Our company recently had a need to do what you've described below as one
of our in-house developed software absolutely requires full local admin
privileges in order for it to run properly and getting the software
re-tooled would take too much time and $$...
So, to get around that, I've found a free program called MS Toolkit (you
should be able to google it) and utilize its configurations to limit
access for a specific XP Pro user account that was given full local
admin privileges, but locked down using the toolkit. You'll need to
manipulate it a little to allow the specific software in question, but
it wouldn't be hard at all.
Jeffrey Wei
-----Original Message-----
From: Dummy cerberus [mailto:dummycerberus@gmail.com]
Sent: Thursday, July 20, 2006 1:56 AM
To: security-basics@securityfocus.com
Subject: Executing app with admin privileges
Hello everyone,
I have come across with the following problem:
I work at the systems department, and we MUST host every stupid
application that is developed all over the organisation... most of the
times with no common criteria at all, neither with common sense.
Now, we have to install a client/server application, and it has been
developed in such a way, that the user who executes the client side,
has to have "local admin/advanced user" privileges on the desktop
where he is executing it...
There's no way to modify that application, so I wonder whether or not
there is a tool that could allow me to configure the system in such a
way that all the users could execute that application, without giving
them "local admin/advanced user" privileges for the whole system (only
for that stupid application).
I wonder if there's a way to acomplish that wether with AD policies or
third party tools (better if free ;-)
Thanks in advance, and best regards
------------------------------------------------------------------------
---
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence
in Information Security. Our program offers unparalleled Infosec
management
education and the case study affords you unmatched consulting
experience.
Using interactive e-Learning technology, you can earn this esteemed
degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---
---
[This E-mail scanned for Spam and Viruses by
http://www.innovationnetworks.ca]
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
