(imported topic written by SystemAdmin)
Hi BF Experts,
Is there a way to check registry folder permissions?
Currently the default permission given to this is Administrators (Full), Creator Owner (Special), Power User (Read, Special), System (Full) and User (Read)
HKEY_LOCAL_MACHINE\Software
Thanks,
Ronald
(imported comment written by SystemAdmin)
You can use this,
effective access mode for “users” of dacls of security descriptors of key “HKEY_LOCAL_MACHINE\Software” of registry
it will return a hex value for the type of access the account has.
(imported comment written by BenKus)
Here is another way:
q: effective read permission for “Administrators” of dacls of security descriptors of key “HKEY_LOCAL_MACHINE\Software” of registry
A: True
q: effective write permission for “Administrators” of dacls of security descriptors of key “HKEY_LOCAL_MACHINE\Software” of registry
A: True
And so on… You can query pretty much every permission like this…
Ben
(imported comment written by SystemAdmin)
thanks for the replies! I’ll run and see if this would do 
(imported comment written by SystemAdmin)
fongrob
You can use this,
effective access mode for “users” of dacls of security descriptors of key “HKEY_LOCAL_MACHINE\Software” of registry
it will return a hex value for the type of access the account has.
Btw, where can i find the code descriptions? thanks