Jump to content

Program to Convert SDDL Security Descriptors Into Human Readable Form?

Guest Will

By Guest Will
in Techno Babble

 Share

Recommended Posts

Guest Will

Guest Will

Posted
Posted

Is there a utility that takes converts the very hard to read security

descriptor format SDDL and converts it to a human readable format? For

example, you can look at the DACL on the Windows Firewall service with the

command:

 

sc sdshow SharedAccess

 

This gives the human unfriendly output (for example):

 

D:(D;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;NU)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWRPWPDTLOCRRC;;;AU)(A;;CCLCSWLOCRRC;;;IU)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)

 

I would like to find a utility that I could feed the above string to as

input and have it output a parsed and easier to understand version to the

DACL.

 

--

Will

Link to comment
Share on other sites
  • Replies 3
  • Created
  • Last Reply

Popular Days

Popular Days

Guest Andrew Tucker [MSFT]

Guest Andrew Tucker [MSFT]

Posted
Posted

Re: Program to Convert SDDL Security Descriptors Into Human ReadableForm?

 

On Mar 25, 9:01 pm, "Will" <westes-...@noemail.nospam> wrote:<span style="color:blue">

> Is there a utility that takes converts the very hard to read security

> descriptor format SDDL and converts it to a human readable format?   For

> example, you can look at the DACL on the Windows Firewall service with the

> command:

>

>     sc sdshow SharedAccess

>

> This gives the human unfriendly output (for example):

>

> D:(D;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;NU)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(­A;;CCLCSWRPWPDTLOCRRC;;;AU)(A;;CCLCSWLOCRRC;;;IU)(A;;CCDCLCSWRPWPDTLOCRSDRC­WDWO;;;SY)

>

> I would like to find a utility that I could feed the above string to as

> input and have it output a parsed and easier to understand version to the

> DACL.

>

> --

> Will</span>

 

Take a look at SDDLTranslate.exe - you can download it from

http://tojo2000.com/blog/2006_08_01_tojo2000_archive.html

Link to comment
Share on other sites
Guest Will

Guest Will

Posted
Posted

That is a good one, thank you.

 

--

Will

 

"Andrew Tucker [MSFT]" <AndrewSTucker@gmail.com> wrote in message

news:192ead40-4021-43d5-b7cb-8f1fb564eb5f@i12g2000prf.googlegroups.com...

On Mar 25, 9:01 pm, "Will" <westes-...@noemail.nospam> wrote:<span style="color:blue">

> Is there a utility that takes converts the very hard to read security

> descriptor format SDDL and converts it to a human readable format? For

> example, you can look at the DACL on the Windows Firewall service with the

> command:

>

> sc sdshow SharedAccess

>

> This gives the human unfriendly output (for example):

>

> D:(D;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;NU)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(­A;;CCLCSWRPWPDTLOCRRC;;;AU)(A;;CCLCSWLOCRRC;;;IU)(A;;CCDCLCSWRPWPDTLOCRSDRC­WDWO;;;SY)

>

> I would like to find a utility that I could feed the above string to as

> input and have it output a parsed and easier to understand version to the

> DACL.

>

> --

> Will</span>

 

Take a look at SDDLTranslate.exe - you can download it from

http://tojo2000.com/blog/2006_08_01_tojo2000_archive.html

Link to comment
Share on other sites
Guest Jorge de Almeida Pinto [MVP - DS

Guest Jorge de Almeida Pinto [MVP - DS

Posted
Posted

see:

http://blogs.dirteam.com/blogs/jorge/archi...dl-strings.aspx

 

--

 

Cheers,

(HOPEFULLY THIS INFORMATION HELPS YOU!)

 

# Jorge de Almeida Pinto # MVP Windows Server - Directory Services

 

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx

BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx

------------------------------------------------------------------------------------------

How to ask a question --> http://support.microsoft.com/?id=555375

------------------------------------------------------------------------------------------

This posting is provided "AS IS" with no warranties and confers no rights!

Always test before implementing!

------------------------------------------------------------------------------------------

#################################################

#################################################

------------------------------------------------------------------------------------------

"Will" <westes-usc@noemail.nospam> wrote in message

news:X8ednXYce_5fV3TanZ2dnUVZ_q2hnZ2d@giganews.com...<span style="color:blue">

> Is there a utility that takes converts the very hard to read security

> descriptor format SDDL and converts it to a human readable format? For

> example, you can look at the DACL on the Windows Firewall service with the

> command:

>

> sc sdshow SharedAccess

>

> This gives the human unfriendly output (for example):

>

> D:(D;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;NU)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWRPWPDTLOCRRC;;;AU)(A;;CCLCSWLOCRRC;;;IU)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)

>

> I would like to find a utility that I could feed the above string to as

> input and have it output a parsed and easier to understand version to the

> DACL.

>

> --

> Will

> </span>

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...