No announcement yet.

Software installation without administrative rights.

  • Filter
  • Time
  • Show
Clear All
new posts

  • Software installation without administrative rights.

    Here's my world today: WindowsXP used by employees without administrative. They often come to me requesting that I install some software tool or patch.

    I'm looking for an alternative to this situation because the business side of the house is seriously unhappy. I know that with Windows 7 and Server 2008r2, I can create software policies to whitelist certain software (based on a number of criteria). Is this my best option?

    How to you allow users to install software and patches (both MS and 3rd party) without making them local admins?


  • #2
    Re: Software installation without administrative rights.

    I should add that we're trying to avoid ending up in GPO hell. We'll often be installing an app for only one or two people.


    • #3
      Re: Software installation without administrative rights.

      I get around it, as do most people, by not allowing users to install software, and ensuring that company policy clearly states that all installations are to be done by IT staff only. That way, you remain in control of what is installed for policy compliance and licensing compliance.

      Furthermore, I ensure that when somebody does attempt to circumvent the security restrictions in place, having already had a warning before, that they are subject to disciplinary action.
      Gareth Howells

      BSc (Hons), MBCS, MCP, MCDST, ICCE

      Any advice is given in good faith and without warranty.

      Please give reputation points if somebody has helped you.

      "For by now I could have stretched out my hand and struck you and your people with a plague that would have wiped you off the Earth." (Exodus 9:15) - I could kill you with my thumb.

      "Everything that lives and moves will be food for you." (Genesis 9:3) - For every animal you don't eat, I'm going to eat three.