- host W10 Pro x_64 1909 b18363.657
- target same as host
- NTL 1.9.0.7330 x_64 portable mode
Having deployed in Post-Setup
Code:
move /Y "%SystemDrive%\gpo\pol\m\*.csv" "%WINDIR%\System32\GroupPolicy\Machine\Microsoft\Windows NT\Audit"
move /Y "%SystemDrive%\\gpo\pol\u_registry.pol" "%WINDIR%\System32\GroupPolicy\User\registry.pol"
move /Y "%SystemDrive%\gpo\pol\m_registry.pol" "%WINDIR%\System32\GroupPolicy\Machine\registry.pol"
move /Y %SystemDrive%\gpo\*.admx %WINDIR%\PolicyDefinitions
move /Y %SystemDrive%\gpo\*.adml %WINDIR%\PolicyDefinitions\en-US
works as far as the files being moved initially. Checking the registry after install the respective entries are present, meaning being deployed during setup, and also GPEDIT displaying all relevant templates.
That said the issue appears to be that at some later stage during the setup process the directory %WINDIR%\System32\GroupPolicy appears to get wiped and since GPEDIT is not reading the present registry entries all settings showing as not configured
Is the wiping of directory %WINDIR%\System32\GroupPolicy expected by the WIN installer routine or a NTL routine? Since either would defeat the purpose of Post-Setup is there a recommended strategy to deploy GPOs unattended?