Created a Basic Scan policy and ran it against Windows10-PC1:
Created a Advanced Scan policy, and added windows credentials to it then run it against WindowsServer2019-DC:
Created a Advance Dynamic Scan policy, and added windows credentials to it and specify Dynamic Plugin (CVE-2017-0143) then run it against Windows7-PC2:
Applied a Group Policy on the HR group (WindowsServer2019-DC) that blocks accessing Control Panel on Windows10-PC1:
Windows10-PC1: