This issue occurs because Windows prevents the Cb Defense Sensor from injecting it's apphook, ctiuser.dll, into the application requesting administrator access and the UAC process, consent.exe.
To resolve this issue, please upgrade to Windows 10 version 1709 build 16299 (Fall Creators Update).
If you are unable to upgrade to the Fall Creators update, then as a workaround you can also create an API Bypass rule for the UAC process, consent.exe and the application(s) that typically require UAC access such as mmc.exe. To add an api bypass rule for each application in the Cb Defense Web Console go to Policies, Select your Policy and select ADD APPLICATION PATH.
For complete visibility into all application actions, the Cb Defense sensor must perform a full apphook injection into the application.
By configuring a permissions rule to bypass the application path when action "Performs any API operation", you can address interoperability issues with any third-party applications that have performance issues when Cb Defense preventions are enabled. This is because the Cb Defense apphook only performs a partial injection into the application process. This permissions rule lets those applications execute, but prevents Cb Defense from enforcing preventions for the following policy operations due to limited apphook injection.
Tries to scrape memory
Tries to inject code
Tries to execute code from memory
Master Boot Record protection for Performs ransomware-like behavior