elevate executable files that are signed and validated

hey
i have a scenario | hardening vault server (2012 R2) with some critical files
that files signed and validated but i have other files who can also be run and they
are not signed and validated
i searched to elevate executable files signed and validated
can i please have any way to done it ?
thanks
todd

Hey Todd
Thanks for posting,
According to elevate executable files signed and validated ,
It can be done Locally or by GPO,

You've must enable the following Security Options's Entry :
User Account Control: Only elevate executable files that are signed and validated

Location path in GPEDIT:
Computer Configuration\Policies\Windows Settings\Security Settings\Security Options

It's also can deploy from GPO.