R
ravi
Hello,
I am trying to update local security settings using secedit tool. The
windows server 2000 (SP4) server is connected to domain. For example I
wanted to change local setting value for "Do not display last user
name in logon screen" from disabled to enabled (effective setting is
laready showing as enabled becuase of domain GPO). Secedit commnad is
running successfully, but when open secpol or other tools in windows
the local value still shows as disabled.
I even tried to make a copy of current secedit.sdb and merge settings
from inf file to local copy of the database and tried to apply the
local db using another secedit command as shwon here
1) Copy the c:\winnt\security\database\secedit.sdb to c:\tmp
\secedit_backup.sdb
The singleVal.inf will enable the "Do not display last user name in
logon screen" option. Please set it
to disabled, and then run the following commands in c:\tmp
1) cd \tmp
2) secedit /configure /db secedit_backup.sdb /cfg singleVal.inf
3) secedit /configure /db secedit_backup.sdb
4) secedit /refreshpolicy machine_policy /enforce
This stil does not work. Any ideas?
Thanks
Ravi
I am trying to update local security settings using secedit tool. The
windows server 2000 (SP4) server is connected to domain. For example I
wanted to change local setting value for "Do not display last user
name in logon screen" from disabled to enabled (effective setting is
laready showing as enabled becuase of domain GPO). Secedit commnad is
running successfully, but when open secpol or other tools in windows
the local value still shows as disabled.
I even tried to make a copy of current secedit.sdb and merge settings
from inf file to local copy of the database and tried to apply the
local db using another secedit command as shwon here
1) Copy the c:\winnt\security\database\secedit.sdb to c:\tmp
\secedit_backup.sdb
The singleVal.inf will enable the "Do not display last user name in
logon screen" option. Please set it
to disabled, and then run the following commands in c:\tmp
1) cd \tmp
2) secedit /configure /db secedit_backup.sdb /cfg singleVal.inf
3) secedit /configure /db secedit_backup.sdb
4) secedit /refreshpolicy machine_policy /enforce
This stil does not work. Any ideas?
Thanks
Ravi