Windows 10: Local Activation Permission

Page 5 of 5 FirstFirst ... 345

  1. Posts : 25,135
    Triple boot - Win 10 Pro, Win 10 Pro Insider (2) - (and a sprinkling of VMs)
       06 Apr 2017 #41

    ddelo said: View Post
    To resolve the EventID 513 CAPI2 errors, when making a backup or creating a restore point,
    In an elevated command prompt:

    1. Run: SC sdshow MSLLDP
    You will get an SDDL similar to that:
    DD;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BG)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)(A;;CCDCLCSWRPDTLOCRSDRCWDWO; ;;BA)(A;;CCLCSWRPWPDTLOCRRC;;;SO)(A;;LCRPWP;;;S-1-5-80-3141615172-2057878085-1754447212-2405740020-3916490453)

    2. If it's not exactly the same as this one (it'll most probably be), make a note of your SDDL by copying and pasting the string you received.

    3. Apply an extra permission for the NT SERVICE\CryptSvc, by adding the string: (A;;CC;;;S-1-5-80-242729624-280608522-2219052887-3187409060-2225943459) to the existing MSLLDP, right after the (A;;LCRPWP;;;S-1-5-80-3141615172-2057878085-1754447212-2405740020-3916490453) block

    4. To do that you should run the following command, making sure that there are no spaces or line breaks:
    sc sdset MSLLDP <Your SDDL>(A;;CC;;;S-1-5-80-242729624-280608522-2219052887-3187409060-2225943459)

    or in our example:
    Code:
    sc sdset MSLLDP D:(D;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BG)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)(A;;CCDCLCSWRPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWRPWPDTLOCRRC;;;SO)(A;;LCRPWP;;;S-1-5-80-3141615172-2057878085-1754447212-2405740020-3916490453)(A;;CC;;;S-1-5-80-242729624-280608522-2219052887-3187409060-2225943459)
    That's it! No CAPI2 errors.
    There's a good TechNet article on the whole process, along with what to look for, and watch out for. Just FYI:

    Error source CAPI2 id 513 - Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object
      My ComputersSystem Spec

  2.    06 Apr 2017 #42

    I've read it Dick and thanks a lot for pointing it out.

    The problem with the article (which works perfectly) is that for solving the issue provides a whole bunch of permissions to NT AUTHORITY\SERVICE, which is not necessary.

    We just need to provide SERVICE_QUERY_CONFIG permission to the NT SERVICE\CryptSvc. That's more efficient and lighter, does not open the whole thing to NT AUTHORITY\SERVICE, works as perfectly and there is no need to reapply the fix after a Windows update.

    You can take a look if you wish to Microsoft Community
      My ComputerSystem Spec


 
Page 5 of 5 FirstFirst ... 345

Related Threads
Am on Win 10 (64 Bits) and whenever I am using IE it suddenly stops responding and then sometime I can close via task manager and everything works and sumtimes whole computer freezes with most icons on taskbar missing - then I have to restart the...
Solved Need Administrator Permission in Performance & Maintenance
I'm trying to replace calc.exe in the System 32 folder with a version from XP, but keep getting a notice that I don't have permission. I'm in as the Administrator, what more do I need to do? Thanks!
I do not have permission???? in General Support
I created a new user profile in windows 10 with administrator permission. Now when I try to access a file on drive f, I am denied permission to even open the folder. l hate windows permission, since I am the only one that has access to my...
Permission Issues in General Support
Windows 10 seems to have developed an issue for me that is causing UAC-like prompts suggesting that I need Administrator permission. I should probably mention that I am actually using the real Administrator account (this was an upgrade installation...
Hi there anybody else got this -- trying to personalize PC -got you need to activate windows before you can personalize PC. Now what do I do !!!!!?! Is this normal (I did an UPDATE rather than a new install BTW). Cheers
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 05:02.
Find Us