Hello everybody,

I encountered a problem with winxpp's registry and hope you guys could give me some hints to solve this.

To make some programs run when logged-in as restricted user, I need to change the permissions of HKCR\Interface, HKCR\Typelib and HKCR\CLSID from read-only to full-access for this user group. With win2k this works flawlessly, but in winxpp the restricted users always have read-only permissions, regardless what I setup as administrator.

Is this a bug or a feature? Perhaps a new kind of "system health"? ;-)


Thx in advance,
Sirko.

Maybe...

Delete all locally stored and roaming profile ntuser.dat files and then make your permission changes in the section HKEY_USERS\.Default\...

This would eliminate any profiles with the old permissions. When the users log on the system will create a new ntuser.dat profile using the .Default section of the registry that you just altered as a template.

Josh
<a target="_blank" href=http://www.jdharm.net>www.jdharm.net</a>

nope, did not work. I even setup a new user, but the permissions given by the admin doesn't persist after logging in as restricted user.

As a test I've given restricted users full access to the hole HKCR - all bunches except Interface, Typelib and CLSID got the permissions.

What could prevent that Interface, Typelib and CLSID get those permissions?

Sirko.

Hi,

we run into the same problem. Everytime our applications start they try to update some settings in HKCU, works fine under W2k but fails under WXP.

In addtion we have developed a tool that backups certain registry settings for the user. If the user missconfigures his application he can restore his old settings using the tool. Now of course this tool (developed under W2k) fails completely under WXP.

Isn't there a simple way to allow users the same access to the registry as it was with W2k?

Regards

bepe27

the best way i can think of is to remove the malware winxp and install win2k.

-excuse my cynicism-

HJ

Guess what, I have to change the permissions in HKLM\Software\Classes instead of HKCR.

Does anyone know why?
Is HKCR a "link" of HKLM\Software\Classes or vice versa?

Sirko.

HKCR is a shortcut to the HKLM one. HKLM and HKCU are the only "real" root keys.

HKCU is a dynamic key as well....if you change the permissions -from- your administrator account, it will only change them for that account. if you only want to change permissions for your restricted account, you'll have to enable registry editing for that account (assuming you have it disabled) and make all your changes, then disable it again as the last thing you do before you log out of that account and restart.

HJ

You can also open the individual users' ntuser.dat hive files using respendent registrar