Previous Topic: User Impersonation ProtectionNext Topic: Kernel Mode Interception


User Mode Interception

If you enable user mode interception, CA ControlMinder intercepts only the impersonation requests that originate from the Windows RunAs utility. User mode interception is available on all supported Windows versions.

Note: User mode interception is enabled by default when you enable user impersonation protection, that is, when you enable the SURROGATE class.

The advantages of user mode interception include:

A disadvantage of user mode interception is that CA ControlMinder does not intercept every impersonation request from every Windows process.