I have a logon batch script that runs a .reg file for all user when they log in. here's my script
REGEDIT.EXE /S "C:\user_files\user.reg"
Now my concern is that the batch file itself is located in
Every user has access to this directory. So anyone can change the batch and may cause security threat. Is there a way to make it more secure. or is can I do something similar with PowerShell scripting so there's no batch. If someone could point me to the right direction would be very helpful.