This is the scenario:1. The help desk employee requests control of the usersmachine 2. The user is prompted with "Would you like to allow helpdeskuser to connect to your computer" They click yes.3. The help desk user can now see thier desktop and selects "Request Control"3. The user is prompted again and nowalso has a check box that says "Allowhelpdeskuserto respond to User Account Control Prompts."This would be fine except that if they user selects the checkbox they then have to authenticate with UAC as a local admin to finish the process. Sinceour users are standard usersthat is not possible and the helpdesk needs to be able to see UAC prompts during a remote session.I feel like I'm missing something, but I'm not sure what. Has anyone else run in to this?

The issue can be caused due to the GP settings on your clients PC is incorrect. Please first check the settings with the following steps: Change settings in GP ----------------------------- Open Local Group Policy Editor via the command gpedit.msc on the PC which you offer remote assistance to. Then, please navigate to Computer Configuration \ Administrative Templates \ System \ Remote Assistance, locate the following two items in the right panel: Solicited Remote Assistance Offer Remote Assistance 1. Double click Solicited Remote Assistance and choose the Enable option, choose Allow helps to remotely control the computer. 2. Double click Offer Remote Assistance, enable it. Also, choose Allow helps to remotely control the computer. Click on the Show button, under Value, please input the domain user name, such as domainname\user, or dominname\groupname, please double check the account you have typed as the program does not validate the account automatically. If the issue persists, you can send an invitation from the client as a test. Also, I suggest you try logging on with a local user account but not a domain account on both computers, verify the related policy and then try to launch Remote Assistance. If it works this time, check GPOs on your domain controller, find the GPO that changes this policy. Good Luck!

Thanks for the reply Nina.I'm not sure I explained the problem correctly. We do not want the users to create any type ofinvitations and have the "Solicited Remote Assistance" policy disabled. We want the help desk to initiate the remote assistance session.I have the "Offer Reomote Assistance" policy enabled, set as "Allow helpers to remotely control the computer" and a security group containing the help desk user accounts is specified in "Helpers."The first part works correctly, but the problem is that in order for our help desk employees to see the UAC prompts during a remote session our users will have to click the checkbox "Allow helper to respond to User Account Control Prompts" and that requires the user to authenticate as a local admin via UAC. So, if the user is a standard user and not a local admin they can not authenticate and the helpdesk can not see UAC prompts during the session. To be clear if the user does not select "Allow helper to respond to User Account Control Prompts" and just clicks OK, the helpdesk can control the machine.. but the screen goes black if a UAC prompt comes up on the users machine.I hope this explains the problem better.

Ok, I've found some more information. This threadseems todescribe thesame issueinVista:http://social.technet.microsoft.com/Forums/en-US/itprovistasetup/thread/1ac19761-3522-497d-be45-12e211c0ff5bIt looks like the "Fix" is to disable the computerpolicy "User Account Control: Switch to the secure desktop when prompting for elevations."I can confirm it does work, but to me this seemslike an across the boardhack rather than a solution to the specific problem.Can someone from Microsoft pleaseconfirm ifthis is the only way to fix it currently?

Thanks for sharing the workaround. For your information, this security setting controls whether User Interface Accessibility (UIAccess or UIA) programs can automatically disable the secure desktop for elevation prompts being used by a standard user. If you enable this setting, UIA programs including Windows Remote Assistance can automatically disable the secure desktop for elevation prompts. Unless you have also disabled elevation prompts, the prompts will appear on the interactive user's desktop instead of the secure desktop. If you disable or do not configure this setting, the secure desktop can only be disabled by the user of the interactive desktop or by disabling the "User Account Control: Switch to the secure desktop when prompting for elevation" setting. For more information, you can refer to the following links: http://netsecurity.about.com/od/secureyourwindowspc/qt/uacuiaccess.htm http://blogs.msdn.com/uac/archive/2006/05/03/589561.aspx http://www.howtogeek.com/howto/windows-vista/make-user-account-control-uac-stop-blacking-out-the-screen-in-windows-vista/ I hope the above information will be helpful. Nina

Here is a specific reference to the setting that Nina is refering to: http://technet.microsoft.com/en-us/library/dd851479.aspx This one has the Group Policy location for that setting, as well as some other UAC setting details: http://technet.microsoft.com/en-us/library/dd835564(WS.10).aspx It works as advertised, which greatly improves the usefulness of Remote Assistance.