We need to deploy a MSI via our GPO's. If we setup this MSI under User Configuration\Software settings we can then set this to run when the user Logs In.

If we pick Computer Configuration\software Settings the option to install at Log In is not available. When will it install? the next time the machine checks for a new policy update? Which I think is every 90-120 minutes.
0 Comments   [ + ] Show Comments

Comments

Please log in to comment

Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.

Answers

0
Machine targeted policies will apply the next time an update is forced, which is usually not until the machine is restarted. User targeted policies are similar, but only apply the next time a user to whom the policy applies logs in.

User targeted deployments seem convenient, but you really need to understand the implications of installing applications to a user profile before throwing a bunch of apps out like that.
Answered 10/15/2009 by: Jsaylor
Second Degree Blue Belt

Please log in to comment
0
Also for per-user installations, don't forget the licensing implications if your users move around between desks/sites. As my current client's Compliance people have discovered, it's easy to end up with apps installed on machines for which there are an insufficient number of licenses.
Answered 10/16/2009 by: VBScab
Red Belt

Please log in to comment
0
This.

Then you get to find out that--once you have hundreds of additional installations of an application that you don't have enough licenses for--it's a nightmare to eradicate user-based installations.
Answered 10/16/2009 by: Jsaylor
Second Degree Blue Belt

Please log in to comment
0
I am just building a script to remove the Group Policy information for a package which will then allow an administrator to remove it. Thing is, when it's done, in which forum should I post it, 'Scripting' or 'Group Policy'? LOL
Answered 10/16/2009 by: VBScab
Red Belt

Please log in to comment
0
You have a script to enumerate and access user registry hives?

Do share!
Answered 10/16/2009 by: Jsaylor
Second Degree Blue Belt

Please log in to comment
0
No, not yet but I have executed proof-of-concept runs where deleting enough of the registry fools GP into thinking that it had no hand in the installation, meaning that an admin can uninstall it AND such that any entry-points which get left behind don't trigger a repair. Once it's done, I will certainly share. Part of the delay is a debate about whther to rename the parent keys, rather than deleting them, with a further run to delete the renamed ones after period 'x'. And I thought *I* was paranoid...
Answered 10/17/2009 by: VBScab
Red Belt

Please log in to comment
Answer this question or Comment on this question for clarity