spfunnell

That's great, thanks Niall. In which case I think I'll leave the Win 7 / 8.1 task sequences untouched for now and just use the new content for the Win 10 task sequence. Then I can retrofit the 8.1 task sequence in test before making it live and let the Win 7 one die Cheers Simon

Thanks for the great post Niall. With regard to recreating MDT task sequences, I've read this in a couple of places but just for clarification. We've got MDT integrated with some pretty complex task sequences. Does this mean that I need to completely recreate them manually, or will the old ones still work with the old toolkit packages? Alternatively can we do an export before upgrade and then an import or anything like that? Just trying to work out how I can minimise downtime as we run this system globally and builds are constantly happening. Recreating everything by hand is daunting and prone to mistakes. Cheers Simon

I've had online patching working on my dev environment at home, but in the 'real world' I'm having a right pain with it. I'll update my post on the technet forums either later today or tomorrow, so if you get a chance to take a look ;-)

I'd prepped for Bitlocker before reading your article and was just waiting for the AD team to extend the schema. Once they'd done that, it all pretty much fell into place The AD team can see the recovery key in AD (I can't but that's a permissions issue) so I'm pretty happy with that. I didn't update the WinPE wim with the CCTK, I'm doing it all in Windows. We were going to copy WinRE to the hidden partition, but I haven't really had too much time to look at that yet (lower priority). It seems that most of the documentation on the subject is geared towards Vista. Now, online patching during the task sequence..... I must be missing something!

Personally, I did the TPM part in the Full OS part of the build and found that it worked well. I didn't have to worry about copying over the HAPI drivers although I did make sure they were in a subdirectory of the CCTK folder. CCTK seems to find them OK. I also did this for a couple of Lenovo machines which unfortnately require different methods of enabling the TPM dependant on the machine type. Again though, this works fine in the Full OS part. What was your rationale for using a script to call the Enable Bitlocker action? Logging? I used the standard Bitlocker task and that seems OK. Also, did you do anything with WinRE, namely moving it to the unencrypted partition? Cheers Simon