/build/static/layout/Breadcrumb_cap_w.png

Shim to bypass code sign verification under UAC

Hi team, I do a lot of packaging for my company, and recently we have restructured our environment/AD to use the delegation model. That being said, a lot of applications that were getting away due to the laxed AD security we had in the legacy environment are now being flagged because some of the applications are not digitally signed. Now I have shimmed some of them to get around the UAC restrictions with the "RunasInvoker" shim, but that only addresses elevation for admin perms. However, there is still the issue of those that are not digitally signed so when they are launched, they get the "referral was returned from the server" error. I know I can change the value of the ValidateAdminCodeSignatures reg key to 0 to get by the issue, but GPO resets it back. I am hoping there is a shim setting that can address that.

Asked 2 weeks ago 0 views
0 Comments   [ + ] Show comments

Answers (0)

Be the first to answer this question

 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ