Solved

Pushing msi through GPO with UAC running on clients

Posted on 2014-11-11
2
1,652 Views
Last Modified: 2014-11-15
I have to push a an msi for installing a software audit. My plan is to push it via a Group Policy Startup Script. The problem I believe I'm going to have is that my users are not local admins on their computers and we have UAC enabled on all of them. Is there a way to add an exception to UAC for this application? Or is there a way to script disabling UAC during the install? Any other ideas or thoughts?
0
Comment
Question by:rsgdmn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 55

Expert Comment

by:McKnife
ID: 40436327
UAC does not rule the system account. The startup script uses the system account.
That means: no problem for you.
0
 
LVL 6

Accepted Solution

by:
Asif Bacchus earned 500 total points
ID: 40436411
A computer startup script should not be an issue, McKnife is correct.

However, I would suggest deploying the software via a GPO using Computer Configuration > Policies > Software Settings > Assigned Applications.  This will allow you to install the MSI, apply any needed transforms, auto-install/un-install when the policy is un-applied and control how it shows up in add/remove programs.  Just like the startup script, this will run as the system account, so no UAC issues.  In addition, it utilizes the 'trusted installer' privileges so no worries about user admin rights.  As an added bonus, the GPO checks to see if the program is still installed and then cancels itself whereas a startup script would run every single time the system starts, slowing things down.  Just a suggestion though.

Cheers.
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
This Micro Tutorial will go in depth within Systems and Security in Windows 7 and will go into detail regarding Action Center, Windows Firewall, System, etc. This will be demonstrated using Windows 7 operating system.
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question