We're using a freeware component to provide polling: isPollCat.dll from www.pollcat.com
. The component is expected to run in a web page that is accessed via a user account, and that account is suppossed to be in the Administrator group. I set up an 'fcwpoll' account so that staff could access the poll admin page. But of course it is a security risk to have that account in the Administrators group.
As far as I can tell, the only reason that account needs to be an Administrator is so that it can read and write to the registry. How can we alter our security policy so that the 'fcwpoll' local account has that priviledge, but is not a member of the Administrator group?