ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Unsolved Windows URL ACL

    IT Discussion
    netsh acl urlacl programming
    3
    5
    2.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • thwrT
      thwr
      last edited by thwr

      I'm trying to run an (self-written) application which uses an HttpListener. Everything apart from a listener on 127.0.0.1 requires elevated privileges to launch.

      I want my application to start without elevated privileges and tried to add a URL ACL:

      netsh http add urlacl url=http://+:12345/ user=SOMEDOMAIN\SOMEUSER listen=yes
      

      ("+" is a wildcard in the netsh syntax.)

      Windows happily accepts that command, but it does not seem to have any effect. What I tried:

      • Different users: the one who invokes the process, NT Authority\Network Service, even Everyone.
      • Computer restart does not help.
      • Added listen=yes

      My HttpListener is configured as http://*:12345/ ("*" is a wildcard for all IPs on that machine)

      Any ideas?

      1 Reply Last reply Reply Quote 2
      • JaredBuschJ
        JaredBusch
        last edited by

        Network modification rights can be granted aside from admin rights. Can you add network management group to that user? Name escapes means I am sitting at the table drinking coffee atm.

        thwrT 1 Reply Last reply Reply Quote 1
        • thwrT
          thwr @JaredBusch
          last edited by thwr

          @JaredBusch said in Windows URL ACL:

          Network modification rights can be granted aside from admin rights. Can you add network management group to that user? Name escapes means I am sitting at the table drinking coffee atm.

          Will try, but would rather like to solve that problem. Also happens when you use WCF (Windows Communication Foundation, I think they both interact with http.sys, but I'm not 100% sure about this), so this isn't a once-in-a-decade problem.

          1 Reply Last reply Reply Quote 0
          • DashrenderD
            Dashrender
            last edited by

            What OS?

            thwrT 1 Reply Last reply Reply Quote 0
            • thwrT
              thwr @Dashrender
              last edited by

              @Dashrender said in Windows URL ACL:

              What OS?

              Anything > Vista I guess

              Currently testing on Win7 and Win10

              1 Reply Last reply Reply Quote 0
              • 1 / 1
              • First post
                Last post