After updating Configuration Manager 2012 R2 and adding the Windows 10 ADK, task sequences will no longer pre-provision BitLocker
With WinPE 10 it uses the AES-CBC 128-bit encryption method.
Add the following Run Command Line steps after Format and Partition and before Pre-provision BitLocker.
- Set EncryptionMethodWithXtsFdv – reg add HKLM\SOFTWARE\Policies\Microsoft\FVE /t REG_DWORD /v EncryptionMethodWithXtsFdv /d 3 /f
- Set EncryptionMethodWithXtsOs – reg add HKLM\SOFTWARE\Policies\Microsoft\FVE /t REG_DWORD /v EncryptionMethodWithXtsOs /d 3 /f
- Set EncryptionMethodWithXtsRdv – reg add HKLM\SOFTWARE\Policies\Microsoft\FVE /t REG_DWORD /v EncryptionMethodWithXtsRdv /d 3 /f
Available Encryption Methods in WinPE 10
- Value Data: 3 (Description: AES-CBC 128-bit)
- Value Data: 4 (Description: AES-CBC 256-bit)
- Value Data: 6 (Description: XTS-AES 128 bit)
- Value Data: 7 (Description: XTS-AES 256-bit)
During a OSD task sequence in Configuration Manager, we ran into an error with a VBS script that has worked previously.
The error in the SMSTS.LOG file was: CScript Error: Can’t find script engine “VBScript” for script
The problem appears to be caused by a changed registry value: HKEY_LOCAL_MACHINE\Software\Microsoft\COM3\REGDBVersion
After some searching on the internet the solution was to add the modify the REGDBVersion to a value of hex:01,00,00
Add to task sequence via a Command Line: REG ADD HKLM\Software\Microsoft\COM3 /v REGDBVersion /t REG_BINARY /d 010000 /f
Enable Hibernation: powercfg -h on
Enable Fast Startup: REG ADD “HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power” /V HiberbootEnabled /T REG_dWORD /D 1 /F
Disable Hibernation: powercfg -h off
Disable Fast Startup: REG ADD “HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Power” /V HiberbootEnabled /T REG_dWORD /D 0 /F
Had a situation where I needed to modify the Visual Effects, under Performance Options, for a customer.
Create a Registry Item in Group Policy Preference under the User Configuration.
You have a number of options for the data value:
VisualFXSetting=dword:00000000 = Let Windows choose what’s best
VisualFXSetting=dword:00000001 = Adjust for best apperance
VisualFXSetting=dword:00000002 = Adjust for best performance
VisualFXSetting=dword:00000003 = Custom
Add the Apply once option and the end user can modify as required.
Had the above error regrading Adobe Reader.
Turned out to be EMET blocking the exe and any file associated with it.
Solution was to delete the file name from the following registry location:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Just going through the Deployment Bunny website and found a cool little MDT application removes the Windows 8 animation during OS Deployment.
A really good Deployment Guys article and script on remapping printer from x86 to x64.
I will be needing this script on my current Windows 7 upgrade project.
Thanks to Craig.
I needed to uncheck the Update links on save in Excel 2007 options. There is a Microsft KB aricle about this setting:
KB928737 – A hyperlink does not work in an Excel 2007 client workbook that is published to Excel Services in SharePoint Server 2007
Microsoft show the manual method, but I need the registry setting so it can be applied via Group Policy Preferences.
After exporting to registry snapshots I used WinMerge to see what has changed.
The new registry setting is:
DWORD = 0 (Checked) Default
DWORD = 1 (Unchecked)
Great guide to optimise your virtual Windows 7 build using Microsoft Deployment Toolkit. Takes you through services, profiles and registry setting in an easy to read document.
Once you have installed Office 2010 you may notice the Microsoft Office Upload Center appearing in your Notification Area Icons.
To remove the icon from the notification area change the following registry setting:
“0” = hidden
“1” = displayed
What is Microsoft Office Upload Center:
Microsoft Office 2010 Upload Center now gives you a way to see the state of files you’re uploading to a server, in one location. When you upload a file to a web server (this includes SharePoint), Microsoft first saves that file locally to the Office Document Cache before it starts the upload, which means that you can save changes and immediately continue working even when you are offline or have a bad network connection. The Microsoft Office Upload Center lets you keep track of how uploads are progressing, and whether any files need your attention.