Secedit export in Window Server 2008

In this article I am going to explain about Secedit export command in Windows Server 2008 operating system and also explain it's related syntax.
  • 3058

Secedit:export command in window server 2008

  • Secedit:export command is a command-line tool of Windows Server 2008.

  • Secedit:export command is available in Windows 7, Windows Server 2000, Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Vista, Windows XP

  • Secedit:export command is used to export security settings stored in a database configured with security templates.


Secedit /export /db <database file name> [/mergedpolicy] /cfg <configuration file name> [/areas [securitypolicy | group_mgmt | user_rights | regkeys | filestore | services]] [/log <log file name>] [/quiet]





It is required parameter. It is specify for the path and file name of a database that contains the stored configuration against which the analysis will be performed.

If file name specifies a database that has not had a security template associated with it.

mergedpolicy It is option parameter. It merges and exports domain and local policy security settings.


It is required parameter. It is specify for the path and file name for the security template that will be imported into the database for analysis.

This /cfg option is only valid when used with the /db <database file name> parameter.


It is option parameter. It is specify for the security areas to be applied to the system. If this parameter is not specified, all security settings defined in the database are applied to the system. To configure multiple areas, separate each area by a space. The following security areas are supported:

  • SecurityPolicy
    Local policy and domain policy for the system, including account policies, audit policies, security options, and so on.
  • Group_Mgmt
    Restricted group settings for any groups specified in the security template.
  • User_Rights
    User logon rights and granting of privileges.
  • RegKeys
    Security on local registry keys.
  • FileStore
    Security on local file storage.
  • Services
    Security for all defined services.
log It is option parameter. It is specify for the path and file name of the log file for the process.


It is option parameter. It is suppress screen and log output. You can still view analysis results by using the Security Configuration and Analysis snap-in to the Microsoft Management Console (MMC).

Ask Your Question 

Got a programming related question? You may want to post your question here 


More Articles

© 2020 DotNetHeaven. All rights reserved.