Share via

Sysprep windows

rajesh kumar 25 Reputation points
2026-01-14T01:05:56.54+00:00

Hello can anyone confirm on sysprep activity on azure vm or on prem vm. Does this activity modify or change the registry specific to crowdstrike. This are intact just want to know the reason for change and if it is completely normal. Can I get any official document which talk about registry key changes from Microsoft or crowdstrike please share. Thanks

Windows for business | Windows Client for IT Pros | Devices and deployment | System management components
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. SUNOJ KUMAR YELURU 18,336 Reputation points MVP Volunteer Moderator
    2026-01-14T10:35:04.4066667+00:00

    Hello @rajesh kumar,

    Thanks for using Q and A forum.

    The sysprep (System Preparation Tool) process is used to prepare a Windows image for duplication, ensuring that the resulting OS is unique and ready for production. This process can indeed modify certain registry settings, which may include keys related to applications like CrowdStrike. However, specific changes to the registry keys that CrowdStrike uses are not explicitly documented in the available resources.

    You can track specific registry keys by enabling monitoring, as detailed in the documentation on registry key tracking in Azure.

    Track registry keys

    If the Answer is helpful, please click Accept Answer and Up-Vote 👍, so that this can be beneficial to other community members.

    Was this answer helpful?

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.