Solved

w2k and logon script changes

Posted on 2001-06-11
3
242 Views
Last Modified: 2012-05-11
Question...

I manage many workstations which are 60% w2k and 40% nt4.  I have noticed that my logon script is not
making some system settings whether or not the user is an admin.  It appears that the only way I can
make settings like "Don't show last username" and "Password experation" can only be manualy configured.
 The script does not take effect on the w2k systems.  It sounds like my only option is the group policies,
but I do not have access to the logon domain accounts or to implement group policies... mandated security
policies do not allow me this access, only logon script is allowed.  So, now that I have more and more
systems with w2k, I need to find a way to accomplish these settings the way nt4 has allowed... any suggestions

cheers
0
Comment
Question by:westbergk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 12

Expert Comment

by:Housenet
ID: 6181004
-You can probably do it through local policies on the win2k stations.
-On one win2k station tweak the local policy settings & export them to a template... Import the policy template to the other win2k stations through the login script or manually at each station through a shared location.

-This would of course would work only if this is either not a 2000 domain but rather an NT4 domain, or no "no override" settings are applied to the domain GPO or OU GPO's that apply to your win2k pro computers in a 2000 domain.
0
 
LVL 1

Author Comment

by:westbergk
ID: 6181771
Cool thanks.  It is an NT domain and we do not us AD.  So, now that I have a master policy template, and they are copied via script, how do they get applied?  I guess the *.adm file is applied during login?  What rights do the logon users need to apply these policy settings.  98% of our users are just that... USER.  Will I be able to make security policy changes through the policy via a local user account during logon?  Thank you for the response :)
0
 
LVL 12

Accepted Solution

by:
Housenet earned 150 total points
ID: 6182352
"I guess the *.adm file is applied during login?"
-Yes...
"What rights do the logon users need to apply these policy settings.  98% of our users are just that... "
-Read permissions to the shared location & the file..

"Will I be able to make security policy changes through the policy via a local user account during
logon? "

-No the changes will be applied after the user logs back in... You can add something like... secedit /refreshpolicy {machine_policy | user_policy}[/enforce]  to the script.

-Check out the parms in secedit...
0

Featured Post

Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Virtualise server 2000 for Hyper V 4 865
Domain Controller all of a sudden stop replicating 3 467
Restoring a deleted user from Windows 2000?! 2 165
AD account Auto logoff 1 58
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Invest in your employees with these five simple steps to improve employee engagement and retention.
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question