Re: What permissions do I need to use admin$ ?

From: Leythos (void_at_nowhere.lan)
Date: 11/29/05

• Next message: Steven L Umbach: "Re: c:\Documents and Settings\NetworkService"
• Previous message: Daniel Crichton: "Re: can't force-quit app on NT Server, "access is denied""
• Maybe in reply to: Kerry Brown: "Re: What permissions do I need to use admin$ ?"
• Next in thread: Steven L Umbach: "Re: What permissions do I need to use admin$ ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Tue, 29 Nov 2005 17:20:30 GMT

In article <80D97785-724B-416F-83DC-BA9833608506@microsoft.com>,
MauryMarkowitz@discussions.microsoft.com says...
> "Kerry Brown" wrote:
>
> > If in a domain you need domain admin permissions. If in a workgroup then you
> > must be a administrator on that machine.
>
> It is on a domain, I am a domain admin of another domain. I am attempting to
> add rights for those domain admins to have access to admin$.

Don't add admin$, create shares they need to access and then set
permissions using the NORMAL method.

Also, if you are in one domain and the resource in another, you need to
setup a trust between the domains and create groups to apply permissions
to the resources.

You do NOT want to give users access to C$, ADMIN$ or other $ resources.

> > Why would you want to mount admin$?
>
> PsExec requires access to admin$. I'm not so much trying to mount it as
> figure out why PsExec always gives me "access is denied". using net use
> admin$ also gives me "access is denied". The two are almost certainly caused
> by the same problem.

Not sure what PsExe is, but if you setup the TRUST between the domains
you should have no issues with this.

-- 
spam999free@rrohio.com
remove 999 in order to email me

---

• Next message: Steven L Umbach: "Re: c:\Documents and Settings\NetworkService"
• Previous message: Daniel Crichton: "Re: can't force-quit app on NT Server, "access is denied""
• Maybe in reply to: Kerry Brown: "Re: What permissions do I need to use admin$ ?"
• Next in thread: Steven L Umbach: "Re: What permissions do I need to use admin$ ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: More security questions ... You shouldn't be logging in as Admin, ... have permissions to do anything. ... Usernames/passwords/group membership are stored in the mdw. ... Microsoft Access MVP ... (microsoft.public.access.security) Re: NTFS owner problem ... power options, ... permissions that control access. ... to which any admin account should have full access. ... (microsoft.public.windowsxp.security_admin) RE: Any way to remove ADMIN$ only? ... partition to allow you to set local permissions. ... Network Security Specialist ... Any way to remove ADMIN$ only? ... default security of Windows drives. ... (Focus-Microsoft) [UNIX] Privilege Escalation Vulnerability on phpBB ... permissions), so although admin rights are needed to view the page, anyone ... Goto the board you wish to change the permissions for in the normal way ... Find the base directory location of the board for the script, ... This bulletin is sent to members of the SecuriTeam mailing list. ... (Securiteam) Q: low permission cannot convert from A97 to A2000/2003 ... A97, but the database is sent out and used by contractors (user permissions) ... The admin user has full privileges. ... The problem we are having is converting the database from A97 to 2000+. ... (microsoft.public.access.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.windowsxp.security_admin  > 2005-11