Windows PCs
- one admin account
- one user account (MakeItZone)
- Reboot Restore RX installed
- machines reset to baseline content on reboot
- updates, adding programs, etc, has to be done from admin account (must disable and then reenable reboot/restore rx to update baseline!)
- user content will be erased on reboot
- store your data on the NAS or bring a USB drive!
Rethink…
RebootRestore is a both too much and too little; per reboot, not per (guest) user login; also windows and app updates
Better setup will be to have a “default” backup image, a guest account that is destroyed on logout, and to create system accounts if/as needed
Research
- modifying default profile via
CopyProfile- https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/customize-the-default-user-profile-by-using-copyprofile - remove local profile at logoff- https://getadmx.com/?Category=Vmware_UEM_FlexEngine&Policy=VMwareUEM.Policies.FlexEngine.Advanced.8.6::RemoveLocalProfileAtLogoff
- creating mandatory profiles on windows 10
- Create a Guest Account in Win10
- mandatory vs local profiles on win10
- Change Login Screen Background on win 10
- Group Policy in Windows
- create local mandatory profile
- manage win 10 start and taskbar layout
- create mandatory user profiles
- setting win 10 machine to wipe after each logout
- log off after idle
- even if not activated, can change windows 10 desktop and lock screen images via photos app. Download and open the image, then use the options in the ‘…’ menu.
- suspect changing lock screen image for default profile will also change the default image
Windows VMs
- baseline backed up or snapshot used, unless short term throw away instance
Managing Windows Activation
E.g. to create a baseline VM that is deployed ready to be activated (licensed) for use.
How to Geek: How to Use Slmgr to Change, Remove, or Extend Your Windows License.