Andy, at my last employer we gave each developer a VM where they could do things that required admin rights. We gave them a second account that only had admin rights on that VM, not on their regular machine. Also, that admin account did not have internet access unless they got special approval. They hated it at first, of course, but most ended up content with the end result. They found values to that setup too, of course.
Steve ----- Original Message ----- From: Andy Shook To: NT System Admin Issues Sent: Wednesday, January 02, 2008 11:27 AM Subject: RE: Google Toolbar remote uninstall Kevin, I'd love to get some details of your solution, as I'm supporting a large pool of developers and I have yet to find an acceptable solution to local admin rights for the coders. Shook http://www.linkedin.com/in/andyshook ------------------------------------------------------------------------------ From: Kevin Lundy [mailto:[EMAIL PROTECTED] Sent: Wednesday, January 02, 2008 10:30 AM To: NT System Admin Issues Subject: Re: Google Toolbar remote uninstall I agree. I've got close to 400 engineers, 200 of them doing development and a ton of unique applications. Many claimed they needed admin. We've found a solution for all of them. All my users are normal AD users. On Jan 2, 2008 10:14 AM, Steve Pruitt <[EMAIL PROTECTED]> wrote: Have you analyzed exactly what file/registry access is needed, so you could grant just that instead of full Admin rights? It sounds as though that'd be time well spent. Steve ----- Original Message ----- From: "Jon D" <[EMAIL PROTECTED]> To: "NT System Admin Issues" < [email protected]> Sent: Wednesday, January 02, 2008 9:48 AM Subject: Re: Google Toolbar remote uninstall >> How did they get it in the first place? If they are local admin's then >> they >> will re-infect themselves again shortly. > > Unfortunatally local admin access is required for many of the apps > they need to run. > We've done tons of research and yelled at the vendors, but to no > avail. The main app that everyone uses is the biggest problem with > needing it and they have 15 years of data in it. No way to get them > off of that.. > > > > > On Jan 2, 2008 8:29 AM, Jon Harris <[EMAIL PROTECTED]> wrote: >> >> How did they get it in the first place? If they are local admin's then >> they >> will re-infect themselves again shortly. >> >> Jon >> >> >> >> On Jan 2, 2008 8:20 AM, Jon D <[EMAIL PROTECTED] > wrote: >> > I usually consider google a smart company with smart people, but their >> > google toolbar is almost like spyware. >> > It's bundled in everything, all my users seem to be 'infected' with >> > it. I can't find an easy way to get rid of it short of wasting >> > thousands of dollars in manhours manually uninstalling it from each >> > users computer. >> > >> > I'm wondering if anyone has discovered an easy way to remotely >> > uninstall >> it? >> > How are other company's handling it? Obviously you can't allow it >> > being there's no central management or update and old versions are >> > open to hacks. >> > >> > I would simply remotely DELETE it, but it appears to tie into the >> > windows shell where I'm afraid just deleting it could cause system >> > instability? >> > >> > >> > >> > >> > Thanks in advance. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
