I want to update <code>group policy</code> in windows server using command line. I don't want programatic way. I read this & this, and then tried delete registry keys based on the mapping of group policy and registry keys, but the group policy didn't got updated. Specifically, I want to set <code>Computer Configuration\Administrative Templates\Windows Components\Windows Update\Configure Automatic Updates</code> to <code>Not configured</code> in group policy. So, I ran following commands, <pre class="prettyprint"><code>C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v ScheduledInstallTime /f The operation completed successfully. C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v ScheduledInstallDay /f The operation completed successfully. C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v NoAutoUpdate /f The operation completed successfully. C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v AUOptions /f The operation completed successfully. </code></pre> But after that the group policy wasn't updated. Do I need to run another command to propagate my registry changes to group policy? If yes, what is it? What am I missing? I tried, <code>gpupdate /force</code>, it overrided my registry changes. I need converse of this.

How to change group policy from the command line? Voila: LGPO.exe – Local Group Policy Object Utility, v1.0

For group policy objects in a domain, registry-based group policy settings can be configured from the command line using Powershell. If you are not running on a domain controller, the Group Policy Management Console must be installed. See Group Policy Cmdlets in Windows PowerShell and in particular the Set-GPRegistryValue cmdlet. You can of course run a Powershell command from the legacy command line, e.g., <pre class="prettyprint"><code>powershell get-gpregistryvalue -Name gpo-name -Key HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU -ValueName AUOptions </code></pre> <s>As far as I know, there is no command-line solution for local group policy.</s> For local group policy, see Glenn's answer.

How to change group policy via command line?

Tags:

command-line

windows

cmd

command-prompt

I want to update group policy in windows server using command line. I don't want programatic way. I read this & this, and then tried delete registry keys based on the mapping of group policy and registry keys, but the group policy didn't got updated.

Specifically, I want to set Computer Configuration\Administrative Templates\Windows Components\Windows Update\Configure Automatic Updates to Not configured in group policy.

So, I ran following commands,

C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v ScheduledInstallTime /f
The operation completed successfully.

C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v ScheduledInstallDay /f
The operation completed successfully.

C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v NoAutoUpdate /f
The operation completed successfully.

C:\Windows\system32>reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /v AUOptions /f
The operation completed successfully.

But after that the group policy wasn't updated. Do I need to run another command to propagate my registry changes to group policy? If yes, what is it? What am I missing?

I tried, gpupdate /force, it overrided my registry changes. I need converse of this.

906

asked Oct 03 '16 14:10

Abhishek

2 Answers

How to change group policy from the command line? Voila:

LGPO.exe – Local Group Policy Object Utility, v1.0

answered Sep 28 '22 22:09

Glenn Slayden

For group policy objects in a domain, registry-based group policy settings can be configured from the command line using Powershell. If you are not running on a domain controller, the Group Policy Management Console must be installed.

See Group Policy Cmdlets in Windows PowerShell and in particular the Set-GPRegistryValue cmdlet.

You can of course run a Powershell command from the legacy command line, e.g.,

powershell get-gpregistryvalue -Name gpo-name -Key HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU -ValueName AUOptions

~~As far as I know, there is no command-line solution for local group policy.~~ For local group policy, see Glenn's answer.

answered Sep 28 '22 21:09

Harry Johnston

Related questions
                            
                                Fatal error: Call to undefined function sem_get()
                            
                                How to stop a Perl program from closing its window when it is finished?
                            
                                How do I detect if the user's font (DPI) is set to small, large, or something else?
                            
                                Detect if Windows Service is running of remote machine [duplicate]
                            
                                How to get the current user's home directory in Windows
                            
                                Setting "JAVA_OPTS" globally on Windows
                            
                                Does perlbrew work on Windows?
                            
                                How to get list of functions inside a DLL (managed and unmanaged)?
                            
                                python pygtk windows 7 64 bit
                            
                                Displaying String Output in a Window using C (in WIN32 API)
                            
                                Run another program as administrator
                            
                                Suppress output for windows move command
                            
                                How to Install Solr in Tomcat?
                            
                                How to install AccessControl NSIS plugin? and grant full access to a subfolder?
                            
                                Execute sudo command on Linux from plink.exe on Windows
                            
                                Error : 'QtGui/QMainWindow': No such file or directory : Qt 5.1.1
                            
                                Undefined reference to getprocessmemoryinfo@12
                            
                                What is causing this "invalid top-level expression" error in my GULP gulpfile.js file?
                            
                                How to style QPushButton's checked state to remove grey dots?
                            
                                Dump Diagnostics

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With