?
Solved

Deploying MSI package through GPO

Posted on 2007-10-06
10
Medium Priority
?
3,865 Views
Last Modified: 2013-12-12
I am trying to deploy .msi package to computers, I don't knwo why it doesn't get installed.
Though when I restart the client computer I am deploying the  msi package to , I shows after applying computer settings, the installing the windows defender. But when I log into the computer the msi is not installed.
the gpresult shows the policy applied.
for test purposes I usee UNC path from the computer to the network to install the msi manually and there was no problem, but I still don't know why it doesn't get installed through GPO.

Any idea?
thanks
0
Comment
Question by:jskfan
  • 6
  • 3
10 Comments
 
LVL 29

Expert Comment

by:Alan Huseyin Kayahan
ID: 20028002
   Hi jskfan
        If you set the installation policy as "Published", installation process will truly begin as you try to run the application shortcut or a file which has the related extension (.pdf for start of Acrobat reader installation for example)
       Set the policy as "Assigned" and in Advanced options under Deployment tab, check the "Install the aplication at logon" and set the "Installation user interface" to Basic.
       Also make sure you created the msi in a shared folder, which you should have specified in installation policy s UNC path (\\servername\sharename\defender.msi). Also check that domain users are added with necessary permissions in share and security.

Regards
0
 

Author Comment

by:jskfan
ID: 20028071
OK,
the policy is set up as Assigned and \\servername\sharename, I gave full control at the share level and read/write at the NTFS level

As of "Install the aplication at logon" under the Deployment tab everything is grayed out except the option "Uninstall this application when it falls out of the scope of management" which is not grayed out.

Installation user interface options are grayed out, I see the maximum was selected but grayed out.
0
 

Author Comment

by:jskfan
ID: 20028132
FYI  I set up  the GPO from Computer Configuration/software settings/software installation
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
LVL 29

Expert Comment

by:Alan Huseyin Kayahan
ID: 20028641
   Hi jskfan
        As I remember, you are trying to push that policy to clients which connect via VPN. If thats correct, you should do it via User Configuration/software settings/software installation as I stated in your previous question.
       Type rsop.msc to Start>Run in VPN client and you will most probably see a cross on computer configuration which indicates it couldnt receive computer configuration.

Regards
0
 

Author Comment

by:jskfan
ID: 20028696
NO not through VPN.

This is an MSI package that I have in the network, it's windowsdefender.msi.
I set up a GPO and assiigned it to computers, when I restart the client computer it shows that it's installing the package but in fact it doesn't.
0
 
LVL 29

Accepted Solution

by:
Alan Huseyin Kayahan earned 2000 total points
ID: 20028750
    I see.
    "under the Deployment tab everything is grayed out " this is wierd. I assume this msi file is the direct setup msi. You should have extracted it to the shared distribution folder by administrative install switch.

        *Place windowsdefender.msi in C:\
        *Empty yoursharedfolder
        *Start>Run, type msiexec.exe /a windowsdefender.msi TARGETDIR=c:\yoursharedfolder
   
    Now delete the current Software installation policy and add new one. This time use the msi file that is extracted to your shared folder

0
 

Author Comment

by:jskfan
ID: 20028910
MrHusy:

I did just what you said above.
and when I reboot the computer it shows something as it used to : "installing managed software windows defender" but when I logon there is no install of the software.

0
 

Author Comment

by:jskfan
ID: 20028923
well I checked the event log of the computer I am deploying the msi to, and found the following log:
Event ID 102
Source: Application Management

<<The install of application Windows Defender from policy WINDEFMSI failed.  The error was : The installation source for this product is not available.  Verify that the source exists and that you can access it.>>
0
 

Author Comment

by:jskfan
ID: 20029028
for some reason it worked now,
Initially the machine I extracted the msi to was WXP machine, but I changed it to windows 2003 server and it worked.
0
 

Expert Comment

by:infotechelg
ID: 26327341
I am having the same issue with the same .msi package. i have tried the same troubleshooting steps, but with no luck. on a windows server 2003 server, i downloaded the windowsdefender.msi and saved it to c:\  then from run, typed in the command with the administrative switch as noted above to extract the files to the designated shared folder. Only, when i click ok, i get the error message " This installation package could not be opened. Verify that the package exists and that you can access it, or contact the application vendor to verify that it is a valid windows installer package". I have already given full controll on NTFS and Share permissions for troubleshooting purposes with no luck (to both the shared folder and the .msi package). Anyone have any ideas?
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Rules and regulations were devised in order to maintain the integrity of a system. However, interpretation of rules can be quite tricky.
Steps to fix “Unable to mount database. (hr=0x80004005, ec=1108)”.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question