3.2.5.5 Software Installation Maintenance

This operation allows software maintenance utilities on the client to dynamically retrieve the deployed software packages from the Group Policy server in contexts outside the Group Policy Protocol, as specified in [MS-GPOL]. The client MUST then install the software packages if a user or tool on the client initiates doing so.

This sequence is not triggered by the Group Policy Protocol, but it is similar to it. It is applicable only to user policy settings.

1. Software deployment retrieval. This is invoked by a software maintenance utility.

   1. The client maintains a GPO list in its abstract data model for the domain account of the user that is executing the software maintenance utility. If no such state exists for that account on the client computer, the protocol MUST terminate the protocol sequence. Otherwise, the client MUST continue to the next step.

   2. For each GPO in the list, the read administration protocol sequence specified in section 3.1.5.1 MUST be invoked to retrieve the software packages for the policy target. This operation MUST be authenticated using the domain account of the user executing the software maintenance utility.

   3. If the read administration sequence fails, this sequence MUST terminate. Otherwise, the protocol MUST continue to the next step.

2. Software deployment applicability. This step MUST be the same as specified in section 3.2.5.2, using the software deployments retrieved in step 1.

Software maintenance utilities on the client MAY then present the applicable list of applications from the GPOs to a user. The data retrieved from this protocol enable the user to instruct the client to install or remove these applications.<20>