01||Warn. The system notifies the user that files are not digitally signed and lets the user decide whether to stop or to proceed with the installation and permit unsigned files to be installed.|
|02||Block. The system will not install unsigned files. As a result, the installation stops, and none of the files in the driver package are installed.|
This entry applies to all users of the computer. However, if a stricter setting is configured for the current user (in Policy in HKCU) or a user Group Policy establishes a stricter setting (in BehaviorOnFailedVerify), then this value is ignored for the current user.
This entry stores the option selected in the File signature verification section of the Driver Signing Options dialog box when the Apply setting as system default box is selected. If the box is not selected, the selection applies only to the current user, and it is stored in the value of Policy in HKCU.
To change the value of this entry, use System in Control Panel. Click the Hardware tab, click Driver Signing, select an option in the File signature verification section, and then click the Apply setting as a system default box.
The system adds this entry to the registry when you use System in Control Panel to change the default value.
This entry applies to all users of the computer. The Policy entry also can appear in the HKCU\SOFTWARE\Microsoft\Driver Signing for a particular user.
For more information about driver signing and code signing, see Code signing for Windows 2000 in Windows 2000 Help.