Appreciate the suggestions Nick, although another spanner was thrown in the works this morning. I've now been told that there is a requirement that the file be updated at startup to avoid the file being in use by users having the application running.
My understanding is the only way to do this in ConfigMgr is to create a required deployment with an assignment for "user logon" but in my experience this runs delayed and I'm reading isn't even available for application deployments. The other option is to 'run when no user is logged on' but again, if a user logs on quickly, in my experience the deployment won't fire. This has been one of my biggest frustrations with ConfigMgr since I began using it as SMS 2003. Just a nice way to fire deployments immediately at computer startup or user logon would be great. I see there's a suggestion for this on the ConfigMgr user voice site; doesn't seem to have as many votes as I would've expected, but at least it's on the radar (I hope). Daniel. From: [email protected] [mailto:[email protected]] On Behalf Of Nick Sent: Wednesday, 2 December 2015 3:44 AM To: [email protected] Subject: RE: [mssms] Replacing a file with compliance settings You don't have to give up and use GPO just yet. There are many creative ways to do what you need. 1. Sounds like you already have the Configuration item to do your detection. You can create a collection of systems that are "non-compliant" with a package/program to copy the file. 2. If SCCM 2012, you can create an "application" object to do the copy for you based on detection method and even requirements. 3. In the Configuration Item, if you wanted, you could create the file using VBS or Powershell and/or copy it from a common network location. I believe the idea to not provide running an "application" as a remediation item is because the compliance for an application is already built into the application model. Consider creating an application with a deployment type that detects the new file. -Nick- From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Corkill, Daniel Sent: Monday, November 30, 2015 7:38 PM To: [email protected]<mailto:[email protected]> Subject: [mssms] Replacing a file with compliance settings I've been asked to replace a configuration file with an updated version on a group of computers. Typically I would use a GPP file item but I thought this might be a good opportunity to play with ConfigMgr compliance settings for the first time. While messing around with a test configuration item I'm unable to specify any remediation settings for a file. I've done some searching and it appears remediation is only available for registry values, WMI and scripts. This is ConfigMgr 2012 SP1 so I'm not sure if file remediation is supported in a later version. Is there any workaround or will have I have to give up and use Group Policy? Daniel. ********************************************************************* This email, including any attachment, is confidential to the intended recipient. It may also be privileged and may be subject to copyright. If you have received this email in error, please notify the sender immediately and delete all copies of the email. Any confidentiality or privilege is not waived. Neither the Council nor the sender warrant that this email does not contain any viruses or other unsolicited items. This email is an informal Council communication. The Council only accepts responsibility for information sent under official letterhead and duly signed by, or on behalf of, the Chief Executive Officer. Privacy Collection Notice Logan City Council may collect your personal information, e.g. name, residential address, phone number etc, in order to conduct its business and/or meet its statutory obligations. The information will only be accessed by employees and/or Councillors of Logan City Council for Council business related activities only. If your personal information will be passed onto a third party, Council will advise you of this disclosure, the purpose of the disclosure and reason why. Your information will not be given to any other person or agency unless you have given us permission or we are required by law. ********************************************************************* This email, including any attachment, is confidential to the intended recipient. It may also be privileged and may be subject to copyright. If you have received this email in error, please notify the sender immediately and delete all copies of the email. Any confidentiality or privilege is not waived. Neither the Council nor the sender warrant that this email does not contain any viruses or other unsolicited items. This email is an informal Council communication. The Council only accepts responsibility for information sent under official letterhead and duly signed by, or on behalf of, the Chief Executive Officer. Privacy Collection Notice Logan City Council may collect your personal information, e.g. name, residential address, phone number etc, in order to conduct its business and/or meet its statutory obligations. The information will only be accessed by employees and/or Councillors of Logan City Council for Council business related activities only. If your personal information will be passed onto a third party, Council will advise you of this disclosure, the purpose of the disclosure and reason why. Your information will not be given to any other person or agency unless you have given us permission or we are required by law.
