I recommend assigning, especially for apps that most people will use...like adobe reader/flash. When it's assigned, it will get installed on startup and no worries. This can slow boot times when there's a new app to install, but that's a fairly small price to pay for consistency, imo.
It depends on the app, but I'd recommend assigning to the computer. Some exceptions might be the admin tools or apps with limited licenses, but in general, I prefer other methods of limiting access to apps. It's only deployed once. One thing I do is to check the box to uninstall the app when it falls out of the scope of management. Now when there's a new version of flash, I just remove the old .msi, add the new one and on next boot, the old gets uninstalled, and the new gets reinstalled. It may be a fine line, but it feels more like a fresh install to me with the added plus that if I ever change my mind about having Flash installed campus-wide, I can just remove the GP, and it will uninstall automatically. To me, that's worth the extra time to un/re-install my apps. -----Original Message----- From: System Manager [mailto:[email protected]] Sent: Friday, February 19, 2010 4:25 PM To: NT System Admin Issues Subject: Re: Reader, Acrobat, and Flash security updates I am new to deploying applications via group policy. I assume the application should be assigned and not published? Should the application be deployed to the user or to the computer? Is the application only deployed once or will it be deployed each time the user logs in and the group policy is applied? Is there any way to track when the application is deployed. -- Kevin Kelly Director, Network Technology Whitman College On 2/12/2010 12:09 PM, Crawford, Scott wrote: > To further expand, I'm quite impressed with Adobe's willingness to work > within an MSI/Group Policy framework. I find it VERY refreshing to be > able to download a working MSI that I can just slap into GP and deploy > site-wide. Additionally, their customization wizard for Acrobat reader > is excellent for making MSTs. > > While I'm less than enthused about their endless barrage of patches and > security bugs, I'm very thankful that they've made the installation > process so painless. Contrast this with QuickTime - blech. > > In light of that, if filling out their license form is helpful to them, > I'm more than happy to oblige. > > -----Original Message----- > From: Kennedy, Jim [mailto:[email protected]] > Sent: Friday, February 12, 2010 12:54 PM > To: NT System Admin Issues > Subject: RE: Reader, Acrobat, and Flash security updates > > Just to expand, that process is painless. Fill out the form and in a few > minutes you get the authorizaion via email. > > -----Original Message----- > From: Phil Brutsche [mailto:[email protected]] > Sent: Friday, February 12, 2010 1:47 PM > To: NT System Admin Issues > Subject: Re: Reader, Acrobat, and Flash security updates > > For Flash you need to register to get a redistribution license. > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~<http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~<http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
