0
I need to check that only the administrators group (sid: S-1-5-32-544) has the privilege to take ownership of files or folders (SeTakeOwnershipPrivilege).
How can I get an overview of all users/groups that have this privilege?
What I already found and tried is the following command:
secedit /export /areas USER_RIGHTS /cfg output.txt
The output in the file looks pretty useful:
[Unicode]
Unicode=yes
[Privilege Rights]
SeNetworkLogonRight = *S-1-5-32-544
...
SeTakeOwnershipPrivilege = *S-1-5-32-544
...
[Version]
signature="$CHICAGO$"
Revision=1
With this method above I would have to read the file into my Powershell script, search for the privilege and delete the file afterwards.
Is there any other method to do this in Powershell without external modules or executables?
Thanks for your supply.
Cheers
David
Thanks for your reply. I assume, I will have to go this way, since I cannot use other modules or executables. Nice hint with wrapping the executable. – dwettstein – 2014-09-09T09:14:17.113