{"id":3144,"date":"2026-02-20T10:48:08","date_gmt":"2026-02-20T10:48:08","guid":{"rendered":"https:\/\/zecurit.com\/help\/endpoint-management\/remote-script-execution\/script-deployment-policy\/"},"modified":"2026-02-20T11:45:22","modified_gmt":"2026-02-20T11:45:22","slug":"script-deployment-policy","status":"publish","type":"docs","link":"https:\/\/zecurit.com\/help\/endpoint-management\/remote-script-execution\/script-deployment-policy\/","title":{"rendered":"Deployment Policy for Scripts"},"content":{"rendered":"\n

Overview<\/h2>\n\n\n\n

A Deployment Policy<\/strong> in Zecurit defines how<\/em>, when<\/em>, and in what context<\/em> a script runs on target endpoints. While the Script Repository stores your scripts, the Deployment Policy is what actually controls script execution, including scheduling, retry logic, logging, and network conditions.<\/p>\n\n\n\n

Every script you want to deploy needs an associated Deployment Policy. Once created and published, the policy can be distributed to individual devices or device groups.<\/p>\n\n\n\n

Navigate to Manage \u2192 Deployment \u2192 Deployment Policy \u2192 Add<\/strong> to create a new policy.<\/p>\n\n\n\n

Step-by-Step: Creating a Script Deployment Policy<\/h2>\n\n\n\n

Step 1 : Policy Details<\/h3>\n\n\n\n

Policy Name<\/strong> (required)<\/em> Enter a clear, descriptive name. Recommended format: [Platform]-[Script Purpose]-[Frequency]<\/code>
Example: WIN-DiskCleanup-Weekly<\/code>, MAC-SecurityAudit-Monthly<\/code><\/p>\n\n\n\n

Category<\/strong> Select Script<\/strong> (not Software). This tells Zecurit you’re deploying a script from the repository rather than a software package.<\/p>\n\n\n\n

Add Description<\/strong> (optional)<\/em> Click “Add Description” to document the policy’s purpose, affected systems, change ticket reference, or approval details.<\/p>\n\n\n\n

Step 2 : Script Selection<\/h3>\n\n\n\n

Select Script<\/strong> Choose a script from the dropdown list, which pulls from your Script Repository. Only scripts that match your environment will appear.<\/p>\n\n\n\n

If the script you need doesn’t exist yet, click Add Script<\/strong> to open the script creation panel inline without leaving the policy creation flow.<\/p>\n\n\n\n

\n

Tip:<\/strong> Each Deployment Policy references one script. To run multiple scripts in sequence, either combine them into a single script or create separate policies and distribute them in order.<\/p>\n<\/blockquote>\n\n\n\n

Step 3 : Execution Context<\/h3>\n\n\n\n

Run As<\/strong> : Choose how the script runs on the endpoint:<\/p>\n\n\n\n

Option<\/th>Description<\/th>Best For<\/th><\/tr><\/thead>
System<\/strong><\/td>Runs with full system\/SYSTEM account privileges<\/td>Maintenance, patching, registry changes<\/td><\/tr>
Logged-in User<\/strong><\/td>Runs as the user currently logged in<\/td>User-specific settings, mapped drives<\/td><\/tr>
Run as User<\/strong><\/td>Runs as a specified user account<\/td>Service account scenarios, delegated tasks<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n
\n

Security note:<\/strong> System context provides maximum privileges but cannot access user-specific resources (mapped network drives, user registry hives). Use “Logged-in User” when user context is required.<\/p>\n<\/blockquote>\n\n\n\n

Step 4 : Logging<\/h3>\n\n\n\n

Capture Script Output<\/strong><\/p>\n\n\n\n