Archive for October 2014

Windows Server 2008 R2 UAC

uacuser

What is UAC?

User Account Control (UAC) is a security component that enables users to perform common tasks as non-administrators (called standard users in Windows Vista), and as administrators without having to switch users, log off, or use Run As. User accounts that are members of the local Administrators group run most applications as a standard user. By separating user and administrator functions, UAC helps users move toward using standard user rights by default.

When an administrator logs on to a computer that is running Windows 7 or Windows Vista, the user is assigned two separate access tokens. Access tokens, which contain a user’s group membership and authorization and access control data, are used by the Windows operating system to control what resources and tasks the user can access. The access control model in earlier Windows operating systems did not include any failsafe checks to ensure that users truly wanted to perform a task that required their administrative access token. As a result, malicious software could install on users’ computers without notifying the users. (This is sometimes referred to as a “silent” installation.)

How can we change UAC Settings?

  • Control Panel

Click Start > Control Panel > User Accounts > Change User Account Control Settings

UAC1

You will then need to reboot

  • Using Local Security Policy

Click Start > Administrative Tools > Local Security Policy > Security Options > Scroll down to the User Account Control Settings

UAC2

There are 10 separate Settings

UAC3

UAC4

UAC5

UAC6

UAC7

UAC8

UAC9

UAC10

UAC11

UAC12

  • Group Policy

Click Start > Administrative Tools > Group Policy Management on a DC > Right click on Group Policy Objects and select New > Type GPO Name in > Find GPO and right click and select Edit

Navigate to Computer Configuration > Windows Settings > Security Settings > Security Options > Scroll down to User Account Control

UAC13

  •  Using the Registry

The registry keys are found in HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System. For information about each of the registry keys, see the link below

UAC14

http://technet.microsoft.com/en-gb/library/dd835564%28v=ws.10%29.aspx

Optimization WordPress Plugins & Solutions by W3 EDGE