search

pseymour / MakeMeAdmin

Make Me Admin is a simple, open-source application for Windows that allows standard user accounts to be elevated to administrator-level, on a temporary basis.
https://makemeadmin.com/
GNU General Public License v3.0
391 stars 85 forks source link

GPO Allowed entities ignored #55

Closed Slasky86 closed 1 year ago

Slasky86 commented 2 years ago

Hello

I have loaded the admx files, and put in the desired settings. I put in allowed entities as a group in the format domain\allow_group_name.

However, when I log into a server with this installed, where the user is not a member of this group, its still allowed to elevate its rights to admin.

The Deny entitites works just fine with this setup; domain\deny_group_name

I'm not sure if this is a bug or working as intended, but if its supposed to work like this, it should be documented, and the use of Allowed Entities should be further explained

Slasky86 commented 2 years ago

I also noticed that the ones not defined in the allowed group are not prompted for a reason, nor credentials, while those who are a member of the allowed group is asked for credentials and reason

Slasky86 commented 2 years ago

This can be closed. After a reboot of the server it seems to follow the GPO settings