G
Guest
Guest
Archived from groups: microsoft.public.windowsxp.configuration_manage (More info?)
OK, I'm trying to get to grips with the way XP pro and XP home actually work
in respect to
User Profiles. Note this is without the PC being joined to a network and
hence their is no Domain assignment. I've read about the Group Policies in
XP pro and think that I understand that setting a group policy using
gpedit.msc User Configuration\Administrative templates\..... will
effectively set the policy for all User Profiles since there is only one
Local Policy? So if I logon as a user that is a member of the Administrators
group (or the Administrator) how do I set policies for Users that are
members of the User group? can this be done without a network domain?
I'm assuming that if I wanted to setup a system that had several users each
with different policy restrictions I could create accounts for each of the
users and allow them to be Administrators. Logon to each in turn and make
the desired policy settings manually then log back on to my administrators
account and change each of the account types to Limited (user) ??
Is this Correct? Is there any way I can effectively make settings in the
HKEY_CURRENT_USER hive for another user whilst logged on as administrator
without effecting other users or my own administrators account? Presumably
this would mean reading and writing to the uses NTuser.dat file
When you create a user account of the Limited type several registry keys are
protected against writing to! I've been trying to override this built in
functionality by setting permissions on a specific registry key so that the
use is included with full access. It appears to work untill you logon as the
user then the permissions are not available? Can this be done?
I thought that if I logged on as the user then ran regedit under the
Administrators credentials I'd be able to set policies manually for that
user but this doesn't seem to be the case!
Thanks for any info you can give with this
Chris
OK, I'm trying to get to grips with the way XP pro and XP home actually work
in respect to
User Profiles. Note this is without the PC being joined to a network and
hence their is no Domain assignment. I've read about the Group Policies in
XP pro and think that I understand that setting a group policy using
gpedit.msc User Configuration\Administrative templates\..... will
effectively set the policy for all User Profiles since there is only one
Local Policy? So if I logon as a user that is a member of the Administrators
group (or the Administrator) how do I set policies for Users that are
members of the User group? can this be done without a network domain?
I'm assuming that if I wanted to setup a system that had several users each
with different policy restrictions I could create accounts for each of the
users and allow them to be Administrators. Logon to each in turn and make
the desired policy settings manually then log back on to my administrators
account and change each of the account types to Limited (user) ??
Is this Correct? Is there any way I can effectively make settings in the
HKEY_CURRENT_USER hive for another user whilst logged on as administrator
without effecting other users or my own administrators account? Presumably
this would mean reading and writing to the uses NTuser.dat file
When you create a user account of the Limited type several registry keys are
protected against writing to! I've been trying to override this built in
functionality by setting permissions on a specific registry key so that the
use is included with full access. It appears to work untill you logon as the
user then the permissions are not available? Can this be done?
I thought that if I logged on as the user then ran regedit under the
Administrators credentials I'd be able to set policies manually for that
user but this doesn't seem to be the case!
Thanks for any info you can give with this
Chris