We are running into a problem with the flash update and a few others.
Following best practices we have a group policy(Software Restriction
Policies) that prevents executables from running in the temp directory and a
few other typical spyware/Trojan start points such as %LocalAppData%. As an
example patch management extracts the flash update to
C:\Users\DAU*****\AppData\Local\Temp and then tries to run
Patch-Smart.AdobeFlashPlayerPlugin.exe which doesn't happen due to the group
policy. Is there any way I can redirect the patch extractions to a certain
path in ZCM and then I could exclude the path from the policy. I know I can
exclude the exe in group policy but I would have to do that for each patch
that has a problem.

Jim Koerner