~hidden~ User Account in Windows Vista

[n0tdan]

In windows XP it is possible by changing the registry

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList

to make user accounts invisible at the welcome screen by adding a REG_DWORD with the account name and setting the value to 0. (have to add Administrator too as a side effect) Hitting Ctrl+Alt+Del twice brings up a prompt after a fresh boot allowing a manual typing of the account name/password and allowing login to the hidden user account.

I wanted to try windows vista but would like to be able to do the same thing.

So the question... Is the same registry method available in windows vista, or is there another way to have the same effect?

 

[InlineFive]

I'm curious to see if there is a solution too. I've tried the "Win XP method" but that just causes problems with UAC and the Welcome screen.

 

[NewMaxx]

I researched this issue and didn't find any complete solution, so I worked my way into editing group policy last night and found some things of interest. I didn't test any of my ideas as I don't have any accounts set up and I'm on my way out, but meanwhile perhaps this will inspire some workarounds.

My Steps

"Run" mmc
File -> Add/Remove Snap-in
Add the Group Policy Object Editor, for the local computer

First idea
Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options
(this may also be reached via running "secpol.msc")

In this location there is an option to not require CTRL + ALT + DEL to login, which is UNDEFINED. Changing this to disabled (thus requiring ctrl-alt-del) may also enable the double method in conjunction with the XP steps listed in the first post.

Another way of doing this is to run "netplwiz" and then the Advanced tab, followed by checking the "Require users" and applying.

Additionally, you can do similar to another policy, "do not display last user name" which will require a username to be typed to login along with the password.


Second idea
Computer Configuration -> Windows Settings -> Scripts (Startup/Shutdown)

Here you can add scripts to be run at computer startup (use the Show Files button to see the best place to put them) that can do various tasks. This isn't exactly the easiest business so I may post back with more information, but it may be possible to use a script to enable/disable a user account. The one problem I see with this is that you would likely need administrative access, so you would have to script that elevation behind the scenes (a security risk).

Another method is to make a script you can run once you are logged into a visible account that allows you to hide/unhide user accounts, then you can user switch or log off to access that account. While not ideal, it may still be useful.

An example script of this can be found here:
http://www.dougknox.com/xp/scripts/xp_unhide_users.vbs

Since this is for XP, under Vista you will need to create the missing values, which can be done in this manner:
http://elssblog.blogspot.com/2...-administrator-in.html

This may also require enabling via an elevated command prompt, as detailed here (replace account name, of course):
http://www.computerperformance...nistrator_activate.htm

 

[n0tdan]

thanks NewMaxx

bump for any more input