Admin Script Editor 3.2 Send comments on this topic.
ScriptPackager Execution
Welcome to Admin Script Editor v3.2 > Features > ScriptPackager > ScriptPackager Execution

Glossary Item Box

Script Package Execution

  1. A subfolder is created in the specified target directory (by default this is the %TEMP% directory). This subfolder is given a random nine digit name to ensure multiple packaged scripts executing simultaneously do not interfere with one another.

  2. If the package is set to run with alternate credentials and the specified directory is on an NTFS formatted partition, the directory used to store the files will optionally be restricted from access using the folder's Access Control List (ACL) and the Windows Encrypted File System (EFS). If the script is set to "abort on fail" (default) and the target drive is not NTFS formatted, the script will abort. See below for detailed execution matrix.

  3. The specified command is executed.

  4. When complete, source files are removed from the system.

Any failure on the part of the package or the script will be logged appropriately, see Error Codes and Event Log Entries for details.

Package Execution Matrix

Secure packages are evaluated as follows:

 

2K/XP/2003/Vista

9X/ME/NT

No alternate credentials specified

The shelled process is simply executed in the context of the current user

The shelled process is simply executed in the context of the current user

Alternate credentials with NTFS selected

If the target volume is NTFS - the package applies the NTFS permissions.

 

If the target volume is not NTFS - the package will abort. However, if "abort on fail" is not set the script will execute anyway in the context of the current user.

The package will abort. However, if "abort on fail" is not set the script will execute anyway in the context of the current user. In this case the NTFS setting is not considered.

Alternate credentials without NTFS selected

If the target volume is NTFS - the package will add full NTFS permissions for the alt user to the directories without removing the permissions of the current user to the directories. Adding the NTFS permissions for the alt user is necessary in order to be sure that he will be able to run applications from this directory. In addition the alt user will not attempt to take ownership of the protected directories.

 

If the target volume is not NTFS - the package will execute the script with the alternate user credentials

The package will abort. However, if "abort on fail" is not set the script will execute anyway in the context of the current user. In this case the below NTFS setting is not considered.

Alternate credentials with EFS selected

The package applies EFS and executes the script with the alternate user credentials

The package will abort. However, if "abort on fail" is not set the script will execute anyway in the context of the current user. In this case the below EFS setting is not considered.

Alternate credentials without EFS selected

The package executes the script with the alternate user credentials

The package will abort. However, if "abort on fail" is not set the script will execute anyway in the context of the current user. In this case the below EFS setting is not considered.