[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x

OS Deployment

Operating System (OS) Deployment allows users to create operating system images and deploy them to target computers. Its task sequences help facilitate the deployment of operating system images and other Microsoft Configuration Manager software packages.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi,

We have a case where we need to capture Windows 10 Enterprise from a bare-metal system / physical machine (Dell OptiPlex 5050) and redistribute it with MDT to other OptiPlex 5050 machines. Normally we do this with a VM, but in this case it is impossible, because there are specific drivers and settings done on this machine for very specific hardware peripherals that are connected in a production environment.

The system was initially a Windows 10 1609 build with all the hard- and software requirements needed for the production environment. We would like to refresh the image now and redeploy it to dozens of other machines. The reference computer was upgraded to 1803 and some software components where upgraded (webbrowsers, ...)
The capture worked with MDT and the image was successfully saved to e WIM file on the deployment share in a folder Captures.

The standard procedure was to import the WIM file as a custom Operating System build. There is a specific task sequence created to redistribute this custom image.
The deployment on the target machine (Optiplex 5050) works just fine, but after the action 'Install Operating System' completes, the system reboots twice and displays the message:

Recovery
Your PC couldn't start properly
After multiple tries, the operating system on your PC failed to start, so it needs to be repaired.
Error code: 0xc0000001

Pressing F1 reboots the system and presents the following message:

Revovery
The boot configuration data …
0
Managing Security Policy in a Changing Environment
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

I have Microsoft Deployment Toolkit setup on my home Windows 2016 Standard Server test lab and can deploy, but it always requires me to manually enter the Windows 10 Pro after the deployment is finished.

How can I setup to automatically get whatever OEM key my existing brand new DELL Windows 10 Pro PCs have instead of wiping that key out ?

Maybe something like the https://www.reddit.com/r/sysadmin/comments/6cam2k/how_would_you_got_about_deploying_an_image_to_200/ script talks about ?
0
Dears,

I am having an issue with OS deployment with UEFI. The PXE boot starts and gets thru till the message "Preparing network"appears, thereafter the machine reboots.

with F8 I am able to ping WDS,DP and site server, The HDD is listed in Diskpart. SMSTS.log shows the following errors

Executing command line: "X:\sms\bin\x64\smstftp.exe" -i 172.21.70.35 get X:\sms\data\variables.dat
Process completed with exit code 1
Failed to download pxe variable file. Code(0x00000001)
PxeGetPxeData failed with 0x80004005

attached the log file , can you please help

SCCM 2012 1610 , WDS and DP on same server Windows 2008 R2 , DHCP Windows 2008R2
smsts.log
0
I have 2 vms running on esxi 5.5.0 Server1 and Server2. Server1 had problems so we restarted the server. We found that when server1 that is restarted it just continues to boot os but unable to do so. We restarted server2, also noticing that server1 one was able to boot as well. After a while both were ok. Both server are windows server 2012

I need to find the root cause of this issue what should i be looking at? What should i do to solve this issue?
0
Hi

I have a Windows 10 1709 image which I have successfully sysprepped and been rolling out to users.

I have now restored the 1709 reference image I create BEFORE running sysprep and updated to 1803, updated my companies software etc and then created a new 1803 reference image

BUT when I now try and run sysprep.exe /generalize /oobe /shutdown /unattend:unattend.xml I get the following error:-

"Sysprep was not able to validate your Windows installation.  Review the log file at %WinDir%\System32\Sysprep\Panther\Setupact.log for details.  After resolving the issue, use Sysprep to validate your installation again"

Attached is the setupact.log but I cannot see what problem is OR how to solve it?

Please help
0
While browsing to the data source for the operating system image within the "Software Library\Operating Systems" section of SystemCenter Configuration Manager 2016 (SCCM) I receive an error message that says "The specified UNC path does not contain a valid WIM file or you do not have permission to access it. Specify a valid path."

I get this same error message when trying to point to the WIM files for Windows 10, Server 2016, and Windows 7 operating systems.

What do I need to do to fix this issue so I can successfully point to these OS WIM files?

SCCM WIM UNC path error
0
We have a master image created using Acronis. It contains Win10, MS Office, a few browsers and applications installed on it. Now, we want to bring in that image into SCCM which we will be using from now on instead of Acronis. My question is should we sysprep that image even though it will be push onto the same PC hardware/model ? how would you guys go about this? Any input will be greatly appreciated.

Thank you!
0
I have been to many KB articles about CA root cert validation period and still have doubt about it and want to clear it. I am about to work on a root CA to increase the validity period as well to increases the issued certificate period.
We have a CA root server and this  server is issuing (no subordinate server in place) the certificate with five years . We now want to renew the CA 's root cert as well as the issued certs period to another 5 years.
My understanding from the EE, nothing I can do with issued certificates and they will expire what ever I do with root server. In this case , I first have to change the validity period in CApolicy.inf file and renew the certificate of CA root server to 10 years, hence this will increase the validation of CA's root certificate as desired (10 years or more).
But the old issued certificates to the clients are chained to old issued template, in this case, the old issued certificates will be expired soon even after changing the value of CAplicy.inf file .
To remediate the issue, the next step is that I have to create new issuing template and issue the certificates to client by GPO.
I have to issue the listed below commands to the server In order for me to set  the  AD's templates period to 5 years as we want otherwise the AD's templates will be staying with old's validation period?
certutil -setreg CA\ValidityPeriodUnits 10
certutil -setreg CA\ValidityPeriod Years
net stop certsvc && net start certsvc

In conclusion, I have to…
0
Hi All

I have a WIM file that I am trying to deploy via USB.

Please can someone assist me.

The PC that I am using has Windows 10 1803 with the ADK installed.

The WIM only has one image.
0
If I grab the User State Migration Tools(USMT) executables from the Windows 10 "Windows Assessment and Deployment Kit" can I use them also on Windows 7 boxes? We are working on a non-SCCM OS migration.
0
10 Tips to Protect Your Business from Ransomware
LVL 1
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

Hello experts - I'm looking for a solution to save me time when preparing PCs for deployment.  I work for an architecture firm and we use primarily Dell Precision PCs but each it built to order and there are no two exactly the same.  I have a standard set of software that all architectural users get.  Right now, I prepare each one manually which takes nearly a full day to get ready.  I'd like to explore other options but am not sure where to start.  Ideally I'd create a standard image containing all the software we normally use and deploy that to new machines without having to go through the install process for every application.  I'm not sure how that would work with each machine having slightly different hardware, windows licenses etc.  Where would be a good place to start with this?
0
We are looking for a simple yet effective way todo the following,

Scenario. We order 100 laptops, from manufacturer with Windows 10 OEM locally. We want to install 1 laptop with OEM Windows 10, patch, Office package etc and create a standard image. Then we want to deploy the same image to all other 99 laptops and activate each laptop using its unique OEM key thats inside the BIOS (nowadays they do this).

What tool is the simplest best way to Capture image and Deploy it over network in a great way? We can use a Win server, NAS or whatever to store the server centrally.

Thanks
Joe
0
I am writing a software removal program, and want to uninstall a context menu driver. Just unregistering the driver while Windows File Explorer is open causes a Windows error "Program has stopped working" when trying to unregister the dll. Closing file explorer first and then running the program works fine.

Here is the unregister code I am using now:

HINSTANCE hLib = LoadLibraryW(szDllPath);

    if (hLib == NULL)
    {
		DWORD dwErrorCode = GetLastError();
		szError.Format(_T("\nWindows could not load library %s due to %s"),szDllName,getLastWinError(dwErrorCode));
		return false;            
    }

    typedef HRESULT (CALLBACK *HCRET)(void);
    HCRET lpfnDllRegisterServer;

    // Find the entry point
    lpfnDllRegisterServer = (HCRET)GetProcAddress(hLib, "DllUnregisterServer");



    if (lpfnDllRegisterServer == NULL)
    {
		szError = NEWLINE;
		szError = ERR_PROCEDURE_ADDRESS;
		return false;            
    }

    // Call the function by function pointer..
    if (FAILED((*lpfnDllRegisterServer)()))            
    {   
		szError.Format(_T("\nWindows could not unregister context menu driver %s!"),szDllName);
		return false;            
    }

    FreeLibrary(hLib);

Open in new window


What is the best way to go about this to avoid this Windows error?
0
Hi Experts,

I have to boot this device via LAN or USB.
But this is not possible until now.

The device is : Lenovo Miix 720

Can you help me out ?
I get always this error....
Error
0
Hello Everyone !

I have to create a W10 1703 template on my vCenter infrastructure.
To do this, I just repeated the same process than for the 1607 version.

1/ Create a VM and deploy our W10 1703 image
2/ Add the VM in WORKGROUP
3/ Convert in template
4/ Deploy a machine from this template with the associated customization

We have to use custom sysprep answer file (unattended file). I tried with the customization used by 1607 version but it doesn't work.

 UnattendedFile.xml :
<?xml version="1.0" encoding="utf-8"?>
<unattend xmlns="urn:schemas-microsoft-com:unattend">
    <settings pass="oobeSystem">
        <component name="Microsoft-Windows-International-Core" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <InputLocale>040c:0000040c</InputLocale>
            <SystemLocale>fr-FR</SystemLocale>
            <UILanguage>fr-FR</UILanguage>
            <UserLocale>fr-FR</UserLocale>
        </component>
        <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <OOBE>
                <HideEULAPage>true</HideEULAPage>
                …
0

Deploying our service is a grudge match between customer benefits and customer pain. In one corner, rolling out fixes (yay!) and delivering new features (double yay!). In the other corner, training on new features (boo – sounds like work), and change management processes (more work).


We put a great deal of effort into optimizing these processes, so it’s important to share how we think through these optimizations. For now, I’ll narrow focus on the issue-fix aspect of the deployment process, and in later blogs I’ll cover new feature delivery.


The fine printBefore I start, a quick disclaimer: what I’m about to describe is subject to change. We’ve been a fanatical agile shop for nearly seven years and we believe change is an important principle of the agile approach. So, if you’re reading this in 2017 or later, please understand that we might have tweaked some of these details. OK, now for the good stuff…


Bug zapping

You might not be surprised to hear that bugs are occasionally found in our service (I know, the horror!). Nobody likes bugs, so we need to address them as soon as possible. And because our service uses a number of telecommunication providers to make text messages flong (on my iPhone, anyway), phones ring, and other third-party communication channels do their thing, managing the infrastructure related to these providers requires constant effort. In short, we need to be able to release and deploy fixes FAST.


Keep those cards and letters coming

It also might not surprise you to hear that our customers ask for new features (the audacity!). From July 1st to Sept 30th, we received 133 service enhancement requests – that’s 2+ per business day. The product managers who handle these requests interpret them into new features and then work with our engineers to build them.


So far, so good – and in theory we should be getting these features into your hands ASAP. But these features are product changes: while the customers who asked for a change are willing to take on any additional testing and training work to get their new features, customers who don’t intend to use the new features don’t want that burden imposed on them. That means we need a process that doesn’t force new features on customers too quickly.


Balancing the need for speed

Okay, so we can probably agree we want fixes fast and features not too fast – how can we possibly strike this balance?


First, by using deployment speed: we deploy at least weekly, if not more frequently. Our core sprint work uses a continuous delivery process which we deploy on a weekly schedule so that we can seamlessly deliver non-critical fixes at that cadence. We can also generate and deploy critical fixes in between these weekly deployments as necessary to address issues like zero-day vulnerabilities.


Second, by using feature flags: deployments include the latest feature developments, but some features are not quite ready for your use after just one sprint. And as previously mentioned, your user base might be confused if new buttons and features show up every week. So we use feature flags/toggles on our new features so that we can conditionally turn them on when we’re ready to release them. That allows the new fixes to get out the door without having new features show up. (We’ll talk more about feature flags in another blog, but those of you who are new to xMatters might want to check out our Early Access Program if you want to play with new features faster).


Third, through thoughtful communication: because fixes can cause behavior changes in the system, we have implemented a new communication process to advertise the parts of the service we worked on so customers can keep an eye out for any unexpected behavior. Our support notes are designed to provide this information (here’s a sample from the deployments leading up to our Rogue release). Those notes work in conjunction with the scheduled maintenance posts on our status page to ensure this information is delivered by the latest technologies.


Using these three mechanisms, we can offer the best mix of quick fixes – without forcing training and change management on our customers.

0
Hi,
      semaphore timeout period has expired while executing script/query in SQL management studio 2008 R2.What should i do?What is the issue?
0
Hello,

Can you please tell me how to upgrade OS( window server 2012 r2 to window server 2016) using scripting language .



Thankyou
0
Hi Experts;
I have an application in VB6 which uses this code to import from a .csv file.

    Set adbMain = New Access.Application
    adbMain.AutomationSecurity = 1 'Set Macro Security to Low
    adbMain.OpenCurrentDatabase "c:\<path>\Mydb.mdb", False
    adbMain.DoCmd.TransferText acImportDelim, , sTable, sFile, True
    adbMain.CloseCurrentDatabase
    Set adbMain = Nothing

99% of the time it works like a dream - however some users do not have Access and they are getting an Automation Error.

I'm referencing Microoft Access 11.0 in my project, and tried having the user install & manually register the underlying file:
(c:\program files (x86)\Microsoft Office\OFFICE11\msacc.olb)
but this didn't solve the error, and also caused a sister-app to throw an error on launch.

I've read MDAC_TYP.exe could be the answer, but my searches indicate it isn't available for Win10; and is x86 only.
My current user is x86, but no doubt I'll have 64-bit users in the same situation.

My question is this: Is MDAC_TYP.exe the answer?
If yes, Is there a recommended version of MDAC_TYP.exe I should have him use.
Does it pose any danger to the user's system?

Thank you for any advice!
KH
0
The IT Degree for Career Advancement
The IT Degree for Career Advancement

Earn your B.S. in Network Operations and Security and become a network and IT security expert. This WGU degree program curriculum was designed with tech-savvy, self-motivated students in mind – allowing you to use your technical expertise, to address real-world business problems.

I have had a working MDT deployment (6.3.8443) environment for a year or so but now I have my first UEFI only computer, I have added all the latest win7x64 drivers to the task sequence (chipset, VGA, LAN etc etc) and there is a (built-in) task step "Format and Partition Disk (UEFI)" which formats the drive as GPT, this applies correctly when I run the task sequence.

The sequence finishes imaging the computer but on first boot to Windows it hangs at the 'Starting Windows' logo.
Safe mode hangs at CLASSPNP.sys

Any ideas?
0
For the life of me, I can't figure this one out.

I am trying to create an image, using MDT, that will have a custom Start Menu and Taskbar Layout. I have created a Start Menu with the code (See Below), then exported it to the imaged machine, and have imported the file using PowerShell.   The Start Menu layout does not work, but the taskbar layout appears correctly.

I'd like to get the start menu for all new users, while allowing them the freedom to change this as they use it.  I'd prefer not to use GPO, as this will change their start menu each time, or at the very least, lock certain areas down.

I should note that these are all new setups, not reimages.

Here are the steps in the Task Sequence:
1. Copy the LayoutModification file to C:\Windows\Temp

xcopy "%SCRIPTROOT%\Customizations\StartMenu\LayoutModification.xml" "C:\Windows\Temp" /Q /Y

Open in new window


2. Restart Computer
3. Set Execution Policy Bypass
powershell.exe -command "Set-ExecutionPolicy Bypass"

Open in new window


4. Apply LayoutModification file
%SCRIPTROOT%\Customizations\StartMenu\ApplyCustomMenu.ps1

Open in new window


ApplyCustomMenu.ps1 is as follows:
import-startlayout -layoutpath "C:\Windows\Temp\LayoutModification.xml" -MountPath $env:SystemDrive\

Open in new window


5. Restart Computer

Here is the code for my Start Menu and Taskbar Layout - all in one file:
<?xml version="1.0" encoding="UTF-8"?>
<LayoutModificationTemplate 
   

Open in new window

0
Hi
 I am imaging a Win7 Pro machine that will be deployed to similar systems of the make.  I would like to Sysprep the machine but would like it to keep the device drivers after it is Syprep. I would appreciate any assistance on how l can do this.
0
Hi all, we currently use Acronis to deploy images to desktops / laptops, however i'm looking to automate OS and application deployment.

Do you have any recommend ways to deploy.

Thanks
0
I am brand new to imaging. I have been tasked with deploying Windows 10 through SCCM 2012 R2. I am looking for step by step instructions on how to create a boot.wim including the setup binaries.

I am able to create a boot.wim that is just PE, but I am completely in the dark with how to create the second index with the Windows 10 installation setup.
0
Just purchased a new HP DL380 Gen8 server with no optical drive..

I have connected a external optical drive to the server but the server does not see it.. I can boot all my Gen7 & Gen6 servers from this, but this one will not.

I am not familiar with iLo, is it possible to installed the server OS using iLo?


I need to install Server 2012 Standard R2 but have run out of ideas on how to do this since the optical server is not working.  

I have tried creating a bootable 32GB thumb drive with the installation files on it, the server sees the thumb drive but when I select that as a boot volume I get a black screen until I force a reboot.

Any help would be appreciated!
0

OS Deployment

Operating System (OS) Deployment allows users to create operating system images and deploy them to target computers. Its task sequences help facilitate the deployment of operating system images and other Microsoft Configuration Manager software packages.

Top Experts In
OS Deployment
<
Monthly
>