I need to change a particular key (HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList\<SID>) when a user logs on, and when they log off, I need to change it back. Because it's in the "Local Machine" hive, I can't just run a logon/logoff
script. Also, I need it to be specific for each user because the user's side appears in the registry key path. I would really like to avoid using a windows service! I've tried using regular logon scripts, but they don't have the right permissions. Of course, I could run an executable that impersonates an administrative users, but I don't consider this a secure enough option since the executable could potentially be decompiled and the admin credentials retrieved. I looked into using GPO preferences,
but this isn't triggered at logon and logoff. Any ideas?