Wednesday, December 15, 2010

Configuration Manager R3 – Prestaged Media Setup and Walkthrough

Configuration Manager R3 – Prestaged Media Setup and Walkthrough

This blog will be a walkthrough and setup guide for Configuration Manager (ConfigMgr) R3 prestaged media.  This will cover the basic steps required in order to use the new R3 feature in your environment.

First some background on prestaged media from Microsoft:

Prestaged media is an alternative way to deploy an operating system to computers. Prestaged media is a Windows Image (.wim) file that can be installed on bare metal computers by the computer manufacturer or at an enterprise staging center. This media includes a boot image and an operating system image that an administrator can predeploy to a hard disk prior.  Prestaged media reduces network traffic and the time required to provision a computer. Prestaged media works with existing task sequences to provide a complete operating system deployment.

Prestaged media is suitable for use in environments where you would want to deploy content to a computer, but do not want to or are unable to have the computer fully provisioned, for example during the computer manufacturing process or at an enterprise staging center. Computers are distributed within the enterprise with the prestaged media already loaded. When the computer starts for the first time, the computer will boot into WinPE and connect to the Configuration Manager site management point to check for available task sequences.

NOTE: When creating prestaged media, ensure that the boot image you are using has the appropriate network and mass storage drivers need for the system to complete the provisioning process.

Creating the prestaged media image

Right click on Task Sequences and select “Create Task Sequence Media”.

image

Select “Prestaged Media”.

image

Enter any information you want added to the .wim file, then specify the location and name of the file, then click Next.

image

Take note of what you put in the Created By field because whatever you put there, will end up the name of the drive as in these examples.

image

image

You can however change the field in the image properties.  If you leave it blank, then “SCCM” will be added automatically for you. 

image

image

Next, you can select whether or not to enable unknown computer support, password protect the media, as well as the certificate options.

image

Next, we need to select the boot image and operating system you want to stage to the computer.

image

Then we have our summary before the operation begins.

image

Click Close when the process is completed.

image

Importing the prestaged image into ConfigMgr

Next we need to import our newly created .wim into ConfigMgr.

image

Browse to the path where you put the prestaged wim we previously created. Then select Next.

image

Provide properties for the image, then select Next.

image

Review the summary and then select Next.

image

Click Close when the process has completed.

image

Next you will need to distribute the image out to the distribution points. Right-click on the image and select Manage Distribution Points.  Then select “Copy the package to new distribution points”. Then select Next.

image

Select the Distribution Points you want to copy the image to, then select Next.

image

Select Next.

image

Click Close when the process completes.  You can monitor distrmgr.log to review the distribution status.

image

Creating a Task Sequence to deploy the prestaged image to a computer

Right-click on Task Sequences and select New – Task Sequence.

image

Select “Create a new custom Task Sequence”.

image

Name the Task Sequence appropriately and then select Next.

image

Select Next.

image

After the process completes successfully, click Close.

image

Ensure the Task Sequence has the appropriate boot media. You can do this by selecting Properties on the Task Sequence.

image

Ensure the boot image selected is the same one as you used when creating the Prestaged Media image.

image

Next we need to edit the Task Sequence and add the appropriate steps.

First we need to add a “Format and Partition Disk” step.

image

If you are using Bitlocker, then you’ll need to create a 100mb partition, something similar to this example.

image

image

image

If you are not using bitlocker, then you can just create a single partition.

image

image

NOTE: You do not need a Bootsect.exe command as you may have seen with other documentation.  This is unnecessary as the Format and Partition disk step takes care of this for you. 

Next we need to add a “Apply Data Image” step. Select the Prestaged media image you had previously imported.

image

image

If you are not using bitlocker, then you can leave the Destination as “next available formatted partition”.

image

If you are using bitlocker, then you need to change the Destination to match your configuration.

image

Next we need to add another “Run Command Line” step to shutdown the computer and end the Task Sequence.

image

Using a command line of “wpeutil shutdown”.

image

The finalized Task Sequence should look something like this.

image

Next if you advertise this Task Sequence to the appropriate collection, then you can run this Task Sequence on a reference machine to apply the prestaged image to that machine. (Other Task Sequences have been removed from the screenshot)

image

Configuring a Task Sequence to “finish” a prestaged image

Prestaged media is designed to work with your existing Task Sequences.  We only need to make one minor change to the “Partition Disk” step in order for Prestaged media to work successfully. We need to add a Task Sequence variable step that says _SMSTSMediaType not equals OEMmedia. This tells the Task Sequence to skip this step when using Prestaged media, so that we don’t delete the content we’ve prestaged.

image

No change is required to the Apply Operating System step as the logic already exists to detect OEMMedia.

You will however, need to configure your Destination to match whether or not you are deploying bitlocker or whatever other custom setup you may have.

If you are using bitlocker, ensure this step matches the configuration you used when applying the prestaged image to the disk.

image

If you are not using bitlocker, then just use the default configuration.

image

Executing the Task Sequence on a prestaged machine

If you power on a computer that has a prestage image applied to it, it will automatically boot the WinPE image that is staged on the machine.

image

Then we can contact the ConfigMgr server and get our policies.

image

You will see it run through the first Task Sequence steps fairly quickly.

image

After a couple minutes you’ll see the system reboot.

image

Sysprep will then run, along with whatever final configurations you have in your Task Sequence and you should find yourself with a computer joined to the domain and ready to log in within a few minutes.  In my Hyper-V lab, without any additional software applications to install, the login prompt was presented in less than 10 minutes after starting the Task Sequence.

image

at No comments:
Labels: ,

Installing ConfigMgr R3 and Overview of New Features

Installing ConfigMgr R3 and Overview of New Features Source:- http://myitforum.com/cs2/blogs/cnackers/archive/2010/06/16/installing-configmgr-r3-and-overview-of-new-features.aspx

This blog will cover the installation of ConfigMgr R3 into your lab environment as well as provide some additional information in regards to R3.  R3 is still in beta, so I would not recommend you install it in production.  I’ve actually been working with a client that is in the R3 TAP, so I wanted to post some information regarding R3 for the general public to get a glimpse as well, as I haven’t seen much information out there on R3 yet.

Please be sure to read the notes at the very bottom of this post as there is some really good information there that I haven’t seen listed anywhere else yet. 

ConfigMgr 2007 R3 Beta Requirements:
  • R3 beta can only be installed on a ConfigMgr SP2 environment
  • R3 beta can only be installed on an evaluation copy of ConfigMgr. 2007 (this is fixed with the latest Beta refresh on Connect)
ConfigMgr 2007 R3 Main Features:
  • Power Management (Server OS’s are not supported)
  • Collection/discovery improvements
  • New OEM task sequence media (pre-staged media)
  • 300,000 Clients when using default settings

For a overview of R3, please see the attached documents from Microsoft.

What's_New_in_CM_R3

ConfigMgr R3 Overview

   (powerpoint slides)

This installation will be against a R2 environment, however, if you want to do a clean install, you can go straight to R3. R3 DOES include R2.

Extracted Files:

Once you extract out the download from Microsoft Connect, you will notice two files.  One is the .exe for the R3 install, the second one is KB977384, which must be applied to your site server before the R3 install.

image

So here is our ConfigMgr Site, SP2 and R2 installed:

image

First lets get the KB installed:

image

image

image

In the middle of the install, you will also be prompted for what you would like to do with a patch for the ConfigMgr client:

image

image

image

image

image

Next we need to extract out the R3 install:

image

Next, we open up the splash screen and can read the notes, or install:

image

Lets Install:

image

image

image

image

image

image

Now we can see that R3 is installed:

image

First, you’ll notice you have now have a “Power Management Client Agent” under Site Management – Site Settings – Client Agents:

image

You’ll need to enable this to start collecting data to show in the reports:

image

You will also now have a “Power Management” tab on Collection settings:

image

Initially you probably don’t want to enable this and start forcing power policies, you probably just want to collect some data for a few weeks to see how your systems are being used.

Here is some more information on the power settings you can apply:

image

Next we’ll want to configure the reports so you can view the data you are gathering, and preferably before you start enforcing policies. The reports are SQL Reporting Services only and have to imported.

image

image

Browse to “C:\Program files (x86)\Configuration Manager\Reports\Power Management”

image

image

And now you’ll see the new reports listed:

image

In terms of OSD, there is a new option available for pre-staged media, this is media containing both the operating system image and bootable media.

image

image

There is also a new feature to add resources to a collection:

image

image

If you are selected on a resource, you will have 2 new options as well:

image

“Add To Collection” adds the currently selected resource(s) to an existing collection. “New Collection” adds the currently selected resource(s) to a new collection.

R3 also enables you to have “delta” discoveries, there is a new “Enable Delta Discovery” option on the discovery methods.  This allows for faster collection updates and for getting resources into collections quicker. This is a favorite feature of mine for AD System Group Discovery, if you are using AD groups for targeted software distribution.

image

There is also a setting on collections for adding in new resources as they discovered instead of waiting for a full collection evaluation.

image

Here are some additional notes as well to take into consideration.

Power Management

  • If user changes settings, R3 will set it back at the next power interval change
  • If there are multiple Wakup Times, then the closest to midnight wins
  • If there are in multiple collections, one with power settings, one without, the “non” power policy will take precedence
  • Wakeup timer is a one-shot at time to wakeup
  • Reports are SSRS only, there is a cab to import to show reports (demonstrated above)

Collections

  • Focus for R3 is evaluating new sytems
  • “Fast Evalualtion” setting on collections
  • A new collection needs a full evaluation to show existing clients
    • Collections are eval’d by periodically executing a query
    • Results are inserted into temp table
    • Table is merged with master collection results table (collectionmembers)
    • If there is no change in results, master results table not changed
    • If only a few resources have changed, evaluation process faster due to only processing changed resources
  • “Dynamically add new resources” works for OSD, or first time a client sends in inventory, 5 minutes to discover, 5 minutes to update collection
at No comments:
Labels: ,

Thursday, December 2, 2010

ALL Collections WQL and collection ID and Names in a Site

SELECT     TOP (100) PERCENT dbo.v_Collection.Name, dbo.v_Collection.CollectionID, dbo.v_CollectionRuleQuery.RuleName, dbo.v_CollectionRuleQuery.QueryID,
                      dbo.v_CollectionRuleQuery.LimitToCollectionID, dbo.v_CollectionRuleQuery.QueryExpression
FROM         dbo.v_Collection INNER JOIN
                      dbo.v_CollectionRuleQuery ON dbo.v_Collection.CollectionID = dbo.v_CollectionRuleQuery.CollectionID
ORDER BY dbo.v_Collection.Name, dbo.v_Collection.CollectionID

at No comments:
Labels:

Tuesday, November 30, 2010

SMS 2003 Sourceforge Tools And Utilities

SMS/SCCM Peer2Peer AddOn
SMSTorrent is a Peer2Peer AddOn for SMS2003/SCCM2007 Clients. SMS/SCCM Clients are able to share the local Package cache with other Clients using the BitTorrent filesharing protocol.
http://sourceforge.net/projects/smstorrent
SMS Site Settings tweak
SMSSettings provides a GUI to modify SMS2003 (Microsoft System Management Server 2003) Site Settings which are not accessible over the normal SMS Admin Interface.
http://sourceforge.net/projects/smssettings
Screen Lock
This Tool does lock the Screen, Mouse and Keyboard for a specified time.
http://sourceforge.net/projects/screenlock
SMS Client Center
Troubleshoot and manage SMS 2003 advanced clients
http://sourceforge.net/projects/smsclictr
SMS 2003 Offline Hardware Inventory
Capture SMS2003 Hardware Inventory on Systems without Network connectivity or Systems without an SMS Agent installed. This Tool creates a DDR (DataDiscoveryRecord) and an IDMIF File for each scanned system.
http://sourceforge.net/projects/smshwinv
Secure Autologon
Enable Windows Autologon without a cleartext password in the Registry. The password will be stored by the Local Security Authority (LSA).
http://sourceforge.net/projects/autologon
SMS2003 Object Backup
Backup and restore a definable set of SMS 2003 Objects (Packages, Programs, Advertisements, Collections...). SMSObjBackup can also be used for Site Migration (Objects can be moved to another SMS Primary Site Server)
http://sourceforge.net/projects/smsobjbackup
SMS 2003 Adv.Client local policy import
A command line tool to assign local software distribution policies to an SMS 2003 Advanced Client. The Software will be installed independent of collection memberships.
http://sourceforge.net/projects/smspolimp
SMS CloneDP
Manage the assigned Software Packages of a Microsoft SMS (SystemManagementServer) 2003 DistributionPoint
http://sourceforge.net/projects/smsclonedp
SMS 2003 Software Request Web Form
SMS 2003 Software Request Web Form with a simple Workflow (mail/web based).
http://sourceforge.net/projects/smsswreq
SMS Collection Commander
Initiate SMS 2003 advanced client actions on a collection: Ping, WakeUp, HW/SW Inventory, ReRun Advertisements, Show logged on user, Download/Refresh Policy, Repair SMS Agents, Import Clients to the Collection...
http://sourceforge.net/projects/smscollctr
SMS OSD Program Import
SMSOSDXML extends the SMS 2003 Admin Console to import OSD Program-Settings based on a XML File. SMS OSD automatically creates such XML Files (SMSDeploy.xml) for each OSD Program created in the Admin Console.
http://sourceforge.net/projects/smsosdxml
SMS Package Dependency Viewer
Show "Microsoft System Management Server 2003" Software Package dependencies in a TreeView.
http://sourceforge.net/projects/smsdepview

at No comments:
Labels:

Thursday, November 4, 2010

WMI delete

To delete a class

You can delete a class in the current namespace with Delete Class on the Windows Management Instrumentation Tester dialog box.

  1. Open the Windows Management Instrumentation Tester dialog box.
  2. In the Windows Management Instrumentation (WMI) Tester dialog box, click Connect.
  3. In the Namespace box, type the path to the namespace that you want to connect to.
    Example?
    • To connect to the namespace where the Win32 provider classes reside, type:
      root\cimv2
  4. Click Connect.
  5. Click Delete Class.
  6. In the Get Class Name dialog box, type the name of the class you want to delete, and then click OK.
    A dialog box is displayed to warn you that the class might have derived classes or instances. This dialog box is displayed even if there are no derived classes or instances.
  7. If you are sure you want to delete the class, click Yes to delete the class.

Notes

  • Performing this task on the local computer does not require you to have administrative credentials. Therefore, as a security best practice, consider performing this task as a user without administrative credentials.
  • Performing this task on a remote computer requires that you are a member of the Administrators group on the remote computer, or that you have been delegated the appropriate authority.
  • To open the Windows Management Instrumentation Tester dialog box, click Start, click Run, and then type WBEMTest.exe.
at No comments:
Labels:
Subscribe to: Posts (Atom)