Hello, UAC is enabled on my Windows 7 computer. My problem is that : When I am connected with admin rights (myadmin), if I try to list files and folders under a specific user account profile (for example "test" user), I have a warning that I have to accept to list the folders. The problem is by accepting that, the ACL are modified and my admin account (myadmin user) is directly added with Full Control right; even if I am member of the Administrators group, listed too on the ACL of the folder. Is there a way to bypass that as it would cause many problems. Thank you

Nobody ? Perhaps my question is not very well explained (I dont speak english fluently, sorry; but if needed I can explain again :))

Hi , I am afraid you cannot bypass it, it is not controlled by the UAC. To access another user account profile, you must be an administrative user with permission to view this object. UAC relies on the existence of ACLs (and all the related security apparatus) in order to function. I would like to share you with the following articles which addresses some common conceptions about UAC. Inside Windows 7 User Account Control Why User Account Control?Tracy Cai TechNet Community Support

Hi, thank you for your answer. I agree that I need to have enough rights (correct ACL) on the destination but it is. Indeed, for example on d:\MyFiles, the ACL are : - UserTest with Full Control - BUILTIN\Administrators with Full COntrol. Now I am logged on the computer with "AdminUser" account. This account is a member of the BUILTIN\Administrators; so it should have the right to access the "d:\MyFiles" folder, no ? So why Windows 7 adds directly ACL for "AdminUser" ? Thanks !

Hi, I would like you know the root cause of the issue is UAC shipped in Windows 7. When a user who has administrative or other powerful privileges or group memberships logs on, Windows creates two access tokens that represent the user account. One token, the "unfiltered" token, has all the users group memberships and privileges, and the other token, the filtered token, represents the user who has the equivalent of standard user rights. By default, this filtered token is used to run the users programs. When UAC is enabled, to enhance the security of the system, normal tasks such as read email, surf internet, access/create a file, system uses a standard user access token. In our situation, if the standard users are not granted the right to access the folder, an Elevation Windows appears and thus your own account will be added to the ACL of the specific folder. This is a by design behavior. To change this behavior, i suggest you disable UAC feature or explicitly add stardard users permission on the folder. Regards, DennyPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Hi, I would like you know the root cause of the issue is UAC shipped in Windows 7. When a user who has administrative or other powerful privileges or group memberships logs on, Windows creates two access tokens that represent the user account. One token, the "unfiltered" token, has all the users group memberships and privileges, and the other token, the filtered token, represents the user who has the equivalent of standard user rights. By default, this filtered token is used to run the users programs. When UAC is enabled, to enhance the security of the system, normal tasks such as read email, surf internet, access/create a file, system uses a standard user access token. In our situation, if the standard users are not granted the right to access the folder, an Elevation Windows appears and thus your own account will be added to the ACL of the specific folder. This is a by design behavior. To change this behavior, i suggest you disable UAC feature or explicitly add stardard users permission on the folder. Regards, DennyPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.