troubleshooting Question
GPO to create several registry keys for domain controllers and member servers issues
Hello Experts,
I was able to successfully created a GPO and linked to the Domain controllers OU that imports or creates 4 registry keys, however I am running into the following issue:
a. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING with "iexplore.exe" set to "1"
b. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\InternetExplorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING with "iexplore.exe" set to "1"
The first two registry keys above are successfully created per screenshots attached, but the other ones below are not created
a. HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX iexplore.exe is missing.
b. HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX iexplore.exe is missing.
I ran gpresult and the GPO is being applied to the DCs, in fact the two first registry keys are created via GPO, but for some reason the last two are running into this issue
I did try to create another GPO only to push these 2 keys with no luck, ran gpupdate/force same results,
The issue is that I do not want to manually create these key from regedit editor or via PowerShell script. it must be created via GPO same as the first two keys
Any ideas on why I unable to create these registry keys via GPO? I did try the action create instead of replace from the registry wizard with no luck
Please, see attached images for more info
as you can see below the Feature_Allow_User32 key is being created via GPO
I was able to successfully created a GPO and linked to the Domain controllers OU that imports or creates 4 registry keys, however I am running into the following issue:
a. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\InternetExplorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING with "iexplore.exe" set to "1"
b. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\InternetExplorer\Main\FeatureControl\FEATURE_ALLOW_USER32_EXCEPTION_HANDLER_HARDENING with "iexplore.exe" set to "1"
The first two registry keys above are successfully created per screenshots attached, but the other ones below are not created
a. HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX iexplore.exe is missing.
b. HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_PRINT_INFO_DISCLOSURE_FIX iexplore.exe is missing.
I ran gpresult and the GPO is being applied to the DCs, in fact the two first registry keys are created via GPO, but for some reason the last two are running into this issue
I did try to create another GPO only to push these 2 keys with no luck, ran gpupdate/force same results,
The issue is that I do not want to manually create these key from regedit editor or via PowerShell script. it must be created via GPO same as the first two keys
Any ideas on why I unable to create these registry keys via GPO? I did try the action create instead of replace from the registry wizard with no luck
Please, see attached images for more info
as you can see below the Feature_Allow_User32 key is being created via GPO
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 8 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.
The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.