Eryk Sun <[email protected]> added the comment:
> The whoami process check output shows that my account is in
> BUILTIN\Administrators, which proves that the account I am
> logged in as local Administrator permissions.
Please show the output when whoami.exe is spawned from Python. I never
questioned whether your account is in the administrators group. I need to know
exactly how the group is flagged and/or enabled in the security context of the
Python process. For example, a UAC limited logon will include the group with a
flag that enables it only for access-denied entries in an object's
discretionary access control list (DACL):
Group Name: BUILTIN\Administrators
Type: Alias
SID: S-1-5-32-544
Attributes: Group used for deny only
For the group to apply to access-allowed entries in a DACL, it must be enabled
as follows:
Group Name: BUILTIN\Administrators
Type: Alias
SID: S-1-5-32-544
Attributes: Mandatory group, Enabled by default, Enabled group, Group owner
----------
_______________________________________
Python tracker <[email protected]>
<https://bugs.python.org/issue44046>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe:
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
