[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-37050-2

Platform: win2012r2Date: (C)2015-10-08   (M)2022-10-10



Do not request alternate credentials Prevents users from submitting alternate logon credentials to install a program. This setting suppresses the 'Install Program As Other User' dialog box for local and network installations. This dialog box, which prompts the current user for the user name and password of an administrator, appears when users who are not administrators try to install programs locally on their computers. This setting allows administrators who have logged on as regular users to install programs without logging off and logging on again using their administrator credentials. Many programs can be installed only by an administrator. If you enable this setting and a user does not have sufficient permissions to install a program, the installation continues with the current user's logon credentials. As a result, the installation might fail, or it might complete but not include all features. Or, it might appear to complete successfully, but the installed program might not operate correctly. If you disable this setting or do not configure it, the 'Install Program As Other User' dialog box appears whenever users install programs locally on the computer. By default, users are not prompted for alternate logon credentials when installing programs from a network share. If enabled, this setting overrides the 'Request credentials for network installations' setting.


Parameter:


Technical Mechanism:

(1) GPO: User Configuration\Administrative Templates\Windows Components\File Explorer!Do not request alternate credentials (2) REG: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer!NoRunasInstallPrompt

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:27777
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:27777
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:27777
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:27777


OVAL    1
oval:org.secpod.oval:def:27777

© SecPod Technologies