IIS Authentication in AD[edit | edit source]

To make user login with AD, in IIS should be enabled only Windows Auth. Also Check that in providers are used, is NTLM. NTLM should be always on top of list

How start executable with UAC checking[edit | edit source]

use

new Process { UseShellExecute = true }

only ShellExecute checks the embedded manifest and prompts the user for elevation if needed

Windows services[edit | edit source]

The LocalSystem account has no privileges to your network via any Windows-secured mechanism, including the file system, named pipes, DCOM, or secure RPC. It has, however, wide privileges locally.