6.4 Action - Create/Delete Directory

The Action - Create/Delete Directory dialog box lets you create or delete a directory on the managed device and define the specific requirements that a device must meet for the action to be executed on the device.

The Delete Directory action deletes the entire folder along with its inner files and folders; it also deletes the folders that are in the hidden mode.

Figure 6-5 Action - Create/Delete Directory Dialog Box

Action - Create/Delete Directory Dialog Box

You can access this information by using the following methods:

The following sections contains additional information:

6.4.1 General

The General page lets you specify the name of the directory to create or delete from the managed device and the executable security level.

Create Directory

Creates a directory on the managed device when the action is performed.

Delete Directory

Deletes a directory on the managed device when the action is performed.

Directory Name

Specify the complete path of the directory you want to create or delete on the managed device.This path must be resolved by the device on which the bundle is run.

Executable Security Level

On Windows 2000, Windows XP, Windows Vista, or Windows 7 device, the application executable can run in either the “user” space or the “system” space. By default, the Run normal option is selected, which causes the application to run in the “user” space and inherit the same workstation security level as the logged-in user.

If the logged-in user's security level does not provide sufficient rights and file access to run the application, you can configure the application to run in the “system” space or as a dynamic administrator, as described below:

  • Run as logged in user: The action uses the logged-in user’s credentials. For example, the action has the same rights to the registry and the file system as the logged-in user.

  • Run as secure system user (Don't allow system to interact with desktop): The application is run under the Local System user and inherits Administrator-level credentials. For example, the application has full rights to the registry and the file system. Because the security level is set to Secure, the application's interface is not displayed to the user and the application is only visible in the Task Manager. This option is useful when running applications that require full access to the workstation but require no user intervention.If you use mapped network drives to specify files and directories, the action fails because system users do not have access to user mapped drives.

  • Run as dynamic administrator: A dynamic administrator is an administrator account that is created on the fly to perform certain procedures, such as installing applications. Using a dynamic administrator is helpful when installing applications (some MSI applications, for example) that cannot be installed in the system space. When you select this action, the dynamic administrator is created, it performs the required tasks, and then the account is deleted.

    You cannot use mapped network drives to specify files and directories because dynamic administrators do not have access to mapped drives.

    NOTE:ZENworks does not support Windows Distributed File System (DFS) share.

    NOTE:Performing this action as dynamic administrator on a Windows domain controller fails because Microsoft does not allow the use of local administrator accounts on domain controllers.

6.4.2 Requirements

The Requirements page lets you define specific requirements that a device must meet for the action to be enforced on it. For information about the requirements, see Requirements.