jamitupya

yep its the stoopid 100Mb partition 7 creates on a retail install.... havn't been able to get my unattended install to work yet..... so retail vlk build

just don't forget windows 7 will only allow 4 syspreps to be completed on it ever :-)

a MAC address is unique and as such would be used as the identifier in SCCM (and most other enterprise deployment apps) you should be able to delete the workstation under the collection "all Systems" i believe SCCM will remove all obsolete workstations after 14days (by default)

so all good? excellent :-)

the error that's wierding me out is .... Unable to find a Windows system root at C:\. Element not found. (Error: 80070490; Source: Windows) seems that it applies the image to c: (100mb Partition) then applies the Windows OS to d: and fails.... tried every combination of the TS order and partition orders no luck.... will keep working on this tomorrow :-) smsts.log

looks like your Network Access account username and password are incorrect.... check that out :-)

Just thought it may be useful to start a list of commonly seen error codes during OSD Phase: Applying Operating System / Image 0x80070070 - Not enough disk space 0x80070490 - Unable to Locate HDD - thanks superz202 Apply Windows Settings 0x80220001 - unsure at present

Sorry, yes NAA is OK, DNS looks fine (can ping hostname and fqdn of all DP's and SCCM Servers)

My OSD Build TS for my SOE Image of XP SP3 stopped working yesterday. Nothing has changed just i had some sleep. This morning i have UPDATED DP's refreshed DP Confirmed Packages are processed to DP and present Issue appears to occur when i hit the Configure task. the logs tell me access denied, so re-acl'd, deleted package, updated DP's same issue. ideas? smsts.log

Oops, forgot the SMSClientCheck.vbs SMSClientCheck.vbs '========================================================================== ' ' NAME: Logon.vbs ' ' AUTHOR: Greg G. Green ' CONTACT: diekittay[at]gmail.com ' CREATED: 21/06/2006 ' LAST MODIFIED: 20/11/2009 ' ' NOTICE: If you update this and find it to be useful, credit where credits' ' Due and please forward me a copy ' ' COMMENT: Check if the SMS client is currently installed ' '========================================================================== Option Explicit 'Declare objects Dim objFSO Dim objFolder Dim objExecmgr Set objExecmgr = CreateObject("wscript.shell") 'Verify if execmgr.log exists. Otherwise run capinst.exe Set objFSO = CreateObject("Scripting.FileSystemObject") If objFSO.FileExists("%WINDIR%\system32\CCM\Logs\execmgr.log") Then Set objFolder = objFSO.GetFile("%WINDIR%\system32\CCM\Logs\execmgr.log") objExecmgr.LogEvent 4, "SMS client already exists on this computer" Else objExecmgr.LogEvent 1, "SMS client does not exist. Executing ccmsetup.exe." objExecmgr.run "\\<primaryserver>\SMS_<smssitecode>\Client\ccmsetup.exe /q SMSSITECODE=<smssitecode>" End If

are you able to get us your smsts.log file? hit F8 to launch cmd prompt net use k: \\sccmserver\sharename /user:domain\username password xcopy x:\windows\temp\smstslog\ k:\ /E /Y

We have a system in place that displays a Blank Screen and logo in place whilst loading your network drives and profile. The reason for this is that we simply want to ensure the PC has had enough time to load all the services and applications on your computer prior to giving you your desktop. This system provides that we can have a single logon script set through GPO at the root level of our domain and then INDIVIDUAL mappings per site and country. This guide assumes that you have first setup Windows Server 2008 and configured it for Active Directory. In a production environment please consult Technet for best practise, see below links: Design Active Directory: Document - http://technet.microsoft.com/en-us/library/bb727085.aspx WebCast - http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?culture=en-US&EventID=1032317872&CountryCode=US Implement Active Directory: http://technet.microsoft.com/en-us/library/cc778219(WS.10).aspx During this script we do the following: Detect Operating System. if Client OS - run logon script if Server OS - exit logon script Check User for Mapping Distribution Group (GG-MAP-<SITECODE>) Load <sitecode>.bat This script is designed and built to enable easy movement of users between sites. The folder structure is as Follows: NETLOGON\ NETLOGON\IMG NETLOGON\SITE NETLOGON\SCRIPTS Files: \ logon.vbs ifmember.exe IMG\ logo.jpg SCRIPTS\ SMSClientCheck.vbs SITE\ <sitecode>.bat Usage: In each sites OU create a group GG-MAP-<siteouname> GG = Global Group MAP = Mapping Group <siteouname> = OU Name for location Its important that this is the format I use, and as such things will need to be modified to help. a word of warning, most of the scripts I will provide are built with a naming standard in place for large enterprises. these can be adapted for others but it is difficult. My Standard is a 6 character code with the format: <CITY><BUILDING> example: TKY123 or SYD100 Traditionally i use the IATA Airport Code closest to the Site AVAILABLE HERE or .. the telco's site mnemonic <SITECODE>.bat @echo off :COPY xcopy "%logonserver%\NETLOGON\ifmember.exe" "c:\" /d /v /c /q /h /r >nul :HIDrive net use * /delete /yes >nul set homedrive=\\<siteserver>\%username%$ >nul set profiledir=\\<siteserver>\%username%$$ >nul net use h: \\<siteserver>\%username%$ > nul net use i: \\<siteserver>\info >nul goto GDrives >nul :GDrives c:\ifmember.exe "<domain>\<sitecode>-<group>" >nul net use g: \\<siteserver>\<group>$ >nul :end <logon.vbs> '========================================================================== ' ' NAME: Logon.vbs ' ' AUTHOR: Greg G. Green ' CONTACT: diekittay[at]gmail.com ' CREATED: 14/11/2009 ' LAST MODIFIED: 20/11/2009 ' ' NOTICE: If you update this and find it to be useful, credit where credits' ' Due and please forward me a copy ' ' COMMENT: Logon Script ' '========================================================================== Option Explicit On Error Resume Next '========================================================================== 'Get logonserver name using WSH Shell Object '========================================================================== Dim sLogonSrv, sUnkLS Dim oWshShell, oWshShellEnv sUnkLS = "Unable to determine Logonserver" Err.Clear Set oWshShell = WScript.CreateObject("Wscript.Shell") Set oWshShellEnv = oWshShell.Environment("VOLATILE") sLogonSrv = oWshShellEnv("LOGONSERVER") If sLogonSrv = "" Then sLogonSrv = sUnkLS End If If Err.Number <> 0 Then Err.Clear WScript.Quit End If '========================================================================== 'Setup user message output window using IE '========================================================================== Dim sTitle, sPage, sContent Dim sScH, sScW, sFJImg, sImg, sRndImg Dim oDialogWindow Set oDialogWindow = CreateObject("InternetExplorer.Application") 'Set initial window parameters With oDialogWindow .FullScreen=1 .menubar=0 .toolbar=0 .Resizable=0 .statusBar=0 .Navigate "about:blank" End With sScH = oDialogWindow.Height sScW = oDialogWindow.Width 'Resize and center With oDialogWindow .height=350 .width=400 .top=(sScH-350)/2 .left=(sScW-400)/2 End With ]sTitle = "<INSERT COMPANY NAME>" sPage = "JavaScript:'<html><head>" _ & "<title>" & sTitle & "</title></head><body scroll=no bgcolor=#ffffff=></body></html>'" sImg = "logo.jpg" sFJImg = "<center><br><br><br><br><img src=""FILE:" & sLogonSrv & "\NETLOGON\IMG\" _ & sImg & """ width=""440"" height=""272""></center><br><font color=#ED1C24>" oDialogWindow.navigate sPage ' wait for the page to be fully initialized: 'Do ' ' Err.Clear ' 'Loop While oDialogWindow.ReadyState<>4 If Err.Number <> 0 Then Err.Clear WScript.Quit End If ' show page: oDialogWindow.visible = 1 ' now you can dynamically change content: oDialogWindow.document.body.innerHTML = "<h3><center>" & sContent & "</center></h3>" '========================================================================== 'Determine OS using WMI '========================================================================== Dim sWXPP, sW2KP, sW2KS, sW2KAS, sW2KDS, sW2K3S, sW2K3W, sW2K3E, sW2K8S, sW2K8E, sWVU, sWVE, sWVP, sW7U, sW7E, sW7P, sUnkOS, sWbemOpSys Dim oWbemServices Dim cOperatingSystems Dim oInstance sWXPP = "Microsoft Windows XP Professional" sW2KP = "Microsoft Windows 2000 Professional" sW2KS = "Microsoft Windows 2000 Server" sW2KAS = "Microsoft Windows 2000 Advanced Server" sW2KDS = "Microsoft Windows 2000 Datacenter Server" sW2K3S = "Microsoft(R) Windows(R) Server 2003, Standard Edition" sW2K3W = "Microsoft(R) Windows(R) Server 2003, Web Edition" sW2K3E = "Microsoft(R) Windows(R) Server 2003, Enterprise Edition" sW2K8S = "Microsoftr Windows Serverr 2008 Standard" sW2K8E = "Microsoftr Windows Serverr 2008 Enterprise" sWVU = "Microsoft Windows Vista Ultimate" sWVE = "Microsoft Windows Vista Enterprise" sWVP = "Microsoft Windows Vista Professional" sW7U = "Microsoft Windows 7 Ultimate" sW7E = "Microsoft Windows 7 Enterprise" sW7P = "Microsoft Windows 7 Professional" sUnkOS = "OS Unknown or NOT supported" Set oWbemServices = GetObject("winmgmts:") Set cOperatingSystems = oWbemServices.InstancesOf("Win32_OperatingSystem") On Error Resume Next For Each oInstance in cOperatingSystems sWbemOpSys = oInstance.Caption If sWbemOpSys = "" Then sWbemOpSys = sUnkOS End If Next Select Case sWbemOpSys Case sWXPP Case sW2KP Case sW2KS Case sW2KAS Case sW2KDS Case sW2K3S Case sW2K3W Case sW2K3E Case sW2K8S Case sW2K8E Case sWVU Case sWVE Case sWVP Case sW7U Case sW7E Case sW7P Case Else sContent = sFJImg & "<h3><center>OS Not Supported:" _ & "<br><br>" & sWbemOpSys & "</center></h3>" oDialogWindow.document.body.innerHTML = sContent WScript.Sleep 1000 'Quit script if OS not XP, 2000, 2003, Vista, 2008 or Windows 7 until legacy OS detection is added oDialogWindow.Quit WScript.Quit End Select On Error GoTo 0 '========================================================================== 'Gather information from WSH Network object '========================================================================== Dim sUserName, sComputerName, sDomainName, sUserCN, sUserDN Dim sFName, sLName Dim oWshNetwork Set oWshNetwork = WScript.CreateObject("WScript.Network") sUserName = oWshNetwork.UserName sComputerName = oWshNetwork.ComputerName sDomainName = oWshNetwork.UserDomain sUserDN = GetDN(sUserName) On Error Resume Next sFName = Right(sUserCN,Len(sUserCN)-InStr(sUserCN,",")) sLName = Left(sUserCN,InStr(sUserCN,",")-1) On Error GoTo 0 '========================================================================== 'Set Greeting '========================================================================== Dim sHour, sGreet sHour = DatePart("H",Now) Select Case sHour Case 0,1,2,3,4,5,6,7,8,9,10,11 sGreet = "Good Morning" Case 12,13,14,15,16 sGreet = "Good Afternoon" Case 17,18,19,20,21,22,23 sGreet = "Good Evening" End Select 'Display gathered information 'WScript.Echo "User:" & vbtab & vbtab & sUserName & vbCrLf & _ ' "Computer:" & vbtab & sComputerName & vbCrLf & _ ' "Domain:" & vbtab & vbtab & sDomainName & vbCrLf & _ ' "User CN: " & vbtab & vbtab & sUserCN & vbCrLf & _ ' "User DN: " & sUserDN sContent = sFJImg & "<h3><center>" & sGreet & " " & sFName & " " & sLName _ & "<br>" & "Welcome to the " & sDomainName & " Domain</center></h3>" oDialogWindow.document.body.innerHTML = sContent WScript.Sleep 1500 '========================================================================== 'Map Network Drives '========================================================================== If sWbemOpSys = sW2KS Or sWbemOpSys = sW2KAS Or sWbemOpSys = sW2KDS Or _ sWbemOpSys = sW2K3S Or sWbemOpSys = sW2K3W Or sWbemOpSys = sW2K3E Or _ sWbemOpSys = sW2K8S Or sWbemOpSys = sW2K8E Then sContent = sFJImg & "<h3><center>Server Detected, Exiting Logon Script..." _ & "</center></h3>" oDialogWindow.document.body.innerHTML = sContent WScript.Sleep 1000 oDialogWindow.Quit WScript.Quit Else Dim oUsr, oGrp Dim pos1, pos2, Msg Dim sGroup, sMnemonic 'Change dialog text sContent = sFJImg & "<h3><center>Mapping Network Drives..." & "</center></h3>" oDialogWindow.document.body.innerHTML = sContent WScript.Sleep 1000 Set oUsr = GetObject("LDAP://" & sUserDN) For Each oGrp In oUsr.Groups sGroup = ucase(oGrp.Name) pos1 = InStr(sGroup,"GG-MAP-") If pos1<>0 and pos1<>"" Then sMnemonic = UCase(Right(sGroup, 6)) If sMnemonic <> "" Then On Error Resume Next Err.Clear oWshShell.Run sLogonSrv & "\NETLOGON\SITE\" & sMnemonic & ".bat", 0, True If Err.Number <> 0 Then Msg = MsgBox("Unable to locate script for network drive mapping. Please inform your System Administrator.", 64, "File not found (" & sMnemonic & ".bat)") Err.Clear End If Else 'Msg = MsgBox("Unable to locate group for network drive mapping. Please inform your System Administrator.", 64, "Group not found") End If On Error GoTo 0 Exit For End If Next Set oUsr = Nothing Set oGrp = Nothing On Error Resume Next End If oDialogWindow.Quit '========================================================================== 'Obtain user distinguishedName from LoginID information using ADO '========================================================================== Function GetDN(logonID) Dim sADsPath, sQuery Dim oADsRootDSE, oADsDomain Dim oADOConn, oADOCmd, oRS On Error Resume Next GetDN="Unknown" sADsPath = "LDAP://RootDSE" Set oADsRootDSE = GetObject(sADsPath) Set oADsDomain = GetObject("LDAP://" & oADsRootDSE.Get("defaultNamingContext")) sQuery="Select sAMAccountname,cn,distinguishedname from '" & _ oADsDomain.ADSPath & "' Where objectcategory='person' AND objectclass='user'" & _ " AND sAMAccountName='" & logonID & "'" Set oADOConn=Createobject("ADODB.Connection") Set oADOCmd=CreateObject("ADODB.Command") oADOConn.Provider="ADSDSOObject" oADOConn.Open Set oADOCmd.ActiveConnection=oADOConn Set oRS = oADOConn.Execute(sQuery) Do While Not oRS.EOF sUserCN = oRS.Fields("cn") GetDN = oRS.Fields("distinguishedname") oRS.movenext Loop oRS.Close oADOConn.Close Set oADOConn=Nothing Set oADOCmd=Nothing Set oADsRootDSE=Nothing Set oRS=nothing End Function

nothing in particular unless you want to do a vlan for deployment. If it is for OSD LAB i would build flat switch until you get it all working properly. :-)

As I work in Managed Services on a global scale we have the requirement from our Clients frequently to apply individual GPO to machines in the form of Highly Managed, Lightly Managed and Un-Managed. This guide WILL give you a basic run down of how to apply this filtering. This guide will NOT provide GPO Settings, i may if i get time put together a cleaned up guide for this based loosely on our Templates. This guide assumes that you have first setup Windows Server 2008 and configured it for Active Directory. In a production environment please consult Technet for best practise, see below links: Design Active Directory: Document - http://technet.microsoft.com/en-us/library/bb727085.aspx WebCast - http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?culture=en-US&EventID=1032317872&CountryCode=US Implement Active Directory: http://technet.microsoft.com/en-us/library/cc778219(WS.10).aspx Assigning Rights on OU Objects: http://technet.microsoft.com/en-us/library/cc786285(WS.10).aspx Best Practices Analyzer for Active Directory Directory Services (BPA AD DS): https://connect.microsoft.com/ADBPA?wa=wsignin1.0 Create your Security Groups. Open Active Directory Users and Computers: Create your GPO Security Groups, (Highly, Lightly and Un-Matched is our standard) e.g. <sitecode>-GPO-Highly-Managed, Global Group, Security Group Example output:- Create your Group Policy Objects Open GPEdit.msc Navigate to “Group Policy Objects” Right-Click – Select “New” – Create your GPO’s to suit the above created Groups. <sitecode>-GPO-Highly-Managed <sitecode>-GPO-Lightly-Managed <sitecode>-GPO-Un-Managed Build your GPO to your required levels Applying Group Policy to the Security Groups Navigate down your OU Structure to where you wish to apply your Group Policies: Example: REGIONS\APAC\<country>\<sitecode>\Workstations\ Right Click the OU you want to apply GP too (Workstations) , select “Link an Existing GPO…” Select your Group Policy Object to link and Click OK Select the GPO you have just linked: Select Authenticated Users and Click Remove. Click Add and Type in the Security Group name specific to this GPO Example: <sitecode>-GPO-Highly-Managed Complete for the remaining GPO’s you wish to use Let me know if i missed anything or any recommended changes :-)

What do you want to achieve? Apply group policy ? Design and Build AD? Manage AD? kind of a broad question......

do you mean, 1 Package, 2 Programs to run... example: Package - Test Package Program1 (setup.exe /adminfile:admin.msp) Program2 (setup.exe /adminfile:user.msp) program1 only get run by users in the DOMAIN ADMINS ADGroup progam2 gets run buy all users?

Ok, are you applying your OS Image and using a settings package (unattend.xml) or just the straight install source

so i added a direct membership rule for (System Resource) + (Name (%)) and search root and found the devices. Selected, added and now can deploy... bit weird, bug maybe?

So I added the rule to remove the abortpxe.com showing up this morning in my lab and now i cant PXE boot at all.... I have removed the Rules, reset the collection, and re-added the PC's using MAC and Name. Unfortunately i'm consistently receiving a PXE Boot Aborted error now and have NFI why. the Workstation is removed from AD, SCCM and reset in DHCP. I've restarted the Server, updated and refreshed the collections to no avail....ideas?

FYI if you wish to NOT install on a specific platform SELECT * FROM Win32_ComputerSystem WHERE NOT Model Like "%VMware Virtual Platform%"

yup works perfectly using L% or D% FYI i set my collection to update at 15minute intervals (lab) and picked up the changes.....

Hi Anyweb, just wondering if this would be possible on a domain level.... like could i put a naming standard in instead of a hostname? e.g. LXXXYYY* ? going to test it today anyway ... let you know if i figure anything out...

to clarify, you need to put a helper in for both you wds box and your dhcp (stating the obvious)...

check out ... http://t3chn1ck.wordpress.com/2009/05/20/hta-backend-script-for-osd/

tried using a csv?