Versions Compared

Old Version 11

changes.mady.by.user Max Pinion

Saved on

compared with

New Version 12

changes.mady.by.user Max Pinion

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Overriding UAC prompts is a two -step process:

  1. Create an Environment Variable Filter.
  2. Create an Environment Variable Action. this action is used to prevent the UAC prompt from showing
  3. Create a Blank Application Control Policy.
     

To create an Environment Variable Filter, do the following steps:

...

  1. In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Actions > Environment Variables.
  2. Right-click Environmental Variables and click New > Set Environment Variable Action.
    Image Added 
  3. Give the action a name, such as Clear UAC dialogIn the Create Item dialog, enter a Name and Description

    Image Added
     
  4. Set the Environmental Variable name to "Name to __APPINFO_RUNADMIN" and empty value
    Image RemovedSave the action (this action is used to prevent the UAC prompt from showing)
  5. Leave the Value field empty. 
  6. Click Save.

    Image Added

 

Next, create a Blank Application Control Policy by doing the following steps:

Navigate to Policies > Arellia Solutions > Application Control > Policies 

Right-click Policies and select New > Blank Application Control Policy 

Set the application target to the new UAC detected filter from step 2

Optionally you can change this so only certain applications or certain users will have the UAC prompt overridden


Image Modified

Under Exclude conditions add the Administrators filter to stop child processes (which inherit elevation) from triggering this policy

Click on the Application Actions tab and set the action to the Clear UAC dialog action from step 6

Also set the action to include one of the following:

Add Administrator Rights, and Justify Application Elevation Dialog (will behave like [READY] Self-Elevation)

Add Administrator Rights, and Justify Application Elevation (kill process) Dialog (will behave like [READY] Self-Elevation Without Adding Administrator Rights)

Add Administrator Rights, and Approval Request Form Action (will behave like [READY] Request Elevation)

Image Modified

Save the policy and update the policies on an endpoint. Test the policy by right-clicking Command Prompt and selecting Run as administrator
Image Modified

Instead of seeing UAC, you should see the custom message
Image Modified

The recorded response will then be sent to the Arellia Management Server where it can be reviewed by the help desk team.