How to elevate a bluetooth device uninstallation for a standard user

Owned by Anonymous
Last updated: Oct 14, 2015 by Max Pinion (Deactivated)
3 min read

A Standard User can remove a bluetooth device when the device is connected but cannot remove the device when the device is disconnected from the machine.

Warning

Application Control Agent version must be 7.1.1692 or higher.

Create a Commandline filter

Clone an Add Administrative Rights policy

Create a new elevation policy

Create a Commandline filter

Back to top

Create a new Commandline filter with a Partial Match and the Command Line Set as:

/AdminProxy:{D88EC52B-8D57-49e1-9EB3-4D267D68A2AE}

Clone an Add Administrative Rights action

Back to top

Clone an Add Administrative Rights actionby doing the following steps:

  1. In the Arellia Security Manager, click the Policies tab.
  2. In the file library in the left pane, navigate to Policies > Arellia Solutions > Application Control > Actions > Process Rights.
  3. Right-click Add Administrative Rights - Unrestricted and then click Clone.
  4. In the Clone Item dialog box, enter the name Add Administrative Bluetooth Rights - Unrestricted bluetooth device.
  5. Click OK.



  6. Click the link to the right of Windows privileges.
  7. In the Select Resources dialog box, highlight Act as part of the operating system, Load and unload device drivers, and Take ownership of files or other objects. and then click the Select button.



  8. Click OK.
  9. Select the Use user's unrestricted token check box.
  10. Click Save.

Create a new Elevation Policy

Back to top

To create a new Elevation Policy, do the following steps:

  1. In the Arellia Security Manager, click the Policies tab.
  2. In the file library in the left pane, navigate to Arellia Solutions > Application Control > Policies.
  3. Right-click the Policies folder and click New > Elevate Process Rights.
  4. In the Create Item dialog box, enter the name BluetoothElevate. 
  5. Click OK.



  6. In the right pane next to Applications, click Select Applications to Control.
  7. In the Select Items dialog box, search for COM in the search bar under Available Items.
  8. Highlight COM Elevation Host Utility and click the Select icon.
  9. Click OK.



  10. Under Conditions next to Include only click the Select any mandatory filters that these applications must match link. 
  11. In the Select Items dialog box, select the bluetooth filter you created previously in the process in the search bar under Available Items.
  12. Click OK.
  13. Change the Application action to the new ction to the new Add Administrator Rights - Unrestricted with Privileges (attachment #4)
  14. Click the Application Actions tab.
  15. Next to Applications, click Application Action and then click the Add Administrative Rights link.
  16. In the Select Items dialog box, highlight Add Administrative Rights - Unrestricted (Bluetooth Privileges) and click the Select icon.
  17. Next to Child applications click Same as parent.
  18. Click Save.