CIS5 under limited accounts

Under limited or guest accounts how come CIS5 can be shutdown or setting changed under those accounts?

that shouldnt be. shouldnt most if not all settings be grayed out? yes i know of the password options but im just saying it should call for a UAC prompt.

Why, as CIS protects it’s own files from attack no need.

All processes requiring Admin rights like export configuration or update program you will have a prompt.

I is important for it to work fully under limited accounts. The more software works under limited accounts the less people will be tempted to always run as administrator. Password protection is enough.