admin only mode
a message : the helper program for admin only mode is requesting your permission, I press yes and this message pops up again
add a comment
For Windows 10 1909 64 bit version I was able to disable AdminOnly mode by modifying the following keys;
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\NPCAP HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\npcap\Parameters HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\npcap\Parameters
Change "AdminOnly REG_DWORD" from 1 to 0 on all three keys above.
Of course the easier and safer option is to reinstall npcap without the option, "Restrict Npcap driver's access to Administrators only".
But the whole idea is to restrict access to npcap driver to non admin. Hope this helps!
Presumably you have installed npcap in "Admin only" mode. This causes Wireshark to request elevation privileges each time it opens an interface.
Currently it's recommended that you do NOT use "Admin Only" mode with Wireshark.
See also bug 15082.
I also faced this issue in my Windows 10 when I started Wireshark in normal mode, and my Npcap is installed in "Admin Only" mode. My solution was to start Wireshark also in admin mode using "Run as Administrator" mode. Why don't you suggest that as a solution? Is there anything wrong about using "Run as Administrator" with Wireshark?
You should NEVER run Wireshark with elevated privileges, there are millions of lines (3 million??) of code in Wireshark that will attempt to handle whatever traffic is injected into the process and the theoretical potential of something bad happening is considerable.
Asked: 2019-10-16 14:58:18 +0000
Seen: 30,257 times
Last updated: May 12 '20
Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
