- The best way, in my opinion, is to create a security template with this notice, and all of the other security options, local audit choices, local password policy, etc., that you want to make the Windows 2000 Professional systems secure. You can then use SECEDIT to apply the template.
SECEDIT syntax can be found here.
Here's info on creating a security template: A Windows 2000 Professional security checklist.
The reason I like this option is that when you move to Active Directory, you can import the security template into group policy. You do not have to redo security.
- Use systems policy. This is NT4's way to manage users and desktop security. You'll have to create ADM files using POLEDIT (ships with Win2k as well), but then you can use them to make the NTCONFIG.POL file to place in the login directory of the NT DC and Win2k. To learn how see Managing desktops without Active Directory.
- Another way is to create a .reg file that can be part of a logon script. You'll need to put in it the registry key value, which are the LegalNoticeCaption and LegalNoticeText values under the HKEY_LOCAL_MACINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon Key.
More information on making the registry key entry can be found here.
You can add a carriage return.
In general, the format is regedit /s <reg file> REGEDIT4
"<value name>"="<value>" a string value
"<value name>"=hex:<value> a binary value
"<value name>"=dword:<value> a dword value
You will need to place this in a batch file and run the batch file.
This was first published in June 2003