We are an educational establishment with a network consisting of approx 200 machines, 50 or 60 of which are win2k. I have tried applying the registry amendments to stop kids pressing ctrl+alt+del and changing their passwords (by 'greying out' the change password option not disabling ctrl+alt+del). The problem i have found is that the reg key needs to be amended on the Local_Machine and also current_user. I need to know if there is a better way to disable the change password option in win2k than applying the regedit amendments which are troublesome to say the least. Any information would be greatly appreciated.