/build/static/layout/Breadcrumb_cap_w.png

How to give permission for a HKLM key to Power USER Through MSI?

I am packaging an application which works fine in Admin User, but gives fatal error message saying Registry entry creation failed in power user mode. The original application doesn't behave this way. (I recreated MSI, stilll I am facing the same problem)
So i need to give permission to power user to edit the particular regisrty.

0 Comments   [ + ] Show comments

Answers (3)

Posted by: brenthunter2005 18 years ago
Fifth Degree Brown Belt
0
If you know the registry key, then you need to set the required permissions on that key (and most probably its subkeys as well).

Windows Installer provides the LockPermissions table which can be used, though it is some what limited. My preferred method is the 'secedit' utility that is included within Windows.
Posted by: norexx 18 years ago
Orange Belt
0
Generally speaking, I wouldn't use the the LockPermissions table as this overwrites the existing ACL. It's generally a lot safer to append to the ACL. I agree with brenthunter2005 on using Secedit --it's native to Windows (always a plus) works reliably (a must for SW repackaging) and can be scripted/customized using a variety of methods. At my company, we use 2 vbscripts (one for regkeys, one for files/folders) which call secedit as a custom action.
Posted by: KPrinz 18 years ago
Fourth Degree Green Belt
0
just for the sake of completeness, I'd like to point to subinacl from the ResKit, this is a very powerful tool for ACL handling.
Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.
 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ