AD GPO & Logon Scripts

H

hecresper

Ok,

I'm trying to patch all of my computers with a Logon Script assigned from a
GPO. So far only the Employees that have Admin rights on their computers
have been able to get patch successfully. How do I get the rest to run the
script and apply the patch?

Here's my Logon Script for the moment:

@echo off

net use s: \\support-share\support /persistent:no

if exist s:\scriptlog\%computername%.txt goto end

s:\patches\patchfilename.exe -q -u -z
echo Patched 824146 > s:\scriptlog\%computername%.txt

:end
net use s: /delete

Is there something I can use to make that patch run as another user or with
Admin privileges?

Thanks for your input.
 
J

Jerry Cruz

o Computer Startup/Shutdown scripts
run with System priviledges.
o User Logon/Logoff scripts run with
that user's priviledges.

I do wich that GPOs allowed the functionality to elevate the permissions of
specific User Logon scripts using a domain-side GPO (not the local User
scripts).

If you are allowed to target the devices themselves and if the patch will
run correctly as the "System", then a Computer Startup script is the
quickest answer.

Note: The builtin "RunAs" command does not accept a command line parameter
for an accounts' password.

Jer
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

AD GPO's Computer Startup script: How 3
Problems with 'startup script' running via GPO. 1
Script problems via GPO 2
Group Polocy - Logon Scripts 1
It seems logon/startup scripts don't run on WinXP workstations 2
running logon scripts - synchronously 0
Logon Script not working-HELP! 1
Logon Scripts in GPO 5

Top