Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Check if the script has elevated permissions

Tags:

elevated-privileges

vbscript

elevation

I would like to check whether the context in which my VBscript runs allows me to perform administrative tasks.

Requirements:

  • The solution should work on all Windows operating systems starting with Server 2003. (This rules out solutions which just check for membership in the Administrators group -- remember that there's UAC in Vista and Windows 7!)
  • The solution should be simple. A 50 LOC solution that checks the Windows group memberships (recursively, of course, since the user might be member of a groups which is member of a group ... which is member of the Administrators group) and then does some extra checks for Vista UAC is not simple.
  • The solution may be a bit dirty, so something along the lines of this solution would be ok.
  • It should not be too dirty. Writing a file to C:\Windows or writing a registry key is too dirty in my opinion, since it modifies the system. (EDIT: Which might not work anyway: for example, when using VBScript in a HTA, UAC redirection kicks in.)

Related question: https://stackoverflow.com/questions/301860 (all of the answers I found there (a) ignore the UAC issue and (b) are faulty because they ignore the possibility of a user having administrative permissions although not being direct member in the Administrators group)

like image 395
Heinzi Avatar asked Oct 21 '09 08:10

Heinzi

People also ask

How do I check my high privileges?

Open the Control Panel. Click the User Accounts option. In User Accounts, you see your account name listed on the right side. If your account has admin rights, it will say "Administrator" under your account name.

How do I run a high privilege in VBScript?

To run a script 'As Admin' (with elevated permissions) using VBscript can be done by running ShellExecute and setting the runas flag. This can be used to run an executable, or to run an entire script (batch file or VBScript) with elevated permissions.

1 Answers

I know this thread is very old and marked answered but this is a simpler method that has always worked for me. User S-1-5-19 is the Local NT Authority so accessing the key takes admin rights. It works if run via elevation.

Option Explicit 

msgbox isAdmin(), vbOkonly, "Am I an admin?"

Private Function IsAdmin()
    On Error Resume Next
    CreateObject("WScript.Shell").RegRead("HKEY_USERS\S-1-5-19\Environment\TEMP")
    if Err.number = 0 Then 
        IsAdmin = True
    else
        IsAdmin = False
    end if
    Err.Clear
    On Error goto 0
End Function
like image 81
RLH Avatar answered Sep 27 '22 15:09

RLH
Sign in to Comment

Related questions

How to create dictionary of dictionaries vbscript
HTA & Batch Hybrid, passing variables from BATCH section
How do include sub-folders in my file conversion script?
How can I detect the drive letter of a booted USB drive from script?
How do I call a method in a custom ActiveX dll using java/vb script
Parameterized queries WITHOUT stored procedures?
How to show DOS output when using vbscript Exec
VBScript/JScript Networking: Connect either UDP or TCP
mssql_execute failing with, "stored procedure execution failed"
Look Ma, I can redefine global variables even with Option Explicit active -- but why?
Scheduler does not running 0x8004131F
Detect when a web page is loaded without using sleep
VBScript file or folder selection
Parsing XML String in VBScript
Which method overload will be accessible from VBScript? [duplicate]
VBSCRIPT slow under Windows Feature Update 1803
How can I kill a process, using VBScript, started by a particular user
Executing a script file from a Windows Installer Custom Action
MSXML2.ServerXMLHTTP.4.0 Source?
Run a vbscript from another vbscript

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!