glnz
Member
- Local time
- 5:27 AM
- Posts
- 27
- OS
- A Hyper-V Virtual Machine of Win 11 Pro 64-bit v 21H2 running on Win 10 Pro 64-bit v 21H1 host
In Win 11, is there a way to run cmd as Trusted Installer, not merely as an Administrator? (I have a VM of Win 11 Pro 64-bit version 21H2, which I run in Hyper-V on my Win 10 Pro 64-bit machine (version 21H1) as host. I would like to be able to be Trusted Installer in cmd in the Win 11 VM.)
I can do this in Win 10 as follows:
First, in Win 10, I have the following files in C:\Windows\System32:
RunasSystem.au3
RunasSystem.exe
RunasSystem64..exe
RunFromToken.au3
RunFromToken.exe
RunFromToken64.exe
Second, also in System32, I have a file named Tido.cmd which has the following lines:
net.exe start trustedinstaller
runassystem64.exe "runfromtoken64.exe trustedinstaller.exe 1 cmd.exe"
exit
Third, on my Desktop, I have a shortcut to the above Tido.cmd that is set to Run as Administrator.
If I right-click that Shortcut to Tido.cmd and Run as Administrator (which I do anyway), it opens a cmd window in which (after five seconds during which the cmd sheds its identity as Clark Kent and becomes Superman) I am Trusted Installer, not merely Administrator. In that cmd window, when I ask whoami, the answer is nt authority\system.
From there, I can change history.
So - will the equivalent work in Win 11?
EDIT - In Win 11, the folder C:\Windows\System32 is Read Only. I don't remember that being the case in my Win 10 but I could be wrong. Is it possible to paste in my seven files while leaving this System32 as Read Only?
I can do this in Win 10 as follows:
First, in Win 10, I have the following files in C:\Windows\System32:
RunasSystem.au3
RunasSystem.exe
RunasSystem64..exe
RunFromToken.au3
RunFromToken.exe
RunFromToken64.exe
Second, also in System32, I have a file named Tido.cmd which has the following lines:
net.exe start trustedinstaller
runassystem64.exe "runfromtoken64.exe trustedinstaller.exe 1 cmd.exe"
exit
Third, on my Desktop, I have a shortcut to the above Tido.cmd that is set to Run as Administrator.
If I right-click that Shortcut to Tido.cmd and Run as Administrator (which I do anyway), it opens a cmd window in which (after five seconds during which the cmd sheds its identity as Clark Kent and becomes Superman) I am Trusted Installer, not merely Administrator. In that cmd window, when I ask whoami, the answer is nt authority\system.
From there, I can change history.
So - will the equivalent work in Win 11?
EDIT - In Win 11, the folder C:\Windows\System32 is Read Only. I don't remember that being the case in my Win 10 but I could be wrong. Is it possible to paste in my seven files while leaving this System32 as Read Only?
Last edited:
My Computer
System One
-
- OS
- A Hyper-V Virtual Machine of Win 11 Pro 64-bit v 21H2 running on Win 10 Pro 64-bit v 21H1 host
- Computer type
- PC/Desktop
- Manufacturer/Model
- Dell Optiplex 7010
- CPU
- Intel Core i5-3470 CPU with four cores
- Memory
- 16GB RAM, of which 8GB is assigned to the Win 11 VM
