Machine Certificate Check and UAC

Question

Hi All&nbsp;
We are currently completing an evaluation of an F5, with APM.  We are currently working with the Edge Client Software (which has been installed by right clicking, Run as Administrator), which has installed a handful of services on the client.&nbsp;
My question is, when the Machine Certificate Check is taking place, a UAC prompt is displayed - I am an administrator of my machine, and simply continue through the check.  Is there anyway for the F5 client to suppress the UAC prompt, but still obtain both the public and private keys of the certificate?&nbsp;
My understanding was that this was the purpose of the F5 Networks Machine Certificate Checker service?&nbsp;
Thanks
David&nbsp;

amolari · Answer

The purpose of that Machine Certificate Checker service (new with v11.4) is to allow verification of the private key if the user hasn't got local admin right and no extra permissions had been granted to the users to access the private key (bad idea). Have you selected that service to be deployed with the Edge Client package? And you still have this UAC prompt?
Anyway, weird that you get the UAC prompt in any case (with/without the service), as you're local admin.
In the documentation, there's an option regarding UAC prompt, but that's a control for non-admin users
"Allow User Account Control right elevation prompts
Set this option to No to suppress the UAC prompt during private key checking for non-admin users."
Alexandre&nbsp;

david_glasgow_1 · Answer

Thanks, completed a little more testing today, and for a user without admin rights, there is no UAC prompt.  However for users with admin rights, and UAC enabled; there is a prompt for UAC - which we can deal with...&nbsp;
Thanks for you help.&nbsp;
Cheers
David&nbsp;

vandenhoutenp_9 · Answer

Hi David,&nbsp;
Would you mind confirming how you configured this within the machine certificate check? What variables were used? I'm currently trying to get this working but not having much luck.&nbsp;
Thanks&nbsp;
Peter&nbsp;

Forum Discussion

Machine Certificate Check and UAC

3 Replies

Recent Discussions

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Re: Management Certificate

Zero Trust building blocks - Machine Identity Management (MIM) and Workload Protection

Migration F5-DNS-VM from a Virtual Machine to other Virtual Machine

Ubuntu Virtual Machine for NGINX Microservices March 2022 Labs

My Security+ Certification Journey