Pushing msi through GPO with UAC running on clients

I have to push a an msi for installing a software audit. My plan is to push it via a Group Policy Startup Script. The problem I believe I'm going to have is that my users are not local admins on their computers and we have UAC enabled on all of them. Is there a way to add an exception to UAC for this application? Or is there a way to script disabling UAC during the install? Any other ideas or thoughts?
Rick GoodmanNetwork AdministratorAsked:
Who is Participating?
Asif BacchusConnect With a Mentor Commented:
A computer startup script should not be an issue, McKnife is correct.

However, I would suggest deploying the software via a GPO using Computer Configuration > Policies > Software Settings > Assigned Applications.  This will allow you to install the MSI, apply any needed transforms, auto-install/un-install when the policy is un-applied and control how it shows up in add/remove programs.  Just like the startup script, this will run as the system account, so no UAC issues.  In addition, it utilizes the 'trusted installer' privileges so no worries about user admin rights.  As an added bonus, the GPO checks to see if the program is still installed and then cancels itself whereas a startup script would run every single time the system starts, slowing things down.  Just a suggestion though.

UAC does not rule the system account. The startup script uses the system account.
That means: no problem for you.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.