This section covers topics relevant to deploying and operating AppProfileSafe in enterprise environments — from network shares and system restore points to VDI considerations, security software exclusions, and backup strategies.

Key Considerations

AppProfileSafe is designed for enterprise use. Both the GUI and the CLI require administrator privileges because they read and write to protected locations such as HKEY_LOCAL_MACHINE, %ProgramData%, and other users' AppData folders. Only one instance (GUI or CLI) can run at a time on a given machine — enforced by a global mutex.

Exports and imports can target local paths or UNC network shares. The CLI supports three credential methods for UNC shares: current Windows session, inline credentials, and Windows Credential Manager. This makes it suitable for scheduled tasks, SCCM task sequences, Intune remediation scripts, and GPO logon/logoff scripts.

Topics in This Section

• Working with UNC Paths — Network share authentication, credential sources, and GUI/CLI UNC support
• System Restore Points — Automatic restore point creation before imports, the 24-hour limit, and CLI options
• Running in VDI / FSLogix Environments — Profile container considerations and non-persistent desktop guidance
• Antivirus / EDR Considerations — Recommended exclusions for security software
• Least-Privilege Recommendations — Service account setup and permission scoping
• Backup & Retention Strategy — Managing export data, reports, audit logs, and retention policies
• Network & UNC Troubleshooting — Common network share errors and solutions