I read through the docs on implementing the rogue processes feature via the
registry. Is there anyway to handle this through policies? After forcing
out the registry entries, how are folks temporarily removing them for when
an administrator logs in? For example, I'd like to terminate setup.exe and
install.exe, but would need it available for any logged in administrator.