Here's what I would do manually:
- Log onto a server with Account1 to create its Windows profile.
- Start Internet Explorer. Click Tools > Internet Options > Advanced > Uncheck "Check for publisher's certificate revocation" and click OK. This updates "HKCU:\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\State".
I'd like to somehow automate the above process so that I don't have to login to the servers, but still apply the setting to all users. (Using a GPO would work, but isn't an option.)
- Is there a way to simulate a user login and set their HKCU value?
- Is there a way to at least automatically log somebody onto a server and set the vlaue?