home Choice What is trustedInstaller and why won't it let me delete the folder? Request permission from Trustedinstaller: Causes and Remedies. What is it really

What is trustedInstaller and why won't it let me delete the folder? Request permission from Trustedinstaller: Causes and Remedies. What is it really

TrustedInstaller - a special service designed to protect resources operating system from any interference. Resource Protection, to be more precise, is a system user who ensures that computer owners (administrators) do not delete, modify or read certain files without permission. If the PC Administrator tries to access the file item, he will be denied and notified that in order to perform this operation, he must obtain the permission of the "system user", the TrustedIstaller service.
We will explain what access denied means and what to do in such a situation. At the end of the article, we will show clearly, in a short video, how to solve the problem with permissions from windows services 10 and 8.

This system service actually has its own account, an account, on your computer. As we wrote above, this is necessary so that the user cannot harm the system by changing, editing or deleting desired file from the hidden section. Only TrustedInstaller owns the rights to these files / folders and, therefore, only it can change them if necessary. If you need to change an element file system, which is owned by a service, you should be given the same rights. But how to do this, we will tell you step by step and show you.

After changing a file to which you did not have access, it is advisable to return the rights to the system elements to the TrustedInstaller service, for security purposes.

How to delete a folder that TrustedInstaller does not allow to delete

If you need to delete a folder/file/item that you don't have access to, you'll see a service denial message and a permission request notification. This situation can occur in any OS version - Windows 10, 8, 7. And all the steps that we describe below are applicable to all these versions of the operating system.

So, how to get these notorious "full" rights to a file, element, folder? Follow these seven steps:

And even after you have become the owner of this folder / file, you will not be able to perform any manipulations. Now you will have to request access permission not from the TrustedInstaller service, but from a new system user - yourself. And in order to still delete / change the file, you will need to set permissions for yourself, the right to access.

Setting Permissions

Permissions are set in the properties of the file system element. Click on the "Properties" folder/file to open the "Security" section and navigate to "Advanced" from there.

In "Permission Options" you can be present or absent. In the first case, the problem has already been solved, and you can perform any operations with this file. And in the second case, you need to add yourself. If there is no such button, first change the access settings.

After clicking the "Change" button, a new tab, where you can select the desired subject. You also press search and look for the name of the PC (owner's name). Now you need to allow this user any operations with elements of the file system. Confirm your choice by clicking on the "Yes" button.

Go back to the "Additional protection settings" check the item "Replace the owner of the object and containers."

Everything, the rights are received, and the file/folder are deleted without problems. If again the system notifies about the lack of access rights, uncheck the "For reading" box.

How to make TrustedInstaller the owner of a folder

After you have deprived the system user of rights, return everything to its original form. Follow these four steps:

That's it, the TrustedInstaller service is running again.

If you need to edit some files from the Windows directory, then you should definitely know what trustedinstaller is.

1. Procedure for deactivating trustedinstaller

A traditional element of operating systems from Microsoft is layered system access to different accounts.

First of all, this implements the so-called "fool-proof" principle, which consists in limiting the capabilities of inexperienced users, whose actions can disrupt the normal operation of the system.

It can also become good element computer anti-virus protection, since the vast majority malware requires administrative rights to make changes to system files.

In addition to ranking account capabilities (administrator, user, guest) starting from seven in all Windows versions there is a trustedinstaller function.

It can be thought of as a separate superuser account, with powers that go beyond even administrator rights.

However, these features only apply to the most important system files.

Therefore, trustedinstaller, for example, does not allow you to delete the folder even from under the administrative account.

But it is quite possible to overcome this barrier, for which it is enough to change some access settings.

trustedinstaller deactivation procedure

In most cases, this tool protects the Windows folder, when you try to delete files from it, you will encounter the following window:

In this case, repeatedly pressing the Repeat key will not give any results and this window will appear again and again.

This protection method is installed for a reason, and deleting or modifying trustedinstaller-related files may cause serious system malfunctions.

However, sometimes you may need to edit these files in order to figure out, for example, what is so CPU-intensive, for which you can use the following algorithm:

Select the required file and click on it right click mouse, and in the opened context menu select Properties.

In the window that opens, switch to the Security tab, and then click on the Advanced button.

The menu that appears has a wide range of tools for editing file access conditions for various users.

We will not now understand the nuances of this case, but simply go to the necessary tab, where we press the Change button.

Now request this file for the Administrators user group. Why select in the area called Change owner to: select the item, what a surprise, Administrators and click OK.

If all the above operations were carried out correctly, then you should see the following system message (do not forget to click OK):

But this is not the end of the trustedinstaller deactivation procedure. Now we again need to go to Properties-Security, and then under the Groups or Users window, click on the Change button.

In this menu, select the Administrators group (it should be highlighted with a blue background), and in the Permission area for the Administrators group, in the Allow column, activate all checkboxes, namely Full access, Modify, Read & Execute, Read & Write.

Now all users with administrative rights will also be able to delete and edit files under the protection of trustedinstaller.

Advice! After requesting permission from this function, it is highly recommended to return all settings to their original form, as unprotected system files can be easily damaged by viruses.

To restore the trustedinstaller.exe system protective process, you must perform almost the same steps as described above, only in reverse order:

The folder with the files is opened, and the actions Properties-Security-Administrators-Change are performed and we leave access only to the Read and Read and execute options

Then the actions from points 1-3 of the previous algorithm are completely repeated. And in the window Extra options security, go to the Other users and groups section.

In the Select "User" or "Group" menu, nothing should be changed, but you only need to enter the command NT SERVICE \ TrustedInstaller in the Enter the names of the objects to select field.

In this way, we will re-create a user for the trustedinstaller.exe process for the file being edited.

It remains only to press the check name button, as a result of which the entered command will turn into the more familiar “TrustedInstaller” entry.

At the end of our article, it is worth noting that if a process called trustedinstaller loads the processor or does not allow you to delete a folder that is clearly not related to system ones, then most likely it is a virus masquerading as it.

You should also take into account such a nuance that trustedInstaller identifies system files by their names, which means that text file, say named taskmgr will also be protected by this feature.

Thematic video:

How to modify Windows 7 system files - TrustedInstaller

What is trustedinstaller: How to request permission in Windows

Sometimes there are situations in which the Windows 7 operating system tries to use the so-called Trustedinstaller. Today we will look at what this component is in Windows operating systems.

Strange translation

The word Trusted is translated from American or of English language means "trusted". Sometimes there is such a term as Trustedinstaller. What it is, not all users know. The fact is that during the installation process, the distribution file itself third party program may request permission to install. For this reason, certain problems arise. The word Trust in translation means “trust”, and the word installer means “installer”, but despite this, the installer program in many cases is affected by malicious codes and viruses. By the way, the application itself is capable of making requests at its own level, considering them to be active virus codes.

Usage history

For the first time, the Trustedinstaller protection service was used in the Windows 7 system. It was responsible for the ability to edit system settings and system files. In fact, users often encounter the “Request permission from Trustedinstaller” message only when they try to edit the system configuration without administrator level access. What is it really? The saddest thing is that Windows 7 provides for the existence of two administrators. That the owner of the PC or local user has administrator privileges, yet does not mean anything even if it has account Microsoft Corporation. It turns out that by default the "Super Administrator" entry is activated in the system. You may have noticed that some processes need to be run as an administrator using the right mouse button. Why this is needed should be clear: thus, the developers tried to protect the system by giving the user the ability to edit access rights.

Trustedinstaller: how to remove or disable?

You must use the standard System Configurator to disable this service. It is accessed through the Control Panel. There, it is not the program section that is selected, but the component menu. If we take into account the fact that the Trustedinstaller executable file is located in the system folder that belongs to the operating system, then any attempts to remove it will be nullified. The system simply will not allow this. Let's try to figure out what needs to be done in order to remove the Trustedinstaller component. In this case, the Windows 7 operating system is a rather "pragmatic" operating system, despite all its features. Many users are simply put off by the use of super admin rights. Indeed, even the launch of the installer of any program for some reason raises doubts in the system, although the program may actually have digital signature, and SSL certificate. Trustedinstaller operating module Windows systems 7 clearly loses in this respect. The most basic problem is that the system itself requires account verification, although, according to the corporation's employees, this is not at all necessary.

App Unlocker

If someone noticed, then in the Windows7 operating system, the context menu has a special Unlocker service that allows you to unlock system processes. However, it is present only in limited modifications of the system itself. Moreover, according to Microsoft, this utility is not official in the main release. Therefore, it is better to think about the question of its presence in the Windows 7 operating system. In principle, if you understand what Trustedinstaller is, you could put an end to this process, if not for one "but". Of course, you can try installing a third-party unlocker component. However, this may cost you the security of the entire system. If the user is tired of receiving messages like "Request permission" from Trustedinstaller to change the system configuration or a certain file, then when unlocking the main features and functions, you can encounter a lot of things that can only harm the system. This applies in particular to incorrect settings paging file size, backup free space to save copies of the system and hard drive etc. Disabling is done by directly deactivating the Windows Resource Protection service. So, for example, for the system library termsrv.dll, you need to right-click on the file, and then use the security and properties menu. Next, you need to do the most important thing: instead of the "principal" in the new window, select administrators and apply the changes made. Next, in the Administrators group, you just need to check the boxes next to all existing permissions, and then click on the "OK" button.

Conclusion

Instead of an afterword, it is worth looking at the Trustinstaller module from the other side. What it is should be clear by now. It is better to disable it in the Windows 7 operating system. Activation will not lead to anything good. In this case, we did not consider issues related to the deactivation of the super administrator account. This is a separate topic, which has its own solution in terms of using system registry keys. However, an understanding of the service itself must still be present. If you give recommendations on installing the seventh version of the Windows7 operating system, then you need to clarify: you should not use unofficial distributions and repacks. They may contain not only viruses, but also modified components of the system itself, which can lead to a malfunction of the laptop or desktop computer. Then no optimizer program will help. It was in the Windows 7 operating system that this problem initially arose. By installing Windows 10 and disabling the corresponding service, you can get rid of it. Editing autorun using the msconfig command in the Start menu, if it is listed, is also suitable. For the rest, it remains only to note that installing the left version of the Windows operating system can lead to the failure of the "iron" components of the system, so it's better not to risk it.

There is another take on Trustedinstaller. You should already understand what it is, however, if the confirmation request for the operation being performed is still present, you must deactivate the "Super Administrator" account in the editor group policies or system registry, and in such a way that the parameter permanent launch programs and applications on behalf of the administrator. Be prepared for the fact that if you disable this entry, the system will require a password after rebooting and logging in again. If you do not remember it, then it is better not to risk it and leave everything as it was. Otherwise, even logging in under your account or when entering a valid account this moment password becomes impossible. Such cases, unfortunately, have taken place. Microsoft specialists prefer not to comment on such situations, even in the case of official requests. Today, many users have pirated versions of the Windows 7 operating system.

Do you want to remove any obsolete or unnecessary system folder, but you get a message that you need to get permission from Trustedinstaller? The reason is the lack of rights to change the folder (even for the administrator account). Many faced this problem on Windows 7, but today we will talk about Windows 8. Let's figure out how to get full control over folders ...

So, I will show an example of deleting an unnecessary Windows folder that remained after reinstalling the operating system. When I try to delete a folder, the following message appears:

First, make sure you are logged in with an administrator account. Otherwise, you will not be able to make some changes to the settings. Right-click on this folder and select " Properties". In the options window, go to the " Safety"and click on the button" Additionally«.

The window " Additional Security Options". Above it is indicated who is the owner of the folder (Trustedinstaller), click on the link " Change«.

In the previous window, you will see that the owner has changed. Just below, check the box " Replace owner of subcontainers and objects", and then press the button" Apply«.

We wait a couple of minutes until all files are processed.

If any messages pop up, always click " Yes«.

That's it, you are the owner of the main folder and all the objects included in it. Click OK.

Now we will get full control over this folder. To do this, in the list Permission elements"select your account and click the button" Change«.

Set permissions:

Type of- Allow
It applies to- For this folder, its subfolders and files
General Permissions- Full Control, Modify, Read & Execute, List Folder Contents, Read, Write

And press " OK«.

Just in case, repeat this action for all accounts with your name (or in general for all in the list). Also enable inheritance and check the box next to " Replace all permission entries child object inherited from this object". And confirm all changes by clicking " Apply«.

The system will ask: "Do you want to continue?" Feel free to press " Yes«!

Again, we wait until all files are processed (2-3 minutes).

Close properties and try to delete Windows folder(to which they received permission).

Yes, everything is great. The folder is completely deleted and no longer takes up space on your hard drive!

If more than one user has access to the computer, often some of them do not have certain rights: to view some folders, change and delete data, install new applications, and others. In such a case, solving the problem is simple - just log in to an account that has administrator rights. But it happens that even his rights are not enough.

Even a computer administrator cannot, at will, change and delete all system Windows files. The TrustedInstaller account is more important than it, and when trying to change one or another system file, the administrator may see a message that there is no access, and it must be requested from TrustedInstaller. Below we take a closer look at how to request TrustedInstaller permission What this account is and how it can be used to improve the security of a specific folder or group of files.

TrustedInstaller: what is it and why is this account used

As we noted above, TrustedInstaller is an account that has more rights than an administrator. It is created during the installation of the Windows operating system, and you cannot start the computer on behalf of the TrustedInstaller user.

The main task of this account is to have exclusive rights to the ability to change or delete certain files and folders. Most often, TrustedInstaller protects important system files, the removal of which can lead to a system crash. It is for this reason that we recommend granting permission from TrustedInstaller in extreme cases, even to an administrator account.

The question may arise, why send a request to additional user, if during the execution of the majority important actions Does the computer display a dialog box to confirm the action on the part of the administrator? It's simple, many computer users, who are administrators by default, do not pay enough attention to the number of programs that they allow to work with maximum rights. That is why the most important files are closed using the TrustedInstaller account, and only after a series of manipulations can the administrator gain access to them.

by the most simple example, when permission from TrustedInstaller may be needed, this is if necessary. To make changes to the browser folder (change file names or delete them), you will need to contact TrustedInstaller.

To request TrustedInstaller permission, you need to do the following:

After the steps above, the selected user will have the necessary permissions from TrustedInstaller to delete or modify the selected folder (files).

How to set a permission request from TrustedInstaller on a folder or file

To protect a file (folder) from accidental deletion, as well as access to it by a virus software, you can set access to it only from the side of the TrustedInstaller user. Please note that you can increase the rank of a user not only so that others cannot modify or delete the file, but also restrict them from reading.

To request TrustedInstaller rights when deleting or modifying a file, do the following:

Follow the 3 points that were described above in the instructions for removing the restriction to the TrustedInstaller file;
Next, place the mouse cursor in the “Enter the names of the objects to select” column, and write the command to access the file (folder) from the TrustedInstaller side, it looks like this:

NT SERVICE\TrustedInstaller

After that, click "OK", and TrustedInstaller will become the owner of the object again;
Next, you need to re-arrange the rights between users, as described in the instructions above.

Setting permissions exclusively for the TrustedInstaller user is not a reliable way to protect a file from being deleted or modified by a computer administrator. However, this method allows you to reliably protect yourself from actions with a specific file (folder) by virus software.

Just about the complex. Programs. Iron. Internet. Windows