Understand the Windows Vista UAC

The biggest change from moving from Windows XP to Vista is the addition of a new User Account Control (UAC) protection layer. This results in a security prompt for permission to perform critical (potential risk) Windows actions.

Example of Vista's uAC on new hardware

For most computer users the new Windows VISTA UAC is a good safeguard. Some advanced users may wish to disable the default UAC protection. However, it is a good checkpoint prompt for the safety of most Vista users.

Vista events that prompt with a UAC:

With Windows Vista UAC, you will be prompted for the following events:

  • Installing a new Program or Plug-in
  • Modifying files and folders in Windows System directories (Windows and Program Files)
  • Installing and Removing Applications
  • Modifying Windows System settings (control panel)
  • Modifying or Installing Windows Services or Device Drivers
  • Changing settings for the Windows Firewall

Changing Vista's UAC settings for common tasks, such as changing the time zone, do not require administrator rights (although changing the time itself does, since that is a global setting). Installing critical Windows updates, no longer require administrator privileges.

This new Vista behavior follows the path that both Linux and Apple Macintosh have used for some years. With the original Windows 2000 and XP design, most users have full administrative rights (access) on a computer; this made it sometimes too easy for malicious objects (like viruses and spyware) to be installed – often without the user knowing. And due to the devious nature of Trojans and Spyware (intentionally written malicious software) – it often happens in a very hidden way - making it hard to combat the attackers intrusion in the first place.

Microsoft has published an informative article explaining the new Vista UAC. It is worth reading if you wish to make Vista changes or just curious about the new security methods of Vista.

The new Vista UAC is not a totally foolproof security; however, it does change the nature of such attacks and transforms the average computer user’s security to be more like what has worked well for UNIX over more than 21 years.

If the current user is not an administrator, Windows Vista will require the administrator's password for critical changes. While this helps keeping your system safer from threats, it can be annoying and sometimes confusing.

In this guide we can show the advanced user how you may optionally disable this UAC feature of Windows Vista. Be aware that disabling the UAC is not always recommended, you will be more exposed to possible security threats (as it was for Windows 2000 and XP).

If you still choose to disable it please make sure you have proper security in place for your system. This means at least having good Anti-Virus, and Spyware protection in place!

To disable Vista's UAC:

Enter the Control Panel and type UAC in the Vista search box. The first result returned by the search will be User Accounts – Turn User Account Control (UAC) on or off.

Vista User Accounts

Click on it and the UAC window will open. Deselect the option Use User Account Control (UAC) to help protect your computer and press the OK button.

Windows Vista will ask you to restart your computer. After the restart, and the UAC will be disabled and the Vista UAC confirmation requests will not show - unless you use the above process to enable it again!

How to link to this Page

To link to this page from your website - or blog, cut and paste the following code to your site

It will look like this on your page:

Living with Vista User Account Control (UAC) protection layer