From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Neil Lehouillier
Sent: Monday, January 19, 2004 10:47 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] AD and GPO registry question
Hi all,
I have a quick little question that I'm sure someone has encountered before. I'm designing a GPO that contains the following (outreghack.adm):
CLASS USER
CATEGORY
"Outlook Security Hack"
POLICY
!!CheckAdminSettings
KEYNAME
"SOFTWARE\Policies\Microsoft\Security"
EXPLAIN
!!CheckAdminSettings_Explain
VALUENAME "CheckAdminSettings"
VALUEON
NUMERIC 1
VALUEOFF
NUMERIC 0
END POLICY
END CATEGORY
[strings]
CheckAdminSettings="Enable Outlook Security Settings"
CheckAdminSettings_Explain="This will allow you to use Outlook security settings on the users even though Microsoft Office was initally deployed without system policies."
;End of Strings
What I want is to modify the HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Security Key and add the CheckAdminSettings Value but that is not happening when I deploy the gpo listed above. What is happening though is that the reg hack above is being applied to :
HKEY_USERS\S-1-5-21-1992711942-224533190-6498272-3251\Software\Policies\Microsoft\Security
I thought that in GPO's registry hacks could only be applied to USERS(HKEY_CURRENT_USERS) or HKLM (according to http://www.microsoft.com/technet/treeview/default.asp?url="">), am I wrong?
Has anyone seen this before or have a solution…..
Thanks in advance…..
Neil
