Lacerte Tax 2008 in Restricted User Environment

Those of you that have had the misfortune to have to work in IT and support Lacerte Tax know the pain that it causes. Not only is it written poorly from a Server – client standpoint but also as an application in general. However after much swearing and frustration I have figured out the security rights to grant so that you can keep a user at user level, and still be able to run Lacerte.

  1.    Install Lacerte from the network as an administrator on the machine. Make sure it works.
  2.    Open Windows Explorer and go to the C: drive.
  3.    Right Click the Lacerte folder and select properties.
  4.    Go to the Security Tab and select Users.

  5.    Grant them modify rights click apply and ok.
  6.    Go to C:Windows you will want to grant users modify rights on the following files: W08Tax.ini, Lacerte.ini, WTAXSYNC.ini.

Please note for each year of Lacerte installed there should be a corresponding W(Year)Tax.ini file.

  7.    Go to Start > Run > Regedit.
  8.    Browse to HKLM > Software > Intuit
  9.    Right click the Intuit key and select Permissions.
  10.    Grant users Full Control over the key, click ok.

  11.    Right click the Lacerte key and select Permissions.
  12.    Grant users Full Control over the key, click ok.

*Note* Your domain users will need modify rights over the network locations where the Lacerte data is held as well.

That should do it, you should now be able to run Lacerte as a regular limited user without having to give up the keys to kingdom.

To Lacerte all I have to say is FIRE YOUR PROGRAMMERS. The amount you charge your customer base per year for your software and the lack of writing it for an enterprise environment is unforgivable. Your product is a pile of crap. I’d be more than happy to give you some ideas on how to improve it but something tells me I won’t hear from you.

Permanent link to this article:


Skip to comment form

    • Anonymous on June 18, 2009 at 6:13 am
    • Reply

    This is Jamie with Intuit. I am the chief technology architect for Lacerte. It sounds as if you had difficulty granting security rights, and I apologize for the headache the situation caused you.

    At Intuit, we are committed to providing our customers with quality tax and accounting offerings like Lacerte that support a range of customer needs from single user to multi-user network installations, that run on a variety of Windows operating systems (XP, Vista, etc) and that customers can easily administer.

    Lke many other software products, we occasionally . find that specfic functions in the application do not run as intended on all platforms. Once discovered, we will then look into resolving the issues to deliver a quality product to meet our customers’ needs. Vista is the most recent example of expanding our operating platform support for Lacerte, and we will continue to improve Lacerte’s operation under that operating system in subsequent releases.

    At Intuit, listening to customers is part of our DNA. We provide multiple ways for customers to provide us feedback. For example, you and your readers can provide input at and click on the gray button “Share your feedback” towards bottom of the page on the right), or select Lacerte E-Mail under the Tools->Communications Menu to email feedback directly from the Lacerte product.

    Jamie Slattery, Chief Technology Architect for Lacerte

  1. I just wanted to post a comment on Jamie’s. Running a program with basic user rights is a MUST. I just installed Lacerte 2009 and guess what it doesn’t run in a locked down environment and some of the above steps have changed so I guess I am going to have to reinvent the wheel. Please Lacerte get you act together and setup you program to run properly asw a user not an administrator.

    • Anonymous on August 11, 2011 at 6:46 am
    • Reply

    I second this… lets look at this from the administrator point of view.

    What is the biggest threat to a company’s network and computer systems. Simple – a virus, malware, etc.

    What is the best way to prevent malware, virus’s etc. Wait before you say AV software – you are wrong. the best way is to remove local admin rights. Without local admin rights – programs cant install – therefore you eliminate the problem before the AV is needed. Now couple that with AV and you have a sound secure system.

    Thank you Intuit for forcing companies to remove the best defense they have to protect their computer enviroment – bravo!

    • Anonymous on December 16, 2011 at 10:15 am
    • Reply

    My God, this program. I couldn’t express if I tried the ineptitude of their “support.” “Can you make someone an admin just on the Lacerte folder?” they asked me. Wha?!? “Do you understand how SIDS and Active Directory work,” I wanted to ask them. I wrote my own workaround to this debacle of programming. A batch script that publishes one users (who is an admin temporarily to perform updates) updated files, then pushes those to users with another script. All done with the user only allowed Power User permissions. Win/win. Lacerte support and programmers need help. Please someone in Lacerte: get some training.

    • Anonymous on April 19, 2012 at 4:18 pm
    • Reply

    I would just like to Comment on what Jamie from Intuit said about commitment to the customer — blah blah blah. He or she only offered puffery without substance. No concern or consideration for the main point of this article.

    What is Intuit-Lacerte doing to fix this very obvious vulnerability in the software for which a fix is about 6 years over-due? Even QuickBooks provides a workaround for this issue, but Jamie thinks all is well. Jamie suggests we could offer a suggestion to the development team? If he is the chief, why is he not taking the topic of this article to the team? Why would we waste our time composing a suggestion when Jamie the chief is clearly demonstrating an initiative-less wait-and-see-what-happens approach instead of proactive responsible design and production of software?

    This suggestion to improve local machine security has already been on the table for about 5 years. How much time do you need Jamie? In your response you made no real offer to look into the issue or change anything. Do you drive home every night patting yourself on the back while fantasizing about a job well done?

    • Rick Dexter on February 10, 2016 at 3:26 pm
    • Reply

    I just ran across this post while searching the internet for how to make Lacerte run and update correctly as a non-admin on Windows 7. Seems as though they still haven’t figured it out…..

    1. I’m both amazed and saddened that this article still has relevance this many years later. Hopefully the solution is still valid.

    • Anonymous on February 12, 2016 at 4:04 am
    • Reply

    Lacerte still has no answer. Can someone in the IT work please help us?

    • Rick Dexter on March 28, 2016 at 1:10 pm
    • Reply

    FYI, I tried this solution with Lacerte 2015 and no-go. It does not work and still requires the user to elevate to install updates.

    What Lacerte needs is a way to roll out updates via a software deployment tool like SCCS. Then the problem is solved. Perhaps a command line silent updater that can be run on each desktop in an administrator context. I doubt Lacerte even knows what that is.

    1. I agree completely. Add to that an actual relational database vs flat file op-lock hell.

Leave a Reply