WinSecWiki > Security Settings > Local Policies > User Rights > User Rights In-Depth > Load and unload device drivers

Load and unload device drivers

AKA: SeLoadDriverPrivilege, Load and unload device drivers

Default assignment: Administrators

This highly sensitive right allows you to load executable code into kernel mode where device drivers run. Code running in kernel mode is fully trusted and not subject to normal Windows security restrictions. This right would allow malicious code to be installed into the systems Trusted Computing Base. For XP and Windows Server 2003 documentation is conflicting on whether this right is required to install drivers for plug and play devices. XP says it is required for PnP; 2003 says it does not apply to PnP. MS KB 219435 indicates you do not need this right as long as the PnP device “is supported hardware with a Plug and Play device ID to driver match.”

You may be able to install device drivers if you have this right but unless you are an administrator the change will not be persistent; you will have to reinstall the driver each time you connect the device.

Upcoming Webinars

Additional Resources

User Rights In-Depth

•	Access from Network
•	Act as OS
•	Add Workstations
•	Adjust Memory Quotas
•	Allow log on locally
•	Allow Terminal Services logon
•	Backup Files & Directories
•	Bypass traverse checking
•	Change the system time
•	Create a pagefile
•	Create a token object
•	Create global objects
•	Permanent shared objects
•	Debug programs
•	Deny network access
•	Deny logon as a batch job
•	Deny logon as a service
•	Deny logon locally
•	Deny Terminal Services logon
•	Enable trusted for delegation
•	Force shutdown remotely
•	Generate security audits
•	Impersonate a client
•	Increase scheduling priority
•	Load and unload device drivers
•	Lock pages in memory
•	Log on as a batch job
•	Log on as a service
•	Manage auditing and security log
•	Modify firmware values
•	Volume maintenance
•	Profile single process
•	Profile system performance
•	Remove from docking station
•	Replace process level token
•	Restore files and directories
•	Shut down the system
•	Sync directory service data
•	Take ownership of files & objects

User name:
Password:
	/ Forgot?
	Register

July 2024 Patch Tuesday	"Patch Tuesday - Four Zero Days " - sponsored by Supercharger for Windows Event Collection

Follow @randyfsmith

About | Newsletter | Contact

Ultimate IT Security is a division of Monterey Technology Group, Inc. ©2006-2024 Monterey Technology Group, Inc. All rights reserved.
Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk. For complaints, please contact abuse@ultimatewindowssecurity.com.