This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 86%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Hello, please help me figure it out.
The script searches for the program, if it finds it returns $true, and if it doesn't find it, it returns $false. I need to allow access only if the program is found i.e. true.
This is what the answer looks like: {"Installation status":true}
In the complient policy, it is logical to create a condition, if True -> then the program is found and allow access. If False -> means the program is not found and deny access.
However, as far as I understand, in politics, if the condition is not met, it means success. And vice versa, if the condition is met, then this means that the device does not complient.
This is very strange because it makes sense. If the condition matches. The script returns True and the policy specifies the Installation status condition. This means that the policy conditions are met and the policy is passed. For example, if I enable BitLocker check - I indicate that it is required and if it is enabled on the machine - then the policy has been passed and the condition has been met. However, it turns out not so, but quite the opposite.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Denis Pasternak, Thanks for posting in in Q&A.
For the Custom settings, if you want to consider if compliant when the installation status is true, then you need to change your JSON file you uploaded under "Upload and validate the JSON file with your custom compliance settings". Change the value to true in the following place:
Please try the above suggestion and hope it can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Yes, it is, it should be True in the json file. In the production environment, many machines have become Complient and They actually have the application installed. And vice versa, not Complaent and I see that they do not have that application in the list of applications. Everything seems logical and correct. However, I was misled by the fact that in the test environment everything works the other way around. That's what I wanted to ask a question. If the device returns True as a result of the script execution and the condition is set to True in the rule, the json file is set to True. - Does that mean the device is Complient?
@Denis Pasternak, Thanks for the reply. Yes, if we set the value to true, that means it will consider it compliant when the value is true.