Admin Tips
- Windows Server 2008/2003/2000/XP/NT Administrator Knowledge Base
  - Windows XP
    - Admin Tips
      - Security
        Non-Admin Trick for Safe Web Surfing

Section(s): Security
Published on Mar 28, 2006.
Last Modified on Mar 28, 2006.
Last Modified by MitchTulloch.
Rated 3.9 out of 5 based on 7 votes.

A safe way to browse the web when you're logged on as admin.

If for whatever reason you feel you must run your workstation using administrator credentials as opposed to the safer ordinary user credentials (see my article Running Windows Under Non-Admin Accounts on WindowsNetworking.com) there's still a way you can surf the web safely. Just do the following (you must have Windows XP Service Pack 2 or later):

Right-click on the icon for Internet Explorer and select Run As.
In the dialog that appears, leave Current User selected.
Make sure that the "Protect my computer and data from unauthorized program activity" checkbox is selcted and click OK.

This will run IE using the new Restricted Tokens feature of Windows XP Service Pack 2, and the effect is essentially to run IE as an ordinary user not an admin.

About MitchTulloch

Mitch Tulloch was lead author for the Windows Vista Resource Kit from Microsoft Press, which is the book for IT pros who want to deploy, maintain and support Windows Vista in mid- and large-sized network environments. Mitch was also the author of Introducing Windows Server 2008 and technical project lead for the Microsoft Office Communications Server 2007 Resource Kit, both books also from Microsoft Press. For more information on these and other books by Mitch, see http://www.mtit.com .