Run as SYSTEM with PsExec.exe (to be able test Intune Win32App or Scripts)
Вставка
- Опубліковано 6 сер 2024
- Your Client Management Tool, such as Intune, ConfigMgr, or any other tool runs under the account SYSTEM. In order to not need to upload your package, and script to your device management and then test, you can on your local device elevate to SYSTEM and test it works. SYSTEM doesn't work exactly the same as your normal admin account, it got a different Path to find files, we have seen that in some previous videos to find for example Winget.exe
Also, a little surprise at the end, how you could use SYSTEM to get more access than you maybe thought ;)
Disclaimer: Running as a SYSTEM account could damage your system as it has no limitations, so be careful and run only things you trust and know.
Links
PsTools Download: learn.microsoft.com/en-us/sys...
Another great "real world scenario" video John! Legend!
Thank you so much for the support, happy you liked it. My favorite is the Task Manager and switch to another logged in users sessions without knowing their password.... that feels both wrong and good at the same time :D
As always I have learnt a lot not just PStools but other things you point out. I like how in your videos you teach other things along the way which makes the videos more interesting 😊. Hope to see more real world examples video’s whenever you got the time 😅
Thank you so much Abdul, your support is great. I often try to take from my own experience in the real world, unfortenatly I have to use my demo environment that is't a production, but the cases are still from real world that I experience at my work :)
I agree with you and think support is a great thing.
100 percent, I love this. Hopefully the UA-cam algorithm catches on, this deserves success.
Hej!
Känns som att du visste att jag hade problem med detta och håller på hela veckan. Tack att du gjorde en video jag behövde. Tack så mycket med dina perfekta tutorials.
Tack så mycket Abdirashid, jättekul att höra. Hoppas videon hjälper till annars fråga kan jag försöka hjälpa till.
another useful videos
Thanks you so much Spitze!
I'm literally learning more and more through your videos. Are you by any chance available to do private sessions? I would pay you to help with certain things I have questions about? I like your style and I think your perfect to help in times when one just breaks into pieces. If this is not something you do, please let me know.
Thank you so much Lynette for the support and nice comment, happy that some of this is useful, this makes me driven to do more videos. This weekend I will record a video about Vulnerability Hunting, like how do you know what software you got on your Intune devices, and from there how to you decide what you will update (winget), package (win32 app) uninstall (winget) and show real world cases and scripts ready to use.
I'm always happy to answer questions in these comments but yeah it is hard to explain and get exact help, for private sessions over Zoom/WebEx, I would be positive to do that, I would however first have to ask my work/manager if that is ok from their part. I can let you know by email, email me at 'john at bryntze.cloud' and I'll get back to you when I know.
thanks again for your comment
@@IntuneVitaDoctrina -That is superb news. Thank you
thanks for share! :D
Thank you so much Texy!
Hi
Ones you get in user pc then user can see or not what you are doing on his pc ?
User can also right?
That is a good question, if you run the commands remote, they cannot see when you run it, they can see the results of it.
In my example I run it locally on the device, but PsExec was built to run remote commands, I use it here to illustrate under what user context Intune run and how we can test our scripts before upload.
Short answer would be "no" they cannot see what you ar doing (they just see the result)
Users cannot run PsExec unless they are local admin
@@IntuneVitaDoctrina I have another question.
We have multiple PC are there in multiple location
We want to run some command in powershell
But main problem is
Out script run one by one
First one complete then 2nd pc then 3rd pc
Do you have any solution we want to run the script at the same time on the multiple devices.not one by one
Need more information on this one :)
You want to run a command like "New-ItemProperty -Path "HKLM:\Software" -Name "JBN" -Value "your_value_here" -PropertyType String -Force" but you want it to run on all devices at the same time? or not sure what you want accomplish? but you can schedule Remediation Scripts at a certain time or do a scheduled task to run it
@@IntuneVitaDoctrina I want to run sfc scan now, and DISM all command
I want to run those script at the same time 25 devices
Is that possible?
yes very much possible, remember to always run dism command BEFORE the SFC command.
Either do a Remediation Script that run at a certain time, or push a script that creates a scheduled task on the system running it