Change Ownership of a File or Folder Using Takeown Command-Line Tool

Every file or folder in a NTFS volume has a owner. Certain system files are owned by TrustedInstaller, some by SYSTEM account and others by the “Administrators” group. If a user creates a file or folder, that user is usually the owner of the file or folder. The owner is the one who can assign permissions (Allow or Deny) to other users for that object.

If a user is not the owner of a file or folder, or the user has no permissions to access the file, he gets the “Access is Denied” error when accessing the object. If that user is an administrator, he can take ownership of the object using the file or folder’s Properties – Security tab, and assign himself the required permissions.

This post tells you how to take ownership of a file or folder, and assign required permissions for it using the command-line instead of GUI.


Windows includes a command-line tool named Takeown.exe which can be used from an Admin Command Prompt to change the ownership of a file or folder quickly. Here is how to take ownership of a file or folder and then assign permissions for an account using command-line.

Take Ownership using command-line takeown.exe

Taking ownership of a file

Open an elevated Command Prompt window. Use the following syntax to take ownership of a file:

TAKEOWN /F <filename>

Replace <filename> with the actual file name with full path.

If the operation was successful, you should see the following message:

"SUCCESS: The file (or folder): "filename" now owned by user "Computer Name\User name"."

Assign File Permissions

Then to grant Administrators Full Control permissions for the file, use ICACLS. Here is the syntax:

ICACLS <filename> /grant administrators:F

Another example: To assign Full Control permissions for the currently logged on user, use this command:

ICACLS <filename> /grant %username%:F

%username% represents the account name of the currently logged on user. ICacls accepts this variable directly.

Taking ownership of a folder

Use the following syntax:

takeown /f <foldername> /r /d y

Assign Folder Permissions

Then to assign the Administrators group Full Control Permissions for the folder, use this syntax:

icacls <foldername> /grant administrators:F /T

The /T parameter is added so that the operation is carried out through all the sub-directories and files within that folder.

Command-line help:

To know the complete usage information for Takeown.exe and ICacls.exe, run these commands from a Command Prompt window.

takeown /?
icacls /?

Easier Methods for Taking Ownership

Command Script

To further simplify the process of taking ownership, Tim Sneath of Microsoft provides a .CMD file (Windows Command Script) which takes ownership and assigns Full Control Permissions to Administrators for the directory which is passed as a parameter to the CMD file. For more information, read Tim’s post Secret #11: Deleting the Undeletable.

Add "Take Ownership" command to the right-click menu

This again uses the special runas verb in Windows Vista and higher, which I’ve covered earlier (REF RunAs).


Download takeown_context.reg and save to Desktop. Right-click on the file and choose Merge. Click Yes when asked for confirmation. This adds an extended command named Take Ownership in the context menu for files and directories. To access the command, you need to press and hold the SHIFT key, and then right-click on a file or folder.

^^ You can read more about the tweak in article Take Ownership of File or Folder via Right-click Context Menu in Windows.

Revert back the Ownership to TrustedInstaller

Sometimes, to fix an issue you may need to alter a data file such as XML or a registry key that’s owned by TrustedInstaller. For that, you need to take ownership of the file, folder or the registry key, alter the files or settings.

After modifying the files or settings, you need to revert the ownership back to TrustedInstaller, if TrustedInstaller was the previous or original owner. To set the ownership back to TrustedInstaller, use these steps:

The Windows Modules Installer service or TrustedInstaller enables installation, modification, and removal of Windows updates and optional components. By default, TrustedInstaller is also the owner of many critical registry keys and system files.

1. Right-click on a file or registry key, and click Permissions.

2. Click Advanced to open the Advanced Security Settings dialog.

3. Near “Owner:”, click Change.

4. In the Select User or Group dialog, type “NT SERVICE\TrustedInstaller” and press ENTER.

take ownership of a file

5. Click Apply, OK.

take ownership of a file

This changes the ownership of the object (file, folder or registry key) to TrustedInstaller or Windows Modules Installer.

Using Command-line to set TrustedInstaller as the owner of a file

From an elevated Command Prompt window, use the following command-line syntax:

icacls "path\filename" /setowner "NT Service\TrustedInstaller"


icacls "C:\Windows\PolicyDefinitions\WindowsStore.admx" /setowner "NT Service\TrustedInstaller"

TrustedInstaller now owns the file WindowsStore.admx. That’s it!

One small request: If you liked this post, please share this?

One "tiny" share from you would seriously help a lot with the growth of this blog. Some great suggestions:
  • Pin it!
  • Share it to your favorite blog + Facebook, Reddit
  • Tweet it!
So thank you so much for your support, my reader. It won't take more than 10 seconds of your time. The share buttons are right below. :)

About the author

Ramesh Srinivasan founded back in 2005. He is passionate about Microsoft technologies and he has been a Microsoft Most Valuable Professional (MVP) for 10 consecutive years from 2003 to 2012.

33 thoughts on “Change Ownership of a File or Folder Using Takeown Command-Line Tool”

  1. Maybe it was a German, who developed this tool:
    If you use /f folder /r /d j (for german: JA), then there`s no error!
    At least in my german win7 it works … 😉

    • It’s not a German tool but all system tolls and some other applications as well expect an answer in what is called the country-specific default language. If you change Windows to English as the default language, it’ll expect y|Y, if the language is set to German, it’s j|J.
      Only with programs that do their own key examination internally, are not affected by this.

    • I believe J in German is for “yes” because the German “yes” is spelled Ja which is pronounced “YAH” That ‘s my guess.

  2. I have at least one file for which this doesn’t work.
    “Take ownership” pretends that all is OK, but it is not possible to rename or delete file.

  3. Stupid question, but does the command-line method for Win7 grant permanent access to the file/folder? Or will that ownership be lost upon restart? Just curious, and also if that ownership can be reversed via similar syntax?

    -Thanks in advance

  4. If you took ownership and still can’t do anything to the file.. it is because you don’t have any permissions on it yet. It sounds stupid.. but you need to take ownership and also grant permissions using the ICACLS functions I used this method to recover files on a HDD from a crashed PC that had some corrupted OS files and thus was not bootable, this method was a life saver as setting permissions via mouse click forms was a huge pain in the ass spread across 1000 some files. I even had issues with permissions not rolling down the directories making me have to click on each file to change permissions.
    so thanks for posting this

  5. Needed access to pictures on hdd from dead laptop, connected via usb/hdd. Tried the above, but couldn’t get access, until I added /a to the command.

    Great tip otherwise

    • 2020/08/10 – what command did you add the /a to? I used the right-click-takeownership registry “hack” and it seemed to do just fine but still have no access to the files. Thanks.

  6. Thanks Ramesh!
    You just saved me from a very newbie user who screwed up things badly, this was part of the solution to get things back on track 🙂

  7. This seemd to work but I still get access denied on our SBS 2008 for some folders. I don’t know if this is because I am working over a remote link?


    ——————TO INSTALL—————
    Windows Registry Editor Version 5.00

    @="Take Ownership"

    @="cmd.exe /c takeown /f \"%1\" && icacls \"%1\" /grant administrators:F"
    "IsolatedCommand"="cmd.exe /c takeown /f \"%1\" && icacls \"%1\" /grant administrators:F"

    @="Take Ownership"

    @="cmd.exe /c takeown /f \"%1\" /r /d y && icacls \"%1\" /grant administrators:F /t"
    "IsolatedCommand"="cmd.exe /c takeown /f \"%1\" /r /d y && icacls \"%1\" /grant administrators:F /t"

    —————TO UNINSTALL—————

    Windows Registry Editor Version 5.00



  9. this is great and it work (Take Ownership), I was able to replace the bad DLL in SysWoW64.

    What would be the reverse command for giving bacjk ownership? I would like to right-click on the directory and re-apply the same settings as before. For security reason.


  10. Thanks so much! As part of recycling an old XP computer, I had backed it up with Acronis. I had then “wiped” the old XP drive. When I restored specific pictures from the old XP machine backup to a W7 attached USB hard drive, I did not have access. I thought I might have to resurrect the old XP machine. But the above “saved my bacon”!

  11. I had converted to Windows 8 from 7. I backed up my files from Windows 8 manually. I then reinstalled Windows 8 (because I hated it), then when I went to copy files back from the backup drive, I couldn’t because I did not have access. Your info helped me straighten out ownership and I can access them normally. Thanks.

  12. This has finally allowed me to delete Windows and other system files from my slave drive. Even after inputting all those commands myself by following other peoples’ guides and getting ownership, it would still ask for permission infinitely and never get deleted. I assume perhaps it’s the runas verb that did the trick (none of the other sites ever mentioned it.) Either way, thank you so much for this. I was about to resort to formatting the whole drive and go through tedious data transfers.

  13. Please could any one let me know the command to restore the owner ship to “Trusted installer” as a default owner. steps i performed is :

    1- TAKEOWN /R /F “C:\Program files” (SUCCESS & now i could see owner is SYSTEM)
    2 – cacls “c:\Program files” /T /E /G ProgFiles:W (ProgFiles is the local group) – SUCCESS

    Now here i tried below to restore the ownership:
    icacls “C:\Program files” /setowner “NT SERVICE\TrustedInstaller” /t /c
    ( It gave me message saying , successfully processed 897 files, failed processing 1134 files. (and still i could see SYSTEM as owner and not Trusted installed). PLEASE HELP ME

  14. Well, it seems very helpful, but for some reason it keeps saying “Access is denied” not sure how to get around this.

  15. Could you add in a right click take ownership option that uses the “trustedinstaller” as the default? That takeownership command works the best on my system, and that’d be a big help. if so, could you make its shortcut name appear as “TakeOwnership TI”


Leave a Comment