How to set Windows Services permissions from Powershell?

windows security powershell service
10,162

Solution 1

I think for this you should look into using subinacl.exe which you can download here. From the download it site it is described as:

SubInACL is a command-line tool that enables administrators to obtain security information about files, registry keys, and services, and transfer this information from user to user, from local or global group to group, and from domain to domain.

Using it from PowerShell appears to be pretty easy:

SUBINACL /verbose=1 /service Spooler /grant=PC\Joe=LQSTOP

Check out this article on using subinacl that Mark Minasi wrote..

Solution 2

Cold question deserves a partial answer.

Check out http://get-carbon.org/

If you don't want to install carbon on a production server then look a the source (Apache 2.0 Licence) and see if you can utilise the .NET code for your own devices. If I had time I would expand this answer to include example code but for now see these two parts of the repository.

Powershell CmdLet https://bitbucket.org/splatteredbits/carbon/src/29f5983094d048030d6143923f4a6925d1a1a195/Carbon/Service/Grant-ServicePermission.ps1?at=default

Uses a .Net object (using system) https://bitbucket.org/splatteredbits/carbon/src/29f5983094d048030d6143923f4a6925d1a1a195/Source/Security/ServiceAccessRights.cs?at=default

From that it should be a hop skip and a jump to write your own Powershell v3+ native call.

Share:
10,162
Ariel
Author by

Ariel

Updated on June 05, 2022

Comments

  • Ariel
    Ariel almost 2 years

    I need to grant a specific account SERVICE_START permissions for a given Windows service.

    There seems to be some methods for doing so here, but would prefer a method that's native to PowerShell and doesn't require external tools, for ex. by using Get/Set-ACL cmdlets, or calling some .NET API.

    Does someone know how to do it in that fashion? Thanks in advance.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Add group "Everyone" to directory and all of it's sub-directories
Is there a limit to the number of IP addresses for a Windows Firewall rule's Scope?
How to sign a PowerShell script easily?
Granting service control manager access permission to user outside of administrator group
How to get rid of security warning in Batch/Powershell
Users and Local Groups Report using Powershell?
How to find, stop and disable a Windows service using Powershell
Flutter stuck on 'flutter' command - no output to console and it doesn't ever finish
How to find Windows product Key if your sticker is damaged
Print directory tree but exclude a folder on windows cmd