We help IT Professionals succeed at work.

Setting Windows 802.1x authentication parameters using scripts

purplerulz
purplerulz asked
on
3,857 Views
Last Modified: 2010-05-10
Hi Experts,

This is my first question - so I am hoping I'll get some good answers.

I have Windows 2000 SP4 with the 802.1x patch. In the Network Adapter Properties, there is an Authentication Tab. I need to set the parameters in that window using script so that I can deploy this script to say 100 machines. Please note that Windows GPO and ActiveDirectory policies are not an option for me (due to the unstructured network environment).

The specific properties I am trying to set are:
Enable 802.1x network acess control : Checked
EAP Type : Smart Card or Certificate
Authenticate as computer when computer information is available : Checked
Authenticate as guest when user or computer information is unavailable : Unchecked.

I also need to set parameters in the Properties tab under EAP Type, but if I get an answer to the above question I will try to take it from there. I could not find the above properties in the registry so I am not sure how to go about doing the above.

Thanks and hoping to get some answers.
Comment
Watch Question

Commented:
lets use netsh to capture this info... I know your top 2 are held within the
interface context and the ras context ( you may want to look at the script files netsh generates before you push them to make sure your not changing more than you need to)

get a machine configured the way you want it, then from command prompt
netsh interface dump >interface.cfg
netsh ras dump >ras.cfg

to configure a machine with these scripts...
netsh exec interface.cfg
netsh exec ras.cfg

if you need to do this remotely then ....

***********Begin VBScript*************
Dim UserName
Dim Password
UserName="Username you are going to use to run process"
Password="password for this username"

On Error Resume Next
MachineToChange=WScript.Arguments(0)
ErrorOut("You Must Specify A machine to effect")

'first get the files over there, you will need admin access to the machine your trying to touch
Dim fso
Set fso=CreateObject("Scripting.FileSystemobject")
Dim DestinationPath
DestinationPath="\\" & MachineToChange & "\c$\NetConfig"
fso.CreateFolder(DestinationPath)
ErrorOut("You Must have rights to create folders on the remote machine")
Dim rasconfig
Dim interfaceconfig
rasconfig="path to ras config file on your machine"
interfaceconfig="path to interface config file on your machine"
call fso.CopyFile(rasconfig,DestinationPath & "\ras.cfg")
call fso.CopyFile(interfaceconfig,DestinationPath & "\interface.cfg")
ErrorOut("You Must have rights to create files on the remote machine")
'now lets run it on their machine
Dim WhatToExecute
If fso.FileExists("\\" & MachineToChange & "\c$\winnt\system32\netsh.exe") Then
      WhatToExecute="C:\winnt\system32\netsh.exe"
 Else
      If fso.FileExists("\\" & MachineToChange & "\c$\windows\system32\netsh.exe") Then
            WhatToExecute="C:\windows\system32\netsh.exe"
      End if
End If
If WhatToExecute="" Then
      Err.Raise(1)
      ErrorOut("Could not locate netsh on the target computer so quiting...")
End If

Run=RunScript(MachineToChange,WhatToExecute & " exec c:\NetConfig\ras.cfg")
If InStr(1,run,"Successful",1)=0 Then
      ErrorOut(Run)
End If
WScript.Sleep 1000 'give just a little time to make sure things dont collide
Run=RunScript(MachineToChange,WhatToExecute & " exec c:\NetConfig\Interface.cfg")
If InStr(1,run,"Successful",1)=0 Then
      ErrorOut(Run)
End If

Function RunScript(Server,nCommand)
      On Error Resume Next
      Set Service = ConnectServer(Server)
      Set Proc= Service.Get("Win32_Process")
      Dim PID
      result=Proc.create(nCommand,Null,Null,Pid)
Select Case result
      Case 0
            Message="Successful completion"
      Case 2
            Message="Access denied"
      Case 3
            Message="Insufficient privilege"
      Case 8
            Message="Not enough storage is available to process this command"
      Case 9
            Message="Path not found"
      Case 21
            Message="Invalid parameter"
      Case else
            Message="Unknown error"
End Select
RunScript=Message
End Function

Function ConnectServer(sServer)
On Error Resume next
  Set objLocator = CreateObject("WbemScripting.SWbemLocator")
  'Connect to the namespace which is either local or remote
  Set objService = objLocator.ConnectServer (sServer,"root\cimv2", UserName, Password)
  ObjService.Security_.impersonationlevel = 3
 
  Select Case Err.Number
      Case -2147024891
            WScript.Echo "Access is Denied"
            Err.clear
            RunScript=-2
            Exit Function      
      Case -2147217405
            WScript.Echo "Insufficient Privileges on " & Server
            Err.Clear
            RunScript=-2
            Exit Function
      Case -2147217394
            WScript.Echo "Invalid Namespace"
            Err.clear
            RunScript=-1
            Exit function
      Case 0
            Set ConnectServer=objService
      Case Else
            ErrorOut(Err.Number & ":" & Err.Description )
End Select

End Function

Function ErrorOut(Message)
If Err.Number then
WScript.Echo Message
WScript.Quit -1
End if
End function

***************End Script**********************
Cheers

Author

Commented:
Hi Kavar,

Thanks for the elaborate answer. Unfortunately, it didnt seem to solve my problem. I did the following :

Ran the following:
netsh interface dump >interface.cfg
netsh ras dump >ras.cfg

Then inverted the settings in my question above - mainly the 1st and the 3rd.

Then ran the following:
netsh exec ras.cfg
I intentionally skipped the interface.cfg cause that doesnt seem to have any parameters related to the authentication tab (I checked the output of the netsh command).

When I restart my computer, I do not have those parameters restored. So it didnt seem to touch anything on the Authentication tab of the Network Adapter. Any ideas ?

Thanks

Commented:
Hmmm, Strange... lets try a test (i dont have any devices that I can set and go back and check for)

First, can you post the results of the ras.cfg file?
Second when you netsh exec ras.cfg are the settings made at that time?
I am at my computer and can be more responsive so if you have time we can work on it...
(I am very confused that it didn't flat out work, I have used this with interface and it worked perfectly)

Author

Commented:
Here it is.. I am on my machine too - and I have all the time to work on this now.

ras.cfg contents....


                                           
# -----------------------------------------
# RAS Configuration                        
# -----------------------------------------
pushd ras

set authmode mode = nodcc
delete authtype type = PAP
delete authtype type = SPAP
delete authtype type = MD5CHAP
delete authtype type = MSCHAP
delete authtype type = MSCHAPv2
delete authtype type = EAP
add authtype type = MSCHAP
add authtype type = MSCHAPv2
delete link type = SWC
delete link type = LCP
add link type = SWC
add link type = LCP
delete multilink type = MULTI
delete multilink type = BACP
add multilink type = MULTI
add multilink type = BACP

set user name = Administrator dialin = policy cbpolicy = none
set user name = Guest dialin = policy cbpolicy = none
set user name = IUSR_IT_CRMT2 dialin = policy cbpolicy = none
set user name = IWAM_IT_CRMT2 dialin = policy cbpolicy = none
set user name = NewUser dialin = policy cbpolicy = none

set tracing component = * state = disabled

popd

# End of RAS configuration.                  
                                             
                                             

                                           
# -----------------------------------------
# RAS IP Configuration                      
# -----------------------------------------
pushd ras ip

delete pool

set negotiation mode = allow
set access mode = all
set addrreq mode = deny
set addrassign method = auto

popd

# End of RAS IP configuration.              
                                             

                                           
# -----------------------------------------
# RAS IPX Configuration                      
# -----------------------------------------
pushd ras ipx

set negotiation mode = allow
set access mode = all
set nodereq mode = allow
set netassign method = autosame

popd

# End of RAS IPX configuration.              
                                             
                                             

                                           
# -----------------------------------------
# RAS NBF Configuration                      
# -----------------------------------------
pushd ras netbeui

set negotiation mode = allow
set access mode = all

popd

# End of RAS NBF configuration.              
                                             
                                             

                                           
# -----------------------------------------
# RemoteAccess AppleTalk Configuration      
# -----------------------------------------
pushd ras appletalk

set negotiation mode = allow
set access mode = all

popd

# End of RemoteAccess AppleTalk configuration.


                                           
# -----------------------------------------
# RAS AAAA Configuration                    
# -----------------------------------------
pushd ras aaaa

set authentication provider = windows
set accounting provider = windows

delete authserver name = *
delete acctserver name = *



popd

# End of RAS AAAA configuration.            
                                             
=====================================
For the second question, After I run the dump - I undo the settings - so that I can subsequently run the netsh exec ras.cfg and have them reset. But it doesnt reset it. The first time (before running the dump) I manually set the configuration I need.

From the contents of that file above, I dont see anything related to the EAP Type or the other properties on that Authentication Tab.

Hope that helps. Let me know if you need anything else.
Thanks

Author

Commented:
When I run the netsh exec ras.cfg to reset the settings, I get the following on my command prompt window..

C:\>netsh exec ras.cfg

User name:              Administrator
Dialin:                 policy
Callback policy:        none
Callback number:

User name:              Guest
Dialin:                 policy
Callback policy:        none
Callback number:

User name:              IUSR_IT_CRMT2
Dialin:                 policy
Callback policy:        none
Callback number:

User name:              IWAM_IT_CRMT2
Dialin:                 policy
Callback policy:        none
Callback number:

User name:              NewUser
Dialin:                 policy
Callback policy:        none
Callback number:
The remoteaccess service must be restarted for changes to take effect.
The remoteaccess service must be restarted for changes to take effect.
The remoteaccess service must be restarted for changes to take effect.
The remoteaccess service must be restarted for changes to take effect.

======================
Any idea which service they are talking about to restart ? I restarted the machine itself - that should have the same effect right ?

Commented:
strange that I dont see your authmode and authtype settings in the script....

the service they are talking about is "Remote Access Connection Manager"

ps make sure ras service is started when you make these changes and when you dump the config

Author

Commented:
Initially, that service was not running. But that didnt seem to matter after the test below.

I made sure that service is running when I made the changes and dumped the config to the file.
Then I reset the changes manually.
Then I ran the netsh exec ras.cfg hoping that the changes will be set again from the file. But it didnt do it.

Any other dependencies that you see ? Is there an API that I can use ? Or a specific registry key that this is stored in ?
I mean these are a bunch of checkboxes - they should be somewhere in the registry right ?

Commented:
and the eap type is not in the interface portion of the cfg file...???

at a command prompt type netsh
from there type
ras
from there type
show authtype

what do you get?
then type
show authmode

what do you get?

Author

Commented:
C:\>netsh
netsh>ras
ras>show authtype

Enabled Authentication Types:

Code          Meaning
------------------------------------------
MSCHAP        Microsoft Challenge-Handshake Authentication Protocol.
MSCHAPv2      Microsoft Challenge-Handshake Authentication Protocol version 2.

ras>show authmode
authentication mode = nodcc

ras>

Here is a picture of the Authentication Tab on the Network Connection.
http://www.purplecubes.com/connprops.jpg

Commented:
strange .... it should show eap... yet it doesn't???  (is this wit proper configuration through the UI?)

Author

Commented:
The image file I have attached is the only configuration that is used. You right-click on the Network Connection, go to Properties > Click on the Authentication Tab.

It is strange that whats in the UI doesnt show up in that dump.

Commented:
alright, did some digging, apparently depending on your card, netsh will NOT be able to get this info...

do not dispare.... we can use wmi to get and set this information ....( I think)

unfortunately I dont have a card that exposes these interfaces so I am flying a little bit dark... you wouldnt happen to have remote access via terminal server or pcanywhere to one of these boxes do you?

if not, how good are you with wmi?

Author

Commented:
Ok !
Well, I am quite good with WMI - though I am just picking it up. The script I write needs to be able to run on ANY client machine. I think the Authentication tab is not really dependent on the hardware, correct me if I am wrong - cause the same authentication properties will show up on the other network adapters too (if you have multiple on your machine).

I could not get the correct pointers to the WMI containers or API that I can use. Thats infact where I started off from - looking for COM APIs that I can access through WMI scripts.

I will not be able to setup remote access for you to that machine - which in any case does not serve the purpose since its to be deployed to more than just one machine.

Any specific help in the direction of WMI and the related interfaces would be appreciated.
Thanks

Commented:
hmmmm, Now I am blown away, the changes arn't logged in NETSH or Apparently the WMI repository, they arn't attached to a physical Adapter and apparently arn't protocal bound either,

I am going to go home and later tonight try a snapshot and were EXACTLY it is writing this crap.... JEEEZ!

Author

Commented:
Thanks Kavar,

Now you see why I posted this on to ExpertsExchange !!!
Let me know if you find a way to do this.

Commented:
i havent forgotten about you, I should have a good answer later tonight

Author

Commented:
Thanks Kavar. I'll check back later.

Commented:
Finally , I have figured out *MY* problem...

Apparently, the 802.1x (q313644) is for windows 2000 sp3, it does not work for sp4, and although they say the support *is* in sp4 the authentication tab doesn't show up unless you have a wireless card installed (which I don't), I did find the settings on a XP workstation (apparently they are standard with xp).  Since my only install source for win2k is sp4 slipstreamed, I am going to build an xp workstation, so we will see...

(more to come later, I am going to get this!)

Commented:
okay, sorry but this is going to be a little hit and miss since I only have to one workstation and it doesn't have a wireless card...

reverse your settings, then make a regfile out of the text below, then merge it, if it made your changes TEST IT, there was a change in the cryptography setttings (that I ignored)  so we will have to see, also depending on the definition of the interfaces, it may make no change for you at all, if that is the case, I need you to give me the list of interfaces you have under hklm\software\microsoft\eapol\parameters\interfaces

************Begin reg file******************
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{27532BFD-254B-4918-928F-D2090445B7E2}]
"1"=hex(03):03,00,00,00,00,00,00,00,00,00,00,e0,0d,00,00,00,20,00,00,00,11,\
  22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,\
  11,22,33,11,22,0d,00,00,00,28,00,00,00,00,00,00,00,28,00,00,00,05,00,00,00,\
  00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,00,00,00,00
**************End Reg File********************

let me know

Author

Commented:
I'll test this tomorrow (Monday) in office since my test machine is in office. That machine has Windows 2000 SP4. However, it does not have a wireless card - and I STILL see the authentication tab in that machine. This contradicts your statement above. The Q313644 patch is supposedly included in the SP4 package.

I have not installed this on Windows XP yet so I have not tested this on Windows XP. I have a wireless card with my Windows XP machine.
Also, how I do give you a list of my interfaces ? Please note that this is an enterprise wide solution, so I do not want to tie this down to a specific machine.

I'll post my test results early tomorrow. Thanks.

Commented:
The only thing I can think of is that you installed the patch under sp3 and the upgraded to sp4, because out of the box sp4 (for me) does not have the tab.  

To list the interfaces (affected by EAPOL), list all keys under
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\]

my thinking is....
If there is always just one entry, we can just use the value from HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\General\InterfaceList

If your enterprise requires that we look this value up then we will need to enumerate
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkCards
for each Key under this key there will be a ServiceName value which will match the guid in the Interfaces

Author

Commented:
Hi Kavar,

Well - that import of the reg file you posted didnt make any changes. I am posting here a dump of my reg file for the Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces

Please note that the above key location seems to be different from the one you posted. Dont know what effect that has.

*********** Begin Reg Dump ********************

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{27532BFD-254B-4918-928F-D2090445B7E2}]
"1"=hex:03,00,00,00,00,00,00,00,00,00,00,e0,0d,00,00,00,20,00,00,00,11,22,33,\
  11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,\
  22,33,11,22,0d,00,00,00,28,00,00,00,00,00,00,00,28,00,00,00,05,00,00,00,00,\
  00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,00,00,00,00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{80B898E0-257E-476B-B91C-B818FF3CEEF6}]
"1"=hex:03,00,00,00,00,00,00,00,00,00,00,c0,0d,00,00,00,20,00,00,00,11,22,33,\
  11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,\
  22,33,11,22,0d,00,00,00,2a,00,00,00,02,00,00,00,2a,00,00,00,17,00,00,00,00,\
  00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,00,00,00,00,00,00,19,00,00,00,37,00,00,00,01,00,00,00,37,00,00,00,01,\
  00,00,00,00,00,00,00,01,00,00,00,15,00,00,00,07,00,00,00,00,00,00,00,00,00,\
  01,00,00,00,10,00,00,00,1a,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00


****************** End of file ***********************

I am not sure I understand what your approach is at this point of time. Could you please elaborate. That will help me put this block into the other things I am doing and to validate if this will work with what I am trying to achieve across my enterprise.

Thanks

Author

Commented:
And Kavar,

You are right - the machine I am using did have Windows 2000 SP3 - and then I upgraded it to SP4.

Also, under [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\] I have TWO entries.
I am not sure what that means - just wanted to give that information to you.

Commented:
yes, you have 2 interfaces on your machine, the reg entry I gave you is set up for my interface....

please modify the reg entry I have you to
(PLEASE EXPORT THIS KEY FIRST)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{80B898E0-257E-476B-B91C-B818FF3CEEF6}]
"1"=hex:03,00,00,00,00,00,00,00,00,00,00,e0,0d,00,00,00,20,00,00,00,11,22,33,\
  11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,\
  22,33,11,22,0d,00,00,00,28,00,00,00,00,00,00,00,28,00,00,00,05,00,00,00,00,\
  00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,00,00,00,00

and delete the
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{27532BFD-254B-4918-928F-D2090445B7E2}
entry

It seems to me that your {80B898E0-257E-476B-B91C-B818FF3CEEF6} entry has more config info than mine...
so, we may need to record this key, make the changes, then record the key again, snapshot the change and then write a script that only affects the couple of bytes that we need

where I am going with this...  I could not find a RELIABLE way to do this via RUNDLL32 entry points, so after I found that the only thing changed on a machine was this key, I figured we could hack at it to make it work for you guys...

I am online so I will be available to look at this...

Author

Commented:
Hi Kavar,

I see where you are going with this.
Here are the snapshots with the change - and without the change (settings for Authentication Tab)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{80B898E0-257E-476B-B91C-B818FF3CEEF6}]
"1"=hex:03,00,00,00,00,00,00,00,00,00,00,c0,0d,00,00,00,20,00,00,00,11,22,33,\
  11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,\
  22,33,11,22,0d,00,00,00,2a,00,00,00,02,00,00,00,2a,00,00,00,17,00,00,00,00,\
  00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,00,00,00,00,00,00,19,00,00,00,37,00,00,00,01,00,00,00,37,00,00,00,01,\
  00,00,00,00,00,00,00,01,00,00,00,15,00,00,00,07,00,00,00,00,00,00,00,00,00,\
  01,00,00,00,10,00,00,00,1a,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EAPOL\Parameters\Interfaces\{80B898E0-257E-476B-B91C-B818FF3CEEF6}]
"1"=hex:03,00,00,00,00,00,00,00,00,00,00,00,0d,00,00,00,20,00,00,00,11,22,33,\
  11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,22,33,11,\
  22,33,11,22,0d,00,00,00,2a,00,00,00,02,00,00,00,2a,00,00,00,17,00,00,00,00,\
  00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
  00,00,00,00,00,00,00,00,19,00,00,00,37,00,00,00,01,00,00,00,37,00,00,00,01,\
  00,00,00,00,00,00,00,01,00,00,00,15,00,00,00,07,00,00,00,00,00,00,00,00,00,\
  01,00,00,00,10,00,00,00,1a,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00

I compared the changes and the "c0" on the first line is the missing factor - which I validated by making the change in the second block above and re-importing the registry key (manually). It sets the parameters back. So looks like its aggregated into that hex value.

Now my question to you is - is this hardware or machine specific ? Or is this more of Operating System Patch Level specific ? How reliable is this way of making the change via script ?

Author

Commented:
Added to above.
The settings on the Properties tab of the Authentication tab give more properties that I need to set too (as mentioned in my first post). At this point, its probably a good idea to tell you exactly what parameters I am setting to what values.

*****************************************************
From Authentication Tab
Enable network access control using 802.1X : Check
EAP type : Smart Card or other Certificate

Authenticate as computer when computer information is available : Checked
Authenticate as guest when user or computer information is unavailable : Unchecked

Click on Properties (under EAP type) >>>>>
Use my smart card : Unselected
Use a certificate on this computer : Selected
    User simple certificate selection (Recommended) : Checked

Validate server certificate : Unchecked

Use different user name for the connection : Unchecked
*****************************************************

Commented:
make sure that you have all setting reversed before you do the export or do an export after switiching each option so you need all the things that need to be switched... (more to come in a minute)

Commented:
This is machine specific, but never fear :) we are scripters and where there is will there is a way...

the key is to match the the Description on an adapter with an appropriate ip address to the interface id and then regenerate the reg value...

step 1, iterate through all adapters collecting the "Caption" and the "IPaddress" (array)

lets say your company uses 172.127.x.x

set adapters=GetObject("WinMGMTS:\root\cimv2").ExecQuery("Select caption,ipaddress from _
Win32_Networkadapterconfiguration")
on error resume next
dim captionNeeded
for each config in adapters
 for each address in config.ipaddress
  result=""
  result=left(address,6)
  if result="172.127" then
    CaptionNeeded=config.caption
    exit for
  end if
 next
 if CaptionNeeded<>"" then exit for
next
if captionNeeded="" then
  wscript.echo "DIDN'T Find adapter"
  wscript.quit
end if

Now that we have the caption, we need to iterate throuh the interfaces to find the associated guid,
\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkCards
has number keys , under each is the Description (equal to caption) and the ServiceName (equal to interface guid)

from the interface name we can rebuild the reg key appropriately



Author

Commented:
A few questions - so that I can make sure I understand this correctly.

Do you think the settings need to be made for every interface found on the machine ?
Also, when you say scripts to change the value - these are really binary values right ? So does this mean I write scripts to read byte values - and then change the specific byte that I need to change ?

What specifically is this guid {80B898E0-257E-476B-B91C-B818FF3CEEF6} ? I mean is that guid value tied to the adapter on individual machines - but the guid value is universal ? Meaning, I only need to change the registry key value for that specific interface ?

In my registry, I have two values under \NetworkCards - 1 and 8. I only have one physical network adapter though. Both these keys have the same description but different Service Names. So do I only have to bother about those interfaces that appear under the \InterfaceList key in the registry ?

Your help in these areas will be really appreciated since I am new to making registry changes (at byte level!!) directly via scripts.
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Author

Commented:
Thanks Kavar!
I think your followup and posts were very helpful and I'll complete the rest of the process to close this question.
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.