Granting service control manager access permission to user outside of administrator group

windows security permissions service user-permissions
14,915

Try the sc.exe with sdset command. It uses sddl format and I'm not sure if you can implement your needs exactly as you want. See the article Understanding the SDDL permissions in the ACE_String to convert to sddl format.

Share:
14,915

Related videos on Youtube

Nati
Author by

Nati

Updated on September 18, 2022

Comments

  • Nati
    Nati over 1 year

    I have a user outside of administrator group. How can I grant service control manager access permission for that (specific) user?

    It's like SC_MANAGER_ALL_ACCESS from the following link:

    http://msdn.microsoft.com/en-us/library/windows/desktop/ms685981%28v=vs.85%29.aspx

    • Harry Johnston
      Harry Johnston over 11 years
      You might have to write a program (using the OpenSCManager and SetServiceObjectSecurity functions). Keep in mind that if you do this the user will be able to give himself administrator access if he or she wants to.
    • Pavel Radzivilovsky
      Pavel Radzivilovsky over 11 years
      Users of administrator group are able to do that. Which exactly of the settings of the administrator group triggers that?
    • Artyom
      Artyom over 11 years
      Have you seen this: stackoverflow.com/questions/3279392/… may be it can help
    • Harry Johnston
      Harry Johnston over 11 years
      @PavelRadzivilovsky: the service control manager has an ACL which, by default, explicitly grants full access to the Administrators group.
    • Pavel Radzivilovsky
      Pavel Radzivilovsky over 11 years
      Bwah, I didn't know there can be such a thing.. By the way, blogs.msdn.com/b/distributedservices/archive/2009/03/13/…
  • Scott Pack
    Scott Pack over 11 years
    Welcome to Server Fault! Whilst this may theoretically answer the question, it would be preferable to include the essential parts of the answer here, and provide the link for reference.
  • Harry Johnston
    Harry Johnston over 11 years
    Specifically, use sc sdset SCMANAGER as described here (but with a different SDDL string, of course): support.microsoft.com/kb/907460

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to set Windows Services permissions from Powershell?
Adding ALL RESTRICTED APPLICATION PACKAGES to folder permissions
NTFS: prevent/deny directory delete in a otherwise "personal" folder
How to access files over a network using local accounts?
What are the minimal permissions for WMI access to processes CommandLine?
how to extract all permissions that a domain user have on the network
creating security groups from scratch - best practices
How to add a privilege to an account in Windows?
How to reset service permissions after messing up with `sc sdset`?
How to have downloads be automatically unblocked?