Batch scripting, Powershell, and not triggering the UAC in Windows
There is no official way to by-pass the UAC prompt for your application. There are a few ways to run a program as administrator if you have the account password (same as the runas approach).
you can use the following Power-Shell script to start your program as administrator without asking the password:
You'll need to save the user password somewhere as a secure string:
$pass = Read-Host -AsSecureStringConvertFrom-SecureString $pass | out-file pass.txtThen you can run the file as administrator with the stored password this way:
$pass = import-SecureString (get-content pass.txt)$startinfo = new-object System.Diagnostics.ProcessStartInfo$startinfo.UserName = "administrator"$startinfo.Password = $pass$startinfo.FileName = "your batch script file name"$startinfo.UseShellExecute = $true[System.Diagnostics.Process]::Start($startinfo)
Registry manipulation for which the current user has access will not itself trigger a UAC prompt.
However using an application with a manifest that requires elevation if running as un-elevated administrator will prompt.
Are you trying to use regedit.exe to perform batch operation? If so replace with reg.exe (using cmd.exe) or, better, PowerShell's inbuilt registry support.
Eg.
get-itemproperties 'HKLM:\SOFTWARE\Classes\Folder'will not require elevation (as that key is readable by everyone), but setting a property on that key will require an elevated PSH session.
An alternative approach, if you are performing operations that require administrative access (need modify access to some object with ACL that limits modification to administrators). Or, something a non-administrator could never do UAC or not, without enter an administrator's account's credentials.
Consider using Task Scheduler: a trigger of on user logon but configured under a specific elevated administrator account.
Summary: really need to know at least one of the things you are doing that triggers UAC in detail.
Setting up a scheduled task that will run elevated needs one consent once when you set it up, and never again. Since you mention these are login scripts, a scheduled task that runs on login should meet your need perfectly.