Automate reboots before you run an assessment

Some assessments require the computer to reboot while the assessment is running. If you plan to manually monitor a computer while the assessment is running, you can log on every time that the computer reboots. But if you don't plan to monitor the computer while the assessment is running, you can configure the computer to automatically log on. The procedures in this topic explain:

  • How to configure a computer to log on without prompts by adjusting settings in the registry. We recommend this procedure when you use the Windows Assessment Console to assess a local computer.

  • How to create a user account that will automatically log on to a computer after a reboot. We recommend this procedure for test computers that don't have domain access or other potential network vulnerabilities.

To adjust registry settings for automatic logon

  1. Click Start, type Regedit, and then click Registry Editor.

  2. Locate this registry key in Registry Editor:

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

  3. Double-click the DefaultUserName entry, type your user name, and then click OK.

  4. Double-click the DefaultPassword entry, type your password, and then click OK.

    **Security Note:  **

    This password is stored in plain text and presents a security vulnerability. We recommend that you use a test account and remove the key value when you're finished running assessments.

  5. If the DefaultPassword value doesn't exist, follow these steps:

    1. Click Edit, click New, and then click String Value.

    2. In the Value Name box, type DefaultPassword.

    3. In the Data Type box, confirm that REG_SZ is selected.

    4. In the Value data box, type your password.

    5. Click OK to save your changes.

    6. Change the value of the AutoAdminLogon key from 0 (FALSE) to 1 (TRUE). This enables the AutoAdminLogon feature.

    7. Exit Registry Editor.

  6. Reboot the computer and make sure that it logs you on automatically.

    Note   To bypass the AutoAdminLogon process, and to log on as a different user, hold down the Shift key after you log off or after Windows restarts.

When you finish running assessments on the computer, you can change the registry settings back to the original values to follow the regular logon process.

To prepare a user account and disable secure logon

  1. Create a single standard user for the computer.

    Important  

    • Don't give the user a password.

    • Don't allow or configure a connection to a domain.

  2. Delete all other users, passwords, and domain connections.

  3. Disable secure logon by following these steps:

    1. Click Start, and then type netplwiz to find and open the User Accounts dialog box.

    2. On the Advanced tab, clear the Require users to press Ctrl+Alt+Delete check box.

This single user account allows the assessment to run on the computer without any monitoring or manual logon steps.

On/Off Transition Performance

Memory Footprint

Windows Assessment Console