Best Way to Test a Package in a Locked-Down Environment
Updated: 18 Apr 2008 | 5 comments
Per machine advertisement followed by installation by a normal user account is the most comprehensive test for this situation. As an administrator use the following command line to advertise the application to the local machine.
Msiexec.exe /jm package.msi ALLUSERS=1 /qb
Then...
Logon with a normal user account and trigger the installation process by running the shortcut or via a file type association. The application should start and run the with no problems at this point.
blog entry Filed Under:
About Endpoint Management Community Blog
The Endpoint Management Community Blog is the perfect place to share short, timely insights including product tips, news and other information relevant to the Endpoint Management community. Any authenticated Connect member can contribute to this blog. Filter by:
Blog Tags
Configuring Altiris Client Management Suite Altiris Deployment Solution Symantec Management Platform (Notification Server) Wise Packaging Basics Altiris Server Management Suite Best Practice Compatibility Tip/How to Helpdesk Solution Altiris IT Asset Management Installing Workflow Solution Ghost Solution Suite Windows Reporting Performance Upgrade Features ServiceDesk 7.x Database Agents Dell Management Products
Comments
I can't believe we haven't
I can't believe we haven't been using the /jm swith all this time... we've had msi deployments not go very well due to this issue. I can't thank you enough for bringing this out!
-Geo
Deployment Scenario and its significance in testing the MSIs
its a good tip. However, I don't consider this to be a genaralized one. It always depends on the scenario with which the application gets deployed.
For eg: If we have application which is deployed using intelli mirror(AD), then the application needs to tested with /ju switch. If we follow /jm here, the application may goto heal for every user when he launches it.(if the HKCU keys are set as a key-path).
If the application undergoes a SMS deployment., then this practice of testing is worth. But still, we will not be able to simulate the exact deployment mechanism.
Hence, its always adviced to test the package based on the deployment scenario.
Cheers'
Vijay
Microsoft MVP [Setup-Deploy]
Weblog: www.msigeek.com
An ok tip to know about if
An ok tip to know about if you are just coming to this scenario ..
However, the most important (and most overlooked) fact of packaging for locked-down/limited user accounts is to always do a full and exact profiling of what ACLs your application needs to fully work as intended. To do this properly you would need to do full user testing.
You say "The application should start and run with no problems at this point.", my emphasis.
This is where less-experienced packagers often fail. Don't make this mistake!
Best Way to Test a Package in a Locked-Down Environment
I agree with you .... Need to do a full testing anyhow.
What i mean saying that "The application should start and run with no problems at this point.",
is, it must includes full user testing here.
Thanks
Prasanna Kumar Raja
Sr.Application Packager
Anovatek
Prasanna Kumar Raja
Sr.Application Packager
Anovatek
/jm option
Well, I agree that the package will work fine when you do a /jm. Its because all the policies and ACL settings would have been triggered by administrator. Hence, this package will also work for a standard user. However, as a packager you may not test the entire application.
The problem really comes when it undergoes a real time deployment.
Cheers'
Vijay
Microsoft MVP [Setup-Deploy]
Weblog: www.msigeek.com
Would you like to reply?
Login or Register to post your comment.