D
David Burghgraeve
I didn't find a forum for Group Policies for Windows 2003 so ...
Hi all,
I'm trying to create a custom adm file for managing settings under the
HKLM\SYSTEM registry. I did some tests with the help from
http://support.microsoft.com/kb/225087, specially the part "how to test"
under the section "Creating an ADM File". There Microsoft shows a small
sample for managing the spool directory. (which we actually might want to
use, ours is on the d:\spool directory on our print servers)
I've created the adm file, and added it via the "Local Computer Policy",
under "Computer Configuration", "Administrative templates", right mouse click
"add/Remove templates" and added the small template file:
CLASS MACHINE
CATEGORY "How To Test"
POLICY "Change Spool Directory"
KEYNAME "System\CurrentControlSet\Control\Print\Printers"
PART "Spool Directory"
EDITTEXT
VALUENAME "DefaultSpoolDirectory"
END PART
END POLICY
END CATEGORY
Very strange, this is added in the view, but the actual policy "Change Spool
Directory" is NOT ("there are no items to show in this view" message)!
Did some other tests, using an adm file from IBM.
CLASS MACHINE
CATEGORY !!PCOMM
CATEGORY !!Configuration
KEYNAME "Software\Policies\IBM\Personal Communications\Configuration"
POLICY !!Communication
PART !!Communication DROPDOWNLIST
VALUENAME Comm REQUIRED
ITEMLIST
NAME !!NoAccess VALUE "1"
NAME !!Write VALUE "2"
END ITEMLIST
END PART
END POLICY
END CATEGORY
END CATEGORY
[strings]
PCOMM = "IBM Personal Communications"
Configuration = "Configuration"
Communication = "Communication"
NoAccess = "No Access"
Write = "Write"
And this policy is visible. The only difference is actually the
"(HKLM\)SOFTWARE" and the "(HKLM\)SYSTEM" in the KEYNAME. If I change this in
the IBM's adm file, the policy isn't visible anymore!!!!
Did Microsoft protect the "system" key adm's for themselves??????
Thanks for the reply's.
Hi all,
I'm trying to create a custom adm file for managing settings under the
HKLM\SYSTEM registry. I did some tests with the help from
http://support.microsoft.com/kb/225087, specially the part "how to test"
under the section "Creating an ADM File". There Microsoft shows a small
sample for managing the spool directory. (which we actually might want to
use, ours is on the d:\spool directory on our print servers)
I've created the adm file, and added it via the "Local Computer Policy",
under "Computer Configuration", "Administrative templates", right mouse click
"add/Remove templates" and added the small template file:
CLASS MACHINE
CATEGORY "How To Test"
POLICY "Change Spool Directory"
KEYNAME "System\CurrentControlSet\Control\Print\Printers"
PART "Spool Directory"
EDITTEXT
VALUENAME "DefaultSpoolDirectory"
END PART
END POLICY
END CATEGORY
Very strange, this is added in the view, but the actual policy "Change Spool
Directory" is NOT ("there are no items to show in this view" message)!
Did some other tests, using an adm file from IBM.
CLASS MACHINE
CATEGORY !!PCOMM
CATEGORY !!Configuration
KEYNAME "Software\Policies\IBM\Personal Communications\Configuration"
POLICY !!Communication
PART !!Communication DROPDOWNLIST
VALUENAME Comm REQUIRED
ITEMLIST
NAME !!NoAccess VALUE "1"
NAME !!Write VALUE "2"
END ITEMLIST
END PART
END POLICY
END CATEGORY
END CATEGORY
[strings]
PCOMM = "IBM Personal Communications"
Configuration = "Configuration"
Communication = "Communication"
NoAccess = "No Access"
Write = "Write"
And this policy is visible. The only difference is actually the
"(HKLM\)SOFTWARE" and the "(HKLM\)SYSTEM" in the KEYNAME. If I change this in
the IBM's adm file, the policy isn't visible anymore!!!!
Did Microsoft protect the "system" key adm's for themselves??????
Thanks for the reply's.