 
     |
| Digital Signature And Unknown Publisher Issues (Page 2/2) |
|
theogre
|
AUG 22, 06:54 PM
|
|
IE and ActiveX, no matter about new names ActiveX, is a problem because uses same/sim Digi-signing as rest of Windows.
Worse, Embedded Windows isn't exact = Desktop Windows and have missing parts, Strict Policies, and more headaches...
Your problem is likely Win7 E itself. Not the update file.
2 examples:
● May needs new Root sign data file(s). Signing drivers have changed over time and new files certs may not work w/ old Root certs on a given machine.
Think basically old Root and Site certs that "kills" some web sites until get new certs.
● May need an update to Installer program.
Desktop Win7 need an updated for Win Update service too that was auto installed by Win Update to allow later updates to install because MS change Digi-signing years ago to allow longer/tougher signature.
And because of Win7 E Group Policy etc can be hard to impossible for you to fix them even if can get standalone updates.
Add Many Co's use any version of Win Embedded have locked down many to all machines more then E OS defaults out of the box.
"Net Admins" may not control the lock down. IT Security is often different group in a Big Company and may need to find them before trying to change an Embedded OS.
Changing E-OS, like changes to Servers, often needs to go thru hoops and file forms w/ Version Control etc and wait for days to months to get approved or not.
That's assume the machine doesn't dump anything at next reboot. Various ways to do just that. MS made tools for WinXP Desktop to do this for schools w/ computer labs and others. If this happens, you will need to change the boot image and that is likely a lock down and/or change order problems in many companies.
Side Note: You trying to install anything on E-machines may have "Tripped" Security Alarms and may have problems w/ IT Security and other groups.
I'm not sure how to check or fix these issues.
Even when you know/find KB No. and get links for X file, MS have moved or deleted many things to update Win7.
IOW Win7 E maybe supported in Win7 Win Update Services but not all Updates are available thru auto updates and Win Update Catalog site has removed many updates to force all to get Win10.------------------
Dr. Ian Malcolm: Yeah, but your scientists were so preoccupied with whether or not they could, they didn't stop to think if they should.
(Jurassic Park)
The Ogre's Fiero Cave
|
|
|
|
IMSA GT
|
AUG 22, 09:29 PM
|
|
| quote | Originally posted by theogre:
Worse, Embedded Windows isn't exact = Desktop Windows and have missing parts, Strict Policies, and more headaches...
|
|
I agree with you. This is just one of those "setup to fail" situations between the O.S, policies, and basic missing pieces. We're scheduled to do upgrades next year but for now we have to struggle with these units.
|
|
|
|
TheDigitalAlchemist
|
AUG 23, 12:45 AM
|
|
|
How many of these devices are you talking about? Is there $ in the budget to replace them with a more modern thin/embedded client?
|
|
|
|
IMSA GT
|
AUG 25, 09:00 PM
|
|
| quote | Originally posted by TheDigitalAlchemist:
How many of these devices are you talking about? Is there $ in the budget to replace them with a more modern thin/embedded client? |
|
They run about $8,000 per device and we are replacing about 75 of them throughout our network. They've already upgraded probably 400 over the last year. They do these in phases so our project managers have a job 
|
|
|
|