Windows Server 2016 Disable Right-Click Startbutton menu


In order to follow this guide you will need an Active Directory domain as well as a Server 2016 RDS server.


You have been tasked to setup a Remote Desktop Server for your Company and you have been ordered to lock it down to disable users accessing advanced features hidden under the context menu of the startbutton in Server 2016.



  1. Open Group Policy Management Console
    There are many ways to do this so use your favorite way.
  2. Create a new Policy
    Create a group policy in in the Organizational Unit where your Remote Desktop Server is stored.
  3. Edit the group policy and browse to the relevent section
    Browse to:
    Computer Configuration>Policies>Windows Settings>Security Settings>Software Restriction Policies
  4. When Software Restriction Policies is selected in the left hand side you should see a list as the following:
  5. Double-click Enforcement in the right pane.
  6. After “Apply software restriction policies to the following users” select “All users except local administrators” and click OK.
  7. Next double-click on the folder Additional Rules.
  8. Right-click in the rightpane and select New Path Rule…
  9. For the Path enter: %USERPROFILE%\AppData\Local\Microsoft\Windows\WinX\Group1
  10. Repeat step 8 and enter this name: %USERPROFILE%\AppData\Local\Microsoft\Windows\WinX\Group2
  11. Repeat step 8 again and enter the name: %USERPROFILE%\AppData\Local\Microsoft\Windows\WinX\Group3
  12. You should now have a total of 3 rules Disallowing access to those 3 folders, This will turn off the right-click function of the start-button.

You need to run gpupdate /force on the RDS Server and that’s it! If you have any questions or comments feel free to comment below!

Published by Wouter Makkinje

I am a 30 Year old IT Consultant from Kalmar Sweden.

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.