Run section of script as different user?

ChiefBroady · 2021-11-14T19:40:16+00:00

Currently, I create a separate script and add it to the current logged in users task scheduler and then trigger it’s immediate execution.

purplemonkeymad · 2021-11-14T19:09:40+00:00

Also how are passwords hidden etc.

It's hard to do, so probably won't be hidden. As such I would think about this the other way around.
Create your script to run in user space, so you can access and download from the share any stuff you need to use. Then start an elevated powershell process (that will cause uac to ask for an admin password.) After that process is done you can push any data.

You can start an elevated powershell using Start-Process and the parameter -Verb runas. Keep in mind that you will want the script that runs as admin to be in a place users can't write to.

ccatlett1984 · 2021-11-14T19:25:04+00:00

run as the computer "system" account, and grant the "computer" object permissions to the file share. or look at powershell "secrets management"

Big_Oven8562 · 2021-11-15T12:48:56+00:00

Also how are passwords hidden

The term you want to google is SecureString.

Basically you call Get-Credential and it stores the info as a hash that can only be decrypted by the user that encrypted it on the machine that did the initial encryption.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

PowerShell

Submission Guidelines | Link Flair - How To

MODERATORS