Documentation for Open Vulnerability and Assessment Language (OVAL®)
Definition Type: Element
Name: uac_state
Namespace: http://oval.mitre.org/XMLSchema/oval-definitions-5#windows
Type: oval-def:StateType
Containing Schema: windows-definitions-schema.xsd
Abstract
Documentation:
The uac_state element specifies the different settings that are available under User Access Control. A user access control test will reference a specific instance of this state that defines the exact settings that need to be evaluated. Please refer to the individual elements in the schema for more details about what each represents.
Collapse XSD Schema Diagram:
Drilldown into virtualize_write_failures in schema windows-definitions-schema_xsd Drilldown into secure_desktop in schema windows-definitions-schema_xsd Drilldown into run_admins_aam in schema windows-definitions-schema_xsd Drilldown into elevate_uiaccess in schema windows-definitions-schema_xsd Drilldown into elevate_signed_executables in schema windows-definitions-schema_xsd Drilldown into detect_installations in schema windows-definitions-schema_xsd Drilldown into elevation_prompt_standard in schema windows-definitions-schema_xsd Drilldown into elevation_prompt_admin in schema windows-definitions-schema_xsd Drilldown into admin_approval_mode in schema windows-definitions-schema_xsd Drilldown into notes in schema oval-definitions-schema_xsd Drilldown into Signature in schema xmldsig-core-schema_xsd Drilldown into deprecated in schema oval-definitions-schema_xsd Drilldown into comment in schema oval-definitions-schema_xsd Drilldown into operator in schema oval-definitions-schema_xsd Drilldown into version in schema oval-definitions-schema_xsd Drilldown into id in schema oval-definitions-schema_xsd Drilldown into StateType in schema oval-definitions-schema_xsdXSD Diagram of uac_state in schema windows-definitions-schema_xsd (Open Vulnerability and Assessment Language (OVAL®))
Collapse XSD Schema Code: 
<xsd:element name="uac_state" substitutionGroup="oval-def:state">
    <xsd:annotation>
        <xsd:documentation>The uac_state element specifies the different settings that are available under User Access Control. A user access control test will reference a specific instance of this state that defines the exact settings that need to be evaluated. Please refer to the individual elements in the schema for more details about what each represents.</xsd:documentation>
    </xsd:annotation>
    <xsd:complexType>
        <xsd:complexContent>
            <xsd:extension base="oval-def:StateType">
                <xsd:sequence>
                    <xsd:element name="admin_approval_mode" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Admin Approval Mode for the Built-in Administrator account.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacsteadminapprovalmode" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:admin_approval_mode">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the admin_approval_mode entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="elevation_prompt_admin" type="oval-def:EntityStateStringType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Behavior of the elevation prompt for administrators in Admin Approval Mode.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacstebehaviorelevationadmin" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:elevation_prompt_admin">
                                        <sch:assert test="not(@datatype) or @datatype='string'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the elevation_prompt_admin entity of a uac_state should be 'string'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="elevation_prompt_standard" type="oval-def:EntityStateStringType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Behavior of the elevation prompt for standard users.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacsteelevationpromptstandard" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:elevation_prompt_standard">
                                        <sch:assert test="not(@datatype) or @datatype='string'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the elevation_prompt_standard entity of a uac_state should be 'string'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="detect_installations" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Detect application installations and prompt for elevation.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacstedetectinstallations" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:detect_installations">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the detect_installations entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="elevate_signed_executables" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Only elevate executables that are signed and validated.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacsteelevatesignedexecutables" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:elevate_signed_executables">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the elevate_signed_executables entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="elevate_uiaccess" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Only elevate UIAccess applications that are installed in secure locations.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacsteelevateuiaccess" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:elevate_uiaccess">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the elevate_uiaccess entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="run_admins_aam" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Run all administrators in Admin Approval Mode.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacsterunadminsaam" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:run_admins_aam">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the run_admins_aam entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="secure_desktop" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Switch to the secure desktop when prompting for elevation.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacstesecuredesktop" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:secure_desktop">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the secure_desktop entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="virtualize_write_failures" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Virtualize file and registry write failures to per-user locations.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="uacstevirtualizewritefailures" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:uac_state/win-def:virtualize_write_failures">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the virtualize_write_failures entity of a uac_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                </xsd:sequence>
            </xsd:extension>
        </xsd:complexContent>
    </xsd:complexType>
</xsd:element>
Collapse Child Elements:
Name Type Min Occurs Max Occurs
Signature ds:Signature 0 1
notes oval-def:notes 0 1
admin_approval_mode win-def:admin_approval_mode 0 (1)
elevation_prompt_admin win-def:elevation_prompt_admin 0 (1)
elevation_prompt_standard win-def:elevation_prompt_standard 0 (1)
detect_installations win-def:detect_installations 0 (1)
elevate_signed_executables win-def:elevate_signed_executables 0 (1)
elevate_uiaccess win-def:elevate_uiaccess 0 (1)
run_admins_aam win-def:run_admins_aam 0 (1)
secure_desktop win-def:secure_desktop 0 (1)
virtualize_write_failures win-def:virtualize_write_failures 0 (1)
Collapse Child Attributes:
Name Type Default Value Use
id oval-def:id Required
version oval-def:version Required
operator oval-def:operator AND Optional
comment oval-def:comment Optional
deprecated oval-def:deprecated false Optional
Collapse Derivation Tree:
Collapse References:
oval-def:state
Documentation for Open Vulnerability and Assessment Language (OVAL®)

Generated using Liquid Studio - Developer Bundle 21.0.0.0