I'll teach you how to learn. Registry Security Settings _ Registry

By default, the registry can only be edited by members of the administrator or the Power Users group, and members of those groups have the same access.

In order to allow more users and adequate security settings to modify the ability, you can use the Registry Editor related options to modify. The steps are as follows:

• Open Registry Editor.
  
  
• Select a specific root key or subkey branch, such as Hkey_local_machine\ Software.
  
  
• Select permissions from edit in the menu bar, and the following dialog box pops up.

The current permissions settings are listed here. If you want to change the current permissions for a group or individual user, click the Advanced button in this dialog box, and then, on the Effective Permissions tab, appear as a Diagram dialog box.

To add a new user to participate in the security settings for the registry, click the Select button, and then enter the group or user name in the pop-up dialog box (if you enter multiple, separated by semicolons). Point [OK] button.

The special permissions for the specified user or group are then in the following dialog box.

We can also audit the use of the registry.

With the Windows XP system auditing mechanism, you can adjust who has made changes to the registry, whether they are edited locally, or from a remote location. When a user accesses the registry, he or she is not aware of the situation if it is being audited, because Windows XP does not give a clear warning message. All deep audit results are pasted into the "Security Day" of the Event Viewer. To activate the auditing mechanism in the registry, follow these steps:

Click the Auditing tab in the following figure.

Click the Add button to join the user group or individual user who prepares the audit.

Click the OK button to appear in the Diagram dialog box.

These events can also be audited by a user named system, which is the internal retention feature of the Windows XP operating system only if the user installs the System software or modifies system settings in Control Panel. Note: System cannot be removed from the permission settings as a normal user, which can result in the inability to update the Windows XP registry with Control Panel or through the installation of the software.

The audit results for users or groups in the Windows XP operating system are displayed in the Security Log report in Event Viewer, and you can start]| [All Programs]| [Admin Tools] menu, select Event Viewer to enter the Event Viewer's note-handling interface.

Any successful project is displayed in the form of a key, but an attempt to fail the audit is shown in the form of a lock.


Double-click the report to see more detailed information. If you want to print the audit information, under [Action], select [Save Day to file].