Solved

How to edit registry entry using group policy

Posted on 2007-11-15
5
7,604 Views
Last Modified: 2010-10-08
I would like to automate the process of uninstalling Symantec Antivirus Client from about 40 Windows XP clients who are part of Windows Server 2003 domain and the only thing I am stuck at is how to edit registartion entry so that the uninstall process doesn't ask for admin password.
I can MANUALLY edit the registration entry "UseVPUninstallPassword" to 0 using regedit.
However, I am trying to use REGINI.exe to accomplish this :
Both regini and rp1.ini are in C:\Windows\System32
at command prompt when I run C:\> regini.exe rp1.ini  
The "UseVPUninstallPassword"= REG_DWORD 0x00000001 remains unchanged.
Here is rp.ini
-------------------------------------------------------------------
 rp1.ini
HKEY_LOCAL_MACHINE\SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion\AdministratorOnly\Security "UseVPUninstallPassword"= REG_DWORD 0x00000000

I have also tried :
rp1.ini different style :
------------------------------------------------------------
\registry\machine
              SOFTWARE
                    INTEL
                       LANDesk
                           VirusProtect6
                                     CurrentVersion
                                                AdministratorOnly
                                                             Security
                                                                "UseVPUninstallPassword" = REG_DWORD 0x00000000
----------------------------------------------------
The resulting entry remains UNCHANGED and I want to automate the whole process.



 
0
Comment
Question by:mn210
5 Comments
 
LVL 32

Accepted Solution

by:
and235100 earned 63 total points
ID: 20293422
Can you run this from a batch file - with a reg add /f entry before it - so the registry value gets changed?

@echo off
reg add HKLM\SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion\AdministratorOnly\Security /v "UseVPUninstallPassword" /t reg_dword /d 0x00000000 /f


(all one line, of course)
0
 
LVL 29

Assisted Solution

by:matrixnz
matrixnz earned 62 total points
ID: 20296417
Hi mn210

You can create a custom ADM file, see attached, Save the file as SAVPUR.adm (or whatever you like, that stands for Symantec AntiVirus Password Uninstall Remover)
Using Group Policy Management Tool, add the template to your particular OU GPO, once you've done that you can navigate to Computer Configuration\Administrative Tools\Symantec AntiVirus and enable Symantec AV Uninstall Password and then check the Remove Symantec AV Uninstall Password Requirement

That's it, just remember to view this Group Policy you must modify "Filtering" remove check against "Only show policy settings that can be fully managed."

Hope that helps.

Cheers
CLASS MACHINE
 
CATEGORY "Symantec Antivirus"
 
  POLICY !!PolicyNoAdmin
  EXPLAIN !!ExplainNoAdmin
  KEYNAME 
 
"Software\INTEL\LANDesk\VirusProtect6\CurrentVersion\AdministratorOnly\Security"
    PART !!PartNoAdmin
    CHECKBOX
    VALUENAME "UseVPUninstallPassword"
    VALUEON NUMERIC 0
    VALUEOFF NUMERIC 1
    END PART
  END POLICY
 
END CATEGORY
 
[STRINGS]
PolicyNoAdmin=Symantec AV Uninstall Password
ExplainNoAdmin=Remove Symantec AV Uninstall Password Requirement
PartNoAdmin=Remove Symantec AV Uninstall Password Requirement

Open in new window

0
 
LVL 1

Expert Comment

by:Computer101
ID: 20649613
Forced accept.

Computer101
EE Admin
0
 

Expert Comment

by:Ehab_Nassar
ID: 26598903
I want to make it with script  like  i use add reg ... with paramter f
with adm template need some work to do admx
could anyone help me
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question