How to run a batch-skript as remediation resource

[Felix]

Hi,

I would like to check if a registry key has a specific value and if it is the value,
i would like to run a local file:

just to clarfiy:

Code:

if regkey = X
then 
run iclient -HU100

My idea is to use a batch script as a remediation ressource which includes the following command:

Code:

%ProgramFiles%\CheckPoint\Integrity Client\iclient.exe -HU100

But sadly automatically applying is just working with *.exe files. Does somebody has a good idea, how I could handle that?

We are using Integrity version 6.5.664


thanks in advance

best regrads
Felix

[CSING]

some have created a small exe such as runany.exe that will accept parameters. This was designed to run a single command from the endpoint.

your remediation rule be If regkey=x

then

runany %ProgramFiles%\CheckPoint\Integrity Client\iclient.exe -HU100

Several issues arise with this solution.

1. the program runs in the security context of vsmon.exe which is system. meaning that some evironment variables and registry keys have different scope.

2. Older versions prior to hfa 04 has issues with parameters in the remediation rule.


this may give you some ideas.