Microsoft Windows Vista Community Forums - Vistaheads
Recommended Download



Welcome to the Microsoft Windows Vista Community Forums - Vistaheads, YOUR Largest Resource for Windows Vista related information.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so , join our community today!

If you have any problems with the registration process or your account login, please contact us.

Driver Scanner

Command line tool for Restricting Registry hive in windows Vista?

microsoft.public.windows.vista.security






Speedup My PC
Reply
  #1 (permalink)  
Old 10-13-2008
ashapadmanabhan
 

Posts: n/a
Command line tool for Restricting Registry hive in windows Vista?

Hi,

Please tell me whether any command line tool available for restricting
users from accessing registry hive in windows Vista.

Before I was using Subinacl.exe for windows XP. The following registry
hive is specified with subinacl to restrict registry from users.
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows
NT\CurrentVersion\Winlogon" /revoke="USERS" .

The same registry hive I want to restrict in Windows Vista.
I have used Icacls for folder restrictions.
Please let me know is there any tool available for registry
restrictions through command line.

Thanks in Advance,
Regards,
Asha.




--
ashapadmanabhan
Reply With Quote
Sponsored Links
  #2 (permalink)  
Old 10-30-2008
Steve Riley [MSFT]
 

Posts: n/a
Re: Command line tool for Restricting Registry hive in windows Vista?
There is really no need to do this on Windows Vista. From the root of HKM,
only SYSTEM and local administrators have full access; everyone else has
read-only access. Removing read-only access will put the system in an
unsupported state -- meaning we haven't tested this configuration, and can't
predict how the computer will behave.

Also, you say that you've used lcacls for folder restriction. What changes
have you made? Again, there is no reason to change the default ACLs; doing
so will create the same potential problems for you.

--
Steve Riley
steve.riley@microsoft.com
http://blogs.technet.com/steriley
Protect Your Windows Network: http://www.amazon.com/dp/0321336437



"ashapadmanabhan" <ashapadmanabhan.3390184@vistabanter.com> wrote in message
news:ashapadmanabhan.3390184@vistabanter.com...
>
> Hi,
>
> Please tell me whether any command line tool available for restricting
> users from accessing registry hive in windows Vista.
>
> Before I was using Subinacl.exe for windows XP. The following registry
> hive is specified with subinacl to restrict registry from users.
> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows
> NT\CurrentVersion\Winlogon" /revoke="USERS" .
>
> The same registry hive I want to restrict in Windows Vista.
> I have used Icacls for folder restrictions.
> Please let me know is there any tool available for registry
> restrictions through command line.
>
> Thanks in Advance,
> Regards,
> Asha.
>
>
>
>
> --
> ashapadmanabhan


Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Re: BitLocker Command Line Tool? sportymorty microsoft.public.windows.vista.security 1 06-12-2008 12:51
Article ID: 933662 When a 16-bit application passes command-line parameters to another application on a Windows Vista-based computer, the second application does not receive the command-line parameters KBArticles English 0 10-22-2007 20:00
Article ID: 936756 Error message in Windows Vista when you use Registry Editor to load a registry hive file that is on a shared network resource: "Cannot load \HivePath\filename: Access is denied" KBArticles English 0 10-22-2007 20:00
Wmic command-line tool in Vista 64 Kue2 microsoft.public.windows.vista.general 0 10-18-2007 17:23
Vista Registry - load hive rplank@gmail.com microsoft.public.windows.vista.general 4 05-10-2007 19:07




All times are GMT +1. The time now is 10:19.




Driver Scanner - Free Scan Now

Vistaheads.com is part of the Heads Network. See also XPHeads.com , Win7Heads.com and Win8Heads.com.


Design by Vjacheslav Trushkin for phpBBStyles.com.
Powered by vBulletin® Version 3.6.7
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.6.0 RC 2

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120