Best way to do this, is probably Security Template on Windows 2000, Export the template and modify the existing registry permissions as needed, and then run secedit and have the /Registry swtich only to reimport the new permissions back into the registry. You can use SCE for 4.0 also ( Security Configuration Editor) and that will probably help on your NT 4.0 systems, but I have found it to be less than reliable, and not as stable as the one that came in Windows 2000 which is its superset. I would also look into subinacl.exe from the resource kit, to lock down those services, etc etc. Ed -----Original Message----- From: Braebaum, Neil [mailto:neil.braebaum@xxxxxxxxxxxxxxxxxxxxxxxx] Sent: Tuesday, October 01, 2002 1:12 PM To: 'thin@xxxxxxxxxxxxx' Subject: [THIN] Re: Setting registry key permissions via .reg file or comm and script He's talking about altering DACLs of registry keys, not simply adding / amending / creating stuff in the registry. Neil > -----Original Message----- > From: Ziots, Edward [mailto:EZiots@xxxxxxxxxxxx] > Sent: 01 October 2002 17:34 > To: 'thin@xxxxxxxxxxxxx' > Subject: [THIN] Re: Setting registry key permissions via .reg > file or comm and script > > REG.exe,the swiss knife of registry editors. What updates do > you want to add? > > Works a charm, or Kix... > > Or running regedit -s name_of_regfile.reg will work also. > > -----Original Message----- > From: jason.weems@xxxxxxxxxxxx [mailto:jason.weems@xxxxxxxxxxxx] > Sent: Tuesday, October 01, 2002 11:30 AM > To: thin@xxxxxxxxxxxxx > Subject: [THIN] Setting registry key permissions via .reg > file or command script > > Anyone know a good way to set registry key security > permissions via .reg file > or command script? *********************************************************************** This e-mail and its attachments are intended for the above named recipient(s) only and are confidential and may be privileged. If they have come to you in error you must take no action based on them, nor must you copy or disclose them or any part of their contents to any person or organisation; please notify the sender immediately and delete this e-mail and its attachments from your computer system. Please note that Internet communications are not necessarily secure and may be changed, intercepted or corrupted. We advise that you understand and observe this lack of security when e-mailing us and we will not accept any liability for any such changes, interceptions or corruptions. Although we have taken steps to ensure that this e-mail and its attachments are free from any virus, we advise that in keeping with good computing practice the recipient should ensure they are actually virus free. Copyright in this e-mail and attachments created by us belongs to Littlewoods. Littlewoods takes steps to prohibit the transmission of offensive, obscene or discriminatory material. If this message contains inappropriate material please forward the e-mail intact to postmaster@xxxxxxxxxxxxxxxxx and it will be investigated. Statements and opinions contained in this e-mail may not necessarily represent those of Littlewoods. Please note that e-mail communication may be monitored. Registered office: Littlewoods Retail Limited, Sir John Moores Building, 100 Old Hall Street, Liverpool, L70 1AB Registered no: 421258 http://www.littlewoods.com *********************************************************************** ********************************************** This weeks sponsor 99Point9.com 99Point9 helps solve your unresolved technical server-based questions, issues and incidents. http://www.99point9.com *********************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link. http://thethin.net/citrixlist.cfm ********************************************** This weeks sponsor 99Point9.com 99Point9 helps solve your unresolved technical server-based questions, issues and incidents. http://www.99point9.com *********************************************** For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link. http://thethin.net/citrixlist.cfm