Access a specific user environment variable on windows server












0















Is there a way to access to a specific user environment variable using Powershell ?



On the server machine, we have 50 users.
I want to know if a specific user for example user1 is using a different value for the environment variable PYTH_HOME_LOG.



This System variable points to C:PYTHONLOG, I want to check which user changed this location by configuring a user environment variable PYTH_HOME_LOG.






windows powershell environment-variables window-server







share|improve this question

























  • I think the answer here will point you in the right direction: stackoverflow.com/questions/10737401/…

    – gvee
    Jan 3 at 13:45











  • @gvee : this allow you to set your environment as system or user, but not to access other user environment variable.

    – Linus
    Jan 3 at 13:59











  • You posted an answer (since deleted) saying that this answer by Mathias solved your problem. If so, please update your question to indicate that you only want to check users with a loaded profile (ntuser.dat), either from an active logon or lingering (temporarily) from a previous logon.

    – eryksun
    Jan 5 at 18:07
















0















Is there a way to access to a specific user environment variable using Powershell ?



On the server machine, we have 50 users.
I want to know if a specific user for example user1 is using a different value for the environment variable PYTH_HOME_LOG.



This System variable points to C:PYTHONLOG, I want to check which user changed this location by configuring a user environment variable PYTH_HOME_LOG.






windows powershell environment-variables window-server







share|improve this question

























  • I think the answer here will point you in the right direction: stackoverflow.com/questions/10737401/…

    – gvee
    Jan 3 at 13:45











  • @gvee : this allow you to set your environment as system or user, but not to access other user environment variable.

    – Linus
    Jan 3 at 13:59











  • You posted an answer (since deleted) saying that this answer by Mathias solved your problem. If so, please update your question to indicate that you only want to check users with a loaded profile (ntuser.dat), either from an active logon or lingering (temporarily) from a previous logon.

    – eryksun
    Jan 5 at 18:07














0












0








0








Is there a way to access to a specific user environment variable using Powershell ?



On the server machine, we have 50 users.
I want to know if a specific user for example user1 is using a different value for the environment variable PYTH_HOME_LOG.



This System variable points to C:PYTHONLOG, I want to check which user changed this location by configuring a user environment variable PYTH_HOME_LOG.






windows powershell environment-variables window-server







share|improve this question
















Is there a way to access to a specific user environment variable using Powershell ?



On the server machine, we have 50 users.
I want to know if a specific user for example user1 is using a different value for the environment variable PYTH_HOME_LOG.



This System variable points to C:PYTHONLOG, I want to check which user changed this location by configuring a user environment variable PYTH_HOME_LOG.






windows powershell environment-variables window-server




windows powershell environment-variables window-server






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Jan 3 at 20:05









Ansgar Wiechers

146k13132190




146k13132190










asked Jan 3 at 13:43









LinusLinus

114




114













  • I think the answer here will point you in the right direction: stackoverflow.com/questions/10737401/…

    – gvee
    Jan 3 at 13:45











  • @gvee : this allow you to set your environment as system or user, but not to access other user environment variable.

    – Linus
    Jan 3 at 13:59











  • You posted an answer (since deleted) saying that this answer by Mathias solved your problem. If so, please update your question to indicate that you only want to check users with a loaded profile (ntuser.dat), either from an active logon or lingering (temporarily) from a previous logon.

    – eryksun
    Jan 5 at 18:07



















  • I think the answer here will point you in the right direction: stackoverflow.com/questions/10737401/…

    – gvee
    Jan 3 at 13:45











  • @gvee : this allow you to set your environment as system or user, but not to access other user environment variable.

    – Linus
    Jan 3 at 13:59











  • You posted an answer (since deleted) saying that this answer by Mathias solved your problem. If so, please update your question to indicate that you only want to check users with a loaded profile (ntuser.dat), either from an active logon or lingering (temporarily) from a previous logon.

    – eryksun
    Jan 5 at 18:07

















I think the answer here will point you in the right direction: stackoverflow.com/questions/10737401/…

– gvee
Jan 3 at 13:45





I think the answer here will point you in the right direction: stackoverflow.com/questions/10737401/…

– gvee
Jan 3 at 13:45













@gvee : this allow you to set your environment as system or user, but not to access other user environment variable.

– Linus
Jan 3 at 13:59





@gvee : this allow you to set your environment as system or user, but not to access other user environment variable.

– Linus
Jan 3 at 13:59













You posted an answer (since deleted) saying that this answer by Mathias solved your problem. If so, please update your question to indicate that you only want to check users with a loaded profile (ntuser.dat), either from an active logon or lingering (temporarily) from a previous logon.

– eryksun
Jan 5 at 18:07





You posted an answer (since deleted) saying that this answer by Mathias solved your problem. If so, please update your question to indicate that you only want to check users with a loaded profile (ntuser.dat), either from an active logon or lingering (temporarily) from a previous logon.

– eryksun
Jan 5 at 18:07












1 Answer
1






active

oldest

votes


















1














If you are a member of the local Administrators group you can simply go through all the user registry hives and search for the Environment variables there:



$AllUserHives = Get-ChildItem Registry::HKEY_USERS |Where Name -like "HKEY_USERSS-1-5-21*[0-9]"

foreach($UserHive in $AllUserHives){

  if(Get-ItemProperty -Path "$UserHiveEnvironment" -Name PYTH_HOME_LOG -EA SilentlyContinue){

    # User is overriding %PYTH_HOME_LOG%

  }

}


You can grab the corresponding user name either from the Volatile Environment registry subtree by searching for the USERNAME env variable, or you can use IdentityReference.Translate():



$SID = [System.Security.Principal.SecurityIdentifier]"S-1-5-21-436246-18267386-368368356-356777"

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value


or, in this case:



$SID = ($UserHive -split '\')[-1] -as [System.Security.Principal.SecurityIdentifier]

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value





share|improve this answer


























  • You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

    – eryksun
    Jan 3 at 22:06











  • "RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

    – eryksun
    Jan 3 at 22:06












Your Answer






StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");

StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54023494%2faccess-a-specific-user-environment-variable-on-windows-server%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









1














If you are a member of the local Administrators group you can simply go through all the user registry hives and search for the Environment variables there:



$AllUserHives = Get-ChildItem Registry::HKEY_USERS |Where Name -like "HKEY_USERSS-1-5-21*[0-9]"

foreach($UserHive in $AllUserHives){

  if(Get-ItemProperty -Path "$UserHiveEnvironment" -Name PYTH_HOME_LOG -EA SilentlyContinue){

    # User is overriding %PYTH_HOME_LOG%

  }

}


You can grab the corresponding user name either from the Volatile Environment registry subtree by searching for the USERNAME env variable, or you can use IdentityReference.Translate():



$SID = [System.Security.Principal.SecurityIdentifier]"S-1-5-21-436246-18267386-368368356-356777"

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value


or, in this case:



$SID = ($UserHive -split '\')[-1] -as [System.Security.Principal.SecurityIdentifier]

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value





share|improve this answer


























  • You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

    – eryksun
    Jan 3 at 22:06











  • "RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

    – eryksun
    Jan 3 at 22:06
















1














If you are a member of the local Administrators group you can simply go through all the user registry hives and search for the Environment variables there:



$AllUserHives = Get-ChildItem Registry::HKEY_USERS |Where Name -like "HKEY_USERSS-1-5-21*[0-9]"

foreach($UserHive in $AllUserHives){

  if(Get-ItemProperty -Path "$UserHiveEnvironment" -Name PYTH_HOME_LOG -EA SilentlyContinue){

    # User is overriding %PYTH_HOME_LOG%

  }

}


You can grab the corresponding user name either from the Volatile Environment registry subtree by searching for the USERNAME env variable, or you can use IdentityReference.Translate():



$SID = [System.Security.Principal.SecurityIdentifier]"S-1-5-21-436246-18267386-368368356-356777"

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value


or, in this case:



$SID = ($UserHive -split '\')[-1] -as [System.Security.Principal.SecurityIdentifier]

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value





share|improve this answer


























  • You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

    – eryksun
    Jan 3 at 22:06











  • "RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

    – eryksun
    Jan 3 at 22:06














1












1








1







If you are a member of the local Administrators group you can simply go through all the user registry hives and search for the Environment variables there:



$AllUserHives = Get-ChildItem Registry::HKEY_USERS |Where Name -like "HKEY_USERSS-1-5-21*[0-9]"

foreach($UserHive in $AllUserHives){

  if(Get-ItemProperty -Path "$UserHiveEnvironment" -Name PYTH_HOME_LOG -EA SilentlyContinue){

    # User is overriding %PYTH_HOME_LOG%

  }

}


You can grab the corresponding user name either from the Volatile Environment registry subtree by searching for the USERNAME env variable, or you can use IdentityReference.Translate():



$SID = [System.Security.Principal.SecurityIdentifier]"S-1-5-21-436246-18267386-368368356-356777"

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value


or, in this case:



$SID = ($UserHive -split '\')[-1] -as [System.Security.Principal.SecurityIdentifier]

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value





share|improve this answer















If you are a member of the local Administrators group you can simply go through all the user registry hives and search for the Environment variables there:



$AllUserHives = Get-ChildItem Registry::HKEY_USERS |Where Name -like "HKEY_USERSS-1-5-21*[0-9]"

foreach($UserHive in $AllUserHives){

  if(Get-ItemProperty -Path "$UserHiveEnvironment" -Name PYTH_HOME_LOG -EA SilentlyContinue){

    # User is overriding %PYTH_HOME_LOG%

  }

}


You can grab the corresponding user name either from the Volatile Environment registry subtree by searching for the USERNAME env variable, or you can use IdentityReference.Translate():



$SID = [System.Security.Principal.SecurityIdentifier]"S-1-5-21-436246-18267386-368368356-356777"

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value


or, in this case:



$SID = ($UserHive -split '\')[-1] -as [System.Security.Principal.SecurityIdentifier]

$Username = $SID.Translate([System.Security.Principal.NTAccount]).Value






share|improve this answer














share|improve this answer



share|improve this answer








edited Jan 3 at 21:15

























answered Jan 3 at 17:07









Mathias R. JessenMathias R. Jessen

59.2k564109




59.2k564109













  • You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

    – eryksun
    Jan 3 at 22:06











  • "RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

    – eryksun
    Jan 3 at 22:06



















  • You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

    – eryksun
    Jan 3 at 22:06











  • "RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

    – eryksun
    Jan 3 at 22:06

















You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

– eryksun
Jan 3 at 22:06





You're not loading the user profile, so this only checks accounts that are logged on with the profile loaded.

– eryksun
Jan 3 at 22:06













"RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

– eryksun
Jan 3 at 22:06





"RegistryUser" (predefined handle HKEY_USERS) is a dynamic key where user profile hives are loaded (e.g. "%USERPROFILE%NTUSER.DAT" and "%LOCALAPPDATA%MicrosoftWindowsUsrClass.dat"). The profile gets loaded via LoadUserProfile, which makes an RPC to the User Profile service. The caller must have the backup and restore admin privileges. The service gets the account's SID string and looks up the "ProfileImagePath" in "SoftwareMicrosoftWindows NTCurrentVersionProfileList" relative to "RegistryMachine" (predefined handle HKEY_LOCAL_MACHINE), and loads the keys via NtLoadKeyEx.

– eryksun
Jan 3 at 22:06




















draft saved

draft discarded




















































Thanks for contributing an answer to Stack Overflow!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54023494%2faccess-a-specific-user-environment-variable-on-windows-server%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Monofisismo

Image
Monofisismo (do grego: monos - "único, singular" e physis - "natureza") é o ponto de vista cristológico que defende que, depois da união do divino e do humano na encarnação histórica, Jesus Cristo, como encarnação do Filho ou Verbo ( Logos ) de Deus, teria apenas uma única "natureza", a divina, e não uma síntese de ambas. O monofisismo é contraposto pelo diofisismo (ou "diafisismo"), que defende que Jesus preservou em si as duas naturezas. Historicamente, o monofisismo se refere primordialmente à posição dos que (especialmente no Egito e, em menor grau, na Síria) rejeitaram as decisões do Concílio de Calcedônia em 451 (o quarto concílio ecumênico). Os membros mais moderados entre eles, porém, defendem a teologia "miafisita", que se tornou a oficial para as Igrejas Ortodoxas Orientais. Muitos ortodoxos orientais, porém, rejeitam essa classificação, mesmo como um termo genérico, mas ele é amplamente utilizado na literatura históri...
Read more

Angular Downloading a file using contenturl with Basic Authentication

Image
0 I have a contentUrl when user clicks on that,file should be downloaded. If I try to browse the contentUrl in the browser it asks for Userid and password.I believe this is Basic Authentication.I dont want user to enter UserId and Password so I am passing it Authorization(Please see below code). Url looks some thing like this: http://XXX.XXX.XX.XXX:8080/flowable-rest/service/runtime/tasks/90875/attachments/90555/content let username : string = 'admin'; let pwd : string = 'test'; let headers = new Headers(); headers.set('Accept', 'text/json'); headers.append('Content-Type', 'application/json'); headers.set('Access-Control-Allow-Origin', '*'); headers.set('Access-Control-Allow-Methods','POST, GET, OPTIONS, PUT, DELETE'); head...
Read more

Olmecas

Image
Monumento 1, uma das quatro cabeças colossais encontradas em La Venta, com altura aproximada de 3 metros Olmecas é a designação do povo e da civilização que estiveram na origem da antiga cultura pré-colombiana da Mesoamérica e que se desenvolveram nas regiões tropicais do centro-sul do atual México durante o pré-clássico, próximo de onde hoje estão localizados os estados mexicanos de Veracruz e Tabasco, no Istmo de Tehuantepec, numa zona designada área nuclear olmeca. A cultura olmeca floresceu nesta região aproximadamente entre 1500 e 400 a.C., [ 1 ] e crê-se que tenha sido a civilização-mãe de todas as civilizações mesoamericanas que se desenvolveram posteriormente. [ 2 ] No entanto, desconhece-se a sua exacta filiação étnica, ainda que existam numerosas hipóteses colocadas para tentar resolver esta questão. O etnónimo olmeca foi cunhado pelos arqueólogos do século XX, e não devem confundir-se com os muito posteriores olmecas-xicalancas que ocuparam vários locais do México...
Read more