gpedit.msc lockout

  • Thread starter Thread starter chenson
  • Start date Start date
C

chenson

Allright. So. This is the most jackass thing I've done yet,
but I managed to lock myself out of gpedit.msc. I
accidentally enabled a Run only these allowed applications
policy with no applications listed, so now the system
boots, but refuses to run anything since it's not on the
allowed application list. How can I recover from this?
 
From another machine in the network:

net use \\MyMachine /u:MyMachine\administrator "MyAdminPassword"
regedit

in the regedit load the remote registry of the locked down machine, then
navigate to this key

HKU\<Sid-of-the-user-you-want-to-recover>\Software\Microsoft\Windows\Current
Version\Policies\Explorer\RestrictRun

Delete the RestrictRun key. Then start gpedit.msc again and set correct
policy setting.
 
Back
Top