SlideShare une entreprise Scribd logo

Configuring Desktops with GPOs Rather than Registry Hacks

Télécharger en tant que PPTX, PDF
Unidesk Corporation
Unidesk Corporation

Using GPOs to Configure and Tune Desktops discusses how Group Policy Objects (GPOs) can be used as an alternative to directly editing the registry (registry "hacks") to configure and tune desktop environments. The document outlines why GPOs are preferable to registry hacks, provides examples of common GPO configurations like Windows settings, services, and user profiles. It also covers policy basics, templates, and tools to help implement GPO-based configurations and tuning.

Technologie
1  sur  36
Using GPOs to Configure and Tune Desktops Living without Registry ‘Hacks’ Ron Oglesby @RonOglesby NOT A UNIDESK COMMERCIAL
Gabe asked about golf carts Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Agenda Why use GPOs? Policy Basics Policies Vs Preferences Desktop Configurations ADMs and ADMX/ADMLs Tools you can use as venture into GPOs
Why do we hack the registry Tune the OS Set defaults Hide things from users Others… But is a hack a policy? Policies can be used for more than just registry changes
Why use GPOs and Not Reg hacks??? Documentation…. How do to remove this spoiler? Without opening the trunk?
What do GPOs TYPICALLY get used for? Windows Settings like folder redirection Hiding icons and Windows options Configuring browser settings Setting permissions? Sometimes Configuring Office or other app settings… Adding Users.. Occasionally.
Login Times and the default profile???? Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Common tasks in tuning the VDI image? Add and modify local security accounts (at times) Disable / reconfigure Services Tune the local OS parameters File System, desktop display, TCP parameters, etc, etc Tune the user profile (like Menu show delay) Configure applications (like IE) Sometimes even create folders and move items like tools into the image Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Policy Basics GPO Processing and Trigger events GPUPDATE /FORCE
Policy Basics Computer Configvs User Config Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Policy Basics Policy Vs Preferences….. Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Policy Basics Preferences added in Win 2008 Allow for SIMPLE config of numerous settings No Templates needed! Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Policy Templates Traditionally known as Policy ADMs (ADMX now) Set the options you see in the GPOs Often created by the App vendors or industrious System Engineers
ADM files are TXT files CLASS xxx - User or Machine CATEGORY xxx - Major heading. “Windows Update” KEYNAME xxx “Softwareicrosoftffice2.0ulook” Policy xxx - name of Policy shown in GPO editor VALUENAME xxx - Registry entry we are changing END POLICY END CATEGORY
ADM file Example CLASS MACHINE CATEGORY !!Reader POLICY !!Checkforupdatesatstart KEYNAME "Softwaredobecrobat Reader.0VGeneral" EXPLAIN !!Checkforupdatesatstart_Help VALUENAME "bCheckForUpdatesAtStartup" VALUEON NUMERIC 1 VALUEOFF NUMERIC 0 END POLICY END CATEGORY
ADM vs ADMX ADMX are the ‘new’ ADM XML based Policies/operative section of the policy are contained in ADMX ADML are language specific files Not stored in individual policies, can be stored in 1 central location in enterprise environments Will (by default) supersede existing ADM files (Inetres.adm, system.adm, etc) or can be created to supersede and existing ADM Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
ADMX file sample comparison <categories> <category name="Reader" displayName="$(string.Reader)" /> </categories> <policies> <policy name="Checkforupdatesatstart" class="Machine" displayName="$(string.Checkforupdatesatstart)" explainText="$(string.Checkforupdatesatstart_Help)" presentation="$(presentation.Checkforupdatesatstart)" key="Softwaredobecrobat Reader.0VGeneral" valueName="bCheckForUpdatesAtStartup"> <parentCategory ref="Reader" /> <supportedOn ref="SUPPORTED_NotSpecified" /> <enabledValue> <decimal value="1" /> </enabledValue> <disabledValue> <decimal value="0" /> </disabledValue> </policy> Group Policy Samples from Microsoft: http://www.microsoft.com/downloads/en/details.aspx?FamilyId=3D7975FF-1242-4C94-93D3-B3091067071A&displaylang=en Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
ADM file Example CLASS MACHINE CATEGORY !!Reader POLICY !!Checkforupdatesatstart KEYNAME "Softwaredobecrobat Reader.0VGeneral" EXPLAIN !!Checkforupdatesatstart_Help VALUENAME "bCheckForUpdatesAtStartup" VALUEON NUMERIC 1 VALUEOFF NUMERIC 0 END POLICY END CATEGORY Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Building your own? Start with ADM files if you haven’t already. Then convert them w/ the ADM to ADMX converter The hardest part is not building the text file…. Its finding the registry keys
Ron’s rules for Policies Vs Preferences… When to use a policy Something that the usermay have access to but I don’t want them to change IE security, connectivity, or application settings When to use a preference When I set a default setting that they may change IE default start page or default short cuts on the desktop When I want to change a registry setting that they do not have a GUI to change Default user screen saver, machine settings like NTFS last access time stamp, etc.
Policy Preference Options Create Create the object (reg entry, drive mapping, etc, etc) Will do nothing if the entry/object already exists Replace Delete existing setting (if exist) and create a new object Update Modification of an existing object Will create if it does not exist Delete
Preference Common Settings Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Preference WARNINGS These are like defaults NOT Policies…. These can tattoo the machine Newer policies do not tattoo. That was a benefit of getting away from some of the old school NT type policies Registry changes made via Preferences can leave a tattoo after removal of policy UNLESS you counter/remove the VM from having the policy apply. Other changes (Directories, User/group modifications or additions) also stick Preferences are basically like your image “HACK” but with management….
So let’s look at how you can do this in a Policy Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Windows 7 Services Examples Desktop Window Manager Session manager Disk Defragmenter Diagnostic Policy Services IP helper (if no IPv6) Security Center Superfetch Themes Service (classic interface) Windows Defender Windows Search Windows Update http://www.vmware.com/files/pdf/VMware-View-OptimizationGuideWindows7-EN.pdf
Demo Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Windows Settings Examples Recycle Bin – Do not move files to recycle bin Screen saver (XP disable .default screen saver, Win7 Blank) Disable System Restore UAC settings Windows Update disabled Tune the file system (last access time stamp, 8.3 file names, etc) Remove Tablet PC components (or disable services) Project VRC Phase III – www.projectvrc.nl Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Demo Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
User Tuning? Focus on HKCU IE and other application settings Graphics/video settings Customer templates are out there and checkout PolicyPak.com Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Demo Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Finding the Registry Entry GOOGLE http://lmgtfy.com/ RegSnap/Registry Monitoring Tools Good old fashion digging and guessing! My Favorite:SysTracerhttp://www.blueproject.ro/systracer
You didn’t convince me Ron! Windows Enabler http://www.bluemoonpcrepair.com/wp/?p=39 http://www.wincert.net/tips/microsoft-windows/windows-7/2109-how-to-copy-a-user-profile-on-windows-7.html Pierre’s VUEM - VirtuAllUser Environment Manager http://www.virtualdesktops.info/Products.aspx Login scripts, User configs, Printer configs, registry values, Port mapping, and File and folder operations. Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
Where to start? GPAnswers.com http://www.gpanswers.com/resources/gp-tips-and-tricks.html PolicyPak.com http://policypak.com/ Off 2007 Policy Templates http://www.microsoft.com/downloads/en/details.aspx?FamilyID=92d8519a-e143-4aee-8f7a-e4bbaeba13e7&displaylang=en Off 2010 Policy Templates http://www.microsoft.com/downloads/en/details.aspx?FamilyID=64B837B6-0AA0-4C07-BC34-BEC3990A7956&displaylang=en Using GPOs to Customize XenApp http://support.citrix.com/proddocs/index.jsp?topic=/online-plugin-110-windows/ica-import-icaclient-template-v2.html IE 9 Preferences not working? http://blogs.technet.com/b/asiasupp/archive/2011/03/30/internet-explorer-9-ie9-group-policy-preferences-gpp.aspx XenApp Blog’s XenApp and XenDesktop Policies http://www.xenappblog.com/downloads/
ADM/Xs and Policy references? Microsoft ADM to AMDX migrator? http://www.microsoft.com/downloads/en/details.aspx?FamilyID=0F1EEC3D-10C4-4B5F-9625-97C2F731090C Group Policy Settings References from MS? http://www.microsoft.com/downloads/en/details.aspx?FamilyID=18c90c80-8b0a-4906-a4f5-ff24cc2030fb Group Policy ADMX Syntax Guide: http://technet.microsoft.com/en-us/library/cc753471(WS.10).aspx Group Policy Survival Guide http://technet.microsoft.com/en-us/library/cc754151(WS.10).aspx Managing with ADMX files http://technet.microsoft.com/en-us/library/cc709647(WS.10).aspx
Q&AOpen Discussion Ron Oglesby ron.unidesk.com Twitter: @ronoglesby

Recommandé

Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1
Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1
Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1Axiros
 
Five Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise Services
Five Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise ServicesFive Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise Services
Five Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise ServicesGCC Computers
 
Presentation technical deep dive of horizon 6 and mirage 5
Presentation technical deep dive of horizon 6 and mirage 5Presentation technical deep dive of horizon 6 and mirage 5
Presentation technical deep dive of horizon 6 and mirage 5solarisyougood
 
vCPE Challenges and Ways Forward
vCPE Challenges and Ways Forward vCPE Challenges and Ways Forward
vCPE Challenges and Ways Forward ECI – THE ELASTIC NETWORK™
 
No BS, Vendor Neutral Comparison of Application Layering Solutions
No BS, Vendor Neutral Comparison of Application Layering SolutionsNo BS, Vendor Neutral Comparison of Application Layering Solutions
No BS, Vendor Neutral Comparison of Application Layering SolutionsUnidesk Corporation
 
OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...
OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...
OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...Colt Technology Services
 
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment Bangladesh Network Operators Group
 
Introdunction to Network Management Protocols - SNMP & TR-069
Introdunction to Network Management Protocols - SNMP & TR-069Introdunction to Network Management Protocols - SNMP & TR-069
Introdunction to Network Management Protocols - SNMP & TR-069William Lee
 

Recommandé

Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1
Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1
Introducing TR-069 - An Axiros Workshop for the TR-069 Protocol - Part 1Axiros
 
Five Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise Services
Five Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise ServicesFive Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise Services
Five Ways Virtual CPE Reduces Costs and Enables Innovative Enterprise ServicesGCC Computers
 
Presentation technical deep dive of horizon 6 and mirage 5
Presentation technical deep dive of horizon 6 and mirage 5Presentation technical deep dive of horizon 6 and mirage 5
Presentation technical deep dive of horizon 6 and mirage 5solarisyougood
 
vCPE Challenges and Ways Forward
vCPE Challenges and Ways Forward vCPE Challenges and Ways Forward
vCPE Challenges and Ways Forward ECI – THE ELASTIC NETWORK™
 
No BS, Vendor Neutral Comparison of Application Layering Solutions
No BS, Vendor Neutral Comparison of Application Layering SolutionsNo BS, Vendor Neutral Comparison of Application Layering Solutions
No BS, Vendor Neutral Comparison of Application Layering SolutionsUnidesk Corporation
 
OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...
OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...
OSS in the era of SDN and NFV: Evolution vs Revolution - What we can learn f...Colt Technology Services
 
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment Challenges of L2 NID Based Architecture for vCPE and NFV Deployment
Challenges of L2 NID Based Architecture for vCPE and NFV Deployment Bangladesh Network Operators Group
 
Introdunction to Network Management Protocols - SNMP & TR-069
Introdunction to Network Management Protocols - SNMP & TR-069Introdunction to Network Management Protocols - SNMP & TR-069
Introdunction to Network Management Protocols - SNMP & TR-069William Lee
 
Group policy preferences
Group policy preferencesGroup policy preferences
Group policy preferencesRob Dunn
 
Useful Group Policy Concepts
Useful Group Policy ConceptsUseful Group Policy Concepts
Useful Group Policy ConceptsRob Dunn
 
Ad group policy1
Ad group policy1Ad group policy1
Ad group policy1denogx
 
10 things group policy preferences does better
10 things group policy preferences does better10 things group policy preferences does better
10 things group policy preferences does betterGol D Roger
 
Win Connections Group Policy Changes (Harold W)
Win Connections Group Policy Changes (Harold W)Win Connections Group Policy Changes (Harold W)
Win Connections Group Policy Changes (Harold W)Harold Wong
 
Win Connections Group Policy Changes ( Harold W)
Win Connections Group Policy Changes ( Harold W)Win Connections Group Policy Changes ( Harold W)
Win Connections Group Policy Changes ( Harold W)Harold Wong
 
GeekOn with Ron #4: Tuning and Optimizing Your Gold Image
GeekOn with Ron #4: Tuning and Optimizing Your Gold ImageGeekOn with Ron #4: Tuning and Optimizing Your Gold Image
GeekOn with Ron #4: Tuning and Optimizing Your Gold ImageUnidesk Corporation
 
Environment Manager Policy
Environment Manager PolicyEnvironment Manager Policy
Environment Manager PolicyIvanti
 
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...Joel Oleson
 
10 implementing GPOs
10 implementing GPOs10 implementing GPOs
10 implementing GPOsHameda Hurmat
 
Deploying office 2010 via group policy
Deploying office 2010 via group policyDeploying office 2010 via group policy
Deploying office 2010 via group policyNaresh Gotad
 
Front-end performances
Front-end performancesFront-end performances
Front-end performancesSmile I.T is open
 
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)Intergen
 
Odoo V8 Installation
Odoo V8 InstallationOdoo V8 Installation
Odoo V8 InstallationEmipro Technologies Pvt. Ltd.
 
Mangento
MangentoMangento
MangentoRavi Mehrotra
 
Introduction to Mangento
Introduction to Mangento Introduction to Mangento
Introduction to Mangento Ravi Mehrotra
 
Dba tips and_tricks
Dba tips and_tricksDba tips and_tricks
Dba tips and_tricksInSync Conference
 
Does DITA need XML? Lightweight DITA and HTML5
Does DITA need XML? Lightweight DITA and HTML5Does DITA need XML? Lightweight DITA and HTML5
Does DITA need XML? Lightweight DITA and HTML5Michael Priestley
 
dJango
dJangodJango
dJangoBob Chao
 
Lotusphere 2012: BP110 Performance Boost for your Notes Client
Lotusphere 2012: BP110 Performance Boost for your Notes ClientLotusphere 2012: BP110 Performance Boost for your Notes Client
Lotusphere 2012: BP110 Performance Boost for your Notes Clientpanagenda
 
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...Unidesk Corporation
 
GeekOn with Ron #5: Storage Deep Dive with Special Guest
GeekOn with Ron #5: Storage Deep Dive with Special GuestGeekOn with Ron #5: Storage Deep Dive with Special Guest
GeekOn with Ron #5: Storage Deep Dive with Special GuestUnidesk Corporation
 

Contenu connexe

Similaire à Configuring Desktops with GPOs Rather than Registry Hacks

Group policy preferences
Group policy preferencesGroup policy preferences
Group policy preferencesRob Dunn
 
Useful Group Policy Concepts
Useful Group Policy ConceptsUseful Group Policy Concepts
Useful Group Policy ConceptsRob Dunn
 
Ad group policy1
Ad group policy1Ad group policy1
Ad group policy1denogx
 
10 things group policy preferences does better
10 things group policy preferences does better10 things group policy preferences does better
10 things group policy preferences does betterGol D Roger
 
Win Connections Group Policy Changes (Harold W)
Win Connections Group Policy Changes (Harold W)Win Connections Group Policy Changes (Harold W)
Win Connections Group Policy Changes (Harold W)Harold Wong
 
Win Connections Group Policy Changes ( Harold W)
Win Connections Group Policy Changes ( Harold W)Win Connections Group Policy Changes ( Harold W)
Win Connections Group Policy Changes ( Harold W)Harold Wong
 
GeekOn with Ron #4: Tuning and Optimizing Your Gold Image
GeekOn with Ron #4: Tuning and Optimizing Your Gold ImageGeekOn with Ron #4: Tuning and Optimizing Your Gold Image
GeekOn with Ron #4: Tuning and Optimizing Your Gold ImageUnidesk Corporation
 
Environment Manager Policy
Environment Manager PolicyEnvironment Manager Policy
Environment Manager PolicyIvanti
 
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...Joel Oleson
 
10 implementing GPOs
10 implementing GPOs10 implementing GPOs
10 implementing GPOsHameda Hurmat
 
Deploying office 2010 via group policy
Deploying office 2010 via group policyDeploying office 2010 via group policy
Deploying office 2010 via group policyNaresh Gotad
 
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)Intergen
 
Introduction to Mangento
Introduction to Mangento Introduction to Mangento
Introduction to Mangento Ravi Mehrotra
 
Does DITA need XML? Lightweight DITA and HTML5
Does DITA need XML? Lightweight DITA and HTML5Does DITA need XML? Lightweight DITA and HTML5
Does DITA need XML? Lightweight DITA and HTML5Michael Priestley
 
Lotusphere 2012: BP110 Performance Boost for your Notes Client
Lotusphere 2012: BP110 Performance Boost for your Notes ClientLotusphere 2012: BP110 Performance Boost for your Notes Client
Lotusphere 2012: BP110 Performance Boost for your Notes Clientpanagenda
 

Similaire à Configuring Desktops with GPOs Rather than Registry Hacks (20)

Group policy preferences
Group policy preferencesGroup policy preferences
Group policy preferences
 
Useful Group Policy Concepts
Useful Group Policy ConceptsUseful Group Policy Concepts
Useful Group Policy Concepts
 
Ad group policy1
Ad group policy1Ad group policy1
Ad group policy1
 
10 things group policy preferences does better
10 things group policy preferences does better10 things group policy preferences does better
10 things group policy preferences does better
 
Win Connections Group Policy Changes (Harold W)
Win Connections Group Policy Changes (Harold W)Win Connections Group Policy Changes (Harold W)
Win Connections Group Policy Changes (Harold W)
 
Win Connections Group Policy Changes ( Harold W)
Win Connections Group Policy Changes ( Harold W)Win Connections Group Policy Changes ( Harold W)
Win Connections Group Policy Changes ( Harold W)
 
GeekOn with Ron #4: Tuning and Optimizing Your Gold Image
GeekOn with Ron #4: Tuning and Optimizing Your Gold ImageGeekOn with Ron #4: Tuning and Optimizing Your Gold Image
GeekOn with Ron #4: Tuning and Optimizing Your Gold Image
 
Environment Manager Policy
Environment Manager PolicyEnvironment Manager Policy
Environment Manager Policy
 
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
STSADM Automating SharePoint Administration - Tech Ed South East Asia 2008 wi...
 
10 implementing GPOs
10 implementing GPOs10 implementing GPOs
10 implementing GPOs
 
Deploying office 2010 via group policy
Deploying office 2010 via group policyDeploying office 2010 via group policy
Deploying office 2010 via group policy
 
Front-end performances
Front-end performancesFront-end performances
Front-end performances
 
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
Windows Accelerate IT Pro Bootcamp: Platform Delivery (Module 2 of 8)
 
Odoo V8 Installation
Odoo V8 InstallationOdoo V8 Installation
Odoo V8 Installation
 
Mangento
MangentoMangento
Mangento
 
Introduction to Mangento
Introduction to Mangento Introduction to Mangento
Introduction to Mangento
 
Dba tips and_tricks
Dba tips and_tricksDba tips and_tricks
Dba tips and_tricks
 
Does DITA need XML? Lightweight DITA and HTML5
Does DITA need XML? Lightweight DITA and HTML5Does DITA need XML? Lightweight DITA and HTML5
Does DITA need XML? Lightweight DITA and HTML5
 
dJango
dJangodJango
dJango
 
Lotusphere 2012: BP110 Performance Boost for your Notes Client
Lotusphere 2012: BP110 Performance Boost for your Notes ClientLotusphere 2012: BP110 Performance Boost for your Notes Client
Lotusphere 2012: BP110 Performance Boost for your Notes Client
 

Plus de Unidesk Corporation

VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...Unidesk Corporation
 
GeekOn with Ron #5: Storage Deep Dive with Special Guest
GeekOn with Ron #5: Storage Deep Dive with Special GuestGeekOn with Ron #5: Storage Deep Dive with Special Guest
GeekOn with Ron #5: Storage Deep Dive with Special GuestUnidesk Corporation
 
GeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch Office
GeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch OfficeGeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch Office
GeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch OfficeUnidesk Corporation
 
Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...
Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...
Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...Unidesk Corporation
 
Get Your GeekOn with Ron - Session One: Designing your VDI Servers
Get Your GeekOn with Ron - Session One: Designing your VDI ServersGet Your GeekOn with Ron - Session One: Designing your VDI Servers
Get Your GeekOn with Ron - Session One: Designing your VDI ServersUnidesk Corporation
 
Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...
Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...
Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...Unidesk Corporation
 
Server Virtualization: Success - VDI: not so much... Why?
Server Virtualization: Success - VDI: not so much... Why?Server Virtualization: Success - VDI: not so much... Why?
Server Virtualization: Success - VDI: not so much... Why?Unidesk Corporation
 
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...Unidesk Corporation
 
VMware & Unidesk Customer Webinar: Menlo College
VMware & Unidesk Customer Webinar: Menlo CollegeVMware & Unidesk Customer Webinar: Menlo College
VMware & Unidesk Customer Webinar: Menlo CollegeUnidesk Corporation
 
VMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families
VMware & Unidesk Customer Webinar: Wisconsin Department of Children and FamiliesVMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families
VMware & Unidesk Customer Webinar: Wisconsin Department of Children and FamiliesUnidesk Corporation
 
Make VDI Personal, Make VDI for Everyone
Make VDI Personal, Make VDI for EveryoneMake VDI Personal, Make VDI for Everyone
Make VDI Personal, Make VDI for EveryoneUnidesk Corporation
 
Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...
Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...
Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...Unidesk Corporation
 
A Fresh Look at the Virtual Desktop Landscape with The 451 Group
A Fresh Look at the Virtual Desktop Landscape with The 451 GroupA Fresh Look at the Virtual Desktop Landscape with The 451 Group
A Fresh Look at the Virtual Desktop Landscape with The 451 GroupUnidesk Corporation
 
Desktop Virtualization Easy with Zero Clients and Desktop Layering
Desktop Virtualization Easy with Zero Clients and Desktop LayeringDesktop Virtualization Easy with Zero Clients and Desktop Layering
Desktop Virtualization Easy with Zero Clients and Desktop LayeringUnidesk Corporation
 

Plus de Unidesk Corporation (14)

VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Secur...
 
GeekOn with Ron #5: Storage Deep Dive with Special Guest
GeekOn with Ron #5: Storage Deep Dive with Special GuestGeekOn with Ron #5: Storage Deep Dive with Special Guest
GeekOn with Ron #5: Storage Deep Dive with Special Guest
 
GeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch Office
GeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch OfficeGeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch Office
GeekOn with Ron - Session #3: VDI Challenges in your Remote Office/Branch Office
 
Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...
Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...
Get Your GeekOn With Ron - Session Two: Local Storage vs Centralized Storage ...
 
Get Your GeekOn with Ron - Session One: Designing your VDI Servers
Get Your GeekOn with Ron - Session One: Designing your VDI ServersGet Your GeekOn with Ron - Session One: Designing your VDI Servers
Get Your GeekOn with Ron - Session One: Designing your VDI Servers
 
Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...
Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...
Future-Proof Your Desktops - How City of Kent is Implementing VDI for 800 Wor...
 
Server Virtualization: Success - VDI: not so much... Why?
Server Virtualization: Success - VDI: not so much... Why?Server Virtualization: Success - VDI: not so much... Why?
Server Virtualization: Success - VDI: not so much... Why?
 
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
Server Virtualization - Smashing Success! Desktop Virtualization - Not So Mu...
 
VMware & Unidesk Customer Webinar: Menlo College
VMware & Unidesk Customer Webinar: Menlo CollegeVMware & Unidesk Customer Webinar: Menlo College
VMware & Unidesk Customer Webinar: Menlo College
 
VMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families
VMware & Unidesk Customer Webinar: Wisconsin Department of Children and FamiliesVMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families
VMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families
 
Make VDI Personal, Make VDI for Everyone
Make VDI Personal, Make VDI for EveryoneMake VDI Personal, Make VDI for Everyone
Make VDI Personal, Make VDI for Everyone
 
Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...
Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...
Unidesk and VMware Customer Webinar: Ohio Department of Developmental Disabil...
 
A Fresh Look at the Virtual Desktop Landscape with The 451 Group
A Fresh Look at the Virtual Desktop Landscape with The 451 GroupA Fresh Look at the Virtual Desktop Landscape with The 451 Group
A Fresh Look at the Virtual Desktop Landscape with The 451 Group
 
Desktop Virtualization Easy with Zero Clients and Desktop Layering
Desktop Virtualization Easy with Zero Clients and Desktop LayeringDesktop Virtualization Easy with Zero Clients and Desktop Layering
Desktop Virtualization Easy with Zero Clients and Desktop Layering
 

Dernier

My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGSujit Pal
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 

Dernier (20)

My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 

Configuring Desktops with GPOs Rather than Registry Hacks

  • 1. Using GPOs to Configure and Tune Desktops Living without Registry ‘Hacks’ Ron Oglesby @RonOglesby NOT A UNIDESK COMMERCIAL
  • 2. Gabe asked about golf carts Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 3. Agenda Why use GPOs? Policy Basics Policies Vs Preferences Desktop Configurations ADMs and ADMX/ADMLs Tools you can use as venture into GPOs
  • 4. Why do we hack the registry Tune the OS Set defaults Hide things from users Others… But is a hack a policy? Policies can be used for more than just registry changes
  • 5. Why use GPOs and Not Reg hacks??? Documentation…. How do to remove this spoiler? Without opening the trunk?
  • 6. What do GPOs TYPICALLY get used for? Windows Settings like folder redirection Hiding icons and Windows options Configuring browser settings Setting permissions? Sometimes Configuring Office or other app settings… Adding Users.. Occasionally.
  • 7. Login Times and the default profile???? Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 8. Common tasks in tuning the VDI image? Add and modify local security accounts (at times) Disable / reconfigure Services Tune the local OS parameters File System, desktop display, TCP parameters, etc, etc Tune the user profile (like Menu show delay) Configure applications (like IE) Sometimes even create folders and move items like tools into the image Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 9. Policy Basics GPO Processing and Trigger events GPUPDATE /FORCE
  • 10. Policy Basics Computer Configvs User Config Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 11. Policy Basics Policy Vs Preferences….. Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 12. Policy Basics Preferences added in Win 2008 Allow for SIMPLE config of numerous settings No Templates needed! Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 13. Policy Templates Traditionally known as Policy ADMs (ADMX now) Set the options you see in the GPOs Often created by the App vendors or industrious System Engineers
  • 14. ADM files are TXT files CLASS xxx - User or Machine CATEGORY xxx - Major heading. “Windows Update” KEYNAME xxx “Softwareicrosoftffice2.0ulook” Policy xxx - name of Policy shown in GPO editor VALUENAME xxx - Registry entry we are changing END POLICY END CATEGORY
  • 15.
  • 16. ADM file Example CLASS MACHINE CATEGORY !!Reader POLICY !!Checkforupdatesatstart KEYNAME "Softwaredobecrobat Reader.0VGeneral" EXPLAIN !!Checkforupdatesatstart_Help VALUENAME "bCheckForUpdatesAtStartup" VALUEON NUMERIC 1 VALUEOFF NUMERIC 0 END POLICY END CATEGORY
  • 17. ADM vs ADMX ADMX are the ‘new’ ADM XML based Policies/operative section of the policy are contained in ADMX ADML are language specific files Not stored in individual policies, can be stored in 1 central location in enterprise environments Will (by default) supersede existing ADM files (Inetres.adm, system.adm, etc) or can be created to supersede and existing ADM Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 18. ADMX file sample comparison <categories> <category name="Reader" displayName="$(string.Reader)" /> </categories> <policies> <policy name="Checkforupdatesatstart" class="Machine" displayName="$(string.Checkforupdatesatstart)" explainText="$(string.Checkforupdatesatstart_Help)" presentation="$(presentation.Checkforupdatesatstart)" key="Softwaredobecrobat Reader.0VGeneral" valueName="bCheckForUpdatesAtStartup"> <parentCategory ref="Reader" /> <supportedOn ref="SUPPORTED_NotSpecified" /> <enabledValue> <decimal value="1" /> </enabledValue> <disabledValue> <decimal value="0" /> </disabledValue> </policy> Group Policy Samples from Microsoft: http://www.microsoft.com/downloads/en/details.aspx?FamilyId=3D7975FF-1242-4C94-93D3-B3091067071A&displaylang=en Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 19. ADM file Example CLASS MACHINE CATEGORY !!Reader POLICY !!Checkforupdatesatstart KEYNAME "Softwaredobecrobat Reader.0VGeneral" EXPLAIN !!Checkforupdatesatstart_Help VALUENAME "bCheckForUpdatesAtStartup" VALUEON NUMERIC 1 VALUEOFF NUMERIC 0 END POLICY END CATEGORY Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 20. Building your own? Start with ADM files if you haven’t already. Then convert them w/ the ADM to ADMX converter The hardest part is not building the text file…. Its finding the registry keys
  • 21. Ron’s rules for Policies Vs Preferences… When to use a policy Something that the usermay have access to but I don’t want them to change IE security, connectivity, or application settings When to use a preference When I set a default setting that they may change IE default start page or default short cuts on the desktop When I want to change a registry setting that they do not have a GUI to change Default user screen saver, machine settings like NTFS last access time stamp, etc.
  • 22. Policy Preference Options Create Create the object (reg entry, drive mapping, etc, etc) Will do nothing if the entry/object already exists Replace Delete existing setting (if exist) and create a new object Update Modification of an existing object Will create if it does not exist Delete
  • 23. Preference Common Settings Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 24. Preference WARNINGS These are like defaults NOT Policies…. These can tattoo the machine Newer policies do not tattoo. That was a benefit of getting away from some of the old school NT type policies Registry changes made via Preferences can leave a tattoo after removal of policy UNLESS you counter/remove the VM from having the policy apply. Other changes (Directories, User/group modifications or additions) also stick Preferences are basically like your image “HACK” but with management….
  • 25. So let’s look at how you can do this in a Policy Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 26. Windows 7 Services Examples Desktop Window Manager Session manager Disk Defragmenter Diagnostic Policy Services IP helper (if no IPv6) Security Center Superfetch Themes Service (classic interface) Windows Defender Windows Search Windows Update http://www.vmware.com/files/pdf/VMware-View-OptimizationGuideWindows7-EN.pdf
  • 27. Demo Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 28. Windows Settings Examples Recycle Bin – Do not move files to recycle bin Screen saver (XP disable .default screen saver, Win7 Blank) Disable System Restore UAC settings Windows Update disabled Tune the file system (last access time stamp, 8.3 file names, etc) Remove Tablet PC components (or disable services) Project VRC Phase III – www.projectvrc.nl Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 29. Demo Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 30. User Tuning? Focus on HKCU IE and other application settings Graphics/video settings Customer templates are out there and checkout PolicyPak.com Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 31. Demo Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 32. Finding the Registry Entry GOOGLE http://lmgtfy.com/ RegSnap/Registry Monitoring Tools Good old fashion digging and guessing! My Favorite:SysTracerhttp://www.blueproject.ro/systracer
  • 33. You didn’t convince me Ron! Windows Enabler http://www.bluemoonpcrepair.com/wp/?p=39 http://www.wincert.net/tips/microsoft-windows/windows-7/2109-how-to-copy-a-user-profile-on-windows-7.html Pierre’s VUEM - VirtuAllUser Environment Manager http://www.virtualdesktops.info/Products.aspx Login scripts, User configs, Printer configs, registry values, Port mapping, and File and folder operations. Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
  • 34. Where to start? GPAnswers.com http://www.gpanswers.com/resources/gp-tips-and-tricks.html PolicyPak.com http://policypak.com/ Off 2007 Policy Templates http://www.microsoft.com/downloads/en/details.aspx?FamilyID=92d8519a-e143-4aee-8f7a-e4bbaeba13e7&displaylang=en Off 2010 Policy Templates http://www.microsoft.com/downloads/en/details.aspx?FamilyID=64B837B6-0AA0-4C07-BC34-BEC3990A7956&displaylang=en Using GPOs to Customize XenApp http://support.citrix.com/proddocs/index.jsp?topic=/online-plugin-110-windows/ica-import-icaclient-template-v2.html IE 9 Preferences not working? http://blogs.technet.com/b/asiasupp/archive/2011/03/30/internet-explorer-9-ie9-group-policy-preferences-gpp.aspx XenApp Blog’s XenApp and XenDesktop Policies http://www.xenappblog.com/downloads/
  • 35. ADM/Xs and Policy references? Microsoft ADM to AMDX migrator? http://www.microsoft.com/downloads/en/details.aspx?FamilyID=0F1EEC3D-10C4-4B5F-9625-97C2F731090C Group Policy Settings References from MS? http://www.microsoft.com/downloads/en/details.aspx?FamilyID=18c90c80-8b0a-4906-a4f5-ff24cc2030fb Group Policy ADMX Syntax Guide: http://technet.microsoft.com/en-us/library/cc753471(WS.10).aspx Group Policy Survival Guide http://technet.microsoft.com/en-us/library/cc754151(WS.10).aspx Managing with ADMX files http://technet.microsoft.com/en-us/library/cc709647(WS.10).aspx
  • 36. Q&AOpen Discussion Ron Oglesby ron.unidesk.com Twitter: @ronoglesby