Interdire les déploiements applicatifs en VPN

Balbo 1 Reputation point

Bonjour à tous,
existe-t'il un moyen lors de la planification du déploiement applicatif de le restreindre afin que le déploiement ne se fasse qu'en réseau local et en wifi mais surtout pas en vpn svp?J'ai créé des collections en fonction des plages d'adresse IP correspondant aux différents réseaux mais le soucis majeur c'est que l'inventaire n'étant pas instantanné un poste peut se retrouver dans cette collection à un instant puis être en vpn juste l'instant d'après.
Ou alors le faire dans le script d'installation? si oui comment?
Merci d'avance.

Hi to all,
Is there a way when planning the application deployment to restrict it so that the deployment is only done in local and wifi network but especially Not in vpn please? I created collections according to the ranges of 'IP address corresponding to the different networks but the problem is that the inventory is not exact sometimes, a workstation can be in this collection at one moment and then be in vpn just the next moment.So that i could deploy on VPN and i dont want to.Is there a ways to restrict that option using SCCM Or do it in the installation script? If yes, how?
Thank you in advance.

Microsoft Configuration Manager
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Youssef Saad 3,401 Reputation points

    Hi @Balbo ,

    Have you tried with setting a custom Requirements in the deployment type proprieties? Maybe set a script to allow all IP addresses except VPN VLAN.



    Youssef Saad | New blog:
    Please remember to ** “Accept answer” ** or upvote for useful answers, thank you!

    0 comments No comments

  2. Fiona Yan-MSFT 2,311 Reputation points


    Thank you for posting in Microsoft Q&A forum.

    Maybe we could create a global condition and tweak the following power shell script to exclude clients that are connected to the corporate network via a VPN.
    {If (Get-WmiObject -Query "Select * from Win32_IP4RouteTable where Name like '10.0.99.%' or Name like '10.15.99.%'")
    {Write-host "VPN-Active"}
    Else {Write-host "VPN-InActive"}
    For more details, please refer to this excellent blog :
    Note: this is non-official Microsoft article just for your reference.

    Have a good day!

    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.