Forum Discussion
Alexander_Slink
Altostratus
AltostratusF5 APM client-side checks.
Hello everyone, Please help to find answer on the question below: Can F5 APM determine the PC user privileges (administrator/user/etc.)? Thanks!
Vladimir_Akhmarov
Cirrus
CirrusHello Alexander
If we are talking about Windows (you wrote PC) maybe you can try this. There is a process "wininit.exe" which is visible under user with Administrator rights only but is present on all Windows sessions.
I think you can try to detect whether this process is present on system. For user with standard privileges return value will be false. For user with administrative privileges return value will be true. I think so
References:
https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-access-policy-manager-visual-policy-editor/access-policy-item-reference/about-endpoint-security-client-side-items/about-windows-process.html
https://support.f5.com/csp/article/K15302653
Alexander_SlinkHi Vladimir,
Thanks for the reply.
The wininit.exe process is visible for both roles (admin and standard).
So this is not an option.
But thank you!