Solved

Pushing msi through GPO with UAC running on clients

Posted on 2014-11-11
2
1,485 Views
Last Modified: 2014-11-15
I have to push a an msi for installing a software audit. My plan is to push it via a Group Policy Startup Script. The problem I believe I'm going to have is that my users are not local admins on their computers and we have UAC enabled on all of them. Is there a way to add an exception to UAC for this application? Or is there a way to script disabling UAC during the install? Any other ideas or thoughts?
0
Comment
Question by:rsgdmn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 54

Expert Comment

by:McKnife
ID: 40436327
UAC does not rule the system account. The startup script uses the system account.
That means: no problem for you.
0
 
LVL 6

Accepted Solution

by:
Asif Bacchus earned 500 total points
ID: 40436411
A computer startup script should not be an issue, McKnife is correct.

However, I would suggest deploying the software via a GPO using Computer Configuration > Policies > Software Settings > Assigned Applications.  This will allow you to install the MSI, apply any needed transforms, auto-install/un-install when the policy is un-applied and control how it shows up in add/remove programs.  Just like the startup script, this will run as the system account, so no UAC issues.  In addition, it utilizes the 'trusted installer' privileges so no worries about user admin rights.  As an added bonus, the GPO checks to see if the program is still installed and then cancels itself whereas a startup script would run every single time the system starts, slowing things down.  Just a suggestion though.

Cheers.
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question