Is it possible to automate ExecutionPolicy setting? Now I have to manually run this before I running scripts - Set-ExecutionPolicy -ExecutionPolicy Unrestricted -Scope LocalMachine.
Thank you
You can use Group Policy to set an execution policy across your estate.
4 Likes
For more information on execution policy, including how to set it using group policy:
Also, I don’t know how much security is a concern in your organization, but I suggest evaluating if a more restrictive policy than ‘unrestricted’ would allow you to accomplish your goals without opening your systems up to unnecessary risks.
3 Likes
The execution policy is not a security feature !! 
The execution policy isn’t a security system that restricts user actions . For example, users can easily bypass a policy by typing the script contents at the command line when they cannot run a script. Instead, the execution policy helps users to set basic rules and prevents them from violating them unintentionally.
1 Like
Good point. It is more of an accident prevention measure.
1 Like
Maybe use RemoteSigned?
“RemoteSigned” is one of PowerShell’s execution policies designed to offer a balanced level of security and functionality.
Why does this work with default setting of ExecutionPolicy, lol. 
powershell.exe -ExecutionPolicy Bypass -File
If I ran it from a .bat - I don’t have to set the ExecutionPolicy before.
Maybe some context would help find answers to your questions.
- What is the default execution policy for your machine?
Get-ExecutionPolicy - Are the scripts you are running on the local machine or on the network. This may impact which execution policy will work. Always best to use the most restrictive one that allows the code to run.
- How are you executing your scripts? From PowerShell CLI, Task Scheduler, a shortcut, some other way?
- Is the policy set by Group Policy, or can it be updated? If not by GPO, look at the Scope parameter. Another scope might make the setting stick on your machine instead of just the current session.
- Can you set the execution policy to what you need in your PowerShell profile script, so it always gets set?
Really? 
Yeah, if GPO, that would still get overridden. If not, you probably don’t need to set it more than once. Some days I really should have more coffee before I start trying to answer PowerShell questions 
If the execution policy is set to prevent scripts from running your profile script wouldn’t run … so you couldn’t set the execution policy from inside your profile script.
1 Like
True, if the default execution policy is set to Restricted or if the script is not signed. Hence my first question - what is the default execution policy.
Maybe some context would help find answers to your questions.
What is the default execution policy for your machine? Get-ExecutionPolicy
Get-ExecutionPolicy -List;
Scope ExecutionPolicy
----- ---------------
MachinePolicy Undefined
UserPolicy Undefined
Process Undefined
CurrentUser Undefined
LocalMachine Undefined
Are the scripts you are running on the local machine or on the network.
Tested locally but will be on a network share, have not tested that yet.
This may impact which execution policy will work. Always best to use the most restrictive one that allows the code to run.
How are you executing your scripts? From PowerShell CLI, Task Scheduler, a shortcut, some other way?
Shortcut.
Is the policy set by Group Policy, or can it be updated? If not by GPO, look at the Scope parameter. Another scope might make the setting stick on your machine instead of just the current session.
Not at the moment. It would be good if it’s possible to run it anyway. It seems possible with powershell.exe -ExecutionPolicy Bypass -File.
Can you set the execution policy to what you need in your PowerShell profile script, so it always gets set?
You mean in this file? Microsoft.PowerShell_profile.ps1
It’s possible but if I want to run it on more computers I need to manage to automate that somehow.
It sounds like the command line option you suggest is probably the best way to do this for a shortcut launch. Let us know how it goes.