Customizing the Default Profile

User Profiles
Published Dec 7, 2011 Updated Dec 9, 2011

This article is part of Helge’s Profile Toolkit, a set of posts explaining the knowledge and tools required to tame Windows user profiles.

Administrators frequently have the requirement to adapt newly created user profiles to corporate standards. This is typically done by modifying the default profile, the profile Windows uses as a template when creating new user profiles during logon.

Popular but Unsupported

For more than a decade a popular and officially santioned method of customizing the default profile went like this: log on with a typical user account. Customize that user’s profile. Log off and use either Microsoft’s CopyProfile tool or the User Profile control panel applet to copy the customized profile over the default profile.

Well, that method is no more. As the Deployment Guys describe in a very readable article, Microsoft eventually found out that, because the profile is not cleaned up in the copying process, certain undesired parts of the template user’s personality make it into every user’s profile. As a consequence they:

declared this method as unsupported,
removed the CopyProfile tool and
disabled the button “Copy to…” for all but the default profile in Windows 7.

User Profile Copying Disabled

Would it not have been more logical to fix the copying process so that unwanted information is removed?

Microsoft did build a fixed copying process - though not into Windows, but into Sysprep instead. The problem with that is that there is no documentation available as to what exactly is removed when the template profile is copied to become the default profile. This introduces an element of chance not desired in enterprise environments.

Doing it Right

There is only one alternative to using Sysprep to copy a modified profile over the default profile: modify the default profile directly. This involves identifying where a specific setting is stored, loading the default profile’s registry hive and setting the desired value. The advantage of this approach is that you have full control over the process, which is typically scripted. The downside is that it is more complex. Just logging on and clicking around until the desktop looks good is much easier than hunting down specific settings with Process Monitor.

CopyProfile Default User User Profiles

Comments

Comments are powered by Giscus. Please enable JavaScript to view them, or view discussions directly on GitHub.

Related Posts

Another IT Legend

Some time ago I wrote about a misconception so common that it might pass as an IT legend - the confusion of HKU\.Default with the default user’s registry hive. Recently I came across another interesting misapprehension. As you know, the profiles base directory (usually C:\Documents and Settings) contains not only one special sub-folder, Default User, but also All Users, whose purpose is well-known: When Explorer builds the start menu and the desktop it pulls entries both from the logged-on user’s profile and from the all users folder. That is, by the way, the reason why standard users (i.e. non-admins) cannot modify some of the icons on the desktop and in the start menu - those that reside in the All Users folder, which is writeable only for administrators.

Error Message Explained: User Profile Service Failed the Logon

This article is part of Helge’s Profile Toolkit, a set of posts explaining the knowledge and tools required to tame Windows user profiles. Many errors related to user profiles result in the user getting a temporary profile instead of the regular local or roaming profile. I have written about possible causes for that here. In addition to that, there is an entirely different category of errors that occur when even a temporary profile cannot be created. This article describes likely causes.

How to Configure a File Server for Hosting User Profiles

How to Configure a File Server for Hosting User Profiles

This article is part of Helge’s Profile Toolkit, a set of posts explaining the knowledge and tools required to tame Windows user profiles. Setting up a network share on a file server for hosting user profiles is not too difficult if you follow the steps outlined in this article. The recommendations I give here apply to both Windows roaming profiles and Citrix Profile Management (UPM) profiles.

I Did Not Expect the Wilderness to be so ... Wild

I was reminded of this movie quote when I stumbled across the following cry for help in a developer’s forum: Whenever I connect to customer site with Citrix Xenapp it takes me around 15-20 minutes for the Remote Desktop Prompt to come up, while for other users it’s almost immediate. My connection is faster than theirs(25/4mbps). What is Citrix XenApp doing that’s taking mine so long - any guesses?

Latest Posts

WSL Disk Space Cleanup

WSL Disk Space Cleanup

The Windows Subsystem for Linux (WSL) stores its virtual hard disks in the user profile on drive C:. These VHDX files can grow up to 1 TB in size, making it necessary to clean up and reclaim space occasionally. This article shows how.

Virtualization & Containers

Changing the Location of PowerShell Profile Scripts

A PowerShell profile is an init script that is executed when the shell starts. PowerShell searches for profile scripts in hard-coded locations. This article explains how to move profile scripts to any directory of your choice.

Changing the Location of the Windows Terminal Settings Files

Changing the Location of the Windows Terminal Settings Files

Windows Terminal stores its settings in configuration files that resides in the Windows user profile. This article explains how to move them to any directory of your choice. Where are the Settings Files Located? The location of the Windows Terminal settings file is hard-coded. The exact path depends on the app variant you installed, but it’s always in the user profile:

Fast & Silent 5 Watt PC: Minimizing Idle Power Usage

Fast & Silent 5 Watt PC: Minimizing Idle Power Usage

This micro-series explains how to turn the Lenovo ThinkCentre M90t Gen 6 into a smart workstation that consumes only 5 Watts when idle but reaches top Cinebench scores while staying almost imperceptibly silent. In the first post, I showed how to silence the machine by replacing and adding to Lenovo’s CPU cooler. In this second post, I’m listing the exact configuration that achieves the lofty goal of combining minimal idle power consumption with top Cinebench scores.