Mar 31 2022 12:06 PM
Hello fellow contributors,
I've recently noticed the following behavior and I hope someone here will help me to understand if this is a bug or a feature 🙂
while I deploy an app in System context with PowerShell detection script, everything works as expected.
but the moment I add to said app a dependency of an app what configured to run in User context, the following happens:
the same happens if I use application group.
The scenario, is for deploying Azure VPN Client along with Always on VPN profile (that have to run as System due to current limitations).
Currently I don't have logs on my hands, but if someone seen/heard of this behavior, event if this by design, please share 🙂
Thank in advance,
MM
Mar 31 2022 06:41 PM
Mar 31 2022 11:28 PM - edited Apr 01 2022 05:33 AM
Hi @Moe_Kinani,
Thank you for your input! you're absolutely right, for Intune managed devices this is definitely the way to go.
but we use MECM, hence, there is a deferent procedure provided by Microsoft to deploy the VPN profile, and it has to run in System context. you can find more information in the following links.
Configure an Always-On VPN user tunnel - Azure VPN Gateway | Microsoft Docs
Configure Windows 10 Client Always On VPN Connections | Microsoft Docs
Although the suggestion is to use a Package, it lacks the ability to detect if a current working profile is already deployed and will disconnect active sessions. for that reason I've created a detection script and implemented the solution as an application.
The app, when deployed by itself, works perfectly, the issue starts when I add the Azure VPN Client app as a dependency, witch is a Store for Business app and deployed in User context. and the issue affects only detection script, not the deployment itself, so you can say the the solution is working, but I cant really track the actual deployment result.
it's just I'm losing my mind because of the unexpected behavior.
Best regards,
Michael