Windows Messenger 5.1 - Need to Permanently Disable .NET Passport Account Capability


I'd like to be able to use Windows Messenger 5.1 on my corporate LAN and only allow Exchange accounts to login. I want to permanently disable the .NET Passport Account from being able to login. I know I can go to options and uncheck the checkbox, but I want something that will stop the user from being able to change it themselves. I'd prefer a registry change or something along those lines. I already blocked port 1863 at the firewall level, but it just uses one of a multitude of servers running on port 80. Anyone have any ideas? Thanks!
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

I assume that these clients are on your Active Directory environment.

Download the LCS 2005 trial (
 Within that trial is the LCS 2005 Admin Tools.  Run the setup and install the LCS 2005 Admin tools (DONT run forestprep, DONT run Domain Prep, etc).

There is a template called RTCClient.adm, which is used to manage Windows Messenger.  Within that template are settings, both User Configuration and Computer Configuration, which can prevent connection to .NET and Exchange,
and even SIP.  When configured, the options for .NET and Exchange will disappear from the client.

This template is located in your %windir%/inf directory (generally C:\Windows\Inf) on the workstation or server where the LCS 2005 administrative tools are instaled.

Copy this file to the C:\windows\inf on one of your domain controllers (it really does not have to go there, but it is easier if it does).

I prefer to create a new GPO, remove all of the other templates, and then add the RTCClient.adm template.  ...not a best practice, just a preference.  Go in there and disable access to the .net messenger.

Note:  This only works for the workstations on your domain.  This will not work on a home user's PC.



Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
funkyjoe1Author Commented:
Thanks, Bob.

This sounds like the answer I'm looking for.

Could you elaborate on exactly how I should go about creating the GPO and loading the template? I'm having trouble with that part of it.

I downloaded the demo, installed the admin tools, I have the RTCClient.adm in the inf directory of my WIN2K DC. Then using the GPMC on my XP workstation I create a new GPO. From there I'm looking to load the template, but can't figure out how. What am I missing?

Technically this is a question for the Windows T/A versus the Exchange Server T/A...but that's an easy answer because Daniel Petri already documented it.


funkyjoe1Author Commented:
I finally figured that part out right before your link to Mr. Petri's site.

Your response was perfect. It works great. Thanks!
Good deal!
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.