I can see the folders for the two profiles but when I go to re-add the
LOCAL SERVICE [ls] or NETWORK SERVICE [ns] (WinXP caps them) accounts
onto the appropriate profile(s) they do not appear in the list, there is
a NETWORK local account but I am guessing that is not the same as NS.
The ACLs on the folder themselves got hosed when the tech the clicked
the 'reset permissions and propogate to subfolders' so EVERYONE got full
control access to every profile directory. Since I can't find the the LS
or NS accounts in the drop down I can't make the ACL match an untouched
machine (Admin, System and LS or NS has FC on the folder).
I guess I need to know how big a deal it is, can I leave 'everyone' on
the folder and not worry about it? I'd rather set the ACLs back to the
way they were but I'd like not to have to reimage the machines because
some tech went mucking about.
Either way when I have time to get the SID(s) from an untouched box for
the accounts I'll try to use that to add the appropriate account to the
folders and report back on how it went.
Thanks,
Les
\Documents and Settings\LocalService
and
\Documents and Settings\NetworkService
are Hidden folders.
So is
\Documents and Settings\Default User
HOW TO: Search For Hidden Or System Files In Windows XP
http://support.microsoft.com/kb/302347
To display Hidden files and folders...
Start | Settings | Control Panel | Folder Options | View tab
Check:
Display the contents of system folders
and
Show hidden files and folders
UNCheck:
Hide extensions for known file types
and
Hide protected operating system files (Recommended)
Click Apply | Click OK
When you uncheck: Hide protected operating system files,
you will get this message...
Warning
----------
You have chosen to display protected operating system files (files
labeled System and Hidden) in Windows Explorer.These files are required
to start and run Windows. Deleting or editing them can make your
computer inoperable.Are you sure you want to display these files?
----------
Click YES.
[[Hidden files and folders will appear dimmed to indicate they are not
typical items.]]
--
Hope this helps. Let us know.
Wes
MS-MVP Windows Shell/User
In Les <
[email protected]> hunted and pecked:
I have a situation where one of the helpdesk techs reset permissions
on the entire Docs&Settings folder on 10 PCs. (thus inheriting from
the C: drive).
I have fixed all of the profiles and folders except the NetworkService
and LocalService profiles as I can't seem to find these accounts in
the listing.
Does anyone know of a way to re-add these accounts short of
re-imaging? Aretheir SIDs consistent so if I go to a working machine
and derive its SID I can use that to add it to the others?
TIA,
Les Bowman