EPMfW v 25.2 prompting for elevation (Task manager, regedit, console items)

Good day. We have been testing EPMfW v25.2 in our environment for a little bit and thought we had some good progress…. until we starting increasing our deployment. Post upgrade with 25.2, we are seeing many instances where users are being prompted for a challenge/response code or to elevate (depending on workstlye) when launching simple items like registry editor or task manager. None of these require elevation when launch as a standard user in any policy we’ve deployed. However we have numerous instance of this happening. version prior 25.2 weren’t doing this and it seems that 25.2.40.0 isn’t doing this either. There are some vague hints at something occurring when reviewing release notes in 25.2.11.0 https://docs.beyondtrust.com/epm-wm/changelog/privilege-management-for-windows-25-2-11-release-notes.

I’ve opened a case but thought I’d inquire here as well. Anyone facing these types of issues?

Page 1 / 1

The only thing I can think of, would be local group membership on the computer.

If a standard user is added to power users group or one of the other “privileged” local groups it does change and trigger UAC for many of the MMC Snap-ins, event viewer, task manager and others.

So consider running a “whoami /all” and check the users membership of the local groups.

same user, same machine testing 4 different EPMfW version. 23.7, 24.1, 25.2.1, 25.2.40.0. Only happens on 25.2.1

No doubt that is a flaw. logs would need to be collected, then a ticket would be needed for BT Support to resolve that issue. A Traceconfig and PGCapture Config would be needed also.

since there is a later version 25.2.40 I am sure you will be asked to upgrade the clients.

Oddly I don’t I a version 25.2.1 but a 25.2.11 which does not replicate your issue.

Reply

Badge Earners

Reply

Badge Earners

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded