Who running IE with "run as"?

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

The problem is that the users without administrator rights has to lauch
Internet Explorer with a specific URL with administrator rights.
Is this possible without the use of password. Because "Run As" is a nice
tool but the user know by that way to log on with as administrator user.
Tnx
DanC
 
DanC said:
The problem is that the users without administrator rights has to
lauch Internet Explorer with a specific URL with administrator rights.
Is this possible without the use of password. Because "Run As" is a
nice tool but the user know by that way to log on with as
administrator user. Tnx
DanC
Click to expand...

Why do they need different permissions just to view a specific website? What
is it you're trying to do?
 
It needed to connect an Oracle based website.
It only workes with administrator rights.

It works now by using a shortcut to IEplore.exe with 'run as'
But the user has to use an local adminstrator password and also select a
link in the favorites.
There must be a nicer and saver way like just clicking on a icon. Isn't it?

DanC
 
DanC said:
It needed to connect an Oracle based website.
It only workes with administrator rights.

It works now by using a shortcut to IEplore.exe with 'run as'
But the user has to use an local adminstrator password and also
select a link in the favorites.
There must be a nicer and saver way like just clicking on a icon.
Isn't it?

DanC
Click to expand...

Well, I have to say I'm puzzled, because if this is entirely web-based, the
permissions can't just have something to do with the permissions on
iexplore.exe. Perhaps you need to adjust the permissons on
files/folders/registry settings on the workstation to see how to allow
normal users to run this app. FileMon and RegMon from www.sysinternals.com
should help.

I know of no native way to get run as to cache the credentials other than
using, say, a batch file, and they wouldn't be transparent to the user, and
users shouldn't need admin rights to run properly written apps anyway - if
the app doesn't allow it, modify the places it insists on writing to.
 
I've done it. It toke me hours by analysing TCP/IP traffic and so on.
I think it's on the server site that the problem lays.
I will work arround te problem with a script that uses 'sendkey' and is
encrypted so the user don't has to do all the things.
But the 'run as' is a problem Miscrosoft has to solve.
It must be possible to configure an shortcut so it run with some rights so
the users does not see that he has the rights. The fact that they have to
fill in username and password from a user with administrator rights is a hole
in securety.
Greets
DanC
 
DanC said:
I've done it. It toke me hours by analysing TCP/IP traffic and so on.
I think it's on the server site that the problem lays.
I will work arround te problem with a script that uses 'sendkey' and
is encrypted so the user don't has to do all the things.
But the 'run as' is a problem Miscrosoft has to solve.
It must be possible to configure an shortcut so it run with some
rights so the users does not see that he has the rights. The fact
that they have to fill in username and password from a user with
administrator rights is a hole in securety.
Click to expand...

That would be nice, agreed. I've often wished for similar stuff myself.

However, your problem is not with IE, or even with Windows - it's with an
app that isn't properly written to allow non-admins to run it, which in this
day and age is just plain silly.
 
""However, your problem is not with IE, or even with Windows - it's with an
app that isn't properly written to allow non-admins to run it, which in this
day and age is just plain silly.""
Click to expand...

I'm totally agree and that was my conclusion before a started this
discussion. But that's not an enswer to my question. The application is
written by another company.
And there they don't care about that because they all work as
administrator. (That speaks for security hi hi)

So I repeat my question:

"Who to lauch Internet Explorer with a specific URL with
administrator rights by users without administrator rights?"

And is there nobody from Microsoft self that read this? That there is an
security problem about that and plans to changes this in the next update?

Best to repeat the problem again:

The fact that the user have to fill in username and password from a user
with administrator rights is a hole in security when using "run as".

I still hope to receive an answer to my question.

Greets
DanC
 
DanC said:
I've done it. It toke me hours by analysing TCP/IP traffic and so on.
I think it's on the server site that the problem lays.
I will work arround te problem with a script that uses 'sendkey' and is
encrypted so the user don't has to do all the things.
But the 'run as' is a problem Miscrosoft has to solve.
It must be possible to configure an shortcut so it run with some rights so
the users does not see that he has the rights. The fact that they have to
fill in username and password from a user with administrator rights is a hole
in securety.
Click to expand...
Hi

Different RunAs products listed here, some with encryption
options:

http://groups.google.com/[email protected]

Another one that is not mentioned in the link above:

LSrunas/LSrunasE (the latter with password encryption)
http://www.linkselection.com/lsrunas.asp
 
Hallo Torgeir;

Many tnx. Well that's an answer!
It silly to see how some make money out of these security problems.
Knowing there are free tools to use.
Tnx again Torgeir!

Greets.
DanC
 
Back
Top