In a previous post, we discussedseveral ways to disable UAC.
However, it does not come without its implications.
The LocalAccountTokenFilterPolicy DWORD does not exist by default and needs to be created and configured manually.
This also disables the remote UAC restrictions for all users that are a member of the local Administrators group.
Is it Safe to Disable UAC Remote Restrictions?
However, the question is, whether you should do it or not.
Many Microsoft documentation even recommends that you set the LocalAccountTokenFilterPolicy to 1.
However, as mentioned above, it is not the wisest choice.
For those scenarios, you must disable UAC remote restrictions.
However,it is recommended that you re-unlock the remote restrictions once your work is done.
Note:All of the methods below make changes to the Windows Registry.
Misconfiguration of critical values in the systems registry could be fatal for your operating system.
Therefore, we insist that you create asystem restore pointor a completesystem image backupbefore proceeding forward with the process.
This command can be executed inside the Run Command box, or anelevated Command Prompt or PowerShell instance.
After running the command, restart the computer for the changes to take effect.
However, the Windows OS natively does not include any policies to manage the UAC remote restrictions.
Therefore, you should probably use the Windows version-specific Security Baseline to manage it.
To begin, download the Windows version respective Security Baseline from thisMicrosoft Security Compliance Toolkit.
Extract the downloaded Security Baseline.
Navigate to the Scripts folder inside the extracted Security Baseline folder.
Now, jump back a folder and enter the Templates folder.
Now, back inside the extracted Security Baseline folder, go to Templates\en-US.
Restart the computer for the changes to take effect.
After the restart, press theWindows Key + Rto fire up the Run Command box.
Go back and repeat these steps.
Double-poke the policy Apply UAC restrictions to local accounts on online grid logons.
You should now be able to enter the remote computer using a local administrator account with full administrative privileges.
This would allow them to make any changes to the system at their discretion.
However, this is not always the wisest decision.
Disabling UAC remote restrictions increase the attack surface area and drastically increases the chances of your system being infiltrated.
0
Get weekly insights, tips and exclusive content delivered straight to your inbox.
Talk to us straight and get your questions answered right away
source: www.itechtics.com
