Presentation is loading. Please wait.

Presentation is loading. Please wait.

Real-world OS Deployment Samples

Published byRobert Price Modified over 6 years ago

Similar presentations

Presentation on theme: "Real-world OS Deployment Samples"— Presentation transcript:

1 Real-world OS Deployment Samples
Jörgen Nilsson Principal Consultant Onevinn @Ccmexec Johan Arwidmark CTO Truesec @Jarwidmark

2 Jörgen Nilsson Johan Arwidmark @ccmexec @Jarwidmark MVP MVP 2x A lot!
Liverpool FC, Beer, Meat Steak

3 Session takeaway Common Challenges Windows 10 Challenges
Sample Task Sequence Walk-Through Real World examples & Scenarios And all the qeeky stuff you didn’t know you needed to know ;-)

4 Size matters!! Windows 10 Size Feature Update size
Cumulative Update Size

5 Common Challenges

6 Webservice! Why Webservice Stabile
Less ports open from clients to the Primary Site server, example Remove a computer from a collection script requires: RPC High-Ports WMI Webservice requires only 443 (NOT 80)

7 Community Webservices
Web Service for OS Deployment ConfigMgr WebService Deployment Webservice (Maik Koster)

8 Updating definitions during OSD
Windows Defender, Endpoint Protection Script to Schedule definition download and package update on a Server Script to deploy during OSD Remember different definitions for Endpoint and Defender

9 Microsoft Laps Great solution, if you don’t use it you should!!
However during OSD you must clear the ”ms-mcs-admPwdExpirationTime” or else! … you will not now the password on the machine until the date there is passed

10 Pre start commands Boot Image
Set system time! Delete any existing ”unknown” object Kick off OSDBackground.exe What is runsilent.exe?

11 Windows 10 Challenges

12 What is new under the surface in Windows 10 1607

13 Driver Signing

14 TPM Management changes in Windows 10 1607

15 TPM backup No Longer Possible?
In Windows / Server 2016 ADMX files are the options to take backup of TPM is removed. MBAM the agent does not have access to the key by default in Windows anymore Solution!! - TPMPassTheHash _OSDOAF = Passwordhash If you use pre-provisioning PowerShell Script that writes the variable to the registry and sets the OSManagedAuthLevel = "4" And the last step that change it back to "2"

16 _OSDOAF

17 Language Support Managing Multiple languages during deployment
Deployment, Offline or Online Windows 10 Servicing challenge

18 MBAM deployment Regfiles to control encryption level otherwise = default in PE version that is used = No Control MBAM TPM Pass the Hash The normal script to enable MBAM and encryption

19 Using App-v and UE-V Needs to be enabled now that it is builtin the operating system = Powershell Enable Ue-v and to get it to sync on first logon requires: Enable-Uev Set-uevconfiguration -computer -EnableWaitforSyncOnApplicationStart –enablewaitforsynconlogon We also need to register the UE-V templates we need.

20 Task Sequence walk through

21 Task Sequence groups Initilize section Format Disk, convert UEFI
Sets default values in the TS, example SMSTSErrorDialogTimeout Format Disk, convert UEFI Error Handling Completion Section Error Section

22 Completion Section Remove from Collection Report completion
Copy OSD Logs Stop OSD Background Process

23 Error Section Save TS Error Code (so we can use it later)
OSDBackground Error Set OSD Variables Copy OSD Logs Remove From OSD Collection Disable computer account (a failed machine should never ever be used) SetError Fail the TS with the actual error code that caused the failure

24 Customer TS example

25 Real World Samples

26

27

Download ppt "Real-world OS Deployment Samples"

Similar presentations

What’s coming in Sccm 2007R2 aka Sccm 2007R2: 10 reasons to upgrade Kim Oppalfens SCUG.be.

What’s coming in Sccm 2007R2 aka Sccm 2007R2: 10 reasons to upgrade Kim Oppalfens SCUG.be.
Chris Nackers Senior Consultant Microsoft MVP - ConfigMgr.

Chris Nackers Senior Consultant Microsoft MVP - ConfigMgr.
Operating System Customization

Operating System Customization
Asking Questions Office Migration Planning Manager Windows Security Guides Group Policy Guides Image Servicing Operations Manager Desired Configuration.

Asking Questions Office Migration Planning Manager Windows Security Guides Group Policy Guides Image Servicing Operations Manager Desired Configuration.
Devices and Deployment Management & Security Identity Cloud.

Devices and Deployment Management & Security Identity Cloud.
Managing software and Windows deployments with ConfigMgr and 1E DANIEL RATLIFF TECHNOLOGY ARCHITECT

Managing software and Windows deployments with ConfigMgr and 1E DANIEL RATLIFF TECHNOLOGY ARCHITECT
4/17/2017 7:07 AM © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.

4/17/2017 7:07 AM © 2007 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered.
Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.

Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.
CONFIGMGR 2012 R2 OSD TIPS AND TRICKS Presenter - Fred

CONFIGMGR 2012 R2 OSD TIPS AND TRICKS Presenter - Fred
Inside Windows Azure Virtual Machines Vijay Rajagopalan Microsoft Corporation.

Inside Windows Azure Virtual Machines Vijay Rajagopalan Microsoft Corporation.
A Tour of System Center Configuration Manager Adam Duffy Edina Public Schools.

A Tour of System Center Configuration Manager Adam Duffy Edina Public Schools.
Implementering af Windows 8 in real life Windows 8 OS Deployment Windows 8 OS Deployment features of ConfigMgr 2012 SP1 Take a look at what’s coming.

Implementering af Windows 8 in real life Windows 8 OS Deployment Windows 8 OS Deployment features of ConfigMgr 2012 SP1 Take a look at what’s coming.
WIN-B331 Get a consistent, personal Windows experience that matches your unique work style Easy for IT to deliver personal, user-defined experiences.

WIN-B331 Get a consistent, personal Windows experience that matches your unique work style Easy for IT to deliver personal, user-defined experiences.
1 Objectives Discuss the Windows Printer Model and how it is implemented in Windows Server 2008 Install the Print Services components of Windows Server.

1 Objectives Discuss the Windows Printer Model and how it is implemented in Windows Server 2008 Install the Print Services components of Windows Server.
GROUP POLICY An overview of Microsoft Windows Group Policy.

GROUP POLICY An overview of Microsoft Windows Group Policy.
Managing Your Datacenter with Microsoft System Center Configuration Manager Kent Agerlund, ECM MVP, Coretech.

Managing Your Datacenter with Microsoft System Center Configuration Manager Kent Agerlund, ECM MVP, Coretech.
MANAGEMENT ANTIMALWARE PLATFORM Microsoft Malware Protection Center Dynamic Signature Svc Available only in Windows 8 Endpoint Protection Management.

MANAGEMENT ANTIMALWARE PLATFORM Microsoft Malware Protection Center Dynamic Signature Svc Available only in Windows 8 Endpoint Protection Management.
Troubleshooting Windows Vista Security Chapter 4.

Troubleshooting Windows Vista Security Chapter 4.
Section 1: Introducing Group Policy What Is Group Policy? Group Policy Scenarios New Group Policy Features Introduced with Windows Server 2008 and Windows.

Section 1: Introducing Group Policy What Is Group Policy? Group Policy Scenarios New Group Policy Features Introduced with Windows Server 2008 and Windows.
Module 7: Fundamentals of Administering Windows Server 2008.

Module 7: Fundamentals of Administering Windows Server 2008.

Similar presentations

Ads by Google