Allow Normal Users Temporary Access to Local Administrator Tasks

's Computer Specifications

Is there a way to allow a normal Active Directory user running Windows XP to
install and run an application that requires Admin Rights.

's Computer Specifications

Brian,

installing applications is tricky as most setup applications check whether
the user is a member of the local administrators group and often require OS
privileges not held by regular users. Running applications that at runtime
requires elevated privileges is a bit easier, though not always possible.
You can often make applications run by running tools like filemon and regmon
(both free from www.sysinternals.com ) but at the expense of reduced
security: making portions of the registry or file system writable to users
makes them also writable to malware.

One alternative, not free, is our own NeoExec for Active Directory which
allows you to define per-application policies and elevate or remove
privielges as needed.

cheers,

--
Marco [ www.neovalens.com ]
--

"Brian Gregory" <Brian (E-Mail Removed)> wrote in message
news:6475502C-77BF-4E0B-98C5-(E-Mail Removed)...
> Is there a way to allow a normal Active Directory user running Windows XP
> to
> install and run an application that requires Admin Rights.

's Computer Specifications

Where can I find a demo download of NexExec Professional

"Marco" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> Brian,
>
> installing applications is tricky as most setup applications check whether
> the user is a member of the local administrators group and often require
OS
> privileges not held by regular users. Running applications that at runtime
> requires elevated privileges is a bit easier, though not always possible.
> You can often make applications run by running tools like filemon and
regmon
> (both free from www.sysinternals.com ) but at the expense of reduced
> security: making portions of the registry or file system writable to users
> makes them also writable to malware.
>
> One alternative, not free, is our own NeoExec for Active Directory which
> allows you to define per-application policies and elevate or remove
> privielges as needed.
>
> cheers,
>
>
> --
> Marco [ www.neovalens.com ]
> --
>
>
>
> "Brian Gregory" <Brian (E-Mail Removed)> wrote in message
> news:6475502C-77BF-4E0B-98C5-(E-Mail Removed)...
> > Is there a way to allow a normal Active Directory user running Windows
XP
> > to
> > install and run an application that requires Admin Rights.
>
>

Thread Tools
Show Printable Version Email this Page
Rate This Thread
Rate This Thread:

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Removing local users from local administrator group	Apollo	Microsoft Windows 2000 Group Policy	6	13th Feb 2008 06:56 AM
Domain users = local administrator	=?Utf-8?B?Tmljb2xhcyBIZXllcg==?=	Microsoft Windows 2000 Security	1	16th Mar 2005 03:18 PM
Users can't print unless logged in as Administrator (Local)		Microsoft Windows 2000 Security	3	21st Sep 2004 03:28 PM
user in local administrator group doesn't have administrator access	J.T.	Windows XP Security	3	24th Oct 2003 03:29 PM
Re: Administrator rights for users on local machine only	Walter Schulz	Windows XP Security	0	12th Jul 2003 03:17 PM