G
Guest
I'm using scripts to change permissions on files and the registry. I've been
using the ADsSecurity component to access ADSI in scripts on Windows 2000
systems. Apparently it's been incorporated into Windows XP under the object
ID "ADsSecurityUtility". Apart from slight changes in method parameters, the
conversion of scripts is straightforward.
The scripts on Windows XP Professionnal works well on files and fileshares.
But attempting to set the security descriptor of a registry key using
SetSecurityDescriptor always fails with "access denied" error, even though
this script is being executed under administrative priviledge.
The language used is VBScript with ".vbs" files. Those script are executed
on Windows XP Professional SP1 machines with Windows Script Host Version 5.6.
Script fails both when run under domain administrator and local
administrator.
Other question: it is still necessary to re-order ACEs as I think I've seen
somewhere that the new ADsSecurityUtility was handling this on its own ?
Thanks on advance for any help or cues.
using the ADsSecurity component to access ADSI in scripts on Windows 2000
systems. Apparently it's been incorporated into Windows XP under the object
ID "ADsSecurityUtility". Apart from slight changes in method parameters, the
conversion of scripts is straightforward.
The scripts on Windows XP Professionnal works well on files and fileshares.
But attempting to set the security descriptor of a registry key using
SetSecurityDescriptor always fails with "access denied" error, even though
this script is being executed under administrative priviledge.
The language used is VBScript with ".vbs" files. Those script are executed
on Windows XP Professional SP1 machines with Windows Script Host Version 5.6.
Script fails both when run under domain administrator and local
administrator.
Other question: it is still necessary to re-order ACEs as I think I've seen
somewhere that the new ADsSecurityUtility was handling this on its own ?
Thanks on advance for any help or cues.