I had an exe that installs under Appdata folder of the loggedin user however , as u guys know , i want to use “System” option in Intune to deploy it.
So i thought to use start-adtprocessasuser “microsip.exe” -ArgumentList “/S”
however , this function doesnt recognise whatever u give in the ArgumentList parameter!!!
Regrettably, the function doesn’t work right in 4.0.x and we apologise for that. We’ll be releasing 4.1.0-rc1 next week and in addition to fixing this issue properly, its refined in every way and eliminates the need for stuff like ServiceUI with Intune, etc
2 Likes
you guys rock…responding to queries so fast itself is so commendable…
your tool has made life so easier specially for packagers like me since so many years.
2 Likes
Thank you mate, that’s incredible feedback to receive 
. With the new ServiceUI-less stuff, things are going to get even easier! Just thinking about your initial request again, there’s probably no reason why you can’t just run the entire deployment as the user. The use of Start-ADTProcessdAsUser is meant for more “one-off” things as part of an overall system install.
1 Like
yea i am aware of that. if the whole package was only “user” specific (appdata & hkcu) , then i wud have used the User option in Intune , but i also need to create a new defender firewall rule for the exe path (that too stored in user appdata) in d same package & that obvio , needs elevated access and wont work with the “user” option in intune…Having said that, psadt lacks a function to create a firewall rule …hehe
thats why i have to use the “system” option in intune , and thats why i had to use start-adtprocessasuser to install the main app (it installs under appdata and puts hkcu)
as an alternative , i picked up an older version of psadt and the execute-processasuser works like a charm
I wouldn’t recommend doing firewall rules locally like that though. You’ve got Intune, your firewall rules should be a configuration profile that’s tied to the same group used to assign the app to users. Significantly greater visibility as to what’s going on, and changes needed to firewall rules don’t necessitate a repackage of the app.
1 Like
true however , the guys in Intune admin are not very skilled and i wud die and become a zombie to get this done via them over emails , chats etc
That’s certainly unfortuante, but I do feel you’re creating your own potential headache by trying to circumvent their uselessness by adding it to the deployment script. Best to call out what best practice is, then if it doesn’t happen at least you’ve got an email trail to confirm you tried to go about things correctly.
2 Likes