Adobe Reader - ADMX template and GPO reference guide is incomplete and old.

Report · Nov 21, 2024

Hi,

We use Windows OS and Adobe Reader as our main PDF reader at our company. Since there are various attack vectors and vulnerabilities in Reader, Adobe provides a reference guide with most of the options that can be enabled or disable to mitigate this.[0]

The ADMX template[1], that can be installed int the component store has not been updated since 2015!!!

There is no easy way to add or update the ADMX template, because the Preference Reference list[0] is ONLY a vieweable HTML page. Why Adobe does not provide an updated ADMX template with all of the lastest updates or changes ?

And even the preference reference list does not contain, for example, registry key on how to DISABLE or ENABLE so called "Generative AI". [2] The registry key "bEnableGentech" is not even mentioned in the [0] preference list.

I am aware that there are 3rd party solutions, such as, NIST template[3] or Powershell ADMX generator[4] but this does not solve the main issue. Adobe, please, take a look at this.

Thank you!

0 - Preference Reference for Acrobat and Adobe Reader

1 - Group Policy-Active Directory — Acrobat Desktop Windows Deployment - Acrobat Continuous track

2 - Turn off the generative AI features

3 - Preference Reference for Acrobat and Adobe Reader

4 - NCP - Checklist Adobe Acrobat Reader DC Continuous Track STIG

5 - p0w3rsh3ll/AdobeGPOTemplates

Report · Nov 21, 2024

[MOVED TO THE ACROBAT READER DISCUSSIONS]

Acrobate du PDF, InDesigner et Photoshopographe

Report · Nov 21, 2024

Hi @29cda0a7,

Hope you are doing well. Thanks for writing in!

While I get this checked with the concerned team,

Would you mind checking the link below and letting me know if that works for you: Adobe Templates for Packages?

-Souvik

Report · Nov 21, 2024

Dear Souvik,

Unfortunately I don't have access to Adobe Templates for Packages. Do these contain ADMX templates, that can be imported in Group Policy Store ?

Report · Nov 25, 2024

Hi @29cda0a7,

This should be done at an admin level.

Also, these can be added to the Group Policies. For more info, you can refer to the overview for deployment and go through the different sections: Deploy packages for Adobe Creative Cloud

-Souvik

Report · Nov 29, 2024

Hi, @S. S

Unfortunately I don't have access to Adobe Templates, are these available only if there is an active subscription ?

Report · Dec 01, 2024

@29cda0a7 These are available only if you have admin access to a business or enterprise license.

I believe the ADMX website offers certain templates based on the versions: Adobe Acrobat Reader Group Policy Administrative Templates

Let me know if this is what you are looking for.

-Souvik

Report · May 23, 2025

@S. S

I apologize for the late reply.

I have managed to restrict the unneded and annoying features (Generative AI, Upsell e.t.c) by creating a registry group policy by using the options in the Preference Reference (https://www.adobe.com/devnet-docs/acrobatetk/tools/PrefRef/Windows/index.html).

Report · May 26, 2025

Hi @29cda0a7,

Glad to know that you were able to figure it out.

The link on our deployment document shares a basic template that gives you direction on how to proceed further.

Any changes, additions, or removals have to be done on your part based on the requirement.

Marking this as a correct answer for future users to use the statement as a resolution, and locking the thread.

Please feel free to write to us for further queries/concerns related to Acrobat.

Regards,
Souvik.

Adobe Reader - ADMX template and GPO reference guide is incomplete and old.

1 Correct answer