Solved

copy file to system32 folder of workstations

Posted on 2010-11-24
5
870 Views
Last Modified: 2012-06-27
As part of my server logon script, I want to be able to copy a file from the server to the system32\Drivers\etc folder on the local workstation. My vbs script using filesystemobject copyfile works great as long as the person logs in is an administrator where they have read/write/modify permissions on that folder, but fails for someone with read only permissions. How can I copy this file to the workstation on logon?
0
Comment
Question by:BradleyCleveland
  • 2
  • 2
5 Comments
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 34207245
Change it from a logon script to a startup script under the machine configuration. The script will run the next time the machine boots.
0
 
LVL 4

Expert Comment

by:shudman
ID: 34209431
You could make use of Group Policy Preferences to copy the file across too. You didn't say whether this was the same file every time, or whether the source changes.
0
 
LVL 1

Author Comment

by:BradleyCleveland
ID: 34210297
The destination file is always the same.  C:\windows\system32\drivers\etc\hosts.
The source file will vary depending on the AD group of the employee logging in.
0
 
LVL 42

Accepted Solution

by:
kevinhsieh earned 500 total points
ID: 34210344
Either a startup script or GPO file preference will work, but these are MACHINE properties, not employee settings. If you really need to make the hosts file dependent on the user and not the machine, you can use GPO file security to give users modify access to the etc directory, in which case your login script will work.

I am sure that malware and other malicious users would love to have access to the hosts file, so it would be better if users didn't have access to change it.
0
 
LVL 1

Author Closing Comment

by:BradleyCleveland
ID: 34219692
What I am doing is copying restricted copy of the hosts file on machine startup (doesn't matter who logs in). then only if an employee with administrator access logs, I copy the unrestricted hosts file to the machine.  If anyone besides an administratror needs access to the blocked websites, then I will go to that machine, give them permissions on that folder and include them with administrators in my script to copy over the unstricted hosts file.  This plan isn't working as smoothly as I had hoped, but it will suffice for now until I get time to research internet policy software and decide what will work best for our agency
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A procedure for exporting installed hotfix details of remote computers using powershell
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now