When a user with administrator privileges signs in, the User Account Control (UAC) feature signs in the administrator with a so-called “split token”, in which the user operates in Clark Kent mode: Although they have latent administrator privileges, the administrative powers in the token are disabled. To exercise those administrative powers, the user must elevate their token.<\/p>\n
A customer wanted to discourage users from running their program elevated, but they also didn’t want to scold users who were running with UAC disabled (such as on Windows Server), since those users had no opportunity to de-elevate.<\/p>\n
The way to inspect whether your token is split, and if so whether you have the non-administrator (“limited”) version or the administrator (“full”) version is to ask for the token’s elevation type.<\/p>\n
| \u00a0<\/th>\n | Standard user<\/th>\n | Administrative user<\/th>\n<\/tr>\n |
|---|---|---|
| UAC disabled<\/th>\n | TokenElevationTypeDefault<\/td>\n | TokenElevationTypeDefault<\/td>\n<\/tr>\n |
| UAC enabled, not elevated<\/th>\n | TokenElevationTypeDefault<\/td>\n | TokenElevationTypeLimited<\/td>\n<\/tr>\n |
| UAC enabled, elevated<\/th>\n | N\/A<\/td>\n | TokenElevationTypeFull<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n Non-administrative users cannot split their token (there being no administrator privileges to split out), and administrative users cannot split their tokens if UAC is disabled.<\/p>\n If you are looking for “users who manually elevated”, then you can consult the table above and see that a token elevation type of |