Set-AutoLogonConfig

Windows: Configures Windows Automatic Logon settings

Script

#Requires -Version 5.1

[CmdletBinding()]
Param (
    [Parameter(Mandatory = $true)]
    [bool]$Enabled,

    [string]$UserName,

    [string]$DomainName,

    [securestring]$Password,

    [string]$ComputerName = $env:COMPUTERNAME,

    [pscredential]$Credential
)

Process {
    try {
        $scriptBlock = {
            Param($IsEnabled, $User, $Domain, $Pass)
            $logonValue = if ($IsEnabled) { "1" } else { "0" }
            $regPath = "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon"
            
            Set-ItemProperty -Path $regPath -Name "AutoAdminLogon" -Value $logonValue -Force -ErrorAction Stop
            
            if ($IsEnabled) {
                if (-not $User) { throw "UserName is required to enable AutoLogon" }
                Set-ItemProperty -Path $regPath -Name "DefaultUserName" -Value $User -Force -ErrorAction Stop
                if ($Domain) {
                    Set-ItemProperty -Path $regPath -Name "DefaultDomainName" -Value $Domain -Force -ErrorAction Stop
                }
                if ($Pass) {
                    $passStr = [System.Runtime.InteropServices.Marshal]::PtrToStringAuto([System.Runtime.InteropServices.Marshal]::SecureStringToBSTR($Pass))
                    Set-ItemProperty -Path $regPath -Name "DefaultPassword" -Value $passStr -Force -ErrorAction Stop
                }
            }
            else {
                Remove-ItemProperty -Path $regPath -Name "DefaultPassword" -ErrorAction SilentlyContinue
            }
        }

        if ($ComputerName -ne $env:COMPUTERNAME) {
            $invokeParams = @{
                'ComputerName' = $ComputerName
                'ScriptBlock'  = $scriptBlock
                'ArgumentList' = @($Enabled, $UserName, $DomainName, $Password)
                'ErrorAction'  = 'Stop'
            }
            if ($null -ne $Credential) {
                $invokeParams.Add('Credential', $Credential)
            }

            Invoke-Command @invokeParams
        }
        else {
            &$scriptBlock -IsEnabled $Enabled -User $UserName -Domain $DomainName -Pass $Password
        }

        $result = [PSCustomObject]@{
            AutoLogonEnabled = $Enabled
            UserName         = $UserName
            ComputerName     = $ComputerName
            Action           = "AutoLogonConfigured"
            Status           = "Success"
            Timestamp        = Get-Date -Format "yyyy-MM-dd HH:mm:ss"
        }

        Write-Output $result
    }
    catch {
        throw
    }
}

Customize

Enabled bool

Specifies whether to enable or disable automatic logon.

UserName string

Specifies the username for automatic logon.

DomainName string

Specifies the domain name or computer name for the user account.

Password securestring

Specifies the password for the user account as a secure string.

ComputerName string

Specifies the name of the target computer. Defaults to the local computer.

env string

Credential pscredential

Specifies a PSCredential object for remote connection.