This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi
I have a powershell script I want to run interactively so that it interacts with the logged in user. The script has to run as an Admin because it needs to change reg keys. I have created a scheduled task in GPP that runs SystemUI.exe and calls the powershell script. I have set it to run as SYSTEM and only when the user is logged in.
The task works exactly how I want it to when the user is logged in but unfortunately it also tries to run when the user isnt logged in and it fails of course because there is no one to interact with the script. I have selected the "Only run when user is logged in" when I have set up the scheduled task in the GPP but when I view the task on the PC, I see that it changes it to "whether or not the user is logged on".
Is there any way around this ? Is there another account I can be using ?
Is there another way of doing it, i.e running the task as the logged in user but somehow calling the powershell using the SYSTEM account ?
This is on Win 10.
Thanks
If you have Configuration Manager, you could leverage the software center to do this instead of a scheduled task.
for your scheduled task, could you add logic to your powershell script that you're running that does a check for a logged on user, and if a user isn't logged on, then it exits?
Hi, thanks for the reply
We do have config manager but I am looking at doing this using a task (for reasons I wont go into).
I did consider checking within the script to see if a user is logged in but the problem is the task would have run regardless and then the issue I have is how do I get the task to run again?
The plan is to schedule the script to run at 8am and only if the user is logged in. If the user logs in after 8am the task will run because the scheduled time has been missed.
Thanks
I have set it to run as SYSTEM and only when the user is logged in.
In that context, the "user" is SYSTEM, not any desktop user. To get it to run when a user logs on, you should set it to run as INTERACTIVE.
I have no experience with SystemUI.exe. I don't know what requirements/restrictions it has in order to properly function.
Another option would be to modify the scripts that I provided in your prior post. In the Server script, change the Client task to run at user logon.
SCHTASKS /Create /tn "ClientTask" /tr "Powershell.exe -File ""$ScriptFolder\Client.ps1""" /ru interactive /sc onlogon /f
So the Server task will launch, and create the Client task with a trigger to run at logon time. If a user is logged on at the time, the schtasks /run will launch it for them immediately. If no user is logged on, I would expect that the ONLOGON trigger would start the task when the next user logs in. But I have not tested that.
The Server script will just sit and wait until a Client.msg file shows up.
Check the Server task settings for "Stop the task if it runs longer than:" setting. Adjust for however long you want to wait.
Hi
The task really needs to be run on a schedule i.e 8am Monday morning (or as soon as possible after the time is missed). I dont think @logon is going to work. It is a group policy preference so I will need to make it available to the system some time before I want it to run and there is a chance that the user might log off and log on before I want the script to run. I just dont think the option is really there for scheduling a task to run at a certain time, while logged in as user but run using admin credentials.
Thanks
The task really needs to be run on a schedule i.e 8am Monday morning
Define a task to run at 8am as an admin (or system) account, and that executes the Server.ps1 script.
At 8am the Server script will create the ClientTask with a trigger to run at the logon of the INTERACTIVE user. It will also issue a /run so in the case where the user is already logged on, the client task will run and the 2 running tasks will "talk" to each other to allow the "Admin" task (Server.ps1) to update the registry and the INTERACTIVE task (Client.ps1) to inform the desktop user what has occurred.