The Action - Install Network MSIX dialog box lets you specify the location of the MSIX file, its certificate, installation mode, and the executable security level. You can also specify the specific requirements that a device must meet for the action to be executed on the device.
To access this dialog box in ZENworks Control Center, click the Bundles tab. Click the underlined link of a bundle in the Name column of the Bundles list, click the Actions tab, click one of the action set tabs (Distribute, Install, Launch, Repair, Uninstall, Terminate, or Preboot), click the Add drop-down list, then select an available action.
The following sections contains additional information:
The Action - Install Network MSIX dialog box lets you specify the location of the MSIX file, upload a certificate, and choose an installation mode.
Click Browse, allow browser to launch ZCC Helper. In the Select File dialog box, click Browse, select the .msix file to install, and then click OK.
If you have not installed ZCC Helper on this device, you must do so before you can browse for a file.
If the certificate is not signed by a well-known CA, then you can upload a certificate by clicking the Select Certificate button. It supports the .pem, .crt, .cer, .der, .p7b, or .p7c file formats.
Select the desired install options:
For Logged-in User Only: Installs the MSIX application for logged-in user only.
For All Users of Device: Installs the MSIX application for all the users (Device wide installation).
On Windows 2000, Windows XP, Windows Vista, or Windows 7 device, the application executable can run in either the “user” space or the “system” space. By default, the Run normal option is selected, which causes the application to run in the “user” space and inherit the same workstation security level as the logged-in user.
If the logged-in user's security level does not provide sufficient rights and file access to run the application, you can configure the application to run in the “system” space or as a dynamic administrator, as described below:
Run as logged in user: The MSIX application inherits the logged-in user’s credentials. For example, the application has the same rights to the registry and the file system as the logged-in user.
Select the application’s display mode: Normal, Minimized, Maximized, or Hidden. In Hidden mode, the application runs normally without a user interface available. This is useful if you want the application to process something, then go away without user intervention.
Select Grant administrator privilege to user during installation to provide administrator privileges to the logged-in user. However, providing administrator privileges to a user might pose security risks. If this option is selected, the user on the managed device is prompted to enter the password when the MSIX is installed on the device. To install the MSIX, the user must log in to the device with a user account that has a password configured.
NOTE:On a Vista device, if the administrator is logged in to the device and the Grant administrator privilege to user during installation is selected, the action is performed in the quiet mode.
Run as dynamic administrator: A dynamic administrator is an administrator account that is created on the fly to perform certain procedures, such as installing applications. Using a dynamic administrator is helpful when installing applications (some MSIX applications, for example) that cannot be installed in the system space. When you select this action, the dynamic administrator is created, it performs the required tasks, and then the account is deleted.
You cannot use mapped network drives to specify files and directories because dynamic administrators do not have access to mapped drives.
Select credential for network access: If the file or directory specified in the action are a part of the UNC path or network share that can be accessed only through credentials, then browse through the credential vault to select a credential that has access to the network.
For more information on Credential Vault and adding credential to the Credential Vault, see Using the Credential Vault in the ZENworks Control Center Reference.
NOTE:Performing this action as dynamic administrator on a Windows domain controller fails because Microsoft does not allow the use of local administrator accounts on domain controllers.
The Requirements page lets you define specific requirements that a device must meet for the action to be enforced on it. For information about the requirements, see Requirements.