Looking for a GPO for enabling a PGM socket bind without requiring the user to be a local admin

PeteL22 1 Reputation point
2022-01-12T20:48:32.57+00:00

I currently have some software (C#) that uses NetMQ to communicate between multiple hosts on a network. Unfortunately, since we use PGM, windows requires the users to be be local admins on their boxes or the bind fails due to insufficient permissions. I am hoping that there is a GPO that we might be able to set on our domain that gives users the right to bind to these sockets without keeping them full admins on the computers they use.

Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,294 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Limitless Technology 39,586 Reputation points
    2022-01-14T09:59:03.117+00:00

    Hi there,

    You can use the below procedures for an administrator to delegate permissions to others using the GPMC so that they can perform some Group Policy administrative tasks.

    You can also specify Group Policy to control the behavior of MMC and MMC snap-ins. For example, you can use Group Policy to manage the rights to create, configure, and use MMC consoles, and to control access to individual snap-ins.

    Delegate Permissions for Group Policy
    https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn789195(v=ws.11)

    Implementing Least-Privilege Administrative Models
    https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/implementing-least-privilege-administrative-models

    --------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer--


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.