When I set Local Security Policy/Security Option/~require CTRL-ALT-DEL to login and Local Security Policy/Security Option/~ do not show last logoned user isn't the intended effect is to not let people know the usernames ?But when the Standard User account Prompts for admin credentials, the admin account name is preselected and shown. That would negate setting the above local security policies.

In the options for the UAC set the option for Behavior of the elevation prompt for Administrators in Admin approval mode set the behavior to prompt for credantials. By default this option is set to Prompt for consent.

In Local Security Policy, the behaviour of elevation prompt for standard user is already set to Prompt for Credentials in Secure Desktop.

I was referring to the administrators prompt but as it turns out im wrong on that, it seems(on my system anyways) that the admin name is present when the password prompt comes up. I really dont feel like this is a problem though since at log on there are no credentials present so that would require the user to have known the name and password to log on in the first place then figure out the administrator password.

Even company insiders with standard accounts may want access to admin account and may resort fo brute forcing an admin account. Also, hackers who obtain access to a standard account will want to escalate their rights.

If you think this is a flaw in design and the Windows team should change this behavior, please post about it in the Windows 7 RC comments thread so they'll hear about it. -Nick