server 2008r2 & r2 sp1 enviro with xenapp 6.5. UAC was disabled when all of the servers were set up. I have one program that started prompting for admin credentials when the user tried to open it about 4 months ago. I have another program that just started doing this a few days ago on a few servers (i have 15) and quickly spread to the rest within 2-3 days. No windows updates were performed, in fact the update and installer service is disabled. This program has worked fine in this enivronment for 3+ months, now it cannot be used at all. For the first program i had tried using a program called UAC controller, however this fix only works for 1 -2 days before it prompts for credentials again, and re-enabling the uac controller requires rebooting the servers. I read somewhere a while back that there may be a DACL list that is "updated" and causes this, then could potentially travel from server to server via the user's roaming profiles? I'm not sure where to look and cannot find any detailed info on how to chase it down. any help or suggestions would be great as this is starting to have a negative effect on my users.