Upload
shauna-mathews
View
225
Download
3
Tags:
Embed Size (px)
Citation preview
2
Overview
Registry Overview
Control Panel Hardware Settings
Control Panel Software Settings
System Policy Editor
Registry Editor
3
Registry Overview
Components That Use the Registry
The Hierarchical Structure of the Registry
Registry Subtrees
HKEY_LOCAL_MACHINE
4
Components That Use the Registry
Registry Edit Options Window HelpTree View Security
Registry Editor [HKEY_LOCAL_MACHINE on Local Machine]
CloneHardwareSAMSecuritySoftwareSystem
HKEY_LOCAL_MACHINE
RegistryRegistry
Windows NT Kernel
(NTOSKRNL)
Windows NT Kernel
(NTOSKRNL)
DeviceDrivers
DeviceDrivers
UserProfiles
UserProfiles
HardwareProfiles
HardwareProfiles
SetupPrograms
SetupPrograms
Hardware Data
Hardware Data
5
The Hierarchical Structure of the Registry
Registry Edit Options Window HelpTree View Security
Registry Editor (HKEY_LOCAL_MACHINE on Local Machine)
HARDWARESAMSECURITYSOFTWARE
HKEY_LOCAL_MACHINE
ClassesDescriptionMicrosoft
AudioCompressionMeBrowser CurrentVersion NetRulesCryptographyDirectPlayInternet ExplorerLanman ServerLanman WorkstationNbf
Description: REG_SZ: Microsoft Network Browser ServiceInstallDate: REG_DWORD: 0x31937598MajorVersion: REG_DWORD: 0x4MinorVersion: REG_DWORD: 0RefCount: REG_DWORD: 0ServiceName: REG_SZ: BrowserSoftwareType: REG_SZ: serviceTitle: REG_SZ: Computer Browser
6
Registry Subtrees
Registry Editor
Registry Edit Options Window HelpTree View Security HKEY_LOCAL_MACHINE on local machine
HKEY_USERS on local machine HKEY_CURRENT_CONFIG on local machine
HKEY_CLASSES_ROOT on local machine
HKEY_CURRENT_USER on local machine
AppEventsConsoleControl PanelEnvironmentKeyboard LayoutSoftware
HKEY_CURRENT_ USER
Microsoft
ClockCommand ProcessorFile ManagerInternet ExplorerMailMultimedia
CompletionChar: REG_DWORD: 0DefaultColor: REG_DWORD: 0EnableExtensions: REG_DWORD: 0x1
7
HKEY_LOCAL_MACHINE
Registry Edit Options Window HelpTree View Security
Registry Editor [HKEY_LOCAL_MACHINE on Local Machine]
HardwareSAMSecuritySoftwareSystem
HKEY_LOCAL_MACHINE
9
Managing Hardware Profiles
At startup, if Windows NT cannot determine which hardware profile to use, it should:
Wait indefinitely for user selection
Wait for user selection for seconds,
then select the highest-order preference.
Available Hardware Profiles:
Multiple Hardware Profiles
Hardware Profiles provide a way to create hardwareconfigurations that you can choose from at startup.
Off the NetworkWired to the LAN (Current)
General Performance Environment
User ProfilesHardware ProfilesStartup/Shutdown
.
Copy...
. 30
OK Cancel Apply
Properties Rename... Delete
System Properties ?
10
Configuring the Display
List All Modes...
Apply
Display Type...
OK Cancel
Large Fonts
256 Colors Less More
1024 by 768 pixels
Display Properties
Use hardware default setting
Color Palette
Font Size
Desktop Area
Refresh Frequency
l l l l
Test
Background Screen Saver Appearance Plus! Settings
?
11
Control Panel Software Settings
Changing Startup and Shutdown Settings
Configuring Virtual Memory
Setting Environment Variables
Adding and Removing Windows NT Components
12
Changing Startup and Shutdown Settings
When a STOP error occurs, do the following:
Write an event to the system log
Send an administrative alert
Write debugging information to:
%SystemRoot%\MEMORY>DMP
Automatically reboot
Overwrite any existing file
Startup:
General Performance EnvironmentUser ProfilesHardware ProfilesStartup/Shutdown
System Startup
Recovery
System Properties
ApplyOK Cancel
‘Windows NT Workstation Version 4.00”
Show list for 30 seconds
?
13
Configuring Virtual MemoryVirtual Memory
OK
Cancel
Help
Drive [Volume Label] Paging File Size (MB)
Drive: C
Space Available: 160 MB
Minimum Allowed: 2MB
Recommended: 43MB
Currently Allocated: 43MB
Paging File Size for Selected Drive
Total Paging File Size for All Drives
Current Registry Size: 2MB
Registry Size
C: 43 . 93
Maximum Size (MB): 93
Initial Size (MB): 43
Maximum Registry Size (MB): 8
Set
14
Setting Environment Variables
User Variables for Administrators:
ComSpec
General Performance EnvironmentUser ProfilesHardware ProfilesStartup/Shutdown
OK Cancel Apply
System Properties ?
System Variables:
C:\WINNT\system32\cmd.exe1Windows_NTC:\WINNT\System32\os2\dll;C:\WINNT\System32;C:\WINNT
TEMP C:\TEMPTMP C:\TEMP
NUMBER_OF_PR...OSOs2LibPathPath
Variable Value
Variable: ComSpec
Value: %SystemRoot%\system32\cmd.exe
Set Delete
Variable Value
15
Adding and Removing Windows NT Components
To add or removemeans that onlywhat’s included i
Components:
Space required:
Space available
Includes optionmouse behaviorimpairments.
Description
..........Accessi
Accesso
Commun
Games
Microso
Add/Remove Programs Properties ?
Install/Uninstall
The following software can be automatically removed byWindows. To remove a program or to modify its installedcomponents, select it from the list and click Add/Remove.
To install a new program from a floppy disk or CD-ROMdrive, click Install.
Install/Uninstall Windows NT Setup
Microsoft ExchangeMicrosoft Word 7.0WinZip
OK Cancel Apply
Add/Remove...
Add/Remove Programs Properties ?
Install...
16
System Policy Editor
Introducing System Policy Editor
Registry Mode vs. Policy File Mode
Changing Registry Settings
Using System Policy Editor to Secure a Computer
17
Introducing System Policy Editor
File Edit View Help
System Policy Editor - Untitled
Options
Default User DefaultComputer
18
Registry Mode vs. Policy File Mode
File Edit View Help
System Policy Editor - Local Registry
Options
Local User LocalComputer
19
Changing Registry Settings
File Edit View Help
System Policy Editor - Local Registry
OptionsPolicies
Remove Run command from Start menuRemove folders from Settings on Start menuRemove Taskbar from Settings on Start menuRemove Find command from Start menu
WallpaperColor scheme
ShellRestrictions
DesktopRestrict display
DisplayControl Panel
Default User
Default User Properties
OK Cancel
20
Using System Policy Editor to Secure a Computer
User name:
HelpCancel Shut Down
Logon Information
Enter a user name and password that is valid for thissystem.
OK
Password:
Domain:
User1
WORKGROUP
User name:
HelpCancel Shut Down
Logon Information
Enter a user name and password that is valid for thissystem.
OK
Password:
Domain: WORKGROUP
Set Sytem PolicyEditor Parameter
to Prevent DisplayingLast Logon Name
Set Sytem PolicyEditor Parameter
to Prevent DisplayingLast Logon Name
22
Using Registry Editor
Registry Editor
Registry Edit Options Window HelpTree View Security HKEY_LOCAL_MACHINE on local machine
HKEY_USERS on local machine HKEY_CURRENT_CONFIG on local machine
HKEY_CLASSES_ROOT on local machine
HKEY_CURRENT_USER on local machine
AppEventsConsoleControl PanelEnvironmentKeyboard LayoutSoftware
HKEY_CURRENT_ USER
Microsoft
ClockCommand ProcessorFile ManagerInternet ExplorerMailMultimedia
CompletionChar: REG_DWORD: 0DefaultColor: REG_DWORD: 0EnableExtensions: REG_DWORD: 0x1
23
Registry Editor Commands
Registry Editor Find Key Command
Searches the Registry for a specific key
Registry Editor Find Key Command
Searches the Registry for a specific key
Find what:
Match whole word only
Match case Up Down
Direction
.Help
Cancel
Find Next
Find ?