Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1894
  • Last Modified:

Logon Script to set registry key.

Windows 2000 Domain
1500 Windows 2000 desktops

What I need to do is change the following registry keys on all PCs on the network. When i run the .reg file the correct settings are applied no problem so I know they are correct.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"LegalNoticeCaption"="XXXXXX Data Network"
"LegalNoticeText"="A criminal offence may be commited by accessing this computer or modifying any data in this computer without authorisation and persons doing so may be liable to prosecution"
"LogonPrompt"="XXXXXX authorised staff may enter a user name and password"
"DontDisplayLastUsername"="1"

ADM EFFORT
I have tried to create a .ADM file but it says there is an error in line 16. When i import other ADM files the atributes appear but have no settings underneath them.

To do this I used an app called ADM2REG.exe which converts .reg files into .ADM. I have now given up on this as i am aware that our AD is a bit sketchy some of the time and don't have any previous experience to know if this is correct behaviour or not. (Can't wait until we upgrade to 2003).
Here is the ADM file if anyone wants to comment. Fails to import on line 16 whic is the END POLICY line? Unfortunately I don't have a test domain just now so can't try to import it on another domain to see if it functions.
CLASS MACHINE
CATEGORY "SOFTWARE\Microsoft\Windows NT\CurrentVersion"
  POLICY Winlogon
  KEYNAME "SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon"
    PART LegalNoticeCaption EDITTEXT
    VALUENAME "LegalNoticeCaption"
    END PART
    PART LegalNoticeText EDITTEXT
    VALUENAME "LegalNoticeText"
    END PART
    PART LogonPrompt EDITTEXT
    VALUENAME "LogonPrompt"
    END PART
    PART DontDisplayLastUserName EDITTEXT
    END PART
  END POLICY
END CATEGORY

WHAT I WANT:

I would now like to make these changes using the Startup script but am unsure of what syntax to add in. The security would be ok as it would run as system.
Have spent some time trying to find good articles but they all mention .ADM files or reg.ini.

My scripting is pretty limited hence I am asking here.

Thanks in advance for your help.
0
AWGMorrison
Asked:
AWGMorrison
  • 2
  • 2
1 Solution
 
Shift-3Commented:
Just place the .reg file in the script directory and use the command REGEDIT /S filename.reg.
0
 
AWGMorrisonAuthor Commented:
I tried that and without the /S it asks the user to accept. I found the /S and it doesn't seem to work?

I assumed it was because the users don't have permission to modify the registry? Is that not correct. As I said before we do have some issues with AD here and there so wouldn't be a total shock if it wasn't working as expected.
0
 
Shift-3Commented:
If you're using it in a startup script (under Computer Configuration\Windows Settings\Scripts\Startup) rather than a logon script then it should run under the computer's SYSTEM account.  By default this account has full control of HKEY_LOCAL_MACHINE, so permissions shouldn't be a problem.
0
 
AWGMorrisonAuthor Commented:
What is the syntax for setting a regsitry key in the Startup script?

Apologies but I can't find a guide to this anywhere.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now