Windows 7 Sysprep

AID: 3095

Status: Published

28086 points

Byivanoviola
TypeTutorial
Posted on2010-05-15 at 22:21:03

Awards

Community Pick
Experts Exchange Approved

I've spent numerous hours getting the sysprep right for Windows 7 images for my organization. I'll share what I've learned to make the process easier.

Files you will need:

WAIK for Windows (Windows Automated Installation Kit) installed on a computer not being used for imaging.
http://www.microsoft.com/downloads/details.aspx?FamilyID=c7d4bc6d-15f3-4284-9123-679830d629f2
To create an unattend.xml file to be used for sysprep, you will also need the image.wim file located on the Windows 7 installation disk.

Mysysprep2
http://www.tsaysoft.com/mysysprep2/

After installing Windows 7 on a computer, log in using a domain account which has local administrator privileges (added to the Administrators group). The domain account should not have any scripts or polices associated with it. I use a domain account (named imageprep) as I install software located on a DFS share. This way if any programs need to be repaired they will find the setup files. You can use a local account if you wish. I install all necessary programs, run windows updates, configure the start menu, create local user accounts and configure the profile and OS the way I want it to be. This profile will later become the default profile on the computer in the image.

When the laptop is ready you'll need to create an unattend.xml answer file using Windows System Image Manager (Windows SIM). On a different computer install WAIK. When the install has finished run Windows SIM from the start menu.
1. Insert the media you used to install Windows 7 on your image computer into your CD-DVD drive.
2. Start Windows SIM. From the menu select “Tools – Create Catalog”. You’ll be prompted for the “install.wim” file located on your media. Browse to the install.wim file in the sources directory on your Windows 7 media. When the catalog is complete you’ll be ready to configure your answer file.
3. I've attached a sample unattend.xml file for reference. Open the file and take a look at some of the settings I’ve configured.

I need sysprep to prompt me for a computer name before adding the computer to the domain. In my organization we have a specific naming system for our laptops. The problem I found using the unattend.xml answer file and Windows sysprep was that if you do not specify a computer name in the file, it will add the computer to the domain using a random name. It’s written that if you remove <ComputerName></ComputerName> section from the answer file, you will be prompted for a name when the answer file is processed. By then it's too late. The computer will have already been added to the domain under a random name and naming the laptop after this just causes problems (trust relationship errors). My work around for this was to not use the Windows sysprep.exe file, instead an altered version named mysysprep.exe. Mysysprep2 allows you to name the computer and add it to the domain after unattend.xml has been processed. Mysysprep should be placed in C:\Windows\System32\Sysprep alongside sysprep.exe (do not remove it or rename sysprep.exe).

In my unattend.xml file you’ll see:

<ComputerName>%Please input a computer name(0,15)%</ComputerName>
<JoinDomain>%Please select a domain to join{your.domain.com}%</JoinDomain>

1:
2:

Select all Open in new window

These are specific entries when using mysysprep2. They will show up as errors in SIM but ignore the errors. The (0,15) in the <ComputerName> field will automatically truncate the computer name if longer than 15 characters.

Also you will see:

<CopyProfile>true</CopyProfile>

1:

Select all Open in new window

This tells sysprep to copy the configured profile you’ve created to the default profile.

You must specify an OU to add the computers to otherwise they will not be added to the domain.

<MachineObjectOU>OU=Test,DC=Your,DC=Domain,DC=Here</MachineObjectOU>

1:

Select all Open in new window

The other thing regarding the unattend.xml, you need to create a local user during the sysprep process. When you install Windows 7 (using the disks) you’re prompted to create a local user. This process still occurs when using an attend.xml file and sysprep. In the answer file I create a local user named TempUser. TempUser gets deleted when the laptop first boots up to Windows logon screen. The sole purpose of TempUser is to hide the prompt to create a local user after sysprep runs.

There is one trick that is not documented very well, but works great. On the laptop you’re imaging browse to the C:\Windows\Steup directory. In there, create a new directory named Scripts. Inside of scripts, create a file named SetupComplete.cmd. Commands that you place in this file will run just before you are presented with the Windows logon screen. This is where TempUser will get deleted.

To delete the previously created TempUser account, add the following command to SetupComplete.cmd:

net user TempUser /delete

1:

Select all Open in new window

To enable the local Administrator account, add the following command to SetupComplete.cmd:

net user Administrator /active:yes

1:

Select all Open in new window

Even though you may have enabled the administrator account on the imaged laptop before running sysprep, it will be disabled again.

To delete the unattend.xml file, add the following command to SetupComplete.cmd:

del C:\Windows\System32\Sysprep\unattend.xml

1:

Select all Open in new window

Even though the passwords you enter in the xml file are encrypted, you’ll feel better knowing the file is not there.

You should customize the answer file to meet your needs. After you.ve completed the unattend.xml file, copy the file to C:\Windows\System32\Sysprep. You should be ready to run sysprep on the computer.

From within the configured profile you’ve created, open a command prompt. Navigate to C:\Windows\System32\Sysprep. Type the following command to start the sysprep process:

mysysprep.exe \generalize \oobe \shutdown \unattend:unattend.xml

1:

Select all Open in new window

The computer will shut down after sysprep has finished.

Now it’s time to take an image of the hard drive. Everyone has their own way of doing this. I use Ghost as it takes an image of the whole drive. I’ve tested ImageX and found it to have it drawbacks.
The main reason I choose not to use it is because we use two partitions in our image. The C: partition for the OS and the D: partition for the users’ data. You cannot take a disk image with ImageX. You have to do each partition individually. The same goes for when applying the image. We ghost the hard drive and have our completed image.

When you apply the image to a computer then restart, you should be prompted for a computer name then the domain name. The domain name should automatically appear as we specified it in:

<JoinDomain>%Please select a domain to join{your.domain.com}%</JoinDomain>

1:

Select all Open in new window

If you have multiple domains you can also add it so the string to produce a dropdown menu.

<JoinDomain>%Please select a domain to join{domain1;domain2;domain3}%</JoinDomain>

1:

Select all Open in new window

The computer will then complete the setup process and eventually boot up to the Windows logon screen. If all went well you should be able to log in using your domain account.

Problems, Fixes and Tips
Updated: 05/11/2011 - I will add to this list as I come across them.

- Add the following pass to your unattend.xml file to ensure all hardware remains installed after running sysprep.
<PersistAllDeviceInstalls>true</PersistAllDeviceInstalls>
When set to True = This specifies that Plug and Play devices remain installed on the destination computer during the generalize configuration pass. The devices then do not need to be reinstalled during the specialize configuration pass.
This should be added to the generalize pass: x86_Microsoft-Windows-PnpSysprep

- Configure a custom power plan in your image and specify the plan in your unattend.xml file.
Configure and name a custom power plan in Control Panel – Power Options. When your power plan is set up you need to retrieve the GUID of the configured plan. To find the GUID, type the following command at a command prompt: PowerCfg -List (look for the plan name you just created). Add the GUID to your unattend.xml file so that it becomes the default active power plan. This should be added to the specialize pass: x86_Microsoft-Windows-powercpl__neutral

- Slipstream drivers into the DriverStore in your image.
To slipstream drivers into your Windows image you can use the command line utility “pnputil.exe”.
If you need a certain driver installed in the image, like a scanner or printer, and do not want your users to be prompted for the driver then add it to the DriverStore in your Windows image. The command to add a driver using this utility is: pnputil.exe -a HP0001.inf
All the information regarding this command can be found here:
http://technet.microsoft.com/en-us/library/dd919234%28WS.10%29.aspx

- To disable the Action Center “Set backup” notification, create a registry file named DisableBackupMonitoring.reg using notepad and paste the following code. Run the registry file under the configured profile. You can also apply the registry file via group policy.

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsBackup]
"DisableMonitoring"=dword:00000001

1:
2:
3:
4:

Select all Open in new window

- Here’s a script that un-pins the default shortcuts on the taskbar when a user first logs in and adds your own custom shortcuts. The script is from: http://social.technet.microsoft.com/forums/en-us/w7itproinstall/thread/07C56C20-3F56-4191-84C6-FC033F7A8F29
I copy the script to C:\Windows\System32\Sysprep\Custom and call it via a batch file I place in the configured profile’s startup folder (which will be the default profile). After it runs the batch file is deleted from the startup folder. This only runs the first time the user logs in.

Option Explicit

Const CSIDL_STARTMENU = &HB
Const CSIDL_COMMON_PROGRAMS = &H17

Dim objShell, objFSO
Dim objCurrentUserStartFolder
Dim strCurrentUserStartFolderPath
Dim objAllUsersProgramsFolder
Dim strAllUsersProgramsPath
Dim objFolder
Dim objFolderItem
Dim colVerbs
Dim objVerb

Set objShell = CreateObject("Shell.Application")
Set objFSO = CreateObject("Scripting.FileSystemObject")

Set objCurrentUserStartFolder = objShell.NameSpace (CSIDL_STARTMENU)
strCurrentUserStartFolderPath = objCurrentUserStartFolder.Self.Path

Set objAllUsersProgramsFolder = objShell.NameSpace(CSIDL_COMMON_PROGRAMS)
strAllUsersProgramsPath = objAllUsersProgramsFolder.Self.Path

'''''''''''''''''''''''''''''''''''''''Unpin Shortcuts'''''''''''''''''''''''''''''''''''''''

'*** All Users Shortcuts ****

'Internet Explorer
If objFSO.FileExists(strAllUsersProgramsPath & "\Network & Internet\Microsoft\Internet Explorer.lnk") Then
	Set objFolder = objShell.Namespace(strAllUsersProgramsPath & "\Network & Internet\Microsoft")
	Set objFolderItem = objFolder.ParseName("Internet Explorer.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'Mozilla Firefox
If objFSO.FileExists(strAllUsersProgramsPath & "\Network & Internet\Mozilla Firefox\Mozilla Firefox.lnk") Then
	Set objFolder = objShell.Namespace(strAllUsersProgramsPath & "\Network & Internet\Mozilla Firefox")
	Set objFolderItem = objFolder.ParseName("Mozilla Firefox.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'Windows Explorer
If objFSO.FileExists(strAllUsersProgramsPath & "\Accessories\Windows Explorer.lnk") Then
	Set objFolder = objShell.Namespace(strAllUsersProgramsPath & "\Accessories")
	Set objFolderItem = objFolder.ParseName("Windows Explorer.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'Windows Media Player
If objFSO.FileExists(strAllUsersProgramsPath & "\Network & Internet\Microsoft\Windows Media Player.lnk") Then
	Set objFolder = objShell.Namespace(strAllUsersProgramsPath & "\Network & Internet\Microsoft")
	Set objFolderItem = objFolder.ParseName("Windows Media Player.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'*** Current Users Shortcuts ****

'Internet Explorer
If objFSO.FileExists(strCurrentUserStartFolderPath & "\Programs\Internet Explorer.lnk") Then
	Set objFolder = objShell.Namespace(strCurrentUserStartFolderPath & "\Programs")
	Set objFolderItem = objFolder.ParseName("Internet Explorer.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'Mozilla Firefox
If objFSO.FileExists(strCurrentUserStartFolderPath & "\Programs\Mozilla Firefox\Mozilla Firefox.lnk") Then
	Set objFolder = objShell.Namespace(strCurrentUserStartFolderPath & "\Programs\Mozilla Firefox")
	Set objFolderItem = objFolder.ParseName("Mozilla Firefox.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'Windows Explorer
If objFSO.FileExists(strCurrentUserStartFolderPath & "\Programs\Accessories\Windows Explorer.lnk") Then
	Set objFolder = objShell.Namespace(strCurrentUserStartFolderPath & "\Programs\Accessories")
	Set objFolderItem = objFolder.ParseName("Windows Explorer.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'Windows Media Player
If objFSO.FileExists(strCurrentUserStartFolderPath & "\Programs\Windows Media Player.lnk") Then
	Set objFolder = objShell.Namespace(strCurrentUserStartFolderPath & "\Programs")
	Set objFolderItem = objFolder.ParseName("Windows Media Player.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Unpin from Taskbar" Then objVerb.DoIt
	Next
End If

'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''

''''''''''''''''''''''''''''''''''''''''Pin Shortcuts''''''''''''''''''''''''''''''''''''''''

'Internet Explorer - All Users
If objFSO.FileExists(strAllUsersProgramsPath & "\Network & Internet\Microsoft\Internet Explorer.lnk") Then
	Set objFolder = objShell.Namespace(strAllUsersProgramsPath & "\Network & Internet\Microsoft")
	Set objFolderItem = objFolder.ParseName("Internet Explorer.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Pin to Taskbar" Then objVerb.DoIt
	Next
End If

'Mozilla Firefox - All Users
If objFSO.FileExists(strAllUsersProgramsPath & "\Network & Internet\Mozilla Firefox\Mozilla Firefox.lnk") Then
	Set objFolder = objShell.Namespace(strAllUsersProgramsPath & "\Network & Internet\Mozilla Firefox")
	Set objFolderItem = objFolder.ParseName("Mozilla Firefox.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Pin to Taskbar" Then objVerb.DoIt
	Next
End If

'Windows Explorer - Current User
If objFSO.FileExists(strCurrentUserStartFolderPath & "\Programs\Accessories\Windows Explorer.lnk") Then
	Set objFolder = objShell.Namespace(strCurrentUserStartFolderPath & "\Programs\Accessories")
	Set objFolderItem = objFolder.ParseName("Windows Explorer.lnk")
	Set colVerbs = objFolderItem.Verbs
	For Each objVerb In colVerbs
		If Replace(objVerb.name, "&", "") = "Pin to Taskbar" Then objVerb.DoIt
	Next
End If

'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''

1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:
84:
85:
86:
87:
88:
89:
90:
91:
92:
93:
94:
95:
96:
97:
98:
99:
100:
101:
102:
103:
104:
105:
106:
107:
108:
109:
110:
111:
112:
113:
114:
115:
116:
117:
118:
119:
120:
121:
122:
123:
124:
125:
126:
127:
128:
129:
130:
131:
132:
133:
134:
135:
136:
137:
138:
139:
140:
141:
142:
143:
144:
145:

Select all Open in new window

- You set your "Network Location" in your unattend.xml file but still get prompted for it when first logging in.
Install the following hotfix into your image laptop: http://support.microsoft.com/kb/2028749

- Your IE homepage is reset after sysprep.
Add you IE settings to your unattend.xml file under the specialize pass:
x86_Microsoft-Windows-IE-InternetExplorer__neutral_31bf3856ad364e35_nonSxS

- You lose the Aero theme after sysprep
Run the following command at an elevated command prompt: WinSAT prepop
This will generate the WinSAT prepop .xml results files to the Datastore directory located at %WINDIR%\performance\winsat\datastore. This enables you to keep the configured aero theme after running sysprep (otherwise it will be reset back to basic).

unattend.xml

<?xml version="1.0" encoding="utf-8"?>
<unattend xmlns="urn:schemas-microsoft-com:unattend">
    <servicing></servicing>
    <settings pass="oobeSystem">
        <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <OOBE>
                <HideEULAPage>true</HideEULAPage>
                <HideWirelessSetupInOOBE>true</HideWirelessSetupInOOBE>
                <NetworkLocation>Work</NetworkLocation>
                <ProtectYourPC>3</ProtectYourPC>
            </OOBE>
            <ShowWindowsLive>false</ShowWindowsLive>
            <DisableAutoDaylightTimeSet>false</DisableAutoDaylightTimeSet>
            <BluetoothTaskbarIconEnabled>false</BluetoothTaskbarIconEnabled>
            <TimeZone>Eastern Standard Time</TimeZone>
            <UserAccounts>
                <AdministratorPassword>
                    <Value>AdminPassword</Value>
                    <PlainText>false</PlainText>
                </AdministratorPassword>
                <LocalAccounts>
                    <LocalAccount wcm:action="add">
                        <Password>
                            <Value>TempUserPassword</Value>
                            <PlainText>false</PlainText>
                        </Password>
                        <Description>Temp Local Account</Description>
                        <DisplayName>TempUser</DisplayName>
                        <Group>Users</Group>
                        <Name>TempUser</Name>
                    </LocalAccount>
                </LocalAccounts>
            </UserAccounts>
            <DoNotCleanTaskBar>true</DoNotCleanTaskBar>
        </component>
        <component name="Microsoft-Windows-International-Core" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <InputLocale>EN-US</InputLocale>
            <SystemLocale>EN-US</SystemLocale>
            <UILanguage>EN-US</UILanguage>
            <UserLocale>EN-US</UserLocale>
        </component>
    </settings>
    <settings pass="specialize">
        <component name="Microsoft-Windows-Security-SPP-UX" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <SkipAutoActivation>true</SkipAutoActivation>
        </component>
        <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <CopyProfile>true</CopyProfile>
            <DisableAutoDaylightTimeSet>false</DisableAutoDaylightTimeSet>
            <TimeZone>Eastern Standard Time</TimeZone>
            <ShowWindowsLive>false</ShowWindowsLive>
            <RegisteredOrganization>Organization Name</RegisteredOrganization>
            <RegisteredOwner>Registered Owner</RegisteredOwner>
            <ProductKey>Your Product Key Here</ProductKey>
            <DoNotCleanTaskBar>true</DoNotCleanTaskBar>
            <BluetoothTaskbarIconEnabled>false</BluetoothTaskbarIconEnabled>
            <Display>
                <HorizontalResolution>1024</HorizontalResolution>
                <VerticalResolution>768</VerticalResolution>
                <RefreshRate>60</RefreshRate>
                <ColorDepth>32</ColorDepth>
            </Display>
            <ComputerName>%Please input a computer name(0,15)%</ComputerName>
        </component>
        <component name="Microsoft-Windows-UnattendedJoin" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <Identification>
                <Credentials>
                    <Domain>your.domain.com</Domain>
                    <Password>Password</Password>
                    <Username>Username of account to add PC to domain</Username>
                </Credentials>
                <JoinDomain>%Please select a domain to join{your.domain.com}%</JoinDomain>
                <MachineObjectOU>OU=Test,DC=Your,DC=Domain,DC=Here</MachineObjectOU>
            </Identification>
        </component>
    </settings>
    <settings pass="generalize">
        <component name="Microsoft-Windows-Security-SPP" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <SkipRearm>1</SkipRearm>
        </component>
    </settings>
    <cpi:offlineImage cpi:source="wim:c:/temp/install.wim#Windows 7 ULTIMATE" xmlns:cpi="urn:schemas-microsoft-com:cpi" />
</unattend>

1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:
79:
80:
81:
82:
83:

Select all Open in new window

DisableBackupMonitoring.reg
- 314 bytes
DisableBackupMonitoring.reg
ConfigTaskbar.vbs
- 5 KB
ConfigTaskbar.vbs
unattend.xml
- 7 KB
Sample Unattend.xml

Asked On: 2010-05-15 at 22:21:03ID3095
Tags: Windows 7
,; Sysprep
,; Unattend.xml
Topic: Windows 7
Views: 33084

About The Author

ivanoviola

Comments

Expert Comment

by: Itsa56 on 2010-11-09 at 22:13:35ID: 21204

The error appear"Windows could not parse or process unattend answer file [C:\Windows\Panther\unattend.xml] for pass [Specialize]. The answer file is invalid".
What does mean? Where can I fix this error.

Author Comment

by: ivanoviola on 2010-11-10 at 07:12:31ID: 21217

Itsa56,

I suggest you start your unattend.xml from the beginning. There is something in your answer file that is causing it to fail. I suggest you keep the xml simple to start with then add components. This way you can locate any problems as you add components.

http://technet.microsoft.com/en-us/library/dd744253%28WS.10%29.aspx

Expert Comment

by: Itsa56 on 2010-11-10 at 14:48:34ID: 21221

Thanks ivanoviola.
My answer file is working now, no error comes up. However, it appears another problem. After running Sysprep, it wiped out my customized install MS Office 2007. Any solution for this problem.
My customized install Office 2007details:
- In the Trust Center-Macro Setting: Tick - Disable all macros except digitally signed macros.
- Add "Help" in Customize Quick Access Toolbar.

Author Comment

by: ivanoviola on 2010-11-10 at 16:00:37ID: 21228

Glad you got it working.

- For the Quick Access toolbars. I would customize all the tool bars for each Office application. The toolbar files can be retrieved from: C:\Users\[USERPROFILE]\AppData\Local\Microsoft\Office\
I would put them somewhere on the computer, eg. C:Windows\Options\Toolbars then add a line in the SetupComplete.cmd to copy them to the same location in the default profile. SetupComplete.cmd runs after sysprep. Doing it this way will ensure any user profile created will get the configured toolbars.

- As for the Macro setting, I would apply the settings through the Office 2007 group policy settings.
http://www.microsoft.com/downloads/en/details.aspx?FamilyID=92d8519a-e143-4aee-8f7a-e4bbaeba13e7&displaylang=en

Hope this helps

Expert Comment

by: Itsa56 on 2010-11-11 at 13:56:09ID: 21260

I'm installing the Microsoft Office 2007 Help Tab add-in (download from here http://office.microsoft.com/en-gb/training/download-help-to-get-started-with-office-2007-HA010214685.aspx) as part of my SOE image. The add-in installs correctly and works fine for the user account I installed it with (i.e. Local Administrator). However, after sysprep and logging on as another user the Help tab does not appear in either MS Word 2007 or Excel 2007 (I haven't tried any other Office apps but I assume they will be the same). Looking in the Control Panel under Programs and Features the application is showing as being installed. If I re-run a reinstall and choose the Repair option the program installs correctly and is then available for use as the logged on user.
It is very important to us that this application be available for all our users on any PC they use. How can I install it in our SOE and have the Help Tab visible please?

Author Comment

by: ivanoviola on 2010-11-12 at 07:12:11ID: 21268

Itsa,

I'm not familiar with the Office 2207 help tab. I did come across this:
http://msgroups.net/microsoft.public.office.setup/Office-2007-Help-Tab-Not-Available-For-All-Users

Following the info in the link, I would create the registry file to install the help tab for all user. Put the info below into a Tab.reg file.

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\Software\Microsoft\Office\Word\Addins\MicrosoftOfficeHelpTab.Connect]
"FriendlyName"="Microsoft Office 2007 Help Tab"
"LoadBehavior"=dword:00000003
"Description"="Adds a Help tab to Microsoft Office"

I would deploy the reg file using group policy. Hope this helps.

Expert Comment

by: Itsa56 on 2010-11-14 at 20:22:09ID: 21316

Million Thanks ivanoviola for your genuine and generous advice. It's working beautifully. I agree 100% with Aakash Shah comment in the link your provided.
Thanks again for your help.

Expert Comment

by: Itsa56 on 2010-11-14 at 20:23:25ID: 21317

Million Thanks ivanoviola for your genuine and generous advice. It's working beautifully. I agree 100% with Aakash Shah comment in the link your provided.
Thanks again for your help.

Author Comment

by: ivanoviola on 2010-11-14 at 21:07:16ID: 21319

You're welcome. I'm happy that you worked out the problems with your sysprep.

IV

Expert Comment

by: JamCoul on 2011-01-06 at 07:44:05ID: 22704

Can you use mysysprep2 with this unattend.xml?

Author Comment

by: ivanoviola on 2011-01-06 at 09:11:10ID: 22705

Yes, can use mysysprep2 with your unattend.xml file. Instead of running:
"C:\Windows\System32\sysprep\Sysprep.exe" /generalize /oobe /shutdown /unattend:"C:\Windows\System32\sysprep\unattend.xml"

you run:

"C:\Windows\System32\sysprep\MySysprep.exe" /generalize /oobe /shutdown /unattend:"C:\Windows\System32\sysprep\unattend.xml"

Expert Comment

by: jwcchelpdesk on 2011-01-26 at 06:09:07ID: 23147

We build our own machines. Will the above computer naming variables work in this situation? I saw in the MySysprep2 article that customizations can be requested.

Also will MySysprep work in a lab environment where we image several machines at one time?

Thank you for your time and attention. Any suggestions are greatly appreciated!

Author Comment

by: ivanoviola on 2011-01-26 at 06:44:48ID: 23148

I use the above for the Windows 7 images on campus. If you sysprep your image using mysysprep.exe then you'll be able to use the variables. When you boot up after running mysysprep, you'll be prompted to name the computer then pick select your domain. I got mysysprep customized with our school logo which looks pretty cool. You can request other customizations.

Expert Comment

by: jwcchelpdesk on 2011-01-27 at 14:01:35ID: 23176

You're awesome! Thank you for sharing.

I was never able to get the MachineObjectOU line to work. Not a big deal though. The machine joined the domain without it and I've always moved the machines manually anyway.

Again, thank you very much!

Author Comment

by: ivanoviola on 2011-01-27 at 14:28:15ID: 23177

That's great that it worked!

Regarding the MachineObjectOU...
It will not work if your path points to a built-in AD container like the built-in "Computers" container. It worked when I pointed an OU which I created. You should be able to get it to work as it works for me.

Author Comment

by: ivanoviola on 2011-01-27 at 14:38:45ID: 23178

One more tip....
If the computer name is longer than 15 characters, the sysprep will fail. The computer name will not be shortened automatically as in a XP sysprep.

If you use the following variable in your unattnded.xml, the name will be shortened to 15 characters automatically.
<ComputerName>%Please input a computer name(0,15)%</ComputerName>

This will save you re-imaging the computer again.

Expert Comment

by: jwcchelpdesk on 2011-01-28 at 08:12:39ID: 23198

Thanks for the additional comments. Your help is greatly appreciated.

Expert Comment

by: boriskostov on 2011-01-28 at 09:34:02ID: 23202

I am trying to deploy some machines with Windows 7 Enterprise using MySysprep and Symantec Ghost
An error appears Microsoft-Windows-Shell-Setup and restarting infinitly.
I am just customize the existing xml file for my domain, time zone and international settings.
Any suggestions?

Author Comment

by: ivanoviola on 2011-01-28 at 09:54:54ID: 23203

I would start with re-creating you xml file. Put in your Windows 7 Enterprise disk, open WAIK, create a new catalog then customize your settings.

I think this will help.

Expert Comment

by: boriskostov on 2011-01-29 at 16:41:02ID: 23262

I still have problems with <CopyProfile>true</CopyProfile> in specialize pass, Microsoft-Windows-Shell-Setup component name. When is <CopyProfile>false</CopyProfile> mysysprep is passing OK, but still there is problems with international settings in oobeSystem. I don't have patience testing to leave the field empty (nor true nor false) or to remove all the line. Is someone have tried that? And at last is there any matter about the order of passes and components inside them? I'll appreciate any shared experience about the correct order of passes (generalize, specialize, oobeSystem etc.), components inside and the settings and scripts at last in my answer file. I could show it.
Thanks in advance.

Author Comment

by: ivanoviola on 2011-01-30 at 07:20:48ID: 23286

You should start by trying to get the <CopyProfile> setting to work first. When you have this working then try adding the International settings. Doing it this way we'll be able to find out what is causing the problem.

When you are configuring the laptop, are you logged in as Administrator? If not, try using the Administrator account. You can post your xml and I'll take a look to see if I can spot any problems.

What errors are you getting (if any)? Is the sysprep working and your settings just not applying?

IV

Expert Comment

by: jwcchelpdesk on 2011-03-07 at 08:28:40ID: 24319

Is there any way to specify what profile is copied?

Author Comment

by: ivanoviola on 2011-03-07 at 08:48:37ID: 24320

The logged in profile when you run mysysprep will be the profile that gets copied over to the Default profile. There is no other way to specify a different profile to be copied over. If you have a specific profile that you would like to use as the default profile, then log in using that profile and run mysysprep.

Expert Comment

by: jwcchelpdesk on 2011-03-08 at 10:09:10ID: 24412

Thanks again!

Does anyone know of a way to keep the Windows Media Player Setup after sysprep? Also, the Java checkbox "Check for updates automatically " resets, and the Start menu and the Action Center repopulate.

Author Comment

by: ivanoviola on 2011-03-08 at 13:37:15ID: 24431

I ran into the same problems as you.

You can prevent the first use dialog box from appearing when opening Windows Media Player by using Group Policy.
Computer Config - Policies - Admin Templates - Windows Components - Windows Media Player

When running sysprep it resets a few things back to OOBE. This includes Action Center, Start Menu and WMP.

In my article above under "Problems and Fixes" it tells you how to disable the Backup Monitoring in Action Center.

Expert Comment

by: jwcchelpdesk on 2011-03-18 at 14:36:14ID: 24823

I’m at the point where mostly everything is working the way I would like. I’ve set up Windows 7, made changes to the default profile; I’ve also set up my unattend.xml, Mysysprep, the SetupComplete.cmd file in C:\windows\setup, and copied what’s needed to the sysprep folder. I’ve pulled an image and all works fine except when using the Ghost Console. When I push the image to a machine using the ghost console my profile information is lost. When I push the same image form the Ghost Cast Server all is well. I’ve watched and documented the process and the one looks identical to the other. Is anyone else having the same problem? Is there a reason for the Ghost Console to image differently than the Ghost cast server? Using the Ghost Console would be advantageous! Thanks for your time and attention.

Expert Comment

by: jwcchelpdesk on 2011-03-22 at 12:35:43ID: 24957

Problem solved. I thought it would be helpful, or at least not hurt, to leave the additional local account on my image instead of removing it in the mysysprep process. Seems as though the additional local account confuses the Ghost Console. Not sure why it works with the Ghost Cast Server but it does.

Hope this helps others.

Author Comment

by: ivanoviola on 2011-03-22 at 17:17:29ID: 24960

jwcchelpdesk:
Thanks for sharing that. I didn't have an answer for you as I don't use the ghost console (and I couldn't test it). I use the Ghost cast server. It may help me if we decide to use the console. Thanks!

Expert Comment

by: jwcchelpdesk on 2011-04-12 at 08:40:44ID: 25695

I've imaged my first Windows 7 lab using the GhostCast Server. The lab had 13 machines in it. The first time that I pushed the image to the machines (all same hardware) 6 of the machines did not have the default profile settings. I decreased the number of machines in the GhostCast Server and pushed the same image to the 6 computers that did not have the default profile and 5 of the 6 loaded properly. I then decreased the count to 1 and the last one took the default profile. Has anyone else had problems with the default profile copying over?

Expert Comment

by: cameron213 on 2011-04-15 at 10:26:00ID: 25812

Is there anyway to add a script or command to the unattend.xml file that will put any user who logs on to the computer directly into the local administrators group? I do not want to do this through group policy and I certainly dont want to go from machine to machine and add each user to that group, especially when there are multiple users per machine.

Author Comment

by: ivanoviola on 2011-04-15 at 12:03:50ID: 25816

@ Cameron
I came across this which may help....
http://www.msfn.org/board/topic/72395-add-users-to-local-administrators-group/

@ jwcchelpdesk:
I haven't come across a problem like that. I've had some funky things happen to some computers when doing a multicast session but re-imaging them usually fixes the problem. Sorry.

Expert Comment

by: Quadraam on 2011-04-18 at 05:57:01ID: 25859

@ jwcchelpdesk , why not download the "offline" version of Java , its the same but does not have the update part in it.

Expert Comment

by: Michael3232 on 2011-04-19 at 05:57:45ID: 25874

Do you remove the entire command <ComputerName></ComputerName> to prompt for computer name or just the content in between the ><? When trying it without the entire command <ComputerName></ComputerName> I get an error that it couldn't parse or process in the specialize pass section.

When I leave the command in there just as is: <ComputerName></ComputerName> it asks for a username and then names the computer a random name.

I would like on startup to be able to name the computer and let what I specify be the computer name. And then remove the temp local user created and enable the Administrator account with the specified password, and join domain.

Expert Comment

by: jwcchelpdesk on 2011-04-19 at 13:33:18ID: 25879

Michael3232: The above reference worked great for me:
<ComputerName>%Please input a computer name(0,15)%</ComputerName>

Quadraam: Thanks for the Java tip. We would like to be able to control the updates ourselves, teherfore just want the box unchecked.

Author Comment

by: ivanoviola on 2011-04-19 at 16:39:33ID: 25881

You may have a problem inserting %Please input a computer name(0,15)% into the computer name field when creating your unattend.xml file using WAIK. If so you can open the unattend.xml with a text editor (notepad) and find the string <ComputerName></ComputerName> and replace it with <ComputerName>%Please input a computer name(0,15)%</ComputerName>. This will prompt you for a computer name.

Follow the instructions above under "There is one trick that is not documented very well, but works great....." which details how to use the SetupComplete.cmd to delete the temp user and make the Administrator account active.

Lets us know if you have any other questions or problems.

Expert Comment

by: Michael3232 on 2011-04-20 at 06:24:36ID: 25888

It prompted for me a computer name now. It then continues, but errors out at: Windows could not parse or process the unattend answer file for pass [specialize]. The settings specified in the answer file cannot be applied. The error was detected while processing settings for component [Microsoft-Windows-Shell-Setup]. And below it says "Setup is applying system settings" on the screen.

I can send you a copy of the answer file if you would like. This was tested on a "clean" xml file that you provided. Thank you for your help.

Author Comment

by: ivanoviola on 2011-04-20 at 07:50:57ID: 25891

The problem is usually your xml file. I suggest you re-create your unattend.xml file from scratch. When you do make sure you use the wim file from the Windows 7 media (disk) you used to create your image.

Expert Comment

by: Michael3232 on 2011-04-20 at 16:01:43ID: 25908

As mentioned previously, I tried again with a new xml from scratch with the unattand.xml file you provided.

I can send you a copy of the answer file if you would like. This was tested on a "clean" xml file that you provided.

Author Comment

by: ivanoviola on 2011-04-20 at 17:07:47ID: 25910

You will need to create a new xml file using WAIK. Download and install WAIK for Windows as indicated above. Here is a link that will step you through creating an unattend.xml using your Windows 7 media.
http://www.bohack.com/2011/01/how-to-make-an-unattend-xml-sysprep-file/
My xml may not be compatible with the windows 7 media you used that's why you're getting that error.

Expert Comment

by: Michael3232 on 2011-04-25 at 13:20:26ID: 26038

I got the XML working now using the link you provided, thank you! How can I get it to prompt for a username? I use the <ComputerName>%Please input a computer name(0,15)%</ComputerName> for Computer Name and that works fine, just didn't know about a username. Or have it not prompt at all and just use the local administrator account only, which I have working also to enable and the password set in the XML file.

Expert Comment

by: Michael3232 on 2011-04-25 at 13:39:13ID: 26039

OK, I got it figured out... I used the same syntax as the computer name except for user name it is: <Name>%Please Input User Name%</Name>. The only thing is now, as soon as I sysprep the machine and shutdowns, I then power it back on and it prompts for username and computer name then loads devices and restarts... at this point it asks again for username hit next and wants password.

I am not sure why it is asking this again, when I have already specified the username before?

Author Comment

by: ivanoviola on 2011-04-25 at 16:37:11ID: 26047

OK, we're making progress. Now...the way I have my sysprep setup I'm only prompted for a computer name and domain (domain is pre-filled). I set the Administrator password when configuring the laptop before imaging. I add the username and password of the account which has permission to add computers to the domain in my XML file. This is the pass you need to add to your xml

Capture.JPG

13 KB
Credentials add PC to domain.

Here is how the code looks in my xml.

<Identification>
                <Credentials>
                    <Domain>Your Domain</Domain>
                    <Password>User Password</Password>
                    <Username>User Name</Username>
                </Credentials>
                <JoinDomain>%Please select a domain to join{your domain}%</JoinDomain>
                <MachineObjectOU>OU=Re-Imaged,OU=your,DC=domain,DC=com</MachineObjectOU>
                <UnsecureJoin>false</UnsecureJoin>
                <DebugJoin>false</DebugJoin>
                <DebugJoinOnlyOnThisError>0</DebugJoinOnlyOnThisError>
</Identification>

1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:

Select all Open in new window

We use a domain account called imageprep and only use this for this purpose. You also need to specify the domain OU to add the computer to.
The second username and password is of my TempUser which gets deleted as outlined in the article.

Expert Comment

by: Corp616 on 2011-04-26 at 13:49:06ID: 26060

Hi there,

Thank you again for sharing this

Expert Comment

by: Corp616 on 2011-04-26 at 13:51:46ID: 26061

I wonder if there is a way to keep the video driver. I have already installed the Intel HD Graphics driver but verytime I ran the "MySysprep", it reset the video driver to default and I loose all my video setiings. Please advice

Author Comment

by: ivanoviola on 2011-04-26 at 14:59:50ID: 26066

After sysprep does the Aero feature remain or do you have to set that again as well? Which settings are you losing? Did you run the WinSAT prepop command before taking your image?

If the computers you're syspreping have the same hardware the you can use the WinSAT prepop command. Run the following command at an elevated command prompt:
WinSAT prepop
This will generate the WinSAT prepop .xml results files to the Datastore directory located at %WINDIR%\performance\winsat\datastore. This enables you to keep the configured aero theme after running sysprep (otherwise it will be reset back to basic). The video driver should still be installed after sysprep.

Expert Comment

by: Corp616 on 2011-04-27 at 06:34:11ID: 26078

Hello,it remains after sysprep but the intel graphics application disappears from the application list under control panel. The screen resolution went to 800 x 600. I did run winsat prepop before I sysprep the machine but still ahving the same issue. Any thoughts?

Author Comment

by: ivanoviola on 2011-04-27 at 08:02:35ID: 26081

Do these computers have the same hardware?
You can set the resolution in your unattend.xml under the following pass:

Capture.JPG

29 KB
Display Settings.

The application shouldn't disappear but you may lose the settings. If we can pinpoint where the settings are held (registry or folder) then we could apply them after sysprep runs.

Expert Comment

by: Corp616 on 2011-04-27 at 08:28:48ID: 26082

That is very wierd. I had the settings in my xml file but it did not take it. Please advice

display.JPG

103 KB
My config

Author Comment

by: ivanoviola on 2011-04-27 at 08:36:33ID: 26083

Try setting the PnpSysprep pass in your unattend.xml (if you haven't already done so):

Capture.JPG

22 KB
XML Setting

That may help.

Expert Comment

by: Corp616 on 2011-04-27 at 08:51:22ID: 26084

I have updated my xml and I'm running another Mysysprep. I will keep you posted. Thank you for your time

Expert Comment

by: Corp616 on 2011-04-27 at 09:08:37ID: 26085

You are the best!!! It worked. Thank you very much. I sent you an email yesterday about the MySysprep customization. Is there a way to remove the logo as we are going to deploy it for the entire company
Thank you, thank you

Author Comment

by: ivanoviola on 2011-04-27 at 09:33:23ID: 26086

Great to hear that it worked. I got James (from mysysprep) to add our logo to our copy of mysysprep. Our logo is centered on the screen (top). Looks much better than on the right. I also had him send us a copy of mysysprep without the logo.

Expert Comment

by: Corp616 on 2011-04-27 at 09:43:19ID: 26087

That would be much appreciate it if we can have a copy without the logo. Thank you

Author Comment

by: ivanoviola on 2011-04-27 at 09:56:55ID: 26088

Just in case....I have nothing to do with MySysprep. I've only written the article on how you can use it with Windows 7. images I only use it.....
James is the person who created it. If you emailed him using the email address on his website he'll respond.

Glad all worked out for you.

Expert Comment

by: Corp616 on 2011-04-27 at 10:43:16ID: 26089

Ah!!! Did not know that. I did send an email yesterday and I'm still waiting for a response. Again thank you for all your help. Take care

Expert Comment

by: leatherleaf on 2011-05-02 at 07:48:06ID: 26165

I see above that you say you must specify the OU to which the computer will be added. We have a number of PCs that will use the same image, but need to go into different OUs. Will we need to create different images for different OUs?

Expert Comment

by: Corp616 on 2011-05-02 at 08:10:34ID: 26167

Hi All, i have a technical question and need help. I'm using MySysprep to deploy Windows 7. The naming convention in our company is the computer SN. Rather than using %Please input a computer name(0,15)% in the XML file, I wonder if there is a way to grab the machine SN and use it as default name. Thank you

Author Comment

by: ivanoviola on 2011-05-02 at 11:36:47ID: 26172

@ leatherleaf:
If you want to automate the exact OU to add them to then you will need an image for each OU. Really you just need to create different unattend.xml files with the different OUs then replace it in the image (then retake the image). I just have all the computers go to one OU then move them accordingly. Because of our computer naming scheme it's easy to tell where they should go.

@ Corp616:
Check the mysysprep website. It mentions something about using the following variable for the computer name in the unattend.xml: %SerialNo%
http://www.tsaysoft.com/mysysprep2/

Expert Comment

by: Corp616 on 2011-05-03 at 06:36:36ID: 26181

This did the trick Ivanoviola. Thank you again

Expert Comment

by: leatherleaf on 2011-05-03 at 08:26:33ID: 26182

Awesome. Thanks so much for this article! This works like a charm!

Expert Comment

by: Corp616 on 2011-05-04 at 07:39:42ID: 26195

Anther question for the experts. I have craete my windows image, ghost it (it's more that 5 gigs) and I would like to load it from my usb ntfs flash drive. I know it's easy to create a bootable fat 32 usb drive. Now I wonder if it is possible to do it with an ntfs drive and have a batch file running on start

Expert Comment

by: jwcchelpdesk on 2011-05-04 at 11:11:31ID: 26196

Has anyone been successful inserting a driver path in sysprep? Having trouble with My Dell Optiplex980 video drivers.

Thanks
Vicky

Expert Comment

by: jwcchelpdesk on 2011-05-04 at 11:19:50ID: 26197

Sorry, I meant Mysysprep for Windows 7.

Author Comment

by: ivanoviola on 2011-05-04 at 16:40:02ID: 26205

@Vicky
Are you referring to adding a driver path to your unattend.xml file? If so, and I looked this up previously, that field can only be used if you're using Windows Deployment Server to distribute your images. My work around was to slipstream my drivers to the DriveStore on my Windows 7 image using the pnputil.exe utility before taking the image. More info here:
http://technet.microsoft.com/en-us/library/dd919234%28WS.10%29.aspx

Author Comment

by: ivanoviola on 2011-05-04 at 16:51:25ID: 26206

@Corp616:
Not sure about this. I created a nice WInPE 3.0 disk which loads ghost automatically when loaded which is on a FAT32 partition. Maybe a question to ask the Windows 7 forum.

Author Comment

by: ivanoviola on 2011-05-05 at 09:07:26ID: 26216

Corp616:
I did a little test today and created my WinPE 3.0 boot disk on NTFS. All went well. You'll find instructions here on how to create a WinPE 3.1 boot disk:
http://theitbros.com/dism-tool-winpe-3-1-boot-environment
Just format it as NTFS instead of FAT32. When you have the boot disk working I'll show you how to add ghost. When WinPE is loaded, ghost opens up and ready to connect to a session. Not sure how's we go about loading the image from the flash drive.

Expert Comment

by: Corp616 on 2011-05-05 at 14:04:43ID: 26226

Thanks but I'm not sure if it will work in my case. I have 2 big different images I would like to run from my flash drive. It's bootable and I have created an autooexec.bat file in which Im using the dos choice command to choose between desktop and laptop. or cancel the process. The problem is everytime I try to run ghost from teh usb drive it crashed fro some reasons I can't figure out so far

Expert Comment

by: Achievement_First on 2011-05-10 at 09:51:20ID: 26909

Ivanoviola,
Thanks for sharing your awesome job. I've been using this to deploy Windows 7 on all of our new laptops coming in.
Do you have any idea how I can make the laptop join the domain wirelessly?

Author Comment

by: ivanoviola on 2011-05-10 at 10:20:15ID: 26922

Achievement_First,
Thanks! I'm glad it's working great. Regarding the wireless...I've never thought about it till you asked. I'm not sure if it's possible and if it is, I really don't know how to do it. Getting the laptop to connect to the wireless network (SSID) before it's added to the domain sounds almost impossible. I did do a little googling but not much showed up. Sorry. If you find an answer, please post it for others.

Ivano

Expert Comment

by: IELTechServices on 2011-05-10 at 10:33:39ID: 26932

I keep hitting a wall and I was hoping ivanoviola or someone else could help me out.

Basic premise:

Windows 7 Pro SP1 installed on a laptop (in this case). All drivers, software, user profile, etc setup and working as desired.

I simply want to 'sysprep' this image and shut it down. We use third party tools (several) to 'image' this to multiples of the exact same hardware.

What we are doing:
1. ready the machine
2. Copy /Scripts folder to /windows/setup it contains

net user TempUser /delete
net user Administrator /active:yes
C:\Windows\System32\Sysprep\unattend.xml

1:
2:
3:

Select all Open in new window

as SetupComplete.cmd per the instructions above (we previously didn't do this, but I like the idea of it).
3. Put our unattend.xml file (attached)

unattend-sample.xml

5 KB
our xml

unattend-sample.xml

in the sysprep folder
4. Run

WINSAT  prepop

1:

Select all Open in new window

5. Elevated command prompt, sysprep folder, and run

sysprep.exe /generalize /oobe /shutdown /unattend:unattend.xml

1:

Select all Open in new window

At this point, we are logged in as an account that has our look/feel and settings (background, office setup as we like, etc) and I am under the impression that this profile will be copied to/become the default profile per the unattend.xml file?

Sysprep runs fine, the machine shuts down.

NOT doing any imaging at this point, so I want to rule out the system we use as an issue. I am simply turning the exact same machine on to ensure that the process works. It fails at Windows Shell Setup on pass 4, specialize.

Capture.PNG

54 KB
WSIM screen cap

The machine never successfully boots after this. It goes through one more time, says windows has a problem (still in the OOBE portion here) and then stops with an error, rebooting brings it back to the same error (to be clear, the pass 4 specialize error is shown once then the 2nd, generic can't boot error happens over and over).

What we are NOT doing:
1. the MySysprep2 portions. Interesting and probably helpful but I just want something basic, changing a computer name manually, etc is of no concern right now. I just need to get these out.
2. Slipstreaming/pointing sysprep at any drivers, etc BUT we are setting PersistAllDeviceInstalls to true to keep the specific (and often troublesome) laptop video, WLAN, etc drivers installed on the machine.

Some notes:
We have a MAK key. Previous Win 7 Ent sysprep process we used included two FirstLogonCommands on pass 7 oobeSystem, Shell setup Neutral:

cscript //b c:\windows\system32\slmgr.vbs /ipk 00000-00000-00000-00000-00000
cscript //b c:\windows\system32\slmgr.vbs /ato

1:
2:

Select all Open in new window

This worked and activated the machine fine.
With our old sysprep on Win 7 ent we never truly had the 'default profile' process down (that's what is propelling this new process, to be honest) and we would get post sysprep 'logging in with temp profile' issues, corrupted profiles, etc. We resorted to the first few hacks people were doing with Win7 including enabling the 'copy' button to copy profiles (as in WinXP), copying 'our' profile and then renaming it Default and Default User, etc - frankly, a bunch of BS that wasn't consistent. It is my understanding now that the CopyProfile option in Sysprep works...

The attached XML is what we are trying now. I generated a new WIM/Catalog setup for WSIM with the exact same Win 7 Pro SP1 disc that I then built the base image on the notebook with. (a primary suggestion for everyone has been to rebuild the WIM/catalog/XML file combination from scratch if you are having issues).

Can someone take a look and see if anything jumps out?

Thanks

Author Comment

by: ivanoviola on 2011-05-10 at 13:38:39ID: 26988

IELTechServices,

Something simple you can try is using the full path to the sysprep files in your command when running sysprep. Example:

"C:\Windows\System32\sysprep\Sysprep.exe" /generalize /oobe /shutdown /unattend:"C:\Windows\System32\sysprep\unattend.xml"

Let me know how that goes.

Expert Comment

by: jwcchelpdesk on 2011-05-11 at 12:01:22ID: 27123

For anyone who has problems with drivers I found an easy fix here on Experts Exchange in a post from DKowalchik.

In the unattend.xml file add:
Microsoft Windows-PnpSysprep_neutral - PersistAllDeviceInstalls=True and DoNotCleanUpNonPresentDevices=True to the generalize pass.

Hope this helps someone else.

Author Comment

by: ivanoviola on 2011-05-11 at 16:40:48ID: 27148

jwcchelpdesk,

I actually use that pass but forgot all about it. Sorry!
PersistAllDeviceInstalls
True = This specifies that Plug and Play devices remain installed on the destination computer during the generalize configuration pass. The devices then do not need to be reinstalled during the specialize configuration pass.
False = Specifies that Plug and Play devices are uninstalled during the generalize configuration pass. If the devices are on the computer during the next specialize configuration pass, they are reinstalled. This is the default value.

Another that may be of interest is DoNotCleanUpNonPresentDevices
True: This specifies that during the next specialize configuration pass, Plug and Play devices that are not detected remain installed.
False: Plug and Play devices that are not detected are removed from the computer. This is the default value.

How is the mysysprep process going? I have it working flawlessly and amd preety happy with the sysprep process.

Expert Comment

by: jwcchelpdesk on 2011-05-12 at 08:42:00ID: 27237

The mysysprep process is going well, thanks. We've deployed one test lab and are getting ready to start our mass summer deployment starting tomorrow.

Thanks for all the help that you've provided.

Expert Comment

by: Corp616 on 2011-05-17 at 08:30:03ID: 27413

Does anybody know why my network type goes back to public rather than work after I run mysysprep? I would like to default network type to work for all my users. Thank you

Author Comment

by: ivanoviola on 2011-05-17 at 09:08:40ID: 27414

Corp,

Did you set your network location in your unattend.xml? Also did you apply the fix above in your image computer? http://support.microsoft.com/kb/2028749
Looking at my xml I noticed that my location is set to "Other". I can't remember why I did this but it's working fine. Something you can try.

Capture.PNG

37 KB
Network Location

Expert Comment

by: Corp616 on 2011-05-17 at 09:24:43ID: 27415

The network loacation in my xml file is set to work. I did not apply that patch because we are not using AD but EDirectory and I did set that registry file to hide the wizard
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Network\NetworkLocationWizard]
"HideWizard"=dword:00000001

Author Comment

by: ivanoviola on 2011-05-17 at 09:39:13ID: 27416

Strange. Try setting the location to Other and see what happens.

Expert Comment

by: Corp616 on 2011-05-17 at 09:42:36ID: 27418

That's just what I tried and it did not help

Expert Comment

by: Corp616 on 2011-05-17 at 10:02:40ID: 27421

I wonder if there si a registry key to change it, so I will add it in my setupcomplete.cmd file

Author Comment

by: ivanoviola on 2011-05-17 at 10:15:19ID: 27423

I was just reading this site: http://www.msfn.org/board/topic/99339-found-a-workaround-for-the-network-location-bug/

Expert Comment

by: Michael3232 on 2011-05-18 at 08:43:58ID: 27449

The unattend.xml file runs fine and shuts down normally. I then imaged the machine and when we power them all on, it doesn't run the setupcomplete.cmd file in the c:\windows\setup\scripts directory.

I can run the file manually and it works.

Author Comment

by: ivanoviola on 2011-05-18 at 08:49:21ID: 27450

What commands do you have in the .cmd file?
These are some of the commands I use in my .cmd file.

:: Enable local administrator user account
net user Administrator /active:yes

:: Delete temp sysprep User
net user TempUser /delete

:: Remove domain users group from local users Group
net localgroup users "Domain\domain users" /delete

:: Delete Unattend.xml file
del "C:\Windows\System32\sysprep\unattend.xml" /q
del "C:\Windows\Panther\unattend.xml" /q

1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:

Select all Open in new window

Expert Comment

by: Michael3232 on 2011-05-18 at 09:27:37ID: 27452

Here's everything I have in mine:

net user TempUser /delete
net user Administrator /active:yes
del C:\Windows\System32\Sysprep\unattend.xml
del C:\Windows\Panther\unattend.xml

Author Comment

by: ivanoviola on 2011-05-18 at 10:37:02ID: 27453

Not sure why the script is not running. Just make sure the path is:
C:\Windows\Setup\Scripts\
There really isn't anything else you need to do to make this run.

Author Comment

by: ivanoviola on 2011-05-31 at 08:47:28ID: 27855

Here is a post regarding joining the computer to the domain automatically after sysprep.
http://www.experts-exchange.com/Programming/Languages/Scripting/Powershell/Q_27043915.html

Expert Comment

by: YRich on 2011-07-13 at 07:58:08ID: 29702

Instead of pnputil, have you used ghost deploy anywhere?

Thanks,
Rich

Author Comment

by: ivanoviola on 2011-07-13 at 17:05:13ID: 29755

Thanks for the post YRich:. I haven't come across ghost deploy but it seems to be worth a look at, The pnputil.exe is more for a small number of drivers. Too many drivers will bloat the image size. I will look into Ghost Deploy. I think it's something worth using.

IV

Expert Comment

by: jwcchelpdesk on 2011-07-28 at 13:42:34ID: 30134

Do you have a 64bit version of mysysprep?

Expert Comment

by: jwcchelpdesk on 2011-07-28 at 14:22:03ID: 30135

Never mind, I found it.

Expert Comment

by: jwcchelpdesk on 2011-07-28 at 14:52:22ID: 30138

What is the difference between wow64, amd64 and x86 in the components section of Windows Image when creating my Windows 7 64bit unattend.xml?

Author Comment

by: ivanoviola on 2011-07-28 at 16:07:46ID: 30140

amd64 = settings for 64-bit apps on a 64-bit OS.
wow64 = settings for 32-bit apps on a 64-bit OS.
x86 = app settings on a 32-bit OS.

Expert Comment

by: jwcchelpdesk on 2011-08-12 at 08:41:50ID: 30669

We are kind of despirate for help here. Classes start Monday.

Having problems with our CAD/Inventor install. Windows 7 64bit. The install works fine but when the individual users open Inventor they get an error because the program sets a file path to the administrator account.

Are you aware of any way this can be altered in the unattend.xml file?

Thank you for your input.
Vicky

Author Comment

by: ivanoviola on 2011-08-12 at 10:47:39ID: 30670

Vicky,

What you can try is to delete the registry key under Administrator for the CAD/Inventor program before taking the image. While you're logged in with the configured profile navigate to and delete:
Run - Regedit - HKEY_CURRENT_USER\Software\{Program Name}
Program Name would be the name of the CAD/Inventor program. Delete this key.

Take the image and test. Hope this helps.

The school where I work doesn't start till the first week of September. I know the feeling of coming down to the crunch! :)

IV

Author Comment

by: ivanoviola on 2011-08-12 at 15:04:33ID: 30677

Vicky,

It also occurred to me that you might also have to delete the folders in the Administrator profile along with the registry key above:
C:\Users\Administrator\AppData\Local\{Program Name}
C:\Users\Administrator\AppData\Roaming\{Program Name}

Try it on a machine that is not working and see if that fixes the problem. If so you can make those changes in your image then retake the image.

Ivano

Expert Comment

by: jwcchelpdesk on 2011-08-12 at 15:32:15ID: 30678

Thank you for your help. Unfortunately, this did not work.The fix for now is to create a Power User group and give them full control of the problematic folders in the local administrator account. Not the way we would like to do it but it works.

Thanks again!
Vicky

Expert Comment

by: jwcchelpdesk on 2011-08-21 at 14:42:22ID: 30845

Has anyone experienced slow first login times? Anywhere from 1 to 3 minutes. We have a script that loads an X: drive and printers. We've also tried preferences to load printers. Printserver runs on Server 2008 R2. Papercut loads through a policy. The printers sometimes load and sometimes not. They also sometimes load 2 of th 3 printers in the IS area. We are using Vipre for antivirus. I read an article that said that sysprep deletes readyboot and superfetch but it did not elaborate.

Expert Comment

by: jwcchelpdesk on 2011-08-22 at 07:51:41ID: 30857

I guess I got a little carried away. Basically I would like to know if there is anything in the sysprep/mysysprep process that could slow the network first time login?