Is it True that Sysprep can only Auto Join Domain when the image is used with SCCM or MDT?

All replies

• 

  

  0

  Sign in to vote

  Sysprep doesn't join the domain, Windows setup/mini-setup joins the domain. You can use unattend.txt/sysprep.inf in XP or unattend.xml in Vista/7 to tell setup and mini-setup to join the domain for you, but the actual work of joining the domain is not performed by sysprep.

  This process has nothing to do with MDT or ConfigMgr though and is a function of Windows setup.

  ---

  Jason | http://myitforum.com/cs2/blogs/jsandys | http://blogs.catapultsystems.com/jsandys/default.aspx | Twitter @JasonSandys

  Friday, March 19, 2010 2:47 AM
• 

  

  0

  Sign in to vote

  Wow, that's a fast response, thanks Jason.

  Totally agree with you that sysprep doesn't join the domain, let me re-phrase it.

  Back to the good old XP days, yes, using the sysprep.inf with the mini-setup ticked, auto join domain is easily done.

  However for windows 7, we are supposed to use the imaging tool to create the autounattend.xml file, and I couldn't find anywhere to specify the similar mini-setup interrface.

  Also one other problem (or feature, may be), even with the sysprep, we are forced to create a new local user at the first start up after sysprep, and I need to use a post script, again, to remvoe this account.  Wonderring is there anyway not to do it?

  Thanks

  Friday, March 19, 2010 3:18 AM
• 

  

  0

  Sign in to vote

  unattend.xml can be created by hand or through the use of SIM; either way it's just xml. If you are using OSD or MDT, all they do is update unattend.xml for you. There are definitely options in SIM also: http://www.windows-noob.com/forums/index.php?/topic/578-how-can-i-join-a-domain-using-windows-sim/.

  I totally don't follow your second issue. Why are you creating an account after sysprep?

  ---

  Jason | http://myitforum.com/cs2/blogs/jsandys | http://blogs.catapultsystems.com/jsandys/default.aspx | Twitter @JasonSandys

  Friday, March 19, 2010 4:10 AM
• 

  

  0

  Sign in to vote

  I did exactly what was described in the post, and somehow it does not work.

  As for the second point, I use the sysprep /generalize /oobe /shutdown command to do sysprep, so after the process finish, the system will shutdown.

  Then once I onback the system, at the stage of input computer name, it will ask for a new user name as well, same as the windows 7 installation process.  My question is can we skip that? i.e, supply a computer name without supplying a user name, as we have already prepared the needed local account.

  Friday, March 19, 2010 6:30 AM
• 

  

  0

  Sign in to vote

  What edition of Windows are you using? Have you checked the Windows setup logs? http://technet.microsoft.com/en-us/library/dd744583(WS.10).aspx.

  If the system successfully joins the domain, you won't have any of this. 

  Are you you using ConfigMgr at all?

   

   

  ---

  Jason | http://myitforum.com/cs2/blogs/jsandys | http://blogs.catapultsystems.com/jsandys/default.aspx | Twitter @JasonSandys

  Friday, March 19, 2010 2:08 PM
• 

  

  0

  Sign in to vote

  Hi, would be interested to know if you resolved your issue with windows 7 sysprep and auto joining to the domain, along with that stupid setup screen to create a local account! Think the deployment tools for windows 7 are a step back in some ways for corporations trying to make a Corp image! Almost given up trying with sysprep, mini setup etc! But don't want to have to script the whole thiing once logged on!

  Saturday, May 29, 2010 8:42 AM
• 

  

  0

  Sign in to vote

  I had to resort to using WDS on our domain and a custom sysprepdomain.xml using pxe. What happens is that when you create an reference os .wim and you boot into a PE environment build from WDS, it will ask for domain credentials. Once that is defined the installation works fine and it joins to the domain. The problem doing it as a customized sysprep is that even tho you can put in the credentials for the domain administration, the proceedure will join to the domain, but for some reason will not create a machine token in the AD OU you choose to initially put the machines into.

  Dell is aware of this problem and seem to have a powerscript that they use as a run command during the sysprep stage but I have not seen it.

  I like the WDS, and the interaction with the Deployment Workbench. However, I do have a second issue. It seems only my account as a domain admin works. I have given domain group permissions in various shares and the ability to add computers and users to the domain, but it doesn't work very well. If there are any answers to that I'd appreciate it. -B

  Saturday, June 19, 2010 3:40 PM
• 

  

  0

  Sign in to vote

  I got the default user creation to stop by putting windows-shell-setup and setting the oobe part to skip user oobe to true and it skips the user creating a local account and then you can enable the local admin account for temporary purposes.
  

  Friday, April 15, 2011 6:18 PM
• 

  

  0

  Sign in to vote

  In OSD TS, domain join is succsessful by entering domain parametrs in step settings.

  In MDT TS, even I set same settings, machine is always a workgroup memeber. I have to look into unattended.xml, but just wondering why step settings is not enough?

  Tuesday, July 5, 2011 6:07 PM
• 

  

  0

  Sign in to vote

  I've actually found out that you don't have to set "skip user oobe" to true.  All you have to do is make sure you've entered all of the answers for the questions it asks you during the OOBE setup in your unattend.xml file, Windows Setup knows exactly what to do if it has all the correct answers.  If you skip a step by disabling it in your answer file that makes one more thing you have to take care of when the computer is imaged.  Try to get all you can into that file, it makes things 100% easier later on.  I create all of my unattend.xml files using the WAIK tools and it's worked for over 40 machines so far.  One thing you have to make sure to do during the sysprep process is add /unattend:unattend.xml to the end of the command line.  For example I use "sysprep /generalize /oobe /reboot /unattend:unattend_x86.xml"

  This tells the computer to look for your answer file.  If you are running WDS, you also have to open up the management snap in, find your image that was captured, and tell WDS to use the same unattend.xml file you specified during sysprep.  I know it's a little redundant, but that's the only way I've figured out how to get Windows 7 to install successfully unattended.  The only step I have to take is entering a computer name.  The Setup process takes care of the rest.

  This website also really helped me with building my unattend files and sysprepping my computers.  

  http://theitbros.com/sysprep-a-windows-7-machine-%E2%80%93-start-to-finish

  They also specify how to create a local administrator account and password and how to enable auto-login on the first reboot to automatically install any needed software, all from within your unattend.xml answer file.

   

  Monday, October 17, 2011 10:28 PM
• 

  

  0

  Sign in to vote

  I forgot  to mention i now use netdom which is included in the remoe administration pack and dont use the windows auto join options in windows setup because they were glitchy.

  Tuesday, October 18, 2011 7:57 PM