Getting Started
  • 📌Patch My PC Docs
  • 🔧Installation Guides
    • Advanced Insights & Patch Insights
      • Requirements
        • Certificate Requirements
        • Software Requirements
        • Network Requirements
      • Download and Install
        • SSL Certificate Configuration
        • Advanced Insights SQLite Database
        • IIS Configuration selection
        • Install Summary
        • Completion
      • Upgrading Advanced Insights
        • Upgrading to Advanced Insights 2.1 and later from 1.0.x and 2.0.x versions
      • Modify Advanced Insights
        • Modify SSL Certificate
        • Modify Network Port
        • Password reset
        • Modify IIS App Pool Identity
      • Uninstalling Advanced Insights
      • Backup and Restore of your Advanced Insights Configuration
      • SQL Permissions
      • Configuration Manager Permissions
      • First Use Experience
      • Proxy Support
      • Advanced Insights Inventory Extensions
        • Description
        • Custom Client Actions
        • WMI Class Definitions
      • External Services Dell Warranty API
      • External Services HP Warranty API
      • External Services Lenovo Warranty API
      • Microsoft Updates Inventory
      • Active Directory Integration & RBAC
      • Active Directory Group to Role Assignment
      • Azure AD (Entra ID) Authentication
      • Requirements for Remote Control
      • Launching Remote Control of a Client
      • Configuration Manager Console Extension
      • Custom Dashboards
        • Creating your first Custom Dashboard
        • Editing a Custom Dashboard
        • Sharing a Custom Dashboard
      • Dashboard Guides
        • Home Page
        • Resources
          • Collections
          • Devices
          • Users
        • Hardware
          • Displays
          • Batteries
          • Storage
          • Graphics Adapters
          • Wireless Adapters
        • Software
          • Applications
          • Client Inventory
          • Software Usage
          • Microsoft 365 Apps
          • ODBC Connections
          • Browser Extensions
        • Operating Systems
          • Dashboard
          • Windows 11 Readiness
          • Local Administrators
          • OS Uptime
          • User Profiles
        • Software Updates
          • Dashboard
          • Updates
          • Update Groups
          • Update Deployments
          • Windows OS
          • Computer Status
          • Microsoft Updates
          • Update Trend
        • Security and Compliance
          • BitLocker
      • Advanced Insights Log Collector
      • IIS Application Pool Identity
      • Two Factor Auth
      • Telemetry Data collected by Advanced Insights
    • Configuration Manager
      • Requirements
      • Download and Install
      • License Key
      • Certificate Configuration
      • Updates
      • ConfigMgr Apps
      • Sync Schedule
      • Alerts
      • Advanced
    • Intune
      • Requirements
      • Download and Install
      • License Key
      • Azure App Registration
      • Intune Apps
      • Intune Updates
      • Sync Schedule
      • Alerts
      • Advanced
    • WSUS Standalone
      • Requirements
      • Download and Install
      • License Key
      • Certificate Configuration
      • Enable Standalone WSUS Mode
      • Updates
      • Sync Schedule
      • Verify Third-Party Updates Appear in WSUS Console
      • Alerts
      • Advanced
    • Patch My PC Cloud
      • Release Notes
      • Patch My PC Cloud Requirements
      • Onboard to Patch My PC Cloud
      • Deployments
        • Deployment Overview
        • Deploy an App
          • General Information
          • Configurations (optional)
            • Scripts (optional)
            • Install Parameters (optional)
            • Dependencies (optional)
            • Role Scope Tags (optional)
            • Extra Files (optional)
            • Categories (optional)
            • ESP Profiles (optional)
          • Assignments
          • Summary (optional but recommended)
        • Deploy the same App with multiple configurations
        • Create a Deployment Without Assignments
        • Use a Template in Deployments
        • Update Rings
          • Update Rings Overview
          • How Update Rings Are Created
          • How the Sync Schedule Affects Update Rings
          • How Update Rings Handle New Versions
          • How Update Rings Affect Dependencies
          • Create Update Rings
          • Edit Update Rings
          • View Update Rings
          • Check if an Update Ring has been created
          • Update an Update Ring
          • Convert Existing Deployments to Use Update Rings
          • Delete Update Rings
        • Monitor a Deployment
        • Manage Updates
          • Pause Updates
          • Resume Updates
          • Sync Now
        • Manage Deployments
          • View a Deployment's Properties
          • Edit a Deployment
          • Recreate a Deployment
          • Sort Deployments
          • Delete a Deployment
      • Events
        • Events Overview
        • Search for an Event
        • Filter Events
        • Export Events
        • Sort Events
        • Find more information about an Event
        • Change the number of Events per page
        • Navigate between pages of Events
        • Events Reference
          • General Events Reference
          • Security Events Reference
      • Discovery
        • Discovery Overview
        • Deploy an Unmanaged app
        • Manage Managed Apps
        • Refresh Discovery Data
        • Discovery Managed Apps Reference
      • Administration
        • Manage your Company
          • Enable Preview Features
          • Grant Patch My PC Support access to your portal
          • Delete your Company
          • Recover Your Company
          • Company Reference
        • Manage Users
          • Add a User
          • Using Entra ID Security Groups
            • Add an Entra ID Group
            • View an Entra ID Group's Membership
            • Modify an Entra ID Group
            • Remove an Entra ID Group
          • Modify a User
          • Delete a User
          • Manage Access Requests
            • Approve an Access Request
            • Reject an Access Request
          • Manage Invitations
            • Accept an Invitation
            • Copy an Invitation’s link
            • Resend an Invitation
            • Delete an Invitation
          • User Roles Reference
        • Manage your Environments
          • Manage Intune tenants
          • Manage your License
          • Rename your Environment
        • Manage Connections
          • Add a Connection
          • Verify the Publisher connection
          • Delete a Connection
        • Manage Branding
          • Add Branding
          • Modify Branding
          • Recreate Branding
        • Manage Notifications
          • Add a Notification
          • Create a Webhook notification
          • Create a Microsoft Teams Webhook Notification
          • Create a Slack Webhook Notification
          • Create an Email notification
          • Modify a Notification
          • Delete a Notification
          • Notifications Reference
            • Test a Microsoft Teams Webhook Notification
            • Test a Slack Webhook Notification
            • Test an Email Notification
          • Webhooks Reference
            • Create a Microsoft Teams Webhook
            • Create a Slack Webhook
        • Manage Naming Conventions
          • Configure Naming Conventions
          • Modify Naming Conventions
        • Manage the Sync Schedule
        • Manage Deployment Templates
          • Add a Template
          • Edit a Template
          • Configure a Default Template
          • Delete a Template
        • Delete the Patch My PC Cloud Enterprise Application
      • Binary Free Apps
        • Binary Free Apps Overview
        • Deploy a Binary Free App
        • Manage New Version Notifications for a Binary Free App
        • Update a Binary Free App
      • Custom Apps
        • Custom Apps Overview
        • Custom Apps Requirements
        • Onboard to Custom Apps
        • Create a Custom App
          • Upload the Primary Installer
          • Extra Folders or Files (optional)
          • General Information
          • Configuration
          • Detection Rules (optional)
          • Summary (optional but recommended)
        • Publish a Custom App
        • Modify a Custom App
        • Update a Custom App
        • Delete a Custom App
        • Custom Apps Reference
          • Add a Folder Structure to a Custom App
          • Find properties for EXE-Based Installers
          • Uninstall a Custom App
      • Intune Apps
        • Intune Apps Overview
        • Intune Apps Requirements
        • Onboard to Intune Apps
          • Onboard to Intune Apps for Custom Apps users
        • Feature Comparison with Publisher
      • macOS Support
        • Filter by OS
        • Deploy a macOS app
      • Managed Service Provider
        • Managed Service Provider Overview
        • Managed Service Provider Requirements
        • License the Managed Service Provider Feature
        • Managed Service Provider Administration
          • Manage MSP Companies
            • Add a Company to Manage
            • Choose a Company to Manage
            • Remove a Company from being Managed
          • Manage MSP Users
          • Manage MSP Deployments
          • Manage MSP Events
          • Manage MSP Notifications
        • MSP Custom Apps
          • Create an MSP Custom App
          • View all MSP Custom Apps
          • Deploy an MSP Custom App
          • Edit an MSP Custom App
          • Update an MSP Custom App
          • Delete an MSP Custom App
        • Non-Replicating MSP Settings
      • Troubleshooting
        • Onboarding
          • “Need admin approval” message when onboarding
          • “Permissions requested” dialog box not shown during Onboarding
        • App Catalog
          • Why is the "Delete" option greyed out for an app?
        • Binary Free Apps
          • “Unable to verify the file you are trying to upload”
        • Branding
          • Why don’t I see the “Branding” node in the portal?
        • Company
          • "Error - Claim Ownership Failed"
          • "Tenant recovery has been disabled for this account"
          • Why can’t I access my Company?
          • Why can’t I Delete my Company?
        • Custom Apps
        • Dependencies
          • Why is an app not shown in the “App Dependencies” dropdown?
        • Deployments
          • “500 Internal Server Error” when adding an assignment - why?
          • “A deployment with the same name <deployment_name> already exists”
          • Browser Crashes when uploading a large number of files using the Patch My PC Cloud portal
          • “Group not found” shown for an Assignment of a successful deployment
          • Troubleshooting an Intune Apps Deployment
          • "TypeError: Failed to fetch" error when trying to upload a Pre or Post Script
          • Why do I see a yellow exclamation mark ("!") beside a deployment?
          • Why is the “Deploy” button greyed out?
          • Why is “Edit” Unavailable for a Deployment?
        • Discovery
          • Why don’t I see the “Discovery” node in the portal?
          • Why is the “Edit” button disabled beside a Managed App?
        • Environments
          • “Intune connection with the same Id found in another environment”
          • “Need admin approval” message when connecting to Intune
          • Why don't I see the ellipsis to edit my Environment or License?
        • Events
          • Why don’t I see the “Events” node in the portal?
        • Intune
          • What happens if the Patch My PC Cloud Enterprise App is deleted?
        • Licensing
          • "Your license doesn't match the specified SKU"
          • “Your trial has expired”
          • “Your trial license expires in xx days”
        • Managed Service Provider
          • “Customer has active connections. Please disconnect them first in order to delete the company”
          • “Error - Intune connection with the same Id found in another environment!”
        • Notifications
          • Why don’t I see the “Notifications” node in the portal?
        • Sign in
          • “The service is currently unavailable in the <region_code> region”
        • Update Rings
          • "Error - Editing is not allowed until all rings are created after the configured delay."
        • Users
          • “Unable to change the role of this group as it was not found in Entra ID” error
          • Why don’t I see the “Users” node in the portal?
          • Why is the “Add Group” button unavailable?
          • Why is the “Add Group” button unavailable on the “Available Groups” page?
          • “You currently have only one user with Access Management privileges”
      • Reference
        • About the Patch My PC Code-Signing Certificate
          • Using a Custom Configuration Policy
          • Using a script
        • App Catalog Icon Reference
        • Email Reference
          • Example Access Request Email
          • Example Access Approved Email
          • Example Access Rejected Email
          • Example Account Recovery Email
          • Example Binary Free App Update Email
          • Example Binary Free App Successfully Updated Email
          • Example Invitation Email
          • Example Updates Report Email
        • Entra ID Reference
          • Create an App Registration in Entra ID
          • Delete an App Registration in Entra ID
        • Intune Reference
          • Check App Categories
          • Check Detection Rules
          • Check ESP Profiles
          • Check Scope Tag Assignments
        • Permissions Reference
          • Permissions required for Patch My PC Cloud
          • Permissions required for Intune Apps
        • Telemetry Data collected by Patch My PC Cloud
        • Unsupported File Names and Extensions
      • Product Limits
      • Glossary
      • Contacting Support
    • Product Reference
      • Language Support in Publisher and PMPC Cloud
  • 💁‍♂️ Get Help
    • Open a Support Case
    • Live Demo, Setup & Review Calls
      • Book a Live Demo
      • Book a Guided Setup Call
      • Book an Environment Review Call
    • Log Reference Guide
    • MEM Patching Optimizer
      • Requirements
      • Download and Install
      • Running Tests
      • Updates
    • Return on Investment Tool
  • 🔁Release History
    • Advanced Insights Releases
      • Inventory Extension Releases
    • Patch My PC Cloud Releases
    • Publisher Releases
      • Publisher 1.x Releases
      • Preview Releases
    • ROI Tool Releases
  • 🤝Resources
    • Patch My PC Website
    • Download Installer
    • FAQ
    • Homepage
    • Roadmap
    • UserVoice
    • About Us
Powered by GitBook

Links

  • Feedback or comments?
  • Main Website

© Patch My PC 2011 - 2025

On this page

Was this helpful?

Export as PDF
  1. Installation Guides
  2. Patch My PC Cloud
  3. Custom Apps
  4. Create a Custom App

Detection Rules (optional)

PreviousConfigurationNextSummary (optional but recommended)

Last updated 1 day ago

Was this helpful?

Applies to: Patch My PC Cloud Custom Apps

If you want to configure Native Detection Rules:

  1. On the Detection Rules tab, click Use Custom to use a custom detection rule, then choose the relevant type of rule from the Rule Type dropdown.

Note

You should only choose to use a custom detection method if our default method of scanning the uninstall registry on the endpoint to find a Display Name matching your Apps & Features Name entry and a Display Version that meets or exceeds the Version in the Configuration tab is unsuitable for this app.

Important

If you configure Detection Rules in the PMPC Cloud portal you:

  • Cannot deploy the same app in Publisher as Publisher does not support Native Detection Rules.

  • Should not create and manage detection rules in the Intune admin center as they will not be detected and shown in the PMPC Cloud portal.

  • Cannot mix our default detection method with custom detection methods for the same Custom App.

  1. Go to Step 8 if you chose the Use Custom Script option.

  2. If you choose the Configure Manually option, click Add Rule.

  3. On the Add Detection Rule screen, select the relevant type of rule from the Rule Type dropdown, then configure the required options as required.

Rule Type
Available Options

File

Path – The path to the folder you are checking for

File or Folder – The folder containing the file you are checking for

Detection Method – Choose from the list of available checks.

MSI

MSI Product Code – This is the MSI product code extracted from the file you imported.

MSI Product Version Check (optional) – Click this slider to enable this check for a specific version number that matches the options you configure in the Operator and Value fields.

Registry

Key Path – The path to the Registry key

Value name (optional) – The name of a value contained within the specified Key Path that you want to check for

Detection Method – Choose from the list of available checks.

Note

You can only create up to a maximum of 25 rules of all types per deployment. Of these 25, only one can be an MSI detection rule and the rest can be a mixture of File and Registry rules.

See the following Microsoft resources for more information:

  • win32LobAppFileSystemRule resource type

  • win32LobAppPowerShellScriptRule resource type

  • win32LobAppProductCodeRule resource type

  • win32LobAppRegistryRule resource type

  1. If you have created either a File or Registry detection rule, click the Associated with a 32-bit app on 64-bit clients slider to enable it to expand any path environment variables in the 32-bit context on 64-bit endpoints.

  2. Click Add Rule to add the rule.

    The rule is added to the list of detection rules.

Note

You can:

  • Edit a Detection Rule by clicking the pencil icon beside the relevant rule, making the required changes then clicking Save rule to save the changes.

  • Delete a Detection rule by clicking the red trashcan beside the relevant rule to remove it from the list of rules.

  1. Go to step 10 if you do not want to add a detection rule that uses the Use Custom Script option.

  2. If you choose the Use Custom Script option, click Import Script, then browse to and select the relevant script you want to import.

Note

In the current version:

  • We only support PowerShell (.ps1) scripts

  • You can only import a single script

  • We do not sign your scripts if we use them in one of our deployments. If this is a requirement, you will need to sign the scripts yourself.

A preview of the script is shown in the Script Preview window.

Note

You cannot edit the script in the Script Preview window.

  1. Click the Associated with a 32-bit app on 64-bit clients slider to enable it to expand any path environment variables in the 32-bit context on 64-bit endpoints.

  2. Repeat the steps in this section to add any additional detection rules.

  3. If you are happy you have entered all of the details for the app correctly, click Create to complete the creation of the Custom App. However, we recommend you click Next to move to the Summary tab where you can verify the configuration before saving the Custom App.

Note

You can use the Check Detection Rules process to verify your detection rules have been successfully created in Intune by PMPC Cloud.

🔧
Clicking “Use Custom” to use a custom detection rule and choosing the relevant type of rule from the “Rule Type” dropdown
Clicking “Add Rule”
Selecting the relevant type of rule to configure from the “Rule Type” dropdown.
Enabling the “Associated with a 32-bit app on 64-bit clients slider”
Clicking “Add Rule” to add a rule
Clicking “Import Script”
Preview of the script shown in the "Script Preview" window.
Enabling the “Associated with a 32-bit app on 64-bit clients slider”