My action script below runs with completed status for each line but does not actually run the .reg file. I have verified that this runs from the command prompt. The fixlet states that it completed although with a failed status.
The regedit4 file is a self extracting zip file.
// deletes the HKEY_LOCAL_MACHINE\Software\Bigfixtest key
If found what the problem was. I needed to use the wait command so that the self extracting zipped exe file could finish extracting before running the reg file as below:
// deletes the HKEY_LOCAL_MACHINE\Software\Bigfixtest key
If I’m not mistaken, the BigFix Agent runs as local system on the machine. That means that he runs in a security context that is different than the user who may be logged into the computer. The BigFix Agent has no access to current user hive per se.
Now, you may be aware that the HKCU hive is actually a pointer towards one of the keys inside HKey_Users. If you can figure out which user is currently logged in, you could probably modify the appropriate HKey_Users subkey to get the desired effect.
But the BigFix agent does not “see” the HKCU key, since he runs in a different context than who is logged in. He should have permissions to modify the HKey_User location though.
If you use the registry wizard and check the run as user button, it’ll give you an example you can follow for using the runascurrentuser tool. This presumes that a user is logged on, it won’t work if no one’s logged on.