...
- As far as Arellia is concerned, leave UAC enabled. This gives an added level of protection to the system.
- With Arellia ACS you can create Application Initiation Policy(s) which allow for the processing of security context actions before an application has been launched. This allows for the bypass of Windows UAC prompts where necessary but still allows for UAC protection in all other cases. For all items deemed ok for users, ACS policies and filters can be enabled/created which will prevent the UAC prompts from occurring and thus frustrating the user community into either shutting off UAC themselves or complaining about it to management as a productivity inhibitor.
- An Application Initiation Policy is similar to an Application Control Policy but it only allows for the selection of Process Rights actions.
Here is a link about the Application Initiation Policy - http://portal.arellia.com/wiki/display/ACSDOC/Application + Initiation + Policy