Windows Issue - You require permission from <system\admin> to make changes to this file

betabytes 1 Reputation point
2021-10-23T08:15:12.32+00:00

Question..

Why is it that the ADMIN of the computer is not granted FULL-CONTROL over the folder/file that needs admin rights? Instead why does the software OVERRIDE the admin's full-control using 'EVERYONE' and 'Special Permissions' on DENY.

It is SO frustrating that the prompts only say "You require permission from <System\Admin> to make changes to this file." because of several reasons:

  1. I am the ADMIN and I was denied
  2. Permissions for Administrators are all Full Control minus 'Special Permissions' (no way to change this? -- And to be clear these were just Wedding Photos. NOTHING SPECIAL.)
  3. EVERYONE --> Special Permissions = DENY overrides all ADMIN control.

Why is that??? Can you fix your dialog box to show the true nature of the problem??

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
10,705 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,767 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Eugene Onegin 1 Reputation point
    2021-10-23T17:20:10.527+00:00

    Your post does not show which application is attempting to modify the object. Under normal conditions, an application can ask for UAC permissions and may elevate itself to have elevated privileges. I will assume the application is running with Standard User Rights:

    Standard User Rights - For example, when Explorer is opened the standard Windows user token (to simplify this topic, let's call the token 'token Standard') is invoked. Any application that runs and requires elevation via UAC may be unable to perform under Administrators permissions.

    Administrator Rights (elevated) - If you were to select 'Run As Administrator' to open Explorer or the application involved accessing the object, then the user credentials run under the other token (let's call that 'token Admin'). In this case, any application that runs and requires elevation via UAC will be able to rely on the Administrators Permissions, which in your case are Allow=FULL.

    I have discovered these 2 conditions when assigning network shares, or mapped drive letters, or using the SUBST command to substitute a drive letter for a network or local path. The program I open to do any of these assignments will create the assignment under either 'token Standard' or 'token Admin'. If under token Admin', then the Standard user may not see the mapped drive letters.

    0 comments
  2. Liviu Do 1 Reputation point
    2021-11-11T01:23:21.863+00:00

    What application? All of them!
    After yesterday updates, my hyperlinks do not work in Excel!
    I am using SUBST to map some very long paths in OneDrive.

    Please help!

    I have to run Excel as Administrator, and all other software used in the company: PDF reader-editor, SAR ERP accounting software, paint, snipping tool, file explorer, ... and many others!

    Is that normal? I wand to use my computer as a Normal USER, not as an Admin!

    0 comments