[Powershell] Allow Invoke-RDMParentSession as non-administrator user (not application)

Hello,

With PowerShell module v2024.3.5, an 'Access Denied' response is received when attempting create a new sub entry, while authenticated as a non-administrative user. Conversely, the exact same entry can be created with RDM by the same user without requiring administrative rights.

There are some forum posts suggesting this is by design, but recently made possible if the authenticated user is an 'application':
https://forum.devolutions.net/topics/32698/powershell---invoke-rdmparentsession-throws--access-denied
https://forum.devolutions.net/topics/40686/invokerdmparentsession--access-denied
https://forum.devolutions.net/topics/40711/powershell-allow-invokerdmparentsession-as-nonadministrator

As there are security implications related to elevating users to administrative privilege, or creating an 'application' with single factor static credentials, would it possible to enhance the PowerShell module to allow creation of sub entries for non-administrative regular users?

Please let me know if you would like any additional info.

Thanks
Joe


$NewSubEntry = New-RDMSession -Type InventoryReport -Name "`$PARENT_NAME`$" | ForEach-Object {
  $_.Group = $ParentEntry.Group
  $_.HostSourceMode = 'Inherited'
  $_.CredentialConnectionID = $ParentEntry.CredentialConnectionID
  $_.InventoryReport.ShowNetworkAdapters = $true
  Set-RDMSession $_ -Refresh
  Set-RDMSessionCredentials -CredentialsType Inherited -PSConnection $_
  Invoke-RDMParentSession -ParentSession $ParentEntry -Session $_ -Refresh
}