AppTec360 Endpoint Manager is a software for managing mobile devices and Windows PCs. Admins can also use it to complete tasks by starting scripts on the end devices. AppTec360 stores these centrally and executes them with the necessary rights depending on various conditions. AppTec360 UEM offers a wide range of functions, including standard disciplines for endpoint management such as inventory, software distribution and patch management. Administration is carried out for mobile and stationary end devices via a web console.
Nevertheless, there are times when admins need to add PowerShell scripts to the AppTec360 Endpoint Manager for very specific tasks. Due to its close integration with the operating system, PowerShell is also able to automate system-related tasks and processes.
For example, scripts can configure all essential components of the operating system (firewall, Defender, BitLocker, network, drives, etc.), change registry entries or, for example, create files or network shares.
Store PowerShell scripts centrally
If every admin manages and saves their scripts separately, the overview is quickly lost. The result is redundant developments and version chaos. However, the biggest challenge is probably running the scripts on numerous end devices.
PowerShell is also suitable for logon scripts, but these must then be stored on a DC or file share that is accessible to all endpoints, and these must be given the necessary authorisations. The script then only runs the next time a user logs on, which is usually difficult to plan.
The interactive execution of a PowerShell script, on the other hand, usually requires administrative rights that normal users do not usually want to be given.
Executing PowerShell scripts with elevated rights
AppTec360 saves such PowerShell scripts in one place and can then automatically distribute them to the managed Windows computers. The AppTec360 software offers a separate module called PowerShell Administration for this purpose.
Admins can store and manage any number of PowerShell scripts in the integrated file manager.
On the one hand, it is possible to specify whether the script should be executed as a system account with elevated privileges or via the logged-in user with their restricted rights. This eliminates the need to grant end users access to an administrative account just to be able to start a script.
Set trigger for scripts
Secondly, the admin determines the trigger for the execution of scripts. This can be based on a schedule including a repeat option. Alternatively, the script can run when the computer is started, when the user logs on or at the moment the UEM profile is added to the computer.
In this respect, AppTec360 is also much more flexible than the Windows logon and logoff scripts.
Distribution of scripts to the end devices
AppTec360 UEM basically allows flexible addressing of devices on which an administrative task is to be executed. These can be addressed individually, via groups or profiles. This also applies to the assignment of PowerShell scripts. In contrast, admins with conventional logon scripts are tied to domains, sites or OUs, as they are configured via GPOs.
As soon as a managed device contacts the UEM, the script is transferred to the client or updated if it already exists in an older version.
Scripts usually run invisibly in the background, unless a visible action is part of the routine. They are executed in the order in which they are stored in the file manager.
The AppTec360 console logs the execution with timestamp and status so that the administrator can check the success of the action.
Prices and availability
AppTec offers its software for local use as a virtual appliance for Hyper-V, ESXi, VirtualBox or XenServer as well as in a cloud version. The latter runs in Swiss or German data centres. SaaS use only requires registration to get started with device management.
The free licence for up to 25 devices is aimed particularly at smaller companies. It contains all functions, is not time-limited and can be downloaded from the manufacturer’s website. Support is limited to 30 days in this version.
If you want to manage more than 25 devices, you pay € 0.99 per device and month for on-prem. The use of add-ons such as Universal Gateway, Content Box and other modules as well as support costs extra. This means that AppTec360 is favourably priced in a market comparison.
Device management in the cloud costs an additional € 0.59 per device per month for a minimum term of 24 months.
Administrators can use the centralised PowerShell administration to supplement the built-in functions of AppTec360 by executing PowerShell scripts. For this purpose, the solution provides centralised storage and distribution of the scripts.
When executing the PowerShell code, the tool solves a notorious problem by being able to execute it with elevated rights without user intervention. AppTec360 is also very flexible when it comes to the actions that can trigger the start of a script.