To secure Windows 2008 Server one of the steps which is normally performed is to disable the Administrator user and create a new user with administrator Privileges. But whenever you perform any action like opening server manager or open any MMC under that user, a popup asking for permission like below:
This is a Security Policy called User Account Control implemented by Microsoft. User Account Control (UAC) is a security component that allows an administrator to enter credentials during a non-administrator’s user session to perform occasional administrative tasks.
In this post I am going to explain how to disable UAC and the permission pop-up’s for the Second Administrator User.
Disable User Account Control
- Click Start, and then click Control Panel.
- In Control Panel, click User Accounts.
- In the User Accounts tasks window, click Turn User Account Control on or off.
(If UAC is currently configured in Admin Approval Mode, the User Account Control message appears. Click Continue.)
- Clear the Use User Account Control (UAC) to help protect your computer check box, and then click OK.
- Click click Restart Later (as we are going to disable Admin Approval Mode as well), and then close the User Accounts tasks window.
Disable Admin Approval Mode
- Click Start, click All Programs, click Accessories, click Run, type secpol.msc in the Open box, and then click OK.
(If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue..)
- From the Local Security Settings console tree, double-click Local Policies, and then double-click Security Options.
- Scroll down and double-click User Account Control: Run all administrators in Admin Approval Mode.
- Select the Disabled option, and then click OK.
- Close the Local Security Settings window.
- Reboot the Server.