KOV_VZW
asked on
Windows 7: deny access to product key through GPolicy
Hi,
we run Server 2008 R2 in a W7 enviroment.
When a W7 client goes for properties of the computer, nothing can be edited (that's supposed to be like that), except for the product key.
How can I disable access to product key through Group Policy ?
Kind regards,
we run Server 2008 R2 in a W7 enviroment.
When a W7 client goes for properties of the computer, nothing can be edited (that's supposed to be like that), except for the product key.
How can I disable access to product key through Group Policy ?
Kind regards,
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Being able to read the key seems to be the problem... You'd want to deny the users access, but I'm not sure what repercussions this may have... Editing or removing the key will likely make it think it's not registered, but if a process that user launches checks, and it can't read it, it may report that to the OS, and the OS may think it's not registered, even if another process with another user (like system) can read the registry key.
-rich
-rich
But this doesn't work, I've just tried it...
-rich
-rich
KOV_VZW, did this work? If it doesn't storing this as a solution won't help anyone else with the same problem.
Also microsoft checks those registry keys to make sure the key is valid from time to time, I'm not sure there is an easy way to block them from being seen. The registry can be read by users in all sorts of places they can't otherwise write to, especially if they are not administrators, so I'm not sure you can block those keys. It may be possible to modify the code that displays them in certain programs, but I'm sure that isn't warrantied nor is if very effective because most of the "decoders" don't need any input from the user, they just read the registry directly.
I hope this is of some help...
-rich