The textual .reg
format does not support WinNT security features; it only preserves the data exported, as you can see by opening the .reg
file with a text editor.
The "hive" format is identical to the one used by Windows to store the registry itself. This means that it supports all features used by registry, including security permissions and ownership. You can examine exported "hive" files by using "Load hive" in regedit or reg load
in command line, and import into the main registry with reg restore
.
However, remember that users on Windows are identified by their SIDs; local accounts will have different SIDs on different machines, so you may still have to adjust the imported permissions manually. (Builtin accounts such as "NT AUTHORITY\SYSTEM" have the same SID everywhere. Domain accounts always have the same SID on every domain member.)
How can I identify the SID on something such as nt service\bfe? – johnny – 2012-06-01T19:22:59.800