How do I configure an app to bypass UAC if I've disabled a user account's task scheduler privileges?
Go to solution
Solved by Tabs,
If you disable new task creation, task deletion but leave "prevent task run or end" at default, you can manually create the task yourself, as administrator, knowing that users can't change, add, or delete any.
Wouldn't that solve your problem? Is there some method of bypassing the GPO for modifying/creating/deleting tasks that warrants the extra lockdown implemented by preventing tasks from running or ending? Remember that this will also prevent things like chrome from updating since it uses a scheduled task for it.
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now