Important Notice: On February 29th, this community was put into read-only mode. All existing posts will remain but customers are unable to add new posts or comment on existing. Please feel to join our Community Discord for any questions and discussions.

Using Laps with activated UAC?

Member

May 31, 2021 11:15

Hello,

I want to use Laps as default credentials in PDQ Inventory.

In our Windows AD environment is on every System a local Admin configured.

Both on Server Systems (WinSer 2019) and Clients (Win 10) I get a password in Laps.

In PDQ Inventory Laps seem to work fine on Server Systems, but on Windows Clients I get the message "Access is denied".

When I deactivate UAC it works on Windows Clients too, but that is not a permanent fix cause of the lack of security.

Btw. UAC is activated on our Server Systems too.

Do I miss something here? Any tips how I can PDQ Inventory and Laps make work with activated UAC?

Thanks in regards!

Comments

5 comments

Colby Bouma
May 31, 2021 18:27

I believe you will need to disable Remote UAC: https://help.pdq.com/hc/en-us/articles/220533007

1
Member
June 01, 2021 06:59

@Colby Bouma why does it work with our Windows Server 2019 Systems though?

1
Colby Bouma
June 01, 2021 07:26

I'm not sure. Is Remote UAC already disabled on them? I don't have much experience with workgroup computers.

1
Member
June 01, 2021 07:29

They are members of our domain and have UAC activated, I just checked it to be certain.

1
Joshua Delaughter
June 02, 2021 16:07

Just a heads up, it looks like STIG recommends not disabling it and using a domain account. https://www.stigviewer.com/stig/windows_server_2008_r2_member_server/2014-04-02/finding/V-36439

Curious if anyone else has any input on the topic of disabling it..

0