Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: How to elevate integrity for a guest account


28 Apr 2010   #1

Windows 7
 
 
How to elevate integrity for a guest account

Hi,

We have an utility in our application that makes use of ActiveX and prints the document user needs from our repository in the background without user intervention. For this we used to download the document to the Temp folder, which we got using the windows API gettemppath(), and after this, the print is fired from this location.

This utility works fine on Windows XP. But fails on Windows Vista and Windows 7. Found out that this is because of the protected mode feature present in windows vista and higher OS. True to this, the utility works fine if i add our site to the trusted sites list, or run the application as an administrator or when i disable the protected mode.

We don't expect our users to be able to do any of the above changes themselves. so, we are investigating on finding a way to make this work without straining our users. we are OK with changing the code too.

I understand that there is a way by which i can elevate the event by using a broker process. but, i sense that it needs admin privileges for that to happen. Is there a way by which i can ensure that a guest user ( i.e, Non Admin ) can use the utility without fail ? code change or otherwise !

I would be really thankful to anyone who can help me out with this. Please let me know if anymore detail is needed

Thanks

My System SpecsSystem Spec
.

30 Apr 2010   #2

Windows 7 Ultimate 64-bit
 
 

The first thing I would look into [and personally my expertise in this area is very slim] group policies for the user(s) in question. Using Group Policies, you can set very specifically what the user can and cannot do, so you don't have to put them in a generalized "guest" account.

Unfortunately I am not that great in that area and someone else may need to step in from here if they know more.
My System SpecsSystem Spec
Reply

 How to elevate integrity for a guest account




Thread Tools



Similar help and support threads for2: How to elevate integrity for a guest account
Thread Forum
Is W7 Guest Account the Safest Account to Use On the Web? System Security
Set Guest Account Similar As Primary Account,(except on Several Files) General Discussion
Need To Disable Guest Account On Admin Account General Discussion
Cannot Elevate Privileges Temporarily on Standard User Account General Discussion
Solved Guest account General Discussion
My Administrator account turned to Guest account General Discussion
Cannot log onto guest account General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 01:43 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33