Hi all, I'm trying to apply a REG_NONE HKCU value to a logon script. The script itself is applied in testing both for an admin or a user. GP Result says the script is applied. The change is made in the user interface for the admin but not the user. As its a REG_NONE value, a logon script is the only way to do it...apparently.
By changing the GPO to disable the policy "Prevent access to registry editing tools" this then works for the user but ideally this is something I don't want to do. I don't want to give users access to the registry for obvious reasons. For reference this is a Citrix server that the user is logging onto.Does anyone else have any ideas regarding this behaviour? I have put the contents of the script here for reference:
Dim objWshShellSet objWshShell=CreateObject("WScript.Shell")WINDIR =objWshShell.ExpandEnvironmentStrings("%windir%")objWshShell.Run "reg add HKCU\Software\Microsoft\Windows\Shell\AttachmentExecute\{0002DF01-0000-0000-C000-000000000046} /v TIFImage.Document /t REG_NONE",0Set objWshShell=Nothing
The purpose of the script is to allow tiff popups to be opened without warning in IE. We have an expense management application that needs this ti happen. I realise that this can be changed in IE manually, but the nature of our system dictates that this is not an option for us.
Any help is appreciated.