marsh-wiggle
Reputation: 2813
How to assign new rights (ACL) to existing registry key without inheriting rights from parent
New rights can be set using RegistryKey.SetAccessControl(new RegistrySecurity(...)). But after that the inheritance is turned on.
Is there a way to assign new rights without turning the inheritance on?
The whole code:
void test
{
SecurityIdentifier sidAccUser = new SecurityIdentifier(WellKnownSidType.BuiltinUsersSid, null);
NTAccount ntAccUser = sidAccUser.Translate(typeof(NTAccount)) as NTAccount;
RegistryAccessRule regAcRule = new RegistryAccessRule(
ntAccUser
, RegistryRights.FullControl
, InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit
, PropagationFlags.None
, AccessControlType.Allow);
RegistrySecurity regSecurity = new RegistrySecurity();
regSecurity.AddAccessRule(regAcRule);
RegistryKey regKey = Registry.CurrentUser.OpenSubKey(@"ZZTEST", true);
// after that the inheritance is turned on
regKey.SetAccessControl(regSecurity);
}
I found this solution but don't want to use a COM-Server: Setting permissions and blocking inheritance from C# with SetACL
Upvotes: 0
Views: 795
Answers (1)
Ben
Reputation: 35673
Use SetAccessRuleProtection to protect the DACL from inheritance..
regSecurity.SetAccessRuleProtection(true, false);
Upvotes: 1
Related Questions
- Programmatically assign the permission to a registry subkey
- How Can I Correctly Use Registry Permissions to Delete a Registry Subkey in C#?
- Changing registry permission
- How do I programmatically give ownership of a Registry Key to Administrators?
- Registry change permission remove other user rights
- Save and Restore Registry Access Rights and Inheritance
- How to create read only registry key?
- Modify Subkey in Registry using C#
- Unable to set registry values using RegistryKey class in C# .NET
- How do I change the ACLs on a registry key? (C++)