Good Afternoon, never seen this one before in my years of working with Windows but im at a loss to try and find the solution to this one.
When users log on to their desktops as Non-Admin accounts, there are particular applications they need to run as different users due to the way some of the systems work. A load of system policies where updated for security at group policy level however now something strange is happening when the user initiates a RunAs by holding the shift key down or if they attempt to remote desktop to another machine, the NLA Windows Security box that prompts for credentials takes 5/10 minutes to appear.
When the user hovers over the taskbar icon, then over the window without clicking the Windows Security box displays as full screen missing the username and password box but when you click on it nothing happens and just disappears. Eventually after a few minutes the windows security box will appear and can log in as normal however the users jump into systems adhoc and cant be waiting for minutes at a time to put their credentials in which could cost a lot of user down time during the day.
I have tried looking at the security log but as you can imagine its filled with all sorts and trying to locate one specifically without knowing the issue is difficult at best. Has anyone had this issue before that can point me in any direction. I have to assume this is permission related on the devices trying to access something locally because when i log on to the devices with an account in the administrators group all these issues disappear and the windows security works as normal. Also, if they click "Run as administrator" they get the UAC credential box so i don't believe this is UAC related as its working by design just anything with "Windows Security" prompts. I should point out that whilst this is waiting - the File Explorer icon highlights under "Run As" like the explorer is waiting to do something.
OS - Windows 10 Pro
Acc - Domain Joined
Group policy enabled
Local Policy Disabled
Update: 21H2
Never seen this before but hoping one of you legends has!
Dev
Full Screen Box - Screenshot
For anyone reading this - although bizzare as it is...
It turns out it was McAfee Disk Encryption - there was a bug in the local FDE security provider causing it to hang every time it was accessed.
Update your McAfee FDE Client/Agent to the latest version
Related
I Develop a medical device that runs Windows 10 Ent. 1809. since this is a medical device, must Windows Explorer and other Windows settings need to be restricted from the user that operates this device.
So I Had to turn change most of the Registry values in
Computer\HKEY_USERS\Medical\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
The problem that I am facing is this annoying "This operation has been canceled due to restrictions in effect on this computer" message, which I DO NOT want my user to see.
How do I prevent this message from showing?
I basically searched all over the internet for a solution. But I couldn't find any information on the matter, except on chat from Microsoft forum which, surprise.. surprise..., was not helpful.
I am trying to take screenshots of the license information of the application before installing it onto my test window os.
When I click on the installer, the publisher window pops up asking me whether I want to launch the installer or not; But when I want to take screenshots or printscreen using keyboard shortcuts it doesn't work.
It seems that the keyboard shortcuts is disabled during this pop up install dialog.
All I want is to take screenshots at the publisher certificate information before installing the application.
Can anyone with experience on windows help?
UAC: If you are referring to the UAC prompt that shows up first to ask for elevation, then it happens on a secure desktop separate from your main one and hence the screen shot appears impossible. This separate desktop is a security measure. In actual fact it is perhaps the core security measure added to Windows in recent years (don't turn it off permanently).
Disable UAC Temporarily: You can disable this security measure temporarily so you can take a screenshot as described here: How to get a UAC screenshot. Here is a sample screen shot of a UAC prompt for an MSI installation: Numeric file name for msi created with Wix
Here is the essential procedure inlined:
Run gpedit.msc
Locate: Computer Configuration\Windows Settings\Security Settings\Local Policies\SecurityOptions:
Change "User Account Control: Switch to the secure desktop when prompting for elevation" to disabled
Undo this change after the screenshot or your system will be very insecure!
My Audio Service refuses to function properly. I have tried so many different solutions I can't even recall all of them.
Here's how it started; I got home from work one day to see my computer has no video signal but is turned on and receiving input from my mouse/keyboard. I force restart my computer and, after it boots up, I see that the Windows Audio Service is stopped.
I first try to use the task manager to start the service (Audiosrv) and it would blink at Starting then immediately go back to Stopped. From here I went to the Services window and tried starting it from there (Windows Audio) and, after trying to start, says Access Denied (Error 0x80070005).
So after searching a solution I went into regedit and was told to add System as a permission group for AudioSrv and the AudioEndpointBreaker service. Turns out they were already there with FULL CONTROL for both.
I try to change the logon to use Local System Account (WITH INTERACT DESKTOP CHECKED!) and voila, my audio service is running! But my bad luck continues.
None of my speakers/headphones are creating sound even though the service turned on and I can see all my devices. As an attempt I tried to do test sound, and this error appears.
Keep in mind I've restarted after every one of these fixes, both the service and my computer afterwards. As a final attempt I tried to open the Command Prompt as administrator and entered sfc /scannow . After verifying, this message appears.
I honestly have no clue what could've happened while I was working, but I'd rather not have to reinstall my windows to lose all my files.
Recap of my attempts to solve
Start the Audiosrv service from Task Manager (failed to start but keep in mind the EndpointBreaker service was running)
Opened services window and tried starting the Windows Audio service (Access Denied [Error 0x80070005])
Tried adding System as permission group for AudioSrv and AudioEndpointBreaker to find out both already had Administrators, my user, and System with full Control.
Changed login to local system account with interact desktop control checked and it fixed! Supposedly. THIS WAS THE FIX FOR 99% OF PEOPLE ON THE FORUMS
After realizing my sound wasn't playing but my devices/control was showing up, tried testing sound and received an error.
Last resort I did a sfc /scannow command and was given the response shown above.
What should and what can I do to get my audio running?
SIDENOTE
When I drag the volume slider [which usually creates a tone with the volume adjusted], the speakers/headphones meter on the Sound window do NOT light up green (in other words they aren't showing sound receiving on its end)
I resolved this issue after doing a system restore.
Add the Local Service in the Local Users and Groups
Right-click This PC or My Computer, depending on which version of Windows you have, and select Manage from the dropdown menu.
To the right, you will see a System Tools section. Double click Local Users and Groups, and select Groups beneath it.
Right-click Administrators in the list in the middle of the window, and select Add to group.. from the dropdown menu.
Click Add, then Advanced, and then click Find Now. Double click Local Service, and click OK. You should see NT Authority\Local Service in the list, click OK. Close the Computer Management window and reboot your device. Your problem should be solved.
Then in services.msc change logon to LOCAL SYSTEM.
If you dont permission to run Windows Audio:
key windows + Services
search Windows Audio
right click settings
login
Local system account and allow the service to interact with the desktop
save and run Windows Audio
Running into a strange issue with a Windows 7 image. Three years ago, I wrote a Powershell script which took a basic Windows 7 image (with only the Administrator account on it) and the script adds all the user accounts, applications, programs, regedits, et al. Used sysprep to complete the image so it could be cloned using Clonezilla onto several hundred computers and go out to different sites, as well as create replacement PCs down the line.
Those original PCs we used ran out and we got a different line of PCs from the same maker, again with a Windows 7 operating system and just an Administrator account. Found out this time the person who created that basic image for me did not put a password on the Administrator account as they did the first time, so it was automatically logging on for me. Added a password to the Administrator account so it wouldn't auto-login.
Ran my script after making some edits to bring applications up to date. Now after rebooting, it not only tries to Auto logon (despite everything I've checked to make sure Auto logon was disabled), but when you click OK to get past the Auto login error, it only shows the Administrator account instead of showing Administrator along with the other two account icons. You then have to click "Switch user" and it will show only "Administrator" and "other user". You have to click on "other user" and input your account name and password.
How do I get it back to showing me all three account icons - Administrator plus my other two user accounts - after a reboot?
PS - these images were loaded onto the PCs by a person from another dept. Same person three years ago as currently.
I finally discovered from a worker in another dept that Microsoft changed Windows 7 so that the last user logged in is the icon that is shown after logging off or rebooting. Love how Microsoft always "fixes" things that don't need fixing.
I have a user that is currently running my Winforms app on Win7. My app allows users to select rows from an open Excel spreadsheet and drag-n-drop them onto the app. However, this user cannot do the drag-n-drop. The cursor changes to the "no" cursor (little circle with line through it) and the operation won't complete.
I was researching drag-n-drop and Win7 and everything I found points to UAC and/or UIPI. I was looking for some solutions and am not sure if any of the below would work:
If the user logs in as admin (and as a result runs my app as admin) would that allow drag-n-drop to work?
Does the user need to turn off or change the settings of UAC/UIPI in order to be able to drag-n-drop?
I am not sure what the issue is. My app usually runs from C:/Documents and Settings/... (C:/Users/... on Win7). Does where it is running from matter? Does drag-n-drop not work because the user is not running my app with enough permissions? Are his Excel and my app on different permission levels? If so, what can be done about that? Note that even though my app allows users to just drag the file directly, that doesn't work either.
Also, is there any way I can have the user reproduce this issue with other apps? Are there apps that come with Win7 that he can see the same problem with. For example, can this be reproduced using Notepad?
Thanks.
Explaining this problem away by UIPI is a very long stretch. It doesn't have anything to do with whether or not the user is logged-in as an admin, that doesn't affect UAC and your program will be running with that same account anyway. The only way UIPI could kick in to stop a D+D is when your program is elevated and Excel is not.
To get yourself elevated requires work and doesn't happen by accident. You'd have to include a manifest so that the user gets the UAC prompt, you'd know about that. Or the user would have to change the desktop shortcut and tick the "Run this program as an administrator" option, she's know about that. While UIPI can be bypassed for Windows messages (ChangeWindowMessageFilter), it cannot for Drag and Drop so if any elevation is going on then your stuck. The ultimate test is to simply ask the user to put the UAC slider all the way down.
The much more likely scenario is that your DragEnter event handler simply isn't happy with the data it sees and therefore doesn't assign the e.Effect property. If you can't get a debugger on-site then write a little test program that logs the values of e.Data.GetFormats() plus whatever else you use to check if the drop is acceptable. And don't forget the obvious: the user simply fumbling the drag somehow.