Validates the security settings stored in a security template (.inf file).


Secedit /validate <configuration file name>


Parameter Description
Configuration file name Required.
Specifies the path and file name for the security template that will be validated.


Validating security templates can help you if one is corrupted or inappropriately set.

An invalid security template will not be applied.

The log file will not be updated.

In Windows Server 2008, Secedit /refreshpolicy has been replaced with gpupdate. For information on how to refresh security settings, see Gpupdate.


After a rollback is performed on a security template, you want to verify that the rollback inf file, secRBKcontoso.inf, is valid.

Secedit /validate secRBKcontoso.inf

Additional References