From 65811c87bac3bc5ddcfde4900a6154d8502ce641 Mon Sep 17 00:00:00 2001
From: Itiligent <94789708+itiligent@users.noreply.github.com>
Date: Fri, 26 Jul 2024 13:31:41 +1000
Subject: [PATCH] OEM registry change to prevent auto admin logon

Auto Admin logon is the default setting from the Dockur image. This is a large security vulnerability likely added for convenience. Blocking this default config does not seem to impact any of the Windows container setup.
---
 oem/RDPApps.reg | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/oem/RDPApps.reg b/oem/RDPApps.reg
index f545465..0be95c9 100644
--- a/oem/RDPApps.reg
+++ b/oem/RDPApps.reg
@@ -5,3 +5,6 @@ Windows Registry Editor Version 5.00
 
     [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Terminal Services]
     "fAllowUnlistedRemotePrograms"=dword:00000001
+	
+	[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
+    "AutoAdminLogon"="0"
\ No newline at end of file