On Windows NT/2000/XP/XP, Application Launcher/Explorer includes a service (NALNTSRV.EXE) that does the following:
Distribution: Ensures that applications can be distributed to the workstation regardless of the logged-in user's Windows system credentials. For example, if a user logged in to a Windows 2000 workstation is a member of the Users group, he or she does not have the file system and registry rights required to install an application to the workstation. The Application Launcher/Explorer Service, running in the system space, ensures that the application can be installed.
Launching: Enables you to configure applications to launch and run under the System user's credentials rather the logged-in user's credentials. This gives an application full rights to the file system and the registry, regardless of the logged-in user's rights.
You can choose from two security modes when running the application under the System user: secure System user mode and unsecure System user mode.
Secure System user mode can be used if the user does not need to interact with the application (for example, you are apply a Service Pack); no interface will be displayed to the user.
Unsecure System user mode can be used if the user requires interaction with the program (for example, a word processor); the normal interface is displayed to the user.
The Application Launcher/Explorer Service must be installed to the workstation by someone who has Administrator rights. By default, the service is installed with the Novell ClientTM, which also requires Administrator rights to install. During startup, Application Launcher/Explorer (through NALSTART.EXE) will also try to install and start the service if necessary; this will only be successful if the logged-in user has Administrator rights.