Listing users with access to NetFrameworkConfigurationKey ACL
I have added some users to the Access Control List(ACL) for the RSA Key Container using “aspnet_regiis -pa \"NetFrameworkConfigura
-
- Find the file that contains the key. If this is a machine key, they are located here: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys
- You can open these files as text; look for
NetFrameworkConfigurationKeyon the first line. - On machines I have tested with, the correct file seems to start with
d6d9
- You can open these files as text; look for
- Just right-click on the file, Properties, and view the Security tab
讨论(0) - Find the file that contains the key. If this is a machine key, they are located here: C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys
-
Command prompt technique:
- Find the hex value (69 characters long) of your named key.
certutil -key NetFrameworkConfigurationKey- Use
icaclsto list users and permissions.
icacls %ProgramData%\Microsoft\Crypto\RSA\MachineKeys\<your hex value>Where permissions are represented by:
N = no access
F = full access
M = modify access
RX = read and execute access
R = read-only access
W = write-only access
D = delete access讨论(0)
加载中...
- 热议问题