The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

  • Twitter Updates

  • My Flickr Stream

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 1,509 other followers

Figuring out Windows Registry Permissions: AccessCheck

Posted by jpluimers on 2016/01/06

I had to verify the rights on some parts of the registry were the same for a lot of machines. So I used AccessChk by SysInternals.

If there were difference, my plan was to use REGINI to fix them.

It appears that AccessCheck does not show the permissions for objects within the specified path, not for the path itself.

As I observed that

accesschk -k hklm\software\Microsoft\Windows\Shell

does not reveal results.

But

accesschk -k hklm\software\Microsoft\Windows

shows:

HKLM\software\Microsoft\Windows\CurrentVersion
  R  BUILTIN\Users
  RW BUILTIN\Power Users
  RW BUILTIN\Administrators
  RW NT AUTHORITY\SYSTEM
HKLM\software\Microsoft\Windows\ITStorage
  R  BUILTIN\Users
  RW BUILTIN\Power Users
  RW BUILTIN\Administrators
  RW NT AUTHORITY\SYSTEM
  RW NT AUTHORITY\TERMINAL SERVER USER
HKLM\software\Microsoft\Windows\Shell
  R  BUILTIN\Users
  RW BUILTIN\Power Users
  RW BUILTIN\Administrators
  RW NT AUTHORITY\SYSTEM
  RW NT AUTHORITY\TERMINAL SERVER USER
HKLM\software\Microsoft\Windows\Windows Error Reporting
  R  BUILTIN\Users
  RW BUILTIN\Power Users
  RW BUILTIN\Administrators
  RW NT AUTHORITY\SYSTEM
  RW NT AUTHORITY\TERMINAL SERVER USER

In the end the permissions were the same: the differences were in the local group memberships of domain groups. That was already covered in Command Line Kung Fu: Episode #43: Users & Groups.

So setting registry rights needs to wait a while.

–jeroen

via:

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

 
%d bloggers like this: