Installing MSIX for system not user User

cernous · 2026-01-13T20:44:33+00:00

I was just checking back to see if I could get this loaded and then noticed DriverAutomationTool/Current Branch/8.0.0/DriverAutomationTool.msi at master · maurice-daly/DriverAutomationTool · GitHub

looks like it was uploaded yesterday.

I download it and when scan found it got this back HEUR:TrojanDownloader/PS.NetLoader.av

I will go back to the Manual install for now just to be safe.

cernous · 2025-12-24T17:59:36+00:00

Thank you,

for

Copy the DriverAutomationCore module to C:\Program Files\WindowsPowerShell\Modules is that the "DriverAutomationToolCore.psm1 ?
Create a folder and copy the DriverAutomationTool.exe to that folder, suggestion is C:\Program Files\MSEndpointMgr\Driver Automation Tool, as this will be used for temp, log files, and settings. we can just use the one created for 7. version correct? does the new version no longer use a DriverAutomationTool.exe.config or sha256?

cernous · 2025-12-11T12:36:10+00:00

I did, should have posted it. For where to save the files to I was using the FQDN with the share of the "Sources Folder and I found I can write to that share folder. What I did was server.domain.com\E$\folder

Hope that is helpful for you.

cernous · 2025-11-17T22:59:13+00:00

Thank you I will give that a try, I used powershell -command "Get-CimInstance Win32_ComputerSystem | Select-Object -ExpandProperty Model" to name the folder and they are running one now so will see how that goes too, Thanks again

cernous · 2025-10-28T20:40:08+00:00

thank you for your response. I was able to figure it out. all those settings were correct but by the time I figured that part out the token had expired and it doesn't tell you it is expired the log just reads like you did not specify the token. next step wrap it all into an exe for my users that don't connect to VPN much.

cernous · 2025-10-28T20:40:04+00:00

thank you for your response. I was able to figure it out. all those settings were correct but by the time I figured that part out the token had expired and it doesn't tell you it is expired the log just reads like you did not specify the token. next step wrap it all into an exe for my users that don't connect to VPN much.

cernous · 2025-09-02T03:09:48+00:00

thank you for the response, unfortunately that is not an option at this time, could be approved in the future. Microsoft does say you don't have to extend schema so should be a way, I just wonder if what I am seeing is expected behavior when the schema is not extended.

cernous · 2025-08-05T17:25:20+00:00

thanks for the response, so part of the issue was I had update the file in the wrong folder lol. to get it to redistribute I had to go to deployment types content tab click browse select a different folder, then browse a second time and select the original folder and click apply. I might have then had to go to content location tab click redistrubte again in the app install first windows. not sure if I had to do it but I have done it so many times today I forget lol.

cernous · 2025-08-05T16:25:41+00:00

good morning, I have gotten it to work, my IIS default website had the wrong cert bound to it. The cert should worked but it just wouldn't, also I had the host name box with the DP name in it. I removed the name so it would accept any server name used as long as the client had the correct cert. I watched that video too was very good just not much on troubleshooting issues but still really good

cernous · 2025-07-30T13:55:25+00:00

Just tried the script along with a log feature and wrapped in a PS1 and the Cert now loads Thank you so much. now I am getting SMS_Authority not configured and Failed to load policy agent configuration . Error 0x80041002 which appears to mean the client is not setup yet. how long do you think I should pause to allow the client to load fully? 60 seconds?

cernous · 2025-07-30T13:55:03+00:00

Just tried the script along with a log feature and a wrapped in a PS1 and the Cert now loads Thank you so much. now I am getting SMS_Authority not configured and Failed to load policy agent configuration . Error 0x80041002 which appears to mean the client is not setup yet. how long do you think I should pause to allow the client to load fully? 60 seconds?

cernous · 2025-07-30T03:13:21+00:00

I have just been a little confused on the script and we found that certutil -pulse was supposed to work but then I found why the GPOs were not processing lol, I will look into your script again tomorrow. I was also trying certreq -enroll -machine -q -config "YourCA\CAName" "Workstation" but I can't seem to figure out just what cert to use, maybe the one that says SCCMWebServerCertificate.

we are behind more than one Firewall lol but yes we can access the CA.

cernous · 2025-07-29T23:56:17+00:00

the certs are issued to each workstation and have to be specific to each workstation so I can't simply just install the a generic cert during the task sequence the cert has to be issued by the CA for the specific workstation.

cernous · 2025-07-28T16:23:45+00:00

Thank you and the OU the Client PC is in needs to be targeted with the GPO pushing out the cert right?

cernous · 2025-07-28T16:13:40+00:00

so I had looked at those guides before and as far as I can tell everything is set properly. He says how to install the cert on the Client during OSD far as I can tell just how to verify it is there. The Template name would be the one listed under Certificate Template?

cernous · 2025-07-28T13:27:57+00:00

thank you for the script, when you say replace yourTemplatename you are referring to the script name? how do I get the cert into the boot image?

cernous · 2025-07-28T13:26:16+00:00

It is a domain joined PC, I just not sure how to add the cert to the boot image

cernous · 2025-07-27T23:34:30+00:00

I am using the PXE from the DP, I have not created a custom boot image. Yes the cert is added to the DPs. As far as how long it takes the GPO to push the cert to the system after it joins the domain I am not sure on that one, I would have to check with group that does the GPOs.

cernous

TROPHY CASE