We distribute software patches through IBM's Tivoli or St. Bernard's
UpdateExpert. The mechanism is as follows:

- A main script is pushed to each PC along with credentials under
which the main script should execute)

- The main script runs a second script located on a network share.
{The main script uses the RunwithLogon function found in
WinBatch.}

This method works fine when run against a Windows XP SP1 pc, it however
fails with an "ACCESS DENIED" message on a Windows XP SP2 pc. To
eliminate the Winbatch RunwithLogon function as a potential problem, other
"RUNAS" command-line utilities were tried.

Basically, you have a remote management software connecting to a PC pushing
a script, executing the script and trying to access a network share.

What restrictions are present in XP SP2 which will prevent this operation
from succeeding? Is there a workaround?



Thanks.

Frank

Make sure the 'Secondary Logon' Service is NOT Disabled.



"Frank" > wrote in message
...
> We distribute software patches through IBM's Tivoli or St. Bernard's
> UpdateExpert. The mechanism is as follows:
>
> - A main script is pushed to each PC along with credentials under
> which the main script should execute)
>
> - The main script runs a second script located on a network share.
> {The main script uses the RunwithLogon function found in
> WinBatch.}
>
> This method works fine when run against a Windows XP SP1 pc, it however
> fails with an "ACCESS DENIED" message on a Windows XP SP2 pc. To
> eliminate the Winbatch RunwithLogon function as a potential problem, other
> "RUNAS" command-line utilities were tried.
>
> Basically, you have a remote management software connecting to a PC
> pushing
> a script, executing the script and trying to access a network share.
>
> What restrictions are present in XP SP2 which will prevent this operation
> from succeeding? Is there a workaround?
>
>
>
> Thanks.
>
> Frank
>
>

The Secondary Service is on. The problem is more along the lines of the
local system account not being able to execute the .api calls needed to
execute the RunwithLogon feature.
"Research Services" > wrote in message
...
> Make sure the 'Secondary Logon' Service is NOT Disabled.
>
>
>
> "Frank" > wrote in message
> ...
>> We distribute software patches through IBM's Tivoli or St. Bernard's
>> UpdateExpert. The mechanism is as follows:
>>
>> - A main script is pushed to each PC along with credentials under
>> which the main script should execute)
>>
>> - The main script runs a second script located on a network share.
>> {The main script uses the RunwithLogon function found in
>> WinBatch.}
>>
>> This method works fine when run against a Windows XP SP1 pc, it however
>> fails with an "ACCESS DENIED" message on a Windows XP SP2 pc. To
>> eliminate the Winbatch RunwithLogon function as a potential problem,
>> other
>> "RUNAS" command-line utilities were tried.
>>
>> Basically, you have a remote management software connecting to a PC
>> pushing
>> a script, executing the script and trying to access a network share.
>>
>> What restrictions are present in XP SP2 which will prevent this operation
>> from succeeding? Is there a workaround?
>>
>>
>>
>> Thanks.
>>
>> Frank
>>
>>
>
>