US English (US)
ES Spanish

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

  • Contact Us
English (US)
US English (US)
ES Spanish
  • Home
  • AutoElevate Knowledgebase
  • Managing Rules

Creating Elevation Rules From UAC Events

Written by Owen Parry

Updated at February 6th, 2025

Contact Us

If you still have questions or prefer to get help directly from an agent, please submit a request.
We’ll get back to you as soon as possible.

  • AutoElevate Knowledgebase
    New to AutoElevate? START HERE General & Troubleshooting Managing Rules Integrations Announcements FAQ Sales & Marketing
  • Password Boss Knowledgebase
    Using Password Boss Business Administration Password Boss Partner Documents
  • Changelogs for Autoelevate and Password Boss
  • Current Status
  • Marketing Toolkit
    MSP Marketing & Education Toolkit
+ More

Table of Contents

Elevation Rule Creation Creating Elevation Rules from UAC Events Where are the rules stored?

Elevation Rule Creation

Rules must originate from a UAC event or an elevation request. They cannot be created manually from scratch because we depend on the information provided to the Windows UAC to fill in the details on the AutoElevate portal.

 

Creating Elevation Rules from UAC Events


To create a rule from a UAC event, please do the following:
 

  1. In the left-hand column click Elevation Events
     
  2. On the event grid select the event(s) by clicking the square next to the listed events(s) you want to turn into a rule
     
  3. Click on the Actions menu at the top left of the screen, and then Convert To Rule 

4. A Dialog box will appear asking you to choose the Approval Status of either Approved or Denied and then what level you want to create the rule on. You may choose All Companies, Whole Company, Whole Location, or Computer. Computers will take precedence over the rest, where there’s a hierarchy. 

5. After selecting the level, another dropdown menu will appear where you can select the specific location (either by selecting from the drop-down list or typing in the space to search). For convenience, the Company, Location and Computer from the recorded event are pinned to top the of the list for easy selection. 

6. Click OK to accept changes once the specific location, Company, or Computer is selected.
 

To prevent our Agent from intercepting the User Account Control (UAC), you can select a Rule (checkbox) then from the Actions menu, under Ignore Mode select Set to On. This will allow the UAC to come up and be displayed to the user, effectively having AutoElevate ignore it.
 

Where are the rules stored?

Rules that have been defined are encrypted and stored in a secure area of the registry at each check-in and will continue to work with or without connectivity to the Internet and/or our services.

 

 

For anything that doesn't have a rule, we default to a position of security and allow the UAC to come up.
 

You can verify if an event has an existing rule that would apply under the Had Matching Rule? column in the Elevation Events screen. Requires agent version 2.9.2.0+ and applies to all Elevation Modes.
 

We recommend creating a break-the-glass local admin on each system (that perhaps only management has access to the credentials) for rare cases like these.

creating rules uac events

Was this article helpful?

Yes
No
Give feedback about this article

Related Articles

  • Elevation Types
  • Copying Elevation or Blocking Rules
  • Using DUO with AutoElevate
  • UAC Levels & Windows User Account Control Settings
  • Products
    • Privileged Access Management
    • Password Management
  • Solutions
    • For MSPs
    • For IT Pros
    • By Industry
  • Resources
    • Weekly Demos
    • Events
    • Blog
    • FAQ
  • Company
    • Leadership
    • Culture + Values
    • Careers
    • Awards
    • News & Press
    • Trust Center
    • Distributors
  • Get Pricing
  • Free Trial
  • Request a Demo
  • Support
  • Login
  • Contact
4925 Independence Parkway
Suite 400
Tampa, FL 33634
CALL US (813) 578-8200
  • Link to Facebook
  • Link to Linkedin
  • Link to Twitter
  • Link to Youtube
© 2023 CYBERFOX LLC ALL RIGHTS RESERVED  |  Privacy Policy

Knowledge Base Software powered by Helpjuice

Expand