• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 286
  • Last Modified:

Procedural changes to GPO

Would like to script out via GPO, changes to all but for testing purposes a few machines to change the registry keys to reflect the following settings

I need to modify the registry HKLM\System\CurrentControlSet\Services\Tcpip\Parameters:

1. First the Reg_SZ value ÓSearchListÔ has to be cleared
- This clears the ÓAppend these DNS suffixes (in order)Ô option and enables ÓAppend primary and connection specific DNS suffixesÔ

2. Next, the Reg_DWORD value ÓUseDomainNameDevolutionÔ needs to be set to 1 to enable "Append parent suffixes of the primary DNS suffix"


This will be done from a windows server 2003 box.  
0
cgooden01
Asked:
cgooden01
  • 4
  • 3
1 Solution
 
Signior_GCommented:
Hi,

There are couple of ways you can achieve it.

First, make the changes in the registry key, and export it as a reg file. The same reg file can be deployed as a logon script.

Secondly, you can use a "Reg add" contruct  from teh command line to add the necessary change and save it as a batch file. Again deploy it as a logon script.

Last, you can create custom ADM's to acheive the goal.
The process has been defined in the following links:
http://blogs.technet.com/grouppolicy/archive/2007/09/21/setting-default-registry-key-values-using-custom-adm-files-part-1-of-2.aspx
http://blogs.technet.com/grouppolicy/archive/2007/10/11/custom-adm-for-setting-the-default-value-of-a-registry-key-part-1-of-2.aspx


Hope this helps!

G
0
 
cgooden01Author Commented:
Sounds great, i will test this within the next 24 hours. Im very familiar with these procedures just been awhile.  Referencing back to the simply creating a batch file i.e. logon script.  I dont believe its just inserting the reg file into a batch file. Is it?   So what im asking is the ways to push this via logon script.  
0
 
cgooden01Author Commented:
Testing with this command line. can i simply use this one for my hot site operations:

@ECHO OFF
regedit /s prog1.reg
regedit /s prog2.reg
cls

0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
Signior_GCommented:
Was not at my desk.
Sure you can!

The reg fil works fine just fine, or else you can import it using regedit /s
0
 
cgooden01Author Commented:
Having problems with this file across multiple machines.  Maybe im missing a step but dont think so.  Require this to be implemented over just 50 machines. Normally i would do this with a GPO, but at this particular site, have no access to push this nor SMS or SCCM.  Any suggestions..
0
 
Signior_GCommented:
Create a share withe veryne  as Full Control as Share permissions and NTFS as read and execute.
Store the files here, and deploy it via Site policies ( L S D OU).

Or yo can keep these files in the netlogon share as well!
0
 
cgooden01Author Commented:
Wasnt as complete as required and not so much in a timely manner, but pointed me in the right direction to get this resolved
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now