Make your Vista's admin account acts like in XP

By +Tantawi
in Essential Guides

 Share

Recommended Posts

Community Regular

Clinteger

Posted
Posted
God this is like saying you want to always run as ROOT in linux 24/7.

Something that about 100% of security experts will tell you to NEVER do.

Well, a little bit, but you're still not running as SYSTEM. That would be root. ;)

I think the reason people are doing this is because it would be like running as a normal user,

then a dialog [like kdesudo] pops up for small things, but if you want to make a symlink in a location

you don't own, then it would just tell you that it doesn't work, no sudo dialog at all.

Think about your analogies before you say them, or else you end up looking worse than if you did it yourself.

Yes, I've done this, but I don't use it all the time, I just login to it whenever I need to.

Clint

Experienced

solardog

Posted
Posted
This is exactly what I thought...

Seems like some people always need to complain, XP was not save becouse you work as administrator, now they solved that issue and now they are complaining again!

Microsoft has build in this feature not to attack their users but to defend them, so those people who do work as administrator in Vista all day long shouldn't complain about Windows as soon they got malware and stuff on their computer.

I'm also not too happy with the UAC, its quite anoying when you want to cleanup your start/programs, but if this helps to keep the OS clean and stabil i'm happy.

I never asked for this. I never complained about the way XP handled/didnt handle this. The default way Vista handles this is the most annoying thing Ive ever experienced on a pc... yes, even more annoying than a trojan or virus, which I can count on 1 hand the number of those Ive gotten in 20 years. I hate it, so its gone. This is my own system, in my own house, with my own self. :rofl:

Enthusiast

Laughing Man

Posted
Posted
This is exactly what I thought...

Seems like some people always need to complain, XP was not save becouse you work as administrator, now they solved that issue and now they are complaining again!

Microsoft has build in this feature not to attack their users but to defend them, so those people who do work as administrator in Vista all day long shouldn't complain about Windows as soon they got malware and stuff on their computer.

I'm also not too happy with the UAC, its quite anoying when you want to cleanup your start/programs, but if this helps to keep the OS clean and stabil i'm happy.

I think that's really dependent on the user. For example, I never complained about XP's security or stability. I think it's pretty solid on both if your a smart user. Hell, I myself go to those "questionable" websites and I've never been infected. Because I can take care of my computer, hardware and software side. On the other hand, I have friends who need my help in fixing their computer often. For them Vista's UAC would be a boon. A huge boon. For me, it's a pain in the ass and I'm glad I dumped it.

Grand Master

+Tantawi Subscriber²

Posted
  • Author
  • Subscriber²
Posted

Thanks all.

I've never complained about XP either, and a choice has to be made in Vista's way of controlling users and everyone is free to use whatever he/she likes and be responsible for any result.

Grand Master

BajiRav

Posted
Posted

I am using Home Premium and I decided to set ConsentPromptBehaviorAdmin=1 so that it actually asks for password instead of Ok/Cancel prompt. :)

I decided to go this way since I found myself clicking Allow sometimes without reading the prompt, when I was in middle of something.

Experienced

solardog

Posted
Posted
I am using Home Premium and I decided to set ConsentPromptBehaviorAdmin=1 so that it actually asks for password instead of Ok/Cancel prompt. :)

I decided to go this way since I found myself clicking Allow sometimes without reading the prompt, when I was in middle of something.

Wow. So you made it even more annoying. What are all these prompts you're getting that you werent expecting? Are you in the KGB? CIA? Interpol? MOSSAD? Scotland yard?

  • 3 weeks later...
Apprentice

geircito

Posted
Posted

So I have followed the instructions, working great.

But I have one issue:

Is it possible to change the name of the "\Users\Administrator" folder to per example "\Users\SYSOP" ????

Why would I do that?

Because I have a lot of shortcuts, setups and settings that use the folder "\Users\SYSOP".

I have managed to just rename that folder from another account, but then after restarting Vista seems to not "find" my account "Administrator" and create a temporary account.

-

Apprentice

geircito

Posted
Posted
So I have followed the instructions, working great.

But I have one issue:

Is it possible to change the name of the "\Users\Administrator" folder to per example "\Users\SYSOP" ????

Why would I do that?

Because I have a lot of shortcuts, setups and settings that use the folder "\Users\SYSOP".

I have managed to just rename that folder from another account, but then after restarting Vista seems to not "find" my account "Administrator" and create a temporary account.

-

Oh, I managed to solve this myself :-)

After the

3- Set "Accounts: Administrator account status" to Enabled

I also opened

Set ?Accounts: Rename administrator account?

and changed the name to SYSOP

When restarting Vista the new Administrator account's folder name under C:\Users was SYSOP.

This approach MUST be done when you enable the built-in Administrator account for Vista for the FIRST time.

-

  • 2 weeks later...
Proficient

Stunna

Posted
Posted
Make your Vista's admin account acts like in XP, Always in full control

Funny that made me laugh.

Make your Vista's admin account acts like in XP, You and Virus attacks are Always in full control.

In XP I used to run as Limited User. It was a pain to create batch files and various tools to get Limited User to perform some tasks as Admin. With UAC in Vista all this trouble is gone. Whenever Admin access is required it just pops up.

controluserpasswords2vigv6.jpg

I have also enabled Administrator account from Computer Management

administratorenablevistxp5.th.jpg

which is another way to enable Administrator account in Vista/XP.

how do you create batch files to give certain programs the admin power they need to execute?

and what type of "various tools" do you use?

thanks

Mentor

UncleSpellbinder

Posted
Posted

Just reformatted and did a fresh install. Gotta say thanks for a great tutorial! No longer annoying to use Vista Home Premium.

I've used XP as administrator since the beginning. Had a virus one time in more than 5 years. In XP (and now in Vista Home Premium) I use AVG Anti Virus, Spyware Blaster, AdAware SE and regularly do a full scan with Windows Defender.

Neowinian

Jam_Man

Posted
Posted
Damn, I dont understand why you people feel the urge to turn off security features..

Still everyone to thier own

Simply because anyone with experience is going to get quicky frustrated having to click yes to every change they make.

I understand the theory about protecting your pc but to be honest the amount of pop ups vista has is ridiculous and could even cause inexperienced users even more problems. I know my Mum would be ringing me every 10 minutes!

Grand Master

+Tantawi Subscriber²

Posted
  • Author
  • Subscriber²
Posted
alright i just did this and i want to delete this account named "administrator" but I don't know how... can anyone help?

1- Click Start, and type "secpol.msc" in the search area and click Enter. (You may receive a prompt from UAC, approve/login and proceed)

2- In the left list, choose "Local Policies", then "Security Options"

3- Set "Accounts: Administrator account status" to Disabled.

Note that doing so will undo the new behavior, if that what you want to do.

  • 3 weeks later...
Proficient

bradavon

Posted
Posted (edited)

Hello.

Firstly thanks Tantawi for the useful guide, however:

From what I can see running Vista HP in this Administrator account is pretty much the same as the Admin account created during setup, with the exception it disables UAC.

* I still cannot rename notepad.exe to notepad2.exe as I could in XP under Admin, admittedly I cannot think of a reason I'd ever want to muck about with SYSTEM32 files but still.

* I still cannot gain access to folders such as "Documents and Settings" without taking Ownership of them which annoyingly doesn't propagate down to all subfolders even though I set it to, and even then on some folders that isn't working.

Is there a way of setting Vista "exactly" how Admin worked in XP? So you have cart blanch? I'm having to amend each folder I get access denied on and giving my own permissions back to me.

Cheers

Brad.

p.s - Keep up the good work :)

Edited by bradavon
Proficient

bradavon

Posted
Posted

Another reason to use the proper Admin account is you UAC is completely disabled but you can still enable it so as to keep Windows Security Center happy. If you just disable it via the "Users" GUI front end WSC starts complaining it's switched off.

I fail to see how UCA is any use for System Admins anyway (it's definitely useful for Standard Users) as an Admin will know what he's doing anyway and will just click Continue making the prompt pretty useless. AFAIK it has no effect on Hackers, Viruses or Spyware and is purely a User Access Control. For example: I know full well meddling with the options in the System window (in Control Panel) can do damage but I also know how to use it.

Like I said UAC from what I understand it is a User not Hacker prompt, unless I'm mistaken? . That said disabling UAC does disable Internet Explorer 7's Protected Mode, which doesn't interest me much as I don't use it anyway.

Community Regular

baskingridge

Posted
Posted
* I still cannot gain access to folders such as "Documents and Settings" without taking Ownership of them which annoyingly doesn't propagate down to all subfolders even though I set it to, and even then on some folders that isn't working.

There is no folder named Documents and Settings in Vista!

Proficient

bradavon

Posted
Posted

You're mistaken, like XP you need to enable "Hidden and System Files" from Options ;). Trust me it's definitely there. "ProgramData" seems to be both "All Users" and your current User mixed together. Then there is also "Users" I've not figured out how it and ProgramData differ yet.

I only bought my new Vista HP Laptop today and have spent the evening working out how to gain access to my folders :D

Grand Master

+Tantawi Subscriber²

Posted
  • Author
  • Subscriber²
Posted

Hi bradavon,

Congratulations on your new laptop, and welcome to Neowin :)

You may be looking to this tweak:

Take Ownership Context Menu Item

TakeOwn.reg adds a Take Ownership Context Menu Item to all files and folders. It opens an Elevated Command Prompt which recovers full access to the selected file / directory, sub directories and their content.

You can access the Context Menu Item by holding down Shift + right-click on a file or folder.

TakeOwn.png

If you want to access the Take Ownership Context Menu Item on an exe file, you must merge "RunAsAdmin_Exe-.reg"; this reg file removes the "Run as Administrator" Context Menu Item from all exe files (they both use the runas key). Merge "RunAsAdmin_Exe+.reg" if you want to restore the "Run as Administrator" Context Menu Item.

Install: Merge TakeOwn+.reg

Uninstall: Merge TakeOwn-.reg

> TakeOwn.zip ( 1,99 KB )

From: https://www.neowin.net/forum/index.php?showtopic=499870

Good luck :)

Proficient

bradavon

Posted
Posted (edited)

Hello Tantawi, thanks for the welcome.

Thanks for that reg fix. It looks like it adds a context menu which dumps you at a DOS command prompt. It's a start but I'd prefer a Full Admin account like XP.

Even if I didn't use it all the time it would be nice to know it's possible. For example I've not worked out how to be able to rename files in the WINDOWS\SYSTEM32 folder (unless I take ownership of that too) which you may need to do if you need to delete/rename a system file.

Has anyone worked how to do this? Surely it's possible. I believe the difference here is the Administrator account (the proper one) in Vista still doesn't own certain folders, they're owned by the SYSTEM account (which cannot logged in with) as opposed XP where you own each and every folder.

That thread is great though, it's chocker block with goodies. I'll have to get reading :D

-------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Can I suggest you add a disclaimer to your first post explaining disabling UAC takes Vista's IE7 Protected Mode with it.

This basically lowers IE7 to a Limited User (lower than the Semi-Admin you're logged in with). This is something IE7 users may not be aware of, even if you enable Protected Mode from Internet Options it stays disabled (just like UAC). There is a fix however.

If you want UAC disabled but Protected Mode on use DropMyRights which was written for XP but works just the same in Vista (I tested it last night), not only that but using it actually turns Protected Mode back on (i.e - instead of saying Protected Mode: Off it will say On). Therefore proving Protected Mode and DropMyRights are on and the same thing.

What is DropMyRights I hear you say, read on: http://msdn2.microsoft.com/en-us/library/ms972827.aspx

It was written by a Microsoft bloke but isn't officially supported. I use the /c switch to make it even more secure. I've been using it for months and bar ActiveX installs (which need admin rights) not one website has fallen over. You can prove it works by trying to save a file into the SYSTEM32 folder, it won't let you.

The great thing is it's completely seamless, works on XP or Vista (probably 2000 too) and lets you get the good bits out of UAC without the bad. Just set the shortcut for each Internet enabled program to use it and make sure you choose Open "Minimised" and it's seamless.

Edited by bradavon
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • A coalition of publishers sued OpenAI and Microsoft over scraping content without consent

      By Hamid Ganji · Posted

      A coalition of publishers sued OpenAI and Microsoft over scraping content without consent by Hamid Ganji Image via Depositphotos.com AI companies often rely on readily available internet content to train their chatbots and provide users with instant answers. This method of AI training is fast and relatively inexpensive, but using a website’s content without permission or compensation is not something publishers like to see, and this is exactly why Microsoft and OpenAI are now being sued. As reported by Bloomberg, a group of publishers that collectively own nearly 400 newspapers has filed a lawsuit against OpenAI and Microsoft. The coalition argues that the two companies scraped their content to build AI chatbots like ChatGPT and Copilot without paying any compensation. The complaint, filed in the U.S. District Court for the Southern District of New York, argues that while AI products have generated billions of dollars in market value using publishers’ work, none of that value has been shared with the publishers. The plaintiffs are seeking statutory damages and injunctive relief for alleged copyright infringement and violations of the Digital Millennium Copyright Act. “Defendants systematically and secretly crawled the Publishers’ websites—including content behind paywalls and other access restrictions—and copied the Publishers’ articles, stories, and other original works onto their own servers without authorization,” the complaint states. The publishers also described the AI boom as a “death knell for local journalism” if AI companies that scrape content for free are not held accountable. Former New Jersey Attorney General Matthew Platkin and his law firm, Platkin LLP, are representing the publishers. “Our models empower innovation, are trained on publicly available data, and are grounded in fair use,” OpenAI spokesperson Drew Pusateri told Bloomberg. This is not the first lawsuit involving the unauthorized use of publishers’ content by AI firms, but it is one of the largest coalitions ever formed against the free use of content by AI chatbots. In 2024, OpenAI and Microsoft also faced a similar lawsuit from eight newspapers that claimed AI products were benefiting from their content without permission.
    • Rufus alternative Ventoy now supports Windows 11's mandatory update, fixes major boot bug

      By hellowalkman · Posted

      Rufus alternative Ventoy now supports Windows 11's mandatory update, fixes major boot bug by Sayan Sen While Microsoft has its own official Media Creation Tool used for making bootable USB media, there are some popular third-party utilities as well which offer additional options like bypassing system requirements, Microsoft Account creation, and more. One of these is Ventoy, and the software has received its latest update today. In fact, the app actually got a slew of updates over the last couple of days, three version releases in total, to be specific. The first release, version 1.1.13, was pulled as there was some unspecified error in the update, and as such, the corrected version 1.1.14 was pushed out. Following that on very short notice, 1.1.15 was published as well. For those unfamiliar, Ventoy is an open-source utility that lets users create a bootable USB drive once and then simply copy ISO, WIM, IMG, VHD, or EFI files onto it without repeatedly formatting the drive. It supports both legacy BIOS and UEFI boot modes, Secure Boot, and a wide range of operating systems, making it one of the most versatile tools in the category. The biggest change in version 1.1.14 is an updated Secure Boot shim file aimed at resolving the UEFI CA 2023 issue, which is basically a compatibility problem that has affected Secure Boot environments on some systems. If you recall, we reported about severe boot issues on HP devices following the release of updated Secure Boot 2023 keys. For anyone who may not be aware, back in early 2024, Microsoft announced that it was updating Secure Boot keys as they were going to become 15 years old in 2026, which is also when they are set to expire. As such, the new 2023 certificates have been rolling out with the newest Windows 11 updates. Updated boot manager and Secure Boot certificates are crucial for protection against malware like bootkits. These are mandatory updates. Alongside that, the VentoyPlugson graphical plugin configurator was updated in sync with the release. The update also introduces a new VTOY_SECURE_BOOT_POLICY option within the Global Control plugin, giving users more flexibility in managing Secure Boot behavior. Ventoy has also received a fix for a startup issue when Secure Boot was disabled. Microsoft does officially allow users to boot systems without Secure Boot as long as the PC is Secure Boot capable. The full changelog is given below: Update secure boot shim file to solve the UEFI CA 2023 issue. The new release use a new CA, so you need to enroll the new key for the first boot time. VentoyPlugson update synchronously. Global control plugin add a VTOY_SECURE_BOOT_POLICY option. Fix the boot issue when Secure Boot is disabled in the UEFI firmware. You can download the latest version of the app here on Ventoy's official GitHub repo or from Neowin software stories.
    • Windows 11 is now five years old

      By grunger106 · Posted

      Windows 11 is fine, no issues on any of the machines I've run it on since release. The stricter security requirements are a good thing, sometimes the baseline needs to change and people will winge, but it is what it is. Happened with the move from 9x to NT - broke compatability Happened with XP SP2 when security started to become a serious consideration Certainly happend with Vista that brought in UAC, the concept of not running as admin (something that has been the norm in Linux/Unix from pretty much the start) and a completely new driver stack. Windows 11 will probably get looked back at as the point where even consumer and SMB IT was dragged kicking and screaming into a somewhat secure by default configuration.
    • Windows 11 is now five years old

      By matthiew · Posted

      Bluestacks has been emulating Android on Windows for fifteen years. It's janky and riddled with ads though, so WSA looked like it was going to be a huge improvement over the emulator experience. Too bad Microsoft dropped the ball on that.
    • Anthropic accuses Alibaba of using 25,000 fake accounts to copy Claude's capabilities

      By James W. · Posted

      Classic. China would be nothing without Western, Japanese, and South Korean technology.

  • Recent Achievements

    • Rookie
      krychek57 went up a rank
      Rookie
    • Grand Master
      Jaybonaut went up a rank
      Grand Master
    • One Year In
      Philsl earned a badge
      One Year In
    • Dedicated
      Scoobystu earned a badge
      Dedicated
    • First Post
      Tom Schmidt earned a badge
      First Post

  • Popular Contributors

    1. 1
      +primortal
      441
    2. 2
      +Edouard
      172
    3. 3
      PsYcHoKiLLa
      134
    4. 4
      Michael Scrip
      78
    5. 5
      Xenon
      77
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!