I seem to be unable to utilize servicemanager.exe from the PAM runas and obtain the "pass through" permissions.
Example- I Activate my PRIV access. The PAM role activated has "local admin" privileges to a set of servers. On my PAW server I start servermanager.exe from a powershell window that was opened via runas using the PRIV credentials, Server Manager starts fine. I attempt to use the Event Viewer from the Server Manager tools, and connect to a server that I should have local admin rights I get read access failures.
Contrast- If I start MMC from the same powershell (via runas PRIV credentials), I'm able to add the Event viewer snap-in and successfully connect to the server in question.
PAM 2016 SP1- Version 4.4.1237.0