Well you don't give much information about what you are working with. If you
are managing an Active Directory domain then you can use Group Policy to
apply the changes quickly and easily to a couple million computers if need
be. For non domain computers you can create a custom security template and
import it manually into the other computers [right click security settings
and select import policy] or use the command secedit to apply the security
template. You can see, manage, create, and copy security templates via the
mmc snapin for security templates. You can also use the mmc snapin for
Security Configuration and Analysis to compare and apply security templates
as shown in the link below which also applies mostly to XP Pro and also
describes the secedit command.
http://www.microsoft.com/technet/prodtechnol/windows2000serv/howto/seconfig.mspx
I would avoid using .reg files if you can accomplish what you want with
security templates. It just makes everything easier to manage and have more
consistent results. You certainly can see the registry setting by using a
registry snapshot program that will take two or more snapshots of the
registry and compare the results which could be done before and after you
change a setting in Local Security Policy. Regnap and Regshot are two
popular registry snapshot tools. There will however be some noise in the
results of the comparison report but the info is there and usually is a
modified [versus added/deleted] registry value and for Local Security Policy
would be HKLM. If you ever use a registry snapshot tool to find a user
setting the report may show the user SID [big long number with hyphens] but
you want to configure the same setting under HKCU. --- Steve