The software that resides on each workstation that monitors, reports on, and responds to UAC privilege events is collectively referred to as the “AutoElevate System Agent”. The components which make up the System Agent are the “AutoElevate Agent” service which is set to start automatically at Windows startup and then spawns the AEAlert and AEUACAgent applications once a user is logged in.
The System Agent operates in either “Live”, “Audit”, or "Technician" mode.
- “Audit” - All UAC activity for the user is tracked but there is no change to the user experience.
- "Policy" - Policy mode will apply any defined rules to an agent but will NOT invoke the Real-Time evaluation process if a rule has not been defined but will instead allow the UAC to appear. Policy mode will allow an MSP to make and apply rules for key applications that have an immediate use case benefit but will not prompt the user or technician for evaluation of anything unknown.
- “Live” - All UAC events are intercepted and replaced by customized AutoElevate dialog boxes which either give the end user the choice to have the System Administrator evaluate the UAC event, or that will automatically carry out rules that have been previously defined by the System Administrator.
- "Technician" - Special mode enabling onsite Technicians to interact with the computer's UAC prompts. Please see "Technician Mode" documentation on our support site.
When the AutoElevate Agent service is stopped, the computer resumes normal UAC functionality and UAC events are no longer tracked.
Please see "System Agent Installation" in our support documentation for more detailed instructions on Agent deployment options.