WhoAmI Output Examples

WhoAmI Topics | Previous

WhoAmI Output Examples

For information on WhoAmI syntax, at the command prompt type:

whoami /help

[c:\]WHOAMI

DCHRISROB\chrisrob

[c:\]WHOAMI /ALL

[User] = "DCHRISROB\chrisrob" S-1-5-21-1099181476-344607857-928725530-1002

[Group 1] = "DCHRISROB\Domain Admins" S-1-5-21-1099181476-344607857-928725530-512

[Group 2] = "Everyone" S-1-1-0

[Group 3] = "DCHRISROB\RK Source" S-1-5-21-1099181476-344607857-928725530-1010

[Group 4] = "BUILTIN\Administrators" S-1-5-32-544

[Group 5] = "BUILTIN\Users" S-1-5-32-545

[Group 6] = "BUILTIN\Guests" S-1-5-32-546

[Group 7] = "DCHRISROB\Domain Users" S-1-5-21-1099181476-344607857-928725530-513

[Group 8] = "DCHRISROB\Domain Guests" S-1-5-21-1099181476-344607857-928725530-514

[Group 9] = "LOCAL" S-1-2-0

[Group 10] = "NT AUTHORITY\INTERACTIVE" S-1-5-4

[Group 11] = "NT AUTHORITY\Authenticated Users" S-1-5-11

[Login ID] = S-1-5-5-0-6552

(O) SeTcbPrivilege = Act as part of the operating system

(X) SeChangeNotifyPrivilege = Bypass traverse checking

(O) SeSecurityPrivilege = Manage auditing and security log

(O) SeBackupPrivilege = Back up files and directories

(O) SeRestorePrivilege = Restore files and directories

(O) SeSystemtimePrivilege = Change the system time

(O) SeShutdownPrivilege = Shut down the system

(O) SeRemoteShutdownPrivilege = Force shutdown from a remote system

(O) SeTakeOwnershipPrivilege = Take ownership of files or other objects

(O) SeDebugPrivilege = Debug programs

(O) SeSystemEnvironmentPrivilege = Modify firmware environment values

(O) SeSystemProfilePrivilege = Profile system performance

(O) SeProfileSingleProcessPrivilege = Profile single process

(O) SeIncreaseBasePriorityPrivilege = Increase scheduling priority

(O) SeLoadDriverPrivilege = Load and unload device drivers

(O) SeCreatePagefilePrivilege = Create a pagefile

(O) SeIncreaseQuotaPrivilege = Increase quotas

[c:\]WHOAMI /USER /SID

[User] = "DCHRISROB\chrisrob" S-1-5-21-1099181476-344607857-928725530-1002

[c:\]WHOAMI /GROUPS

[Group 1] = "DCHRISROB\Domain Admins"

[Group 2] = "Everyone"

[Group 3] = "DCHRISROB\RK Source"

[Group 4] = "BUILTIN\Administrators"

[Group 5] = "BUILTIN\Users"

[Group 6] = "BUILTIN\Guests"

[Group 7] = "DCHRISROB\Domain Users"

[Group 8] = "DCHRISROB\Domain Guests"

[Group 9] = "LOCAL"

[Group 10] = "NT AUTHORITY\INTERACTIVE"

[Group 11] = "NT AUTHORITY\Authenticated Users"

[c:\]WHOAMI /GROUPS /NOVERBOSE

DCHRISROB\Domain Admins

Everyone

DCHRISROB\RK Source

BUILTIN\Administrators

BUILTIN\Users

BUILTIN\Guests

DCHRISROB\Domain Users

DCHRISROB\Domain Guests

LOCAL

NT AUTHORITY\INTERACTIVE

NT AUTHORITY\Authenticated Users

[c:\]WHOAMI /USER /GROUPS /SID

[User] = "DCHRISROB\chrisrob" S-1-5-21-1099181476-344607857-928725530-1002

[Group 1] = "DCHRISROB\Domain Admins" S-1-5-21-1099181476-344607857-928725530-512

[Group 2] = "Everyone" S-1-1-0

[Group 3] = "DCHRISROB\RK Source" S-1-5-21-1099181476-344607857-928725530-1010

[Group 4] = "BUILTIN\Administrators" S-1-5-32-544

[Group 5] = "BUILTIN\Users" S-1-5-32-545

[Group 6] = "BUILTIN\Guests" S-1-5-32-546

[Group 7] = "DCHRISROB\Domain Users" S-1-5-21-1099181476-344607857-928725530-513

[Group 8] = "DCHRISROB\Domain Guests" S-1-5-21-1099181476-344607857-928725530-514

[Group 9] = "LOCAL" S-1-2-0

[Group 10] = "NT AUTHORITY\INTERACTIVE" S-1-5-4

[Group 11] = "NT AUTHORITY\Authenticated Users" S-1-5-11

[c:\]WHOAMI /PRIV /NOVERBOSE

SeTcbPrivilege

SeChangeNotifyPrivilege

SeSecurityPrivilege

SeBackupPrivilege

SeRestorePrivilege

SeSystemtimePrivilege

SeShutdownPrivilege

SeRemoteShutdownPrivilege

SeTakeOwnershipPrivilege

SeDebugPrivilege

SeSystemEnvironmentPrivilege

SeSystemProfilePrivilege

SeProfileSingleProcessPrivilege

SeIncreaseBasePriorityPrivilege

SeLoadDriverPrivilege

SeCreatePagefilePrivilege

SeIncreaseQuotaPrivilege

[c:\]WHOAMI /USER /GROUPS /PRIV

[User] = "DCHRISROB\chrisrob"

[Group 1] = "DCHRISROB\Domain Admins"

[Group 2] = "Everyone"

[Group 3] = "DCHRISROB\RK Source"

[Group 4] = "BUILTIN\Administrators"

[Group 5] = "BUILTIN\Users"

[Group 6] = "BUILTIN\Guests"

[Group 7] = "DCHRISROB\Domain Users"

[Group 8] = "DCHRISROB\Domain Guests"

[Group 9] = "LOCAL"

[Group 10] = "NT AUTHORITY\INTERACTIVE"

[Group 11] = "NT AUTHORITY\Authenticated Users"

(O) SeTcbPrivilege = Act as part of the operating system

(X) SeChangeNotifyPrivilege = Bypass traverse checking

(O) SeSecurityPrivilege = Manage auditing and security log

(O) SeBackupPrivilege = Back up files and directories

(O) SeRestorePrivilege = Restore files and directories

(O) SeSystemtimePrivilege = Change the system time

(O) SeShutdownPrivilege = Shut down the system

(O) SeRemoteShutdownPrivilege = Force shutdown from a remote system

(O) SeTakeOwnershipPrivilege = Take ownership of files or other objects

(O) SeDebugPrivilege = Debug programs

(O) SeSystemEnvironmentPrivilege = Modify firmware environment values

(O) SeSystemProfilePrivilege = Profile system performance

(O) SeProfileSingleProcessPrivilege = Profile single process

(O) SeIncreaseBasePriorityPrivilege = Increase scheduling priority

(O) SeLoadDriverPrivilege = Load and unload device drivers

(O) SeCreatePagefilePrivilege = Create a pagefile

(O) SeIncreaseQuotaPrivilege = Increase quotas