GPO: deploy msi applications

Presentation

In this article, we will see how to deploy applications in MSI format using Group Policy (GPO).

There are two deployment modes :

  • Assigned: Applies mainly to computers, program installation is forced.
  • Published: applies only to users, this mode allows the installation of software at the request of the user, this one is published using control panel.

Before starting the implementation of the GPO, it is necessary to set up a sharing accessible to the computers and / or users according to the selected mode.

Deploy in Assigned Mode

Copy the executable to shared folder.
Shared folder

From the Group Policy Management console, right-click on OU 1 where the policy will be applied and click Create GPO in this field, and link it here 2 .
New GPO for MSI

Name 1 the strategy and click OK 2 .
Name of GPO

Once the strategy is created, right click on 1 and click on Edit 2 .
Edit GPO

Go to Software Installation 1 found in Computer Configuration / Policies / Software Settings, right-click in the box on the left. Go to New 2 and click on Package 3 .
New package

Get the file MSI 1 by its path UNC then click on Open 2 .
Select file

Choose the type Attributed 1 and click OK 2 .
Choose type

The package is added 1 to the deployment.
Package added

Summary of the strategy:
Overview stratégy

Restart a station in the target OU and check that program 1 is installed correctly.
Software installed

It is also possible to see the traces of the installation by the event observer (ID: 1040/1042).
MsiInstaller event

Deployment in Published Mode

The published mode deployment allows the user to install the application itself.

As with the assigned deployment, place the MSI file on a network share.
Copy file un shared network

Depending on who can deploy the application right-click on target OU or directly at the root of domain 1 and click Create a GPO in this area, and link it here 2 .
New GPO

Name 1 the strategy and click OK 2 .
Name GPO

Right click on the 1 strategy and click on Edit 2 .
Edit GPO

Go to Software Installation 1 found in User Configuration / Policies / Software Settings, right-click in the box on the left. Go to New 2 and click on Package 3 .
Install software

Get the file MSI 1 by its path UNC then click on Open 2 .
Select file

Choose published type 1 and click OK 2 .
Choose type

The application is available, by right clicking on it, we can see that it is configured to install automatically.
Install auto

Detail of Group Policy:
Overview

On a computer, open a user session to which the policy applies, go to the control panel and click on Programs and Features 1 .
Control panel

Click Install a program from network 1 .
Install from the network

Here we find all published applications, select application 1 and click on Install 2 .
programs available

Wait during the installation …
wait during installation
The program is installed 1 .
installed program



Related Posts


Deploy Windows with MDT and WDS
In this tutorial, I will explain how to use the Microsoft Deployment Toolkit (MDT) and Windows Deployment Services (WDS) pairing to deploy Windows images (7/8. (1) / 10) using the PXE boot. Prerequisites A server with the WDS role installed and confi

MDT: use with a database
In this tutorial, we will see how to use MDT with a database. The use of this one makes it possible to store in a database the information of deployment for a station to identify for example by its MAC address, which makes it possible when one has to

GPO: Deploy a certificate
Presentation In this tutorial, we will see how to deploy a certificate on computers using a GPO. Some cases where you may need to distribute a certificate: Internal Certification Authority Appliance certificate for SSL filtering Self-signed web serve

Leave a Comment