2023年11月27日发(作者:)执行命令secedit /export /cfg c:
在c盘找到文件,打开,记录下面英文的意思
【命令回显开始,注册表部分的组策略内容因不同计算机而不同】
[Unicode]
Unicode=yes
[System Access]
MinimumPasswordAge = 0
MaximumPasswordAge = 42
MinimumPasswordLength = 0
PasswordComplexity = 0
PasswordHistorySize = 0
LockoutBadCount = 0
RequireLogonToChangePassword = 0
ForceLogoffWhenHourExpire = 0
NewAdministratorName = "Administrator"
NewGuestName = "Guest"
ClearTextPassword = 0
LSAAnonymousNameLookup = 0
EnableAdminAccount = 1
EnableGuestAccount = 0
[Event Audit]
AuditSystemEvents = 0
AuditLogonEvents = 0
AuditObjectAccess = 0
AuditPrivilegeUse = 0
AuditPolicyChange = 0
AuditAccountManage = 0
AuditProcessTracking = 0
AuditDSAccess = 0
AuditAccountLogon = 0
【以上是未记录在注册表中的组策略值,以下是记录在注册表中的组策略值】
[Version]
signature="$CHICAGO$"
Revision=1
[Registry Values]
MACHINESoftwareMicrosoftWindows NTCurrentVersionSetupRecoveryConsoleSecurityLevel=4,0
MACHINESoftwareMicrosoftWindows NTCurrentVersionSetupRecoveryConsoleSetCommand=4,0
MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogonCachedLogonsCount=1,"10"
MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogonForceUnlockLogon=4,0
MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogonPasswordExpiryWarning=4,5
MACHINESoftwareMicrosoftWindows NTCurrentVersionWinlogonScRemoveOption=1,"0"
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemConsentPromptBehaviorAdmin=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemConsentPromptBehaviorUser=4,3
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemDontDisplayLastUserName=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemEnableInstallerDetection=4,1
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemEnableLUA=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemEnableSecureUIAPaths=4,1
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemEnableUIADesktopToggle=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemEnableVirtualization=4,1
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemFilterAdministratorToken=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemLegalNoticeCaption=1,""
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemLegalNoticeText=7,
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemPromptOnSecureDesktop=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemScForceOption=4,0
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemShutdownWithoutLogon=4,1
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemUndockWithoutLogon=4,1
MACHINESoftwareMicrosoftWindowsCurrentVersionPoliciesSystemValidateAdminCodeSignatu
res=4,0
MACHINESoftwarePoliciesMicrosoftWindowsSaferCodeIdentifiersAuthenticodeEnabled=4,0
MACHINESystemCurrentControlSetControlLsaAuditBaseObjects=4,0
MACHINESystemCurrentControlSetControlLsaCrashOnAuditFail=4,0
MACHINESystemCurrentControlSetControlLsaDisableDomainCreds=4,0
MACHINESystemCurrentControlSetControlLsaEveryoneIncludesAnonymous=4,0
MACHINESystemCurrentControlSetControlLsaFIPSAlgorithmPolicyEnabled=4,0
MACHINESystemCurrentControlSetControlLsaForceGuest=4,0
MACHINESystemCurrentControlSetControlLsaFullPrivilegeAuditing=3,0
MACHINESystemCurrentControlSetControlLsaLimitBlankPasswordUse=4,1
MACHINESystemCurrentControlSetControlLsaMSV1_0NTLMMinClientSec=4,536870912
MACHINESystemCurrentControlSetControlLsaMSV1_0NTLMMinServerSec=4,536870912
MACHINESystemCurrentControlSetControlLsaNoLMHash=4,1
MACHINESystemCurrentControlSetControlLsaRestrictAnonymous=4,0
MACHINESystemCurrentControlSetControlLsaRestrictAnonymousSAM=4,1
MACHINESystemCurrentControlSetControlPrintProvidersLanMan Print ServicesServersAddPrinterDrivers=4,0
MACHINESystemCurrentControlSetControlSecurePipeServersWinregAllowedExactPathsMachine=7,SystemCurrentControlSetControlProductOptions,SystemCurrentControlSetControlServer Applications,SoftwareMicrosoftWindows NTCurrentVersion
MACHINESystemCurrentControlSetControlSecurePipeServersWinregAllowedPathsMachine=7,SystemCurrentControlSetControlPrintPrinters,SystemCurrentControlSetServicesEventlog,SoftwareMicrosoftOLAP Server,SoftwareMicrosoftWindows NTCurrentVersionPrint,SoftwareMicrosoftWindows NTCurrentVersionWindows,SystemCurrentControlSetControlContentIndex,SystemCurrentControlSetControlTerminal Server,SystemCurrentControlSetControlTerminal ServerUserConfig,SystemCurrentControlSetControlTerminal ServerDefaultUserConfiguration,SoftwareMicrosoftWindows NTCurrentVersionPerflib,SystemCurrentControlSetServicesSysmonLog
MACHINESystemCurrentControlSetControlSession ManagerKernelObCaseInsensitive=4,1
MACHINESystemCurrentControlSetControlSession ManagerMemory ManagementClearPageFileAtShutdown=4,0
MACHINESystemCurrentControlSetControlSession ManagerProtectionMode=4,1
MACHINESystemCurrentControlSetControlSession ManagerSubSystemsoptional=7,Posix
MACHINESystemCurrentControlSetServicesLanManServerParametersAutoDisconnect=4,15
MACHINESystemCurrentControlSetServicesLanManServerParametersEnableForcedLogOff=4,1
MACHINESystemCurrentControlSetServicesLanManServerParametersEnableSecuritySignature=4,0
MACHINESystemCurrentControlSetServicesLanManServerParametersNullSessionPipes=7,
MACHINESystemCurrentControlSetServicesLanManServerParametersRequireSecuritySignature=4,0
MACHINESystemCurrentControlSetServicesLanManServerParametersRestrictNullSessAccess=4,1
MACHINESystemCurrentControlSetServicesLanmanWorkstationParametersEnablePla
inTextPassword=4,0
MACHINESystemCurrentControlSetServicesLanmanWorkstationParametersEnableSecuritySignature=4,1
MACHINESystemCurrentControlSetServicesLanmanWorkstationParametersRequireSecuritySignature=4,0
MACHINESystemCurrentControlSetServicesLDAPLDAPClientIntegrity=4,1
MACHINESystemCurrentControlSetServicesNetlogonParametersDisablePasswordChange=4,0
MACHINESystemCurrentControlSetServicesNetlogonParametersMaximumPasswordAge=4,30
MACHINESystemCurrentControlSetServicesNetlogonParametersRequireSignOrSeal=4,1
MACHINESystemCurrentControlSetServicesNetlogonParametersRequireStrongKey=4,1
MACHINESystemCurrentControlSetServicesNetlogonParametersSealSecureChannel=4,1
MACHINESystemCurrentControlSetServicesNetlogonParametersSignSecureChannel=4,1
[Privilege Rights]
SeNetworkLogonRight = *S-1-1-0,*S-1-5-32-544,*S-1-5-32-545,*S-1-5-32-551
SeBackupPrivilege = *S-1-5-32-544,*S-1-5-32-551
SeChangeNotifyPrivilege = *S-1-1-0,*S-1-5-19,*S-1-5-20,*S-1-5-32-544,*S-1-5-32-545,*S-1-5-32-551
SeSystemtimePrivilege = *S-1-5-19,*S-1-5-32-544
SeCreatePagefilePrivilege = *S-1-5-32-544
SeDebugPrivilege = *S-1-5-32-544
SeRemoteShutdownPrivilege = *S-1-5-32-544
SeAuditPrivilege = *S-1-5-19,*S-1-5-20,DefaultAppPool
SeIncreaseQuotaPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544,DefaultAppPool
SeIncreaseBasePriorityPrivilege = *S-1-5-32-544
SeLoadDriverPrivilege = *S-1-5-32-544
SeBatchLogonRight = *S-1-5-32-544,*S-1-5-32-551,*S-1-5-32-559,*S-1-5-32-568
SeServiceLogonRight = *S-1-5-80-0,DefaultAppPool
SeInteractiveLogonRight = Guest,*S-1-5-32-544,*S-1-5-32-545,*S-1-5-32-551
SeSecurityPrivilege = *S-1-5-32-544
SeSystemEnvironmentPrivilege = *S-1-5-32-544
SeProfileSingleProcessPrivilege = *S-1-5-32-544
SeSystemProfilePrivilege = *S-1-5-32-544,*S-1-5-80-3139157870-298339166-658725712-1809340420
SeAssignPrimaryTokenPrivilege = *S-1-5-19,*S-1-5-20,DefaultAppPool
SeRestorePrivilege = *S-1-5-32-544,*S-1-5-32-551
SeShutdownPrivilege = *S-1-5-32-544,*S-1-5-32-545,*S-1-5-32-551
SeTakeOwnershipPrivilege = *S-1-5-32-544
SeDenyNetworkLogonRight = Guest
SeDenyInteractiveLogonRight = Guest
SeUndockPrivilege = *S-1-5-32-544,*S-1-5-32-545
SeManageVolumePrivilege = *S-1-5-32-544
SeRemoteInteractiveLogonRight = *S-1-5-32-544,*S-1-5-32-555
SeImpersonatePrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544,*S-1-5-32-568,*S-1-5-6
SeCreateGlobalPrivilege = *S-1-5-19,*S-1-5-20,*S-1-5-32-544,*S-1-5-6
SeIncreaseWorkingSetPrivilege = *S-1-5-32-545
SeTimeZonePrivilege = *S-1-5-19,*S-1-5-32-544,*S-1-5-32-545
SeCreateSymbolicLinkPrivilege = *S-1-5-32-544
【命令回显结束】
【以下是未记录在注册表中的组策略值所对应的中文翻译】
MinimumPasswordAge = 0t//密码最短留存期
MaximumPasswordAge = 42t//密码最长留存期
MinimumPasswordLength = 0t//密码长度最小值
PasswordComplexity = 0t//密码必须符合复杂性要求
PasswordHistorySize = 0t//强制密码历史 N个记
住的密码
LockoutBadCount = 5t//账户锁定阈值
ResetLockoutCount = 30t//账户锁定时间
LockoutDuration = 30t//复位账户锁定计数器
RequireLogonToChangePassword = 0 *下次登录必须更改密码
ForceLogoffWhenHourExpire = 0t*强制过期
NewAdministratorName = "Administrator" *管理员账户名称
NewGuestName = "Guest"t*来宾账户名称
ClearTextPassword = 0
LSAAnonymousNameLookup = 0
EnableAdminAccount = 1t//administrator是否禁用
EnableGuestAccount = 0t//guest是否禁用
[Event Audit]
AuditSystemEvents = 3t//审核系统事件 成功、失败
AuditLogonEvents = 3t//审核登录事件 成功、失败
AuditObjectAccess = 3t//审核对象访问 成功、失败
AuditPrivilegeUse = 2t//审核特权使用 失败
AuditPolicyChange = 3t//审核策略更改 成功、失败
AuditAccountManage = 3t//审核账户管理 成功、失败
AuditProcessTracking = 2t//审核过程追踪 失败
AuditDSAccess = 2t//审核目录服务访问 失败
AuditAccountLogon = 3t//审核账户登录事件 成功、失败
sedenyinteractivelogonright 拒绝从本地登陆
sedenynetworklogonright 拒绝从网络访问这台计算机
sedenyservicelogonright 拒绝作为服务登陆
sedenybatchlogonright 拒绝作为批处理作业登陆
seinteractivelogonright 在本地登陆
senetworklogonright 从网络访问此计算机
seservicelogonright 作为服务登陆
sebatchlogonright 作为批处理作业登陆
SeNetworkLogonRight //允许网络登入
SeBackupPrivilege
SeChangeNotifyPrivilege
SeSystemtimePrivilege
SeCreatePagefilePrivilege //创建一个页面文件
SeDebugPrivilege //调试程序
SeRemoteShutdownPrivilege //远程强制关机
SeAuditPrivilege
SeIncreaseQuotaPrivilege
SeIncreaseBasePriorityPrivilege
SeLoadDriverPrivilege //加载和卸载设备驱动程序
SeBatchLogonRight
SeServiceLogonRight
SeInteractiveLogonRight //本地登录
SeSecurityPrivilege
SeSystemEnvironmentPrivilege
SeProfileSingleProcessPrivilege //配置文件单个进程
SeSystemProfilePrivilege
SeAssignPrimaryTokenPrivilege
SeRestorePrivilege
SeShutdownPrivilege //本地强制关机
SeTakeOwnershipPrivilege //取得文件或其他对象所有权
SeDenyNetworkLogonRight = Guest
SeDenyInteractiveLogonRight = Guest
SeUndockPrivilege
SeManageVolumePrivilege //执行卷维护任务
SeRemoteInteractiveLogonRight //允许远程登录
SeImpersonatePrivilege
SeCreateGlobalPrivilege
SeIncreaseWorkingSetPrivilege
SeTimeZonePrivilege
SeCreateSymbolicLinkPrivilege
发布评论