How to view user privileges using windows cmd?

windows powershell cmd privileges wmic
195,465

Solution 1

I'd start with:

secedit /export /areas USER_RIGHTS /cfg OUTFILE.CFG

Then examine the line for the relevant privilege. However, the problem now is that the accounts are listed as SIDs, not usernames.

Solution 2

You can use the following commands:

whoami /priv
whoami /all

For more information, check whoami @ technet.

Solution 3

Mark Russinovich wrote a terrific tool called AccessChk that lets you get this information from the command line. No installation is necessary.

http://technet.microsoft.com/en-us/sysinternals/bb664922.aspx

For example:

accesschk.exe /accepteula -q -a SeServiceLogonRight

Returns this for me:

IIS APPPOOL\DefaultAppPool
IIS APPPOOL\Classic .NET AppPool
NT SERVICE\ALL SERVICES

By contrast, whoami /priv and whoami /all were missing some entries for me, like SeServiceLogonRight.

Share:
195,465
AJINKYA
Author by

AJINKYA

I am ardent web application security researcher! So playing with codes and finding bugs is my favorite pass time.

Updated on May 27, 2021

Comments

  • AJINKYA
    AJINKYA almost 3 years

    I am trying to view the user privileges using the command prompt in Windows. User account & User privileges such as:

    SeBatchLogonRight
SeDenyBatchLogonRight
SeInteractiveLogonRight
SeDenyInteractiveLogonRight
SeServiceLogonRight
SeDenyServiceLogonRight
SeNetworkLogonRight
SeDenyNetworkLogonRight

    I tried using ntrights but it's not working. I can't use any tool as I am trying to create an automated script for an OS audit.

  • Simon Catlin
    Simon Catlin about 11 years
    Worth a mention... To find out which privs the current user has, use WHOAMI /PRIV.
  • not2qubit
    not2qubit about 10 years
    More details on secedit here.
  • not2qubit
    not2qubit about 10 years
    Would be good if you could explain the details of this command better. I didn't get any sensible output from that on Win8.1.
  • Jeremy McGee
    Jeremy McGee over 9 years
    Tremendous -- not least, allows verification of the right for another user without impersonation with RUNAS.
  • NikG
    NikG about 9 years
    This is pretty horrible to use but it works well. After exporting the template using Simon's command above, you can import it again using: Secedit /configure /db secedit.sdb /cfg outfile.cfg /quiet /areas USER_RIGHTS
  • ivan_pozdeev
    ivan_pozdeev almost 9 years
    Note that it's only available out of the box since Vista. In XP, it's in the "Windows XP SP2 Support Tools" download.
  • Burt_Harris
    Burt_Harris almost 7 years
    This is the best answer. IMHO Anyone still using XP needs to upgrade
  • Roman R.
    Roman R. almost 7 years
    You should not duplicate existing answers, especially that there already is a more complete answer.
  • Harry Johnston
    Harry Johnston almost 7 years
    Yes, whoami /priv will only work for privileges, not rights, because it works by examining the current user token. Rights are only used at logon time, so there's no need for them to be kept in the token.
  • Harry Johnston
    Harry Johnston almost 7 years
    I'm not sure whether this will work for rights that are acquired indirectly, e.g., via group membership.
  • Harry Johnston
    Harry Johnston almost 7 years
    Note that this will work for privileges but not for rights.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Flutter stuck on 'flutter' command - no output to console and it doesn't ever finish
How to start PowerShell script from BAT file with proper Working Directory?
How to create symbolic links for multiple files in multiple folders using command prompt or power shell?
%~dp0 equivalent in powershell (using Expand-Archive cmdlet)
find user disconnection time in RDP session Windows server 2012
How to keep remote powershell command alive after session end?
Detecting if a program is installed and where using cmd.exe
How to get the error code (ErrorLevel) from PowerShell into Windows command prompt?
How can I remove empty lines from wmic output?
Why is the FOR /f loop in this batch script evaluating a blank line?