Prevent Ordinary Users From Installing Devices

Written by on Thursday, January 3, 2008 4:44 - 0 Comments

Enhance security by preventing ordinary users from being able to install devices.

Normally in Windows 2000/XP only administrators have sufficient rights to install new hardware on a machine, but PnP provides a way around that in some cases. This is because there are two ways in which PnP can install new hardware: server- or client-side installation. To prevent ordinary users from being able to install PnP devices, you can delete the file, which contains all of the device drivers included with your release version of Windows. This file is found in the C:WindowsDriver CacheI386 folder on a desktop system, but it’s a hidden file so you have to change your folder options to view it. If you delete this file on a user’s machine, then when a user connects a new device to his or her machine and the PnP Manager starts the install process, it won’t find a driver locally and will prompt the user for administrator credentials to complete the installation. If you’ve kept your system patched and up to date with the latest service pack then also be sure to delete the sp*.cab file found in the same folder because this file also contains drivers for supported devices.

Article written by

Comments are closed.

Ad Sponsor


2003 server - Sep 30, 2008 22:34 - 0 Comments

instant messaging srv records

More In Computers & PC

Microsoft Outlook - Mar 22, 2009 11:22 - 0 Comments

Outlook: Duplicates in Mailbox

More In Computers & PC

Microsoft Desktop, Web browsers and Internet, Windows 2000, Windows 7, Windows 98, Windows Firewall and networking, Windows Vista, Windows XP - Feb 8, 2010 18:09 - 0 Comments

Disable Proxy settings in IE

More In Computers & PC