Good afternoon,
I'm trying to use Task Scheduler as a means to pull down and install updates in a closed domain network.
We do not have a WSUS (they won't let us, not sure why)
It is not connected to the internet in ANY way.
I have to download the updates and sneaker them to the domain.
We cannot push updates due to how our network is configured
So my only choice is to have the workstations pull updates and install them.
Here is how I currently have our setup:
We have a task that any user can run.
The users only have the ability to run the task, they cannot modify it.
We also make use of batch files that users can run, but not modify.
Here's how it works:
The user runs a batch file that downloads the patches to their workstation from our domain share
The batch file then runs a task that installs the patches.
The task uses the SYSTEM account to install the patches.
After the patches are installed, the system reboots.
Here's my question:
I know that files can be downloaded to a computer from a domain share without a user account (it's how a GPO does it).
But I don't know how to do this manually (without a GPO).
The idea I have is to have a task that will download the patches, install them, and reboot as needed. Regardless if a user is logged in or not.
I'm guessing if I knew how the GPO does it, I could reproduce it for our task.
Thank you for all your help.
v/r
Joe
