If you want this to affect all users, even those that haven’t logged in yet, and in cases where there is no user logged in at all, then you need to use Local GPO to do this, not regedit.
You can deploy Local GPO with BigFix and it works well.
See these examples:
See this related post for some more up to date info: