Security has been a buzz word in modern computing and especially in Windows operating system, which its relatively open environment made Windows prone to accidental deletion, corruption, virus infection and malicious attacks of system files. To protect the system files, Windows assigns TrustedInstaller as the only owner with full control permissions, with all other administrator or user accounts including SYSTEM and CREATOR OWNER been granted rights with only read, execute or traverse permissions only.

So if you want to perform a hack on the system files, or to rename, edit, and delete the system files, you must first take ownership and get full control access permissions for your user account or group.

In addition, if you plug in a hard disk drive installed on another system, the permissions may get messed up too even if you are having the same user account name in the same group, as the hashed identifier may be different on different computer. In such cases, the ownership and the permissions of the drive and its files and folders have to be changed too.

How to Take Ownership and Grant Full Control Permissions in Windows

  1. In Windows Explorer, navigate and locate the file or folder which you want to take ownership and has full read write control access permission on.
  2. Right click on the file or folder (directory), and click Properties.

    Properties

  3. On the File/Folder Properties dialog box, go to Security tab.
  4. Click on Advanced button.

    Advanced Security Properties

  5. In “Advanced Security Settings” dialog window, click on Owner tab, which will indicates the current owner as TrustedInstaller or some other user account.
  6. Click on the Edit button.

    Change Owner of File or Folder

    Note: Press Continue or enter user name and password of administrator account if User Account Control prompts for permission to continue.

  7. Another “Advanced Security Settings” dialog will appear. Select to highlight the user account or group (for example, Administrators) in the Change owner to box that you want to assign as the owner for the object.

    Change Ownership

    If the user or group that you want to select does not appear automatically, click on “Other users or groups” button to locate it.

  8. Click OK to make the change.

    Ownership Change Warning

    If you’re prompted with notice that you have just taken ownership of this object, and need to close and reopen this object’s properties before you can view and change permissions dialog box, click OK.

  9. Click OK to exit from all Properties dialog boxes.
  10. Repeat step 1 to step 3 to open the object’s Properties dialog box again.
  11. Under “Security” tab, click on Edit button to change permissions.

    Change Permissions

    Note: Press Continue or enter user name and password of administrator account if User Account Control prompts for permission to continue.

  12. Click and highlight the Administrators or the user who wants the permissions on the object be changed in the “Group or user names” box.

    If the user ID or group that you want to manage the permissions for the object doesn’t exist, click on “Add” to manually enter or search for the user account.

  13. In the Permissions for <user or group account> box, click on Full Control check box under the Allow to assign full read-write access control permissions to the user or group.

    When selecting Full Control, all checkboxes for “Allow” column will automatically selected except “Special Permissions”. You can select any other permissions that you want to grant by selecting other check boxes as desire.

  14. Click OK when done to close off all object’s Properties dialog boxes.
  15. The file or folder now belongs to you with full control permissions.

Alternative 1: Take Ownership and Gain Read-Write Permissions via Command Prompt

It’s also possible to issue commands in Command Prompt to take ownership and assign full control permissions:

  1. Open an Command Prompt as Administrator.
  2. Issue and execute (press Enter) the following commands:

    For Files:

    takeown /f <file name> /d y
    icacls<file name> /grant administrators:F

    For Folders or Directories (will perform action recursively):

    takeown /f <directory name> /r /d y
    icacls <directory name> /grant administrators:F /t

    Replace <file name> or <directory name> with actual file name or folder name, with full path to the file if you’re not changing directory to the same folder with the file or folder.

    The first “takeown” command will take ownership of the file or folder specified, and the second “icacls” command will grant full control permissions to administrators user group. Thus, if you’re assign to other user account or group, change “administrators” to the desired user name or group name accordingly.

    Note that when using command for folders, to command will run recursively. To prevent the task been perform recursively, remove the “/r” (from takeown) and “/t” (from icacls) switch.

Alternative 2: Take Ownership and Assign Full Control Permissions with Batch Script

A batch script has been created which based on command-line commands above, saving users the need to remember and type long commands.

Download TakeControlOf.zip (registration on MDL Forums required).

TakeControlOf.cmd makes use of takeown (takes ownership of a file or directory) and icacls (sets new ACLs on a files or directory) respectively to set owner and grant Full Control privilege to Administrators group, recursively (if you specify a folder). You need to manually edit the script if you decide to use another user or group account, or remove the “/r” (from takeown) and “/t” (from icacls) parameter for non-recursive usage.

To use the batch script, simply open an elevated Command Prompt as Administrator, and execute the command with the following syntax:

TakeControlOf <x:\full\path\to\file or directory name>

For example,

TakeControlOf C:\Windows\Test_File.exe
TakeControlOf C:\Test_Directory

If you’re not in the directory which TakeControlOf.cmd batch script file is saved, you need to enter the full path to the batch file too.

Alternative 3: Add Take Control and Ownership Function to Right Click Context Menu

This is probably easiest method to take ownership and full control of any file or folder, by just right click and select a command in the right click menu. However, users first need to add the Take Ownership and Grant Full Control function to the right click menu. To do so, save the following code into a text file, and name it with a file name with .reg extension.

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\*\shell\runas] @="Take Ownership"
"NoWorkingDirectory"=""

[HKEY_CLASSES_ROOT\*\shell\runas\command] @="cmd.exe /c takeown /f \"%1\" && icacls \"%1\" /grant administrators:F"
"IsolatedCommand"="cmd.exe /c takeown /f \"%1\" && icacls \"%1\" /grant administrators:F"

[HKEY_CLASSES_ROOT\Directory\shell\runas] @="Take Ownership"
"NoWorkingDirectory"=""

[HKEY_CLASSES_ROOT\Directory\shell\runas\command] @="cmd.exe /c takeown /f \"%1\" /r /d y && icacls \"%1\" /grant administrators:F /t"
"IsolatedCommand"="cmd.exe /c takeown /f \"%1\" /r /d y && icacls \"%1\" /grant administrators:F /t"

Or, just download the prepared registry registration file: TakeOwnership.zip

Run the .reg file (InstallTakeOwnership.reg from downloaded ZIP) to merge and install the necessary registry keys. A RemoveTakeOwnership.reg is available for people who wants to remove the right click menu items in future.

To take ownership and gain full control permissions, just right click on the file or folder, and click on Take Ownership. Again, for folders, the command will work recursively.

All the tricks above should works in Windows Vista, Windows 7, Windows Server 2008, Windows Server 2008 R2, Windows 8 and even future versions of Windows OS.

Related Posts

  • Morish Marcus

    What do I do if I don’t have an owner tab?

  • Dzoavits

    it doesn’t work for me. It says access denied.

  • Rob

    Doesn’t work 🙁 command prompt says “Files is invalid” when I type Program Files

  • V6

    thank you so much. you have no idea how grateful i am.

  • V6

    perfect

  • guest

    thank you!!!!

  • Alex

    didn’t work for me. I’m having trouble renaming the directory SoftwareDistribution
    any thoughts?

  • Berger

    sorry if this question is stupid.
    But i tried this, and it won’t work. I can’t do step 13 because i don’t even have access to those check boxes, even though i am a administrator. Additionally i don’t have to click on “ok” in step 11. I mean this access request doesn’t even pop up on my computer. Can you help me?

  • asgard

    Works.

    Thank you very much!

  • gilad

    thank you very much!!

    i used the zipped program (takeOnership) and it was so helpfull !

    gilad from Israel

  • Jayrodathome

    I use an app called “take ownership” Google it. It adds an option to your right click menu called “take ownership” you can use it to right click folders or files. Seems to work pretty slick. I use it when I reinstall windows and want to reclaim ownership of my steam hard drive. To take ownership of all of my steam files in my steam folder it takes about 15min to finish. I use about 500gb of space in my steam folder.

    Steam as in valve.

  • wschloss

    Hi, I am a fairly careful, knowledgeable user (Windows 7 64 bit). At least a couple times per month I run into file permission problems and solve them with takeown and icacls. This is a pain in the butt to say the least. I am THINKING (so far) about just taking ownership and granting myself full permission to the entire file system from c: on down. I am in the administrator group and I'm the only one who EVER uses this laptop (though I do have an extra account setup also in administrator group, in case I mess up my profile or credentials, or something like that. Any reasons I should NOT do this? Thanks

  • Pingback: Red Pill to Unlock Windows 8 Features in M3 (Pattern Logon, Metro UI, Task Manager, WebCam, Immersive Browser, PDF Reader) « My Digital Life()

  • J M Butt

    Probably very useful, but it is so hard to read with that stupid floating window that I'm not able to close or move.

    Can you please remove it, or allow it to be moved to somewhere unobtrusive.

    Thankyou

    • Jackie

      I agree with you. I been saying it since the website started using the thing. It follows you all the way down the article. It's hard to read the article. They should put it on the right side if they have to have the ad.

  • Pingback: Easier Way to Take Ownership and Grant Access Files or Directories in Vista « My Digital Life()

  • Pingback: How to Take Ownership and Grant Permissions in Windows Vista « My Digital Life()

  • Pingback: How to Take Ownership and Full Control Permissions of Files and Folders in Vista » Tip and Trick()

  • Pingback: Delete Undeletable Files in Windows Vista « My Digital Life()