Win 10 21H2
Assume we have two users:
a) Root (i.e. Admin user)
b) Regular
99% of time the user works through Regular account. However, they need a 3rd account for some sensitive/private data handling that cannot be accessed/seen even when the drive is externally read.
The following architecture is proposed:
- A separate partition (E:) is created.
- E: is encrypted i.e with VeraCrypt
- A new user account is created on Win10, and ALL of its data (i.e. its C/Users/ folder is moved onto the E:. Appropriate registry changes are made to make windows load that user from E:
- To access the account and data, user logs in as Regular, decrypts E:, switches to ‘HiddenUser’. After logging off as ‘HiddenUser’, veracrypt E: drive is dismounted from within Regular user, effectively locking all the data,recent files, thumb cache/local appdata/everything of Hidden User behind encryption.
I am aware that Windows’ user profiles cannot be just “cut-pasted to new location + registry edit. Is there a native way to implement this setup in Windows? Roaming profile perhaps?
![Shutdown timer when I start my computer on specific days [closed]](https://www.rubin.com.np/wp-content/themes/customizr/assets/front/img/thumb-standard-empty.png)
