Solved

How to lock-down workstations that require local admin rights for main office sql app?

Posted on 2015-02-02
7
332 Views
Last Modified: 2015-02-27
we run an application that requires local administrator rights.  It's a sql based application.  Our server is 2012 Standard.  The software vendor who supports this application is no help with this problem.  How do we lock-down the workstations and still allow this sql-base program to work?

Not only does the program have to run in compatibility mode- "run as administrator, the local user must be admin rights

the workstations are windows 7
0
Comment
Question by:geek3
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 55

Assisted Solution

by:McKnife
McKnife earned 250 total points
ID: 40584684
Only third party applications can help you, try powerbroker by beyondtrust.
0
 
LVL 5

Accepted Solution

by:
R. Toby Richards earned 250 total points
ID: 40586429
I can usually get around this problem by granting "Users" modify rights to the program's folder under the "Program Files" directory and granting "Users" full control rights to the program's registry entries under HKLM\Software. If that doesn't do it, then use Procmon to discover what files and/or registry entries show "Access Denied" when you run the program as a regular user.
0
 

Author Comment

by:geek3
ID: 40589221
Thank you, I'll try and get back with what worked.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 59

Expert Comment

by:LeeTutor
ID: 40634978
I've requested that this question be deleted for the following reason:

Not enough information to confirm an answer.
0
 
LVL 55

Expert Comment

by:McKnife
ID: 40634979
Since one or the other would solve it, I vote for a split.
Either it can be overcome by adjusting access rights, or it can't, and then powerbroker is the state of the art solution.
0
 

Author Closing Comment

by:geek3
ID: 40635440
I decided to split the points between the two answers; I consider the best answer the non-third-party solution, however there probably are situations where you would have to use a piece of software (  to purchase PowerBroker you have to purchase a minimum of 20 users @$37.00)
thanks to all
geek3
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
A quick guide on how to use Group Policy to create a custom power plan and set it active on Windows 7.
This Micro Tutorial will teach you how to change your appearance and customize your Windows 7 interface to your unique preference. This will be demonstrated using Windows 7 operating system.
This Micro Tutorial will give you a basic overview of Windows DVD Burner through its features and interface. This will be demonstrated using Windows 7 operating system.

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question