We have some security software that’s able to block PowerShell scripts, and can also safe-list scripts to let them run. When using the toolkit, the scripts are always blocked. The security software support team says we can safe-list the scripts if PowerShell runs them with the “-File” parameter. Can that be done using Deploy-Application.exe?
Here we use Windows10’s AppLocker.
We just make sure the PSADT files are allowed to run where they land.
For example, we tell AppLocker that it’s ok for Scripts to run in SCCM client’s Cache.
you should be able to read your security log files and determine where the PSADT script is being blocked. Then chose: open up that folder in the security software or move the PSADT scripts.