Solved

Group Policy

Posted on 2014-04-29
3
269 Views
Last Modified: 2014-05-05
I need to push out 4 .msp files to each workstation. This file needs to run only one time. Is there a way to push out a .bat file and have it run once automatically on each workstation?

This is my config for the .bat file:

msiexec.exe /update "OrmedMIS_2013_Q4_Hotfix3.msp" /l*v "%WINDIR%\Temp\Hotfix Installation.log" /quiet /norestart

msiexec.exe /update "OrmedMIS_2013_Q4_Hotfix4.msp" /l*v "%WINDIR%\Temp\Hotfix Installation.log" /quiet /norestart

msiexec.exe /update "OrmedMIS_2013_Q4_Hotfix5.msp" /l*v "%WINDIR%\Temp\Hotfix Installation.log" /quiet /norestart

msiexec.exe /update "OrmedMIS_2013_Q4_Hotfix6.msp" /l*v "%WINDIR%\Temp\Hotfix Installation.log" /quiet /norestart
0
Comment
Question by:dude02
  • 2
3 Comments
 
LVL 83

Expert Comment

by:oBdA
ID: 40030485
You can do that with a group policy by assigning a Startup(!) script to the machines in question (see http://technet.microsoft.com/en-us/library/cc770556.aspx).
Put the msp files into a share that allows the group "Domain Computers" Read access, and use this script as Startup (or Shutdown) script:
@echo off
setlocal enabledelayedexpansion
set SourceFolder=\\SomeServer\SomeShare\SomeFolder
for /l %%i in (3, 1, 6) do (
	set FlagFile=%WINDIR%\Temp\Hotfix%%i_Installation.flg
	if not exist "!FlagFile!" (
		set LogFile=%WINDIR%\Temp\Hotfix%%i_Installation.log
		msiexec.exe /update "%SourceFolder%\OrmedMIS_2013_Q4_Hotfix3.msp" /l*v "!LogFile!" /quiet /norestart
		if not errorlevel 1 (
			>"!FlagFile!" echo Installation success
		)
	)
)

Open in new window

The script uses a flag file to track the installation success; if there are files or registry keys that are set once a patch is installed, the check could be changed accordingly.
If the patches need longer than 10 minutes to install, you need to set another policy to extend the timeout: “Maximum wait time for Group Policy scripts” in “Computer Configuration\Administrative Templates\System\Scripts”.

An alternative might be PsExec (http://technet.microsoft.com/en-us/sysinternals/bb897553.aspx), but that's only good for a relatively small number of clients and if you're sure they're all running.
0
 
LVL 4

Author Comment

by:dude02
ID: 40030514
Thanks for the quick reply. How do I setup this script to install each .msp file?
0
 
LVL 83

Accepted Solution

by:
oBdA earned 500 total points
ID: 40030532
Sorry, missed one replacement:
@echo off
setlocal enabledelayedexpansion
set SourceFolder=\\SomeServer\SomeShare\SomeFolder
for /l %%i in (3, 1, 6) do (
	set FlagFile=%WINDIR%\Temp\Hotfix%%i_Installation.flg
	if not exist "!FlagFile!" (
		set LogFile=%WINDIR%\Temp\Hotfix%%i_Installation.log
		msiexec.exe /update "%SourceFolder%\OrmedMIS_2013_Q4_Hotfix%%i.msp" /l*v "!LogFile!" /quiet /norestart
		if not errorlevel 1 (
			>"!FlagFile!" echo Installation success
		)
	)
)

Open in new window

0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now