scenario - for certain reasons I have about 30 machines on a workgroup…once a month I have to go to each workstation and uncheck the below items.
go to local computer Policy > Right Click > uncheck disable computer configuration settings and also uncheck disable user configuration settings.
I don’t see the option to uncheck these items with something like the below using secedit.
secedit /export /cfg c:\secpol.cfg
(gc C:\secpol.cfg).replace(“xxxt = 1”, “xxx = 0”) | Out-File C:\secpol.cfg
secedit /configure /db c:\windows\security\local.sdb /cfg c:\secpol.cfg /areas SECURITYPOLICY
rm -force c:\secpol.cfg -confirm:$false
any guidance would be greatly appreciated.
even if its just a registry value it would be great to know where these values are stored.
Much thanks to everyone on this great board!