• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Active Directory: Using GPO to set a registry key

J

Jzero

Lifer
My desire is to be able to apply a GPO to a group of infrastructure servers (DNS, DCs, RRAS, etc) to enable this registry key:

HKLM\System\CurrentControlSet\Services\LanManServer\Parameters\Hidden = 1 (DWORD).

Which has the effect of hiding those servers from being browsed in Network Neighborhood. For the life of me I can't figure out how to use a GPO to set an arbitrary registry key. I tried creating an .adm file but it seems that you can only set keys in four specific places.

Does anyone know how to do this?
THanks!
 
Jzero,

Someone else may know a simpler way to do it, but here's how I would do it given the lack of options in the GPO:

1. Create a .REG file with the registry hack in it
2. Put the .REG file somewhere in \\Domain\SYSVOL (make note of the location)
3. Create a .CMD or .BAT file with the following line:
regedit /s \\Domain\SYSVOL\filename.reg
4. Create the GPO
5. Edit the GPO 'Computer Configuration' -> 'Windows Settings' -> Scripts
6. Add the script that you created in step 3 to whichever you prefer (startup/shutdown)
7. Apply the GPO to the machines you want to affect

Hope this helps

Cru
 
Dunno if you care, but this is pretty much exactly what we ended up doing, and it works like a champ.
Thanks!
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top