Unless something recently changed, I am sure Icacls
does not run on Windows XP. Yep, just checked. Not sure how you got any error message other than "NOT A VALID WIN32 APPLICATION"
Someone currently in enterprise IT please correct me but isn't Admistrative Tools
just a namespace item that exists only as a shell CLSID from the registry? Back in the early days of WinXP this was locked down through group policy.
By the way, when you get an error using command line permission utilities ( or any other ), the first thing is to make sure is that you run it in an elevated
Also, when a specific registry key or file/folder object rejects these command line permission tools, it helps to simply go to that object and have a look at the ACL's ( permissions ) from the "Security" tab
( use right-click context menu > "Sharing and Security" or "Properties" ) which will send you into the official ( but kinda lame ) GUI view of the ACLs currently defined for that object. This is adequate to get an overview of the permission tree, and many times you can successfully edit them. But not always.
A different but better GUI utility for viewing ACL's is AccessEnum
from System Internals ( Microsoft ). It is a viewer only but you can quickly right-click jump into the "Security" tab GUI from the program.
Using these can help you visualize and untangle permissions that may have been messed up by any number of problems caused by setup programs, ACL tools, programs like Flash that change them, or even your students who might be experimenting.EDIT:
Edited by CharlotteTheHarlot, 17 February 2013 - 03:14 AM.