Secedit configure in Window Server 2008

Posted in Operating System | Command line references September 21, 2019
Tags: Secedit configure, Secedit configure command, Windows Server 2008, commands in Windows Server 2008
In this article I am going to explain about Secedit configure command in Windows Server 2008 operating system and also explain it's related syntax.
  • 2219

Secedit:configure command in window server 2008

  • Secedit:configure command is a command-line tool of Windows Server 2008.

  • Secedit:configure command is available in Windows 7, Windows Server 2000, Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Vista, Windows XP

  • Secedit:configure command is used to allow you to configure the current system settings using security settings stored in a database.

Syntax

 Secedit /configure /db <database file name> [/cfg <configuration file name>] [/overwrite] [/areas SECURITYPOLICY | GROUP_MGMT | USER_RIGHTS | REGKEYS | FILESTORE | SERVICES] [/log <log file name>] [/quiet]

Parameter

Parameter

Description

db

It is required parameter. It is specify for the path and file name of a database that contains the stored configuration.

If file name specifies a database that has not had a security template associated with it, the /cfg <configuration file name> command-line option must also be specified.

cfg

It is option parameter. It is specify for the path and file name for the security template that will be imported into the database for analysis.

This /cfg option is only valid when used with the /db <database file name> parameter. If this is not specified, the analysis is performed against any configuration already stored in the database.

overwrite

It is option parameter. It is specify for whether the security template in the /cfg parameter should overwrite any template or composite template that is stored in the database instead of appending the results to the stored template.

This command-line option is only valid when the /cfg <configuration file name> parameter is also used. If this is not specified, the template in the /cfg parameter is appended to the stored template.

areas

It is option parameter. It is specify for the security areas to be applied to the system. If this parameter is not specified, all security settings defined in the database are applied to the system. To configure multiple areas, separate each area by a space. The following security areas are supported:

  • SecurityPolicy
    Local policy and domain policy for the system, including account policies, audit policies, security options, and so on.
  • Group_Mgmt
    Restricted group settings for any groups specified in the security template.
  • User_Rights
    User logon rights and granting of privileges.
  • RegKeys
    Security on local registry keys.
  • FileStore
    Security on local file storage.
  • Services
    Security for all defined services.
log It is option parameter. It is specify for the path and file name of the log file for the process.

quiet

It is option parameter. It is suppress screen output. You can still view analysis results by using the Security Configuration and Analysis snap-in to the Microsoft Management Console (MMC).

Ask Your Question 

Got a programming related question? You may want to post your question here 

Categories

More Articles

    © 2020 DotNetHeaven. All rights reserved.