Hi there
From what you've said, this should not be happening. I imagine that he did
actually put some restrictions on Default User. When I used NT4 system
policies, the first thing I always did was to delete the Default User and
Default Computer items.
Anyway, to debug this, you need the help of regedt32.
Take a copy of the ntconfig.pol file and run regedt32. Select the
HKEY_USERS window and go to File | Load Hive. Open the ntconfig.pol file
and when asked what name you want to give it, call it "ntconfig" or some
other name of your choice.
You can then use your favourite registry editing tool (RegEdit or RegEdt32)
to look at the contents of the file. I don't have a policy to hand, but it
should be fairly easy for you to work out what's in the policy. If you
follow the Default User branch down and find stuff in there, you can be
fairly sure of what's going on. You may see complete branches without any
registry values on them. That doesn't mean that any policies are
configured.
To unload the hive, go back to the "ntconfig" item and choose File | Unload
hive.
The bad news is that NT4 system policies "tattoo" themselves onto the
registry. Simply deleting the ntconfig.pol file won't cause any damage
that's been done to users' profiles to be undone.
Anyway, hope this helps.
Oli
Benhanson@borough said:
An admin at my workplace put a policy(ntconfig.pol) out on our domain
controller. This policy had 3 components, a specific user with lots of
restrictions, default user, and default computer. The default user and
computer were unmodified from the blank policy, only the specific user was
changed. By this I mean, the admin opened poledit, added .adm templates,
createda new policy which by default has default user and default computer,
then added and restricted his specific user. Now I'm seeing users who have
lost the all users start menu items and can no longer right click on Start
Menu and get the all users menu option, its not there. These users are
local admin on machines in question.
