GPO to edit registry

Hi.  Please let me know how to create a GPO on Windows server 2008 to edit the registry to get rid of the following vulnerability that was found by an Altiris vulnerability scan:

Microsoft Windows SMB Registry : Winlogon Cached Password Weakness

 Synopsis :

 User credentials are stored in memory.

 Description :

 The registry key HKLM\Software\Microsoft\Windows
 NT\CurrentVersion\Winlogon\CachedLogonsCount is non-null. It means
 that the remote host locally caches the passwords of the users when
 they log in, in order to continue to allow the users to log in in the
 case of the failure of the PDC.

 Solution :

 use regedt32 and set the value of this key to 0

http://www.tenable.com/plugins/index.php?view=single&id=11457
murkytunaAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Scott SilvaNetwork AdministratorCommented:
I think that would be in
Computer Configuration/Policies/Windows Settings/Security Settings/Local Policies/Security Options/Interactive logon: Number of previous logons to cache (in case domain controller is not available)


Just remember... This is a two edged sword... If the computers can't reach the domain controller for ANY reason, they will not be able to log in and work....

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Ganesamoorthy STech LeadCommented:
murkytunaAuthor Commented:
Thanks.  That did it.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.