Archive for the ‘Registry’ Category

100’s of Windows Commands

This is a must have pdf reference file: 

An amazing, free, current, searchable, compilation of hundreds Windows commands with explanations, syntax, and examples of their use.  And, it’s free !

https://www.microsoft.com/en-us/download/details.aspx?id=56846

Windows Commands

Disable WSUS on Managed Computers

The past 8 or more years most of us have managed PC updates using WSUS (Windows Server Update Service) and Group policy.  However, the structure of the modern office has changed to a large percentage of mobile employees who never ‘touch down’ at headquarters.   If these devices do not connect to the domain they do not have updates applied.

A client who has not returned to the office in 18 months, and likely will not for the life of their laptop, recently asked how they could update their machine manually.  Currently they were not able to do so as Windows Update showed “settings are managed by your system administrator”, in other words, by WSUS

image

It is quite simple to disable WSUS management in the registry, however remember if the device is reconnected to the domain, the WSUS policies will be reapplied.  Therefore you may want to move the device to an OU not linked to the WSUS policy or remove the device in the policy under security filtering.

Disclaimer:  Be aware making incorrect registry changes can have disastrous effects to the health of the device.  Be sure to backup the registry before editing.  To do so see the following Microsoft article; “How to back up and restore the registry in Windows”  http://support.microsoft.com/kb/322756 

  • Open the registry editor, by entering Regedit in the Start / Run box, and browse to:  HKLM\Software\Policies\Microsoft\Windows\
  • Locate the WindowsUpdate  Key and delete it
  • Reboot the PC (may take 2 reboots)
  • Now you can manually update and configure Windows updates to automatically check for and install updates directly from the Microsoft Update site

image

You may want to consider using a newer service such as Windows Intune to manage your computers, especially mobile devices.  http://www.microsoft.com/en-us/server-cloud/products/windows-intune/

Windows cannot load the user’s profile

I recently had a user receive an error message; “Windows cannot load the user’s profile but has logged you on with the default profile for the system” when logging on t o a Windows 7 desktop.  In the Event logs there was a matching Event ID 1505 with a Source “Userenv”. This is not O/S specific error, can be caused by numerous issues, and there are variations of  the same error due to other problems.  In this particular instance it appears it may have been caused by an interrupted backup during which the profile was locked to allow backup. To verify if a similar problem and resolve, follow the steps below.

Note: the following steps involve making changes to the registry. It is possible when editing the registry to damage your system. Only follow these steps if comfortable doing so and as always, create a restore point and/or backup the registry first, as per Microsoft’s instructions http://windows.microsoft.com/en-CA/windows7/Back-up-the-registry

Open the registry editor and locate the following key: HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\ProfileList\

Locate the
problematic profile. Two methods to do so are:

  1. click on each profile and view the “ProfileImagePath” key for the appropriate profile name
  2. download PSGetSid from the Microsoft link below and from a command line run:  PSGetSid username

http://technet.microsoft.com/en-us/sysinternals/bb897417

The problematic profile key will likely end with .bak such as; S-1-5-21-2037612603-1103315024-2874594402-1003.bak  and there will be a matching profile key without the .bak extension, which is the temporary/default profile.

Assuming a .bak profile exists, rename the temporary profile something like S-1-5-21-2037612603-1103315024-2874594402-1003.tmp, and remove the .bak extension from the other.

Within the user’s profile key also check the sub-key “State”.  If this is set to something other than 0
change it to 0.

Reboot the system.
Upon reboot Windows should select and use the proper user profile

Other potential solutions for Event ID 1505 and Source  UserEnv:

http://www.eventid.net/display.asp?eventid=1505&eventno=2504&source=Userenv&phase=1

Tag Cloud