blackwingcat Posted December 8, 2012 Share Posted December 8, 2012 Windows XP is extended Wellknown SIDS-1-5-19 NT AUTHORITY\LOCAL SERVICES-1-5-20 NT AUTHORITY\NETWORK SERVICEhow can add these SID on Windows 2000 ?I try to add registoryHKEY_LOCAL_MACHINE\SECURITY\Policy\Accounts\S-1-5-19HKEY_LOCAL_MACHINE\SECURITY\Policy\Accounts\S-1-5-20HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-19HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-20But no effect.Are there any ideas ? Link to comment Share on other sites More sharing options...
allen2 Posted December 8, 2012 Share Posted December 8, 2012 Just an idea : Did you also tried to replace the whole security hive from an xp (perhaps with also the SAM hive) ? Link to comment Share on other sites More sharing options...
blackwingcat Posted December 9, 2012 Author Share Posted December 9, 2012 Just an idea : Did you also tried to replace the whole security hive from an xp (perhaps with also the SAM hive) ?Result: Security error. Windows 2000 can't boot.Thx Link to comment Share on other sites More sharing options...
Phenomic Posted December 13, 2012 Share Posted December 13, 2012 Have you tried \system32\regedt32.exe > Security > Permissions ? Link to comment Share on other sites More sharing options...
blackwingcat Posted December 13, 2012 Author Share Posted December 13, 2012 Have you tried \system32\regedt32.exe > Security > Permissions ?Hi,Windows 2000 does not have "NT Authority\LocalService" and "NT Authority\NetworkService" which is username.So I want to create them. Link to comment Share on other sites More sharing options...
allen2 Posted December 13, 2012 Share Posted December 13, 2012 I can't be sure but if it is hard coded somewhere it should be in Lsasrv.dll as it is the dll used for most security things. Link to comment Share on other sites More sharing options...
dencorso Posted December 13, 2012 Share Posted December 13, 2012 I try to add to registryHKEY_LOCAL_MACHINE\SECURITY\Policy\Accounts\S-1-5-19HKEY_LOCAL_MACHINE\SECURITY\Policy\Accounts\S-1-5-20HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-19HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-20But no effect.Did you try it from outside Win 2k... say, by booting a Win PE CD, then importing the relevant hive, adding the users to it, and saving it back? Link to comment Share on other sites More sharing options...
blackwingcat Posted December 14, 2012 Author Share Posted December 14, 2012 Umm...When I access XP Driver from Windows 2000, I can't find LocalService and NetworkService folders in C:\Documents and Settings\.Are anyone know the reason ? Link to comment Share on other sites More sharing options...
dencorso Posted December 14, 2012 Share Posted December 14, 2012 They are hidden by default. If you're working with XP on NTFS, you'll need to take ownership of everything from Documents and Settings downwards... Your life would be much easier if you were working with XP on FAT-32... Link to comment Share on other sites More sharing options...
blackwingcat Posted December 14, 2012 Author Share Posted December 14, 2012 Of course I set "system super hidden folder shown" folder option.There are not these folders physically They are hidden by default. If you're working with XP on NTFS, you'll need to take ownership of everything from Documents and Settings downwards... Your life would be much easier if you were working with XP on FAT-32... Link to comment Share on other sites More sharing options...
Phenomic Posted December 14, 2012 Share Posted December 14, 2012 Have you tried opening the System hive off-line from another instance of Win2k or XP? REG.EXE load "HKLM\_offline_" ...\systemThen it's just a database. Link to comment Share on other sites More sharing options...
jimmsta Posted December 15, 2012 Share Posted December 15, 2012 The issue is that on XP+ there are folders with ntuser.dat registry hives dedicated to these hidden users - on 2000, that's not the case. 2000 doesn't have these users nor their corresponding ntuser.dat hives. As such, some form of registry redirection will need to take place to handle applications that try to write to the 'hidden' service hives. I have no idea how BWC will get this working on 2000. As far as I know, those users/hives aren't used by anything but Windows core services - adding the users themselves to the registry is only one part of the equation. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now