inline...
igor_k said:
The only way I've found is to invoke ntrights.exe (from Win2k3
resource kit) from the script.
E.g. smth like:
WsShell.Run('ntrights.exe /u user1 +r Se...');
Other approaches did not work for me.
secedit /import requires database name,
and where I'm supposed to get it from?
you should know the name of the database, because you would have previously
created it yourself with the Security Analysis and Configuration MMC Snap-in
and a associated Security Template (prepared using the Security Templates
MMC Snap-in and imported into the Database) containing the security settings
(local group policy settings) that you desire.
re-reading the above I think I'll try to clarify sequence of event a bit
(just to confuse the heck out of you
)))
-create MMC with snap-ins (Sec. Templates and Sec. Config and Anal.)
-select an appropriate Sec. template, right click, Save As with your
preferred name (so as to leave the original sec. templ. intact
-open this new template and confiure thesettings you need/want and save
template again.
-then in Sec. Config/Anal: Open Database and type a DB name (= Your DBname)
for a new DB to be created
-when asked, select the Sec. template you previously created.
This will load those settings into the DB. Save the DB.
-Now you know what the database name is and can use that file with secedit
/import
george