Re: End user should not be able to delete the application.
From: Al Corsi (alcoit_at_optonline.net)
Date: 02/17/05
- Next message: Shehzad Khoja [MSFT]: "Re: Hotfix remove / Uninstall"
- Previous message: Gianluca Pensavalle: "Re: SNMP Service Installation"
- In reply to: Hirdey: "Re: End user should not be able to delete the application."
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 17 Feb 2005 10:13:13 -0500
I feel that the only effective means for keeping users from removing
applications is to remove local admin privileges.
However, I agree with Shehzad - you can use SMS inventory results to control
application installations.
For example, you can easily setup a collection based off a subselect query
that identifies machines without a particular EXE (swinv) or entry in
Add/Remove Programs (hwinv). Set the collection to refresh on a schedule.
Anyhow, suppose an app is installed on a PC and the result is reflected in
SMS. If the app is removed from machine A, the collection (described above)
should eventually include machine A (after the next inventory and collection
evaulation).
You could then schedule a standing recurring mandatory advertisement to
target the app you don't want removed to the collection that includes
machine A (and others that don't have the app).
Of course, the timing of the re-installation depends on several factors such
as inventory frequency, collection evaluation frequency and the frequency of
the mandatory advertisement - Al
PS: there's a thread named "SMS Report modification question" on the
microsoft.public.sms.inventory newsgroup that describes how to find machines
without a particular EXE using a subselect query
"Hirdey" <Hirdey@discussions.microsoft.com> wrote in message
news:D58657D2-B3CE-4616-B6B3-9E8462E7440B@microsoft.com...
> Collection based on HW inventory or software inventory won't solve my
> problem. Even that won't prevent the user from going to Add/Remove
> Programs
> and uninstalling the application. Basically, I don't want the user to be
> able
> to go to Add/Remove Programs and uninstall the application. Say I push a
> package to a collection of 10 workstations which installs an application X
> on
> the user's desktop. Software distribution is successful on all the
> workstations but 2 of the user's delete that application by going to
> Add/Revove Programs. When I run a report on that advertisement that pushed
> the package to the collection, it will say 100% success rate and report
> all
> the workstations with a status of "success" whereas 2 of those
> workstations
> don't have the application anymore.
>
> "Shehzad Khoja [MSFT]" wrote:
>
>> You will have to create a collection based on HW inventory or software
>> inventory and target a program to those machine.
>> Another thing you can do is to write a small wrapper which say runs every
>> 5
>> days, detects if application is present, installs the app if not present
>> else bails out.
>>
>> --
>> This posting is provided "AS IS" with no warranties, and confers no
>> rights.
>>
>>
>> "Hirdey" <Hirdey@discussions.microsoft.com> wrote in message
>> news:B7082E34-CDBA-4FEF-B855-6F4F969CCBD1@microsoft.com...
>> > How do I make sure that if I push a package to a workstation using SMS,
>> > the
>> > user should not be able to delete the application deployed by the
>> > package
>> > or
>> > if they delete it, the application should be installed again on the
>> > next
>> > reboot or logon.
>> >
>> > Thanks in advance.
>>
>>
>>
- Next message: Shehzad Khoja [MSFT]: "Re: Hotfix remove / Uninstall"
- Previous message: Gianluca Pensavalle: "Re: SNMP Service Installation"
- In reply to: Hirdey: "Re: End user should not be able to delete the application."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
