(imported topic written by dmoore21)
I was wondering how if it would be possible for me to run a portion of a task in a different user context. To provide more specifics, I have an action that downloads and executes a powershell script… But I would like for powershell.exe (and by extension, the script) to be run as the administrator. Is this possible?
(imported comment written by liuhoting)
Have you looked at runascurrentuser? If you’re logged in as the administrator it should work…
(imported comment written by dmoore21)
I’ve looked at that, but I don’t think it will work. The servers I would be deploying the script to usually aren’t going to have a logged on user…
(imported comment written by jgstew)
This is a difficult thing to do with BigFix, and something I frequently come up against.
Is it that this powershell task cannot be run as the system account for some reason?
I think the best way to accomplish would be to create a scheduled task on the system that runs the powershell script and does so from the admin user context.
(imported comment written by dmoore21)
The script is used to audit SQL Server configurations, so the user context in which it runs is pretty important. In order for the script to execute properly, there are two options:
If there are any other options, I’m all ears…
(imported comment written by jgstew)
In that case I would recommend a scheduled task that is set to run as the user with permissions, which could be created with BigFix.
(imported comment written by jgstew)
I suppose another option would be to run the script using PSExec to impersonate the correct user. This would be a way to try this without the need for a scheduled task.