AD Group Policy & SW Deployment Lab - Hsanokklis/2023-2024-Tech-journal GitHub Wiki

Objectives

  • Setup GPO
  • Deploy Application

Helpful Labs:

Prepare an OU, user and Workstation

Before we get into configuring a Group Policy Object (GPO) within Active Directory (AD), let’s set the AD stage to deploy a software package.

  • Via AD Users & Computers, create a “Test OU”.
  • Uncheck Protect from accidental deletion to make deleting it easier later

image

Use Powershell to create another OU called "Software Deploy"

  • Use Powershell on AD01 via MGMT01 to figure out how to create another OU called “Software Deploy”

image

image

  • Move WKS01 and your regular named account into it

image

image

  • Delete the Test OU

image

image

Deploying Software via GPO

One popular GPO feature is deploying software across an AD domain.

If not already, On MGMT01, download the current Putty x64-bit Windows Installer Package.

  • create a Share on MGMT01 named ‘Software’ and place Putty’s .msi in it, so users and computers (via GPO) can access & install it shortly.

TROUBLESHOOTING: When I tried to create a new share on MGMT01-hanne, that server didn't show up. To fix this I had to install file sharing role in Roles and Features

image

Create the share

  • New Share
  • SMB Share - Quick
  • Choose server mgmt01-hanne
  • do the default for everything else
  • place Putty into the Share via the file explorer

image

Access the share via wks01-hannelore

  • Open Run
  • type `\mgmt01-hanne\software
  • the Putty installer should pop up with the share!

image

Create new GPO named "Deploy SW"

  • Install Group Policy Management on mgmt01-hanne via features

image

  • Create a new GPO named Deploy SW within the Software Deploy OU

image

  • Edit the new GPO by creating a new Software installation, and assign Putty’s .msi package to deploy.

image

  • With the new GPO setting
    • run gpupdate /force on WKS01
    • allow the restart when prompted
  • Sign back into wks01-hannelore and you should see putty installed

image

Deliverables

Deliverable 1. Screenshot showing only your Powershell commands & output on AD01 via MGMT01:

  • Creating another OU called Software Deploy under your domain.local

image

  • Moving WKS01 and your regular named account into it

image

image

  • Deleting the Test OU

image

  • Proof of commands working in AD Users and Computers

image

Deliverable 2. Screenshot showing WKS01 under regular named account, doing a quick test of the new Share on MGMT under your regular named account on WKS01 displaying regular account, hostname & share with Putty’s .msi in it, as below:

image

Deliverable 3

  • One screenshot of Event Viewer using the GUI displaying the only single System information event log from the source Application Management Group Policy which validates “The install of application PuTTY release 0.80 (64-bit) from policy Deploy SW succeeded” on WKS01.

image

  • One screenshot of Powershell displaying the only single System information event log from source Application Management Group Policy which validates “The install of application PuTTY release 0.80 (64-bit) from policy Deploy SW succeeded” on WKS01.

image