Security Prompt Issue

Hi,

Is there a way to bypass the security prompt under windows vista? Every time
when I run the setup.exe I got a security prompt asking if I want to proceed
further. I need to develop an application that will run a silent update in
the background, and therefore I need to bypass the prompt to ensure the
setup process will be executed without interruption. I have done quite a few
research and couldn't find a solution to work around, could you please
advice how it can be done?

Thanks in advance
Kyle

"Microsoft" <> wrote in message
news:%...
> Hi,
>
> Is there a way to bypass the security prompt under windows vista?
> Every time when I run the setup.exe I got a security prompt asking if
> I want to proceed further. I need to develop an application that will
> run a silent update in the background, and therefore I need to bypass
> the prompt to ensure the setup process will be executed without
> interruption. I have done quite a few research and couldn't find a
> solution to work around, could you please advice how it can be done?

Have you seen this?

http://blogs.msdn.com/sajoshi/archiv...rkarounds.aspx

"Microsoft" <> wrote in message
news:%...
> Hi,
>
> Is there a way to bypass the security prompt under windows vista?
> Every time when I run the setup.exe I got a security prompt asking if
> I want to proceed further. I need to develop an application that will
> run a silent update in the background, and therefore I need to bypass
> the prompt to ensure the setup process will be executed without
> interruption. I have done quite a few research and couldn't find a
> solution to work around, could you please advice how it can be done?

From:
http://technet.microsoft.com/en-us/l.../cc709628.aspx

Under:
Installer Detection Technology

"The User Account Control: Detect application installations and prompt
for elevation setting must be enabled for installer detection to detect
installation programs. This setting is enabled by default and can be
configured with the Security Policy Manager snap-in (secpol.msc) or with
Group Policy (gpedit.msc)."

"FromTheRafters" <erratic @nomail.afraid.org> wrote in message
news:#...

> This setting is enabled by default and can be configured with the
> Security Policy Manager snap-in (secpol.msc) or with Group Policy
> (gpedit.msc)."

Both of which are only available in Business and Ultimate....

--
Asking a question?
Please tell us the version of the application you are asking about,
your OS, Service Pack level
and the FULL contents of any error message(s)

"Gordon" <> wrote in message
news:...
>
> "FromTheRafters" <erratic @nomail.afraid.org> wrote in message
> news:#...
>
>> This setting is enabled by default and can be configured with the
>> Security Policy Manager snap-in (secpol.msc) or with Group Policy
>> (gpedit.msc)."
>
> Both of which are only available in Business and Ultimate....

Then maybe this?

"User Account Control: Detect application installations and prompt for
elevation

Location

Computer Configuration\Windows Settings\Security Settings\Local
Policies\Security Options\

Discussion

This security setting determines the behavior of application
installation detection for the computer.
The following table describes the values available for this setting.

Value Description

Enabled - This setting detects application installation packages that
require an elevation of privilege to install and displays the configured
elevation prompt.

Disabled - Enterprises running standard user workstations that use
delegated installation technologies such as Group Policy Software
Installation or Systems Management Server (SMS) will automatically
disable this setting. In this case, installer detection is unnecessary
and thus not required.

Default value

Enabled - (home)
Disabled - (enterprise)"

"FromTheRafters" <erratic @nomail.afraid.org> wrote in message
news:...

> Computer Configuration\Windows Settings\Security Settings\Local
> Policies\Security Options\
>
>
That's reached from gpedit.msc - certainly in XP.

--
Asking a question?
Please tell us the version of the application you are asking about,
your OS, Service Pack level
and the FULL contents of any error message(s)

But can the app itself bypass or change that setting?

(It guess that would mean the UAC didn't actually work... so a circular
argument though I have used quite a few apps that do silent update without
that security prompt - e.g. McAfee. How do they get around it?)


"FromTheRafters" <erratic @nomail.afraid.org> wrote in message
news:...
> "Gordon" <> wrote in message
> news:...
>>
>> "FromTheRafters" <erratic @nomail.afraid.org> wrote in message
>> news:#...
>>
>>> This setting is enabled by default and can be configured with the
>>> Security Policy Manager snap-in (secpol.msc) or with Group Policy
>>> (gpedit.msc)."
>>
>> Both of which are only available in Business and Ultimate....
>
> Then maybe this?
>
> "User Account Control: Detect application installations and prompt for
> elevation
>
> Location
>
> Computer Configuration\Windows Settings\Security Settings\Local
> Policies\Security Options\
>
> Discussion
>
> This security setting determines the behavior of application installation
> detection for the computer.
> The following table describes the values available for this setting.
>
> Value Description
>
> Enabled - This setting detects application installation packages that
> require an elevation of privilege to install and displays the configured
> elevation prompt.
>
> Disabled - Enterprises running standard user workstations that use
> delegated installation technologies such as Group Policy Software
> Installation or Systems Management Server (SMS) will automatically disable
> this setting. In this case, installer detection is unnecessary and thus
> not required.
>
> Default value
>
> Enabled - (home)
> Disabled - (enterprise)"
>

Unless I misunderstood, as a developer he may want to misconfigure this
aspect of Vista. This is not about trying to circumvent a security
feature programmatically.

"Mark B" <> wrote in message
news:%...
> But can the app itself bypass or change that setting?
>
> (It guess that would mean the UAC didn't actually work... so a
> circular argument though I have used quite a few apps that do silent
> update without that security prompt - e.g. McAfee. How do they get
> around it?)
>
>
> "FromTheRafters" <erratic @nomail.afraid.org> wrote in message
> news:...
>> "Gordon" <> wrote in message
>> news:...
>>>
>>> "FromTheRafters" <erratic @nomail.afraid.org> wrote in message
>>> news:#...
>>>
>>>> This setting is enabled by default and can be configured with the
>>>> Security Policy Manager snap-in (secpol.msc) or with Group Policy
>>>> (gpedit.msc)."
>>>
>>> Both of which are only available in Business and Ultimate....
>>
>> Then maybe this?
>>
>> "User Account Control: Detect application installations and prompt
>> for elevation
>>
>> Location
>>
>> Computer Configuration\Windows Settings\Security Settings\Local
>> Policies\Security Options\
>>
>> Discussion
>>
>> This security setting determines the behavior of application
>> installation detection for the computer.
>> The following table describes the values available for this setting.
>>
>> Value Description
>>
>> Enabled - This setting detects application installation packages that
>> require an elevation of privilege to install and displays the
>> configured elevation prompt.
>>
>> Disabled - Enterprises running standard user workstations that use
>> delegated installation technologies such as Group Policy Software
>> Installation or Systems Management Server (SMS) will automatically
>> disable this setting. In this case, installer detection is
>> unnecessary and thus not required.
>>
>> Default value
>>
>> Enabled - (home)
>> Disabled - (enterprise)"
>>
>

Apologies for any confusion-- he's actually working for me on the task.

What we have is a C#, VSTO Outlook Add-in that we'd like to offer users of
Outlook 2007 to download from the internet on their PC's. So it could be
anyone, anywhere with XP or Vista on their desktops.

In addition we are hoping corporate IT managers would also install it for
their company's Outlook 2007 users too.

For both scenarios, we have code in the Add-in that checks our website for a
version number of the add-in. If a later version is found the Addin
downloads the newer install file, OurSetup.exe and executes saliently it
after Outlook is shut down.

It's during that install that the UAC message is coming up on Vista machines
only. We don't want end-users to see that -- we want it all to be silent in
the background.



"FromTheRafters" <erratic @nomail.afraid.org> wrote in message
news:uYasV%...
> Unless I misunderstood, as a developer he may want to misconfigure this
> aspect of Vista. This is not about trying to circumvent a security feature
> programmatically.
>
> "Mark B" <> wrote in message
> news:%...
>> But can the app itself bypass or change that setting?
>>
>> (It guess that would mean the UAC didn't actually work... so a circular
>> argument though I have used quite a few apps that do silent update
>> without that security prompt - e.g. McAfee. How do they get around it?)
>>
>>
>> "FromTheRafters" <erratic @nomail.afraid.org> wrote in message
>> news:...
>>> "Gordon" <> wrote in message
>>> news:...
>>>>
>>>> "FromTheRafters" <erratic @nomail.afraid.org> wrote in message
>>>> news:#...
>>>>
>>>>> This setting is enabled by default and can be configured with the
>>>>> Security Policy Manager snap-in (secpol.msc) or with Group Policy
>>>>> (gpedit.msc)."
>>>>
>>>> Both of which are only available in Business and Ultimate....
>>>
>>> Then maybe this?
>>>
>>> "User Account Control: Detect application installations and prompt for
>>> elevation
>>>
>>> Location
>>>
>>> Computer Configuration\Windows Settings\Security Settings\Local
>>> Policies\Security Options\
>>>
>>> Discussion
>>>
>>> This security setting determines the behavior of application
>>> installation detection for the computer.
>>> The following table describes the values available for this setting.
>>>
>>> Value Description
>>>
>>> Enabled - This setting detects application installation packages that
>>> require an elevation of privilege to install and displays the configured
>>> elevation prompt.
>>>
>>> Disabled - Enterprises running standard user workstations that use
>>> delegated installation technologies such as Group Policy Software
>>> Installation or Systems Management Server (SMS) will automatically
>>> disable this setting. In this case, installer detection is unnecessary
>>> and thus not required.
>>>
>>> Default value
>>>
>>> Enabled - (home)
>>> Disabled - (enterprise)"
>>>
>>
>
>

"Mark B" <> wrote in message
news:%...

> Apologies for any confusion-- he's actually working for me on the
> task.

When he wrote "I have done quite a few research...", does that mean he
understands Vista's requirements for a manifest, and what to include in
same?

> What we have is a C#, VSTO Outlook Add-in that we'd like to offer
> users of Outlook 2007 to download from the internet on their PC's. So
> it could be anyone, anywhere with XP or Vista on their desktops.
>
> In addition we are hoping corporate IT managers would also install it
> for their company's Outlook 2007 users too.
>
> For both scenarios, we have code in the Add-in that checks our website
> for a version number of the add-in. If a later version is found the
> Addin downloads the newer install file, OurSetup.exe and executes
> saliently it after Outlook is shut down.
>
> It's during that install that the UAC message is coming up on Vista
> machines only. We don't want end-users to see that -- we want it all
> to be silent in the background.

Thanks for clarifying. I'm not going to be able to help with this, but
perhaps with this new information someone reading this can.