/build/static/layout/Breadcrumb_cap_w.png

Does secedit command can be runned using non admin accounts

Hi,

I am currently working with an application which is msi. The client has requested to add secedit command to configure an security settings. But when i try to run the script with admin account it works but when i try to run with standard users it si not working. Now my doubt is does secedit account requires admin rights for installation .If so what should i do to add to execute the same script in msi?

Kind Regards,
Yuvi
Asked 13 years ago 3529 views
0 Comments   [ + ] Show comments

Answers (2)

Posted by: cygan 13 years ago
Fifth Degree Brown Belt
0
in application packaging terms hope you do understand what "locked - down environment" means

admin user - admin rights
standard users - restricted rights in a locked down environment

you just need to run your secedit script as a custom action in your msi

immediate execute
after install finalize
Not Installed as the condition
type 34 custom action
Posted by: AngelD 13 years ago
Red Belt
0
A deferred Custom Action must execute between the InstallInitialize and the InstallFinalize action.
For Vista and above you must add the msidbCustomActionTypeNoImpersonate bit (In-Script Execution Options) to the CustomAction.Type column field due to UAC, this is of course recommended for all deferred custom actions for any operating systems.
Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.
 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ