User Account Control or UAC for short; is a built in security feature in Windows designed to mitigate unauthorized changes to the operating system. Supporting UAC protects the computer/server by reducing the exposure and attack surface of the operating system and dictates that the software runs under standard user priviledges. Operations that require more priviledges will be blocked until an administrator authorizes and increase or elevation.
Fully UAC compatible means ProVide runs without secure in Windows Vista / 7 / 8 / 8.1 and Windows Server 2008 / 2008 R2 / 2012 / 2012 R2.
- Windows 2012 R2 Server (64-bit)
- Windows 8.1 (32-bit and 64-bit)
- Windows 2012 Server (64-bit)
- Windows 8 (32-bit and 64-bit)
- Windows RT (via .NET edition)
- Windows 2008 R2 Server (64-bit)
- Windows 7 (32-bit and 64-bit)
- Windows 2008 Server (32-bit and 64-bit)
In this context it may also be noted that ProVide server supports impersonation when integrated with an AD or local user directory. This means threads from connecting users only run with the specific priviledges and file access authorizations pertaining to that specific user; this also includes any invoked scripts.
The point! By limiting access threads, process execution and the way in which ProVide server runs in general we mitigate any potential priviledge escalations according to the principle of security by design.