Deploy Windows 7 with 3rd Party Tools
Contents
1. this in etc Ibs conf Linbox Blue Boot Menu LinboxBootLoader version 1 10 639K lower 13004061 upper mem Use the f and 1 keys to select Press enter to boot Default boot in 19 seconds Floppy Disk LU i 1 loa en t m AL yit t lm e Linbox Web Admin Console e Home gt Client List o System Edit Icon m View boot menu m Images Edit boot menu m Options Set boot timeout Set partitions to backup image m Logs History of client activity with Linbox e Home gt Configuration gt Post Installation o Create Post installation tasks Linbox Legacy computers e For computers without PXE boot capabilities o Download a Linbox boot CD here ftp ftp linbox com pub Irs base Irscd Linbox Review Rescue me from Linbox e cant recommend Linbox o Deploying computers to a group is convoluted o Computer groups are determined by their inventory name m Eg GROUP SUBGROUP SUBSUBGROUP COMPUTER o Automated deployment to a group is hard if not impossible o Post installation task support is limited o Development is slow o Since development is slow new computer NICS may not be detected properly for PXE boot o It costs money FOG reviewing next is free and works much better FOG Free Opensource Ghost a Lie j j i f i I Fog Installation e ts easy d e Download the fog source tarball unzip 4 and2. 20 naho r 9 2m BST 10 200 58 2 20anttilak 4 7 zi KBOX1000 Software Inventory e Contains information regarding Vendor Version Date Added size of the file attached and designated OS s for each software record in the inventory e The icon to the left _ of each inventory WI record lets you know that there is a file package attached to the record KBOX1000 Software Inventory KAGE 4 Home I Inventory fl Asset 2 Help Desk AA Reporting User andrew t Organization REMC amp 1 z Global Search 9 Computers Software Processes View by Windows mozilla Firefox _Search Choose Action v Found 48 titles Ofna i n O amp Me efox 4 0 x86 en 1337 40 Mozilla 5 e 234 3 6 13 en US Mozilla OD 2 lla F 213 3 6 7 en US Mozilla D g 127 3 6 8 en US Mozilla 2 113 3 6 12 en US Mozilla O 69 3 0 1 en US Mozilla 2 58 3 6 9 en US Mozilla 39 3 0 3 en US Mozilla g e 32 3 6 11 en US Mozilla D lla Fi 28 3 6 4 en US Mozilla m lla f 24 3 0 10 en US Mozilla Fi r 24 3 6 16 en US Mozilla O 20 3 0 8 en US Mozilla m 18 3 5 5 en US Mozilla CL g 18 3 6 3 en US Mozilla OD 9 17 3 5 3 en US Mozilla r ire 15 4 0 1 Mozilla 2 lla Fi 12 3 5 7 en US Mozilla OD g lla 12 3 6 en US Mozilla m 12 3 6 15 en US Mozilla 9 11 3 6 6 en US Mozilla 8 3 0 en US Mozilla rH 7 3 0 19 en US
3. 45 24 Fri 2011 sanga Fi FA A a op KBOX2000 Scripted Install e From KACE When creating a scripted install of Windows 7 the only pre installation task you need is Create Single Partition e In the KBOX2000 Web UI under the Reports tab we can look at the deployment report to see how long each and every one of our Scripted Installs and Images take and whether or not they succeeded KBOX2000 Imaging Features e Imaging with the KBOX2000 gives you many advanced features KBOX images are called K Images o You can edit any KBOX2000 image directly from the KBOX2000 web interface to add edit and remove files from your image o KBOX2000 uses Data Deduplication on its images both for pushing and pulling makes it go fast o Pre install tasks allow you to steal the machines name before imaging to reapply it after imaging o Machine names are pulled and stored in a file named after the computers mac address in Kbox petemp KBOX2000 Imaging Features Browsing a Windows image in this example we are adding removing files in the Administrator profile De Duplication e Images are File Based and hashed duplicate files aren t copied from the machine or to the machine during imaging push or pull e This not only makes our images go faster network bandwidth as well e he two imaging sessions below are an example of an initial image and then a reimage using deduplication taking ha
4. Client Activation Keys They can be found here http tinyurl com 297bxeb Imaging Essentials Using the KMS continued e he KMS client key does not activate windows it just tells windows you want to enable the KMS client and activate it off a KMS server e KMS discover starts o 3 registry items are checked for finding a KMS server o Then the cache is checked for the last server used o Finally if all methods fail DNS resource records are used It will attempt to find a KMS DNS record in your primary domain suffix The KMS server will automatically attempt to register itself to your AD DNS server o If you dont use AD you can create the DNS records manually o You can also statically set the KMS server Imaging Essentials Using the KMS continued e o Statically set the KMS Server e Method 1 From c windows system32 o Execute cscript slmgr vbs skms yourserver domain com o All KMS client reg keys are outlined here http tinyurl com 3rb5muo Imaging Essentials Using the KMS Continued e Method 2 can statically set DNS records and let the KMS clients autodiscover recommended e For Windows Server 1 Open the DNS MMC 2 Expand the DNS Zone 3 Right click on the _ tcp folder and select Other New Records 4 Select Service Location SRV as the new record type 5 Fill in the following information for the new records m Service VLMCS This is not in the drop down list and must be typed m Protocol tcp
5. Mozilla CLC g 6 3 6 10 en US Mozilla DH 5 3 0 4 en US Mozilla D lla f 5 3 0 11 en US Mozilla r lla Fire 4 2 0 0 14 en US Mozilla DL e 4 3 0 6 en US Mozilla r 4 3 6 17 en US Mozilla 3 3 0 7 en US Mozilla r i 3 3 5 15 en US Mozilla i 2 2 0 0 6 en US Mozilla O Fi 5 2 3 0 5 en US Mozilla a Fire 2 3 5 1 en US Mozilla x 2011 05 02 10 42 10 us e While the option to create your own software inventory records exists it should seldom be used Failing to use the KBOX1000 s automatically created software inventory records will result in software installation loops e The KBOX1000 creates its own software inventory records from the WMI Windows Management Instrumentation o These records can not be edited o They are inherently smart all software packages should be tied to this type of software inventory record KBOX1000 Software Deployment e Has AppDeploy Integration e Uses Windows Management Instrumentation to find what software is installed e Best to use msi installers for silent installs produces best results e Understands versions of programs won t rollback to older versions E 4 KBOX1000 Software Deployment e Steps to Add Software o Install the software on a machine that has the Kbox client o Have the machine check in for inventory update in the computer inventory section o Upload the installation file of the EXACT version thats on your computer o Feed in the silent i
6. info here http tinyurl com 3v2r6d8 Imaging Essentials e When your done punishing yourself with KMS you can easily switch to a MAK multiple access key like this windows server 08 only simgr vbs ipk lt MultipleActivationKey gt then force re activation simgr vbs ato Imaging Essentials Using a MAK to activate Computers e Install this patch prior to the next 5160 microsoft com kb 97 1033 o Run it with these options quiet norestart e Next create a new batch script and copy the following information substituting the x s for your MAK cscript C Windows System32 slmgr vbs IPK xxxxx Xxxxx XXXXX XXXXX XXXXX e cscript C Windows System32 slmgr vbs ato e The line above forces Windows to attempt activation e The above will also work for OEM and individual COA keys but you will need to create bat file for each computer Imaging Essentials Now that we know how to automate Windows 7 activation we can move on MOVE ON Know when to quit Iswagster com Imaging Essentials e Dont put any software on your source image Just windows 7 with updates Software gets stale Push software out as a post installation task through FOG OCS or the Kbox e Sysprep Its included with Win 7 C windows system32 sysprep sysprep e Now for Windows 7 and XP Microsoft ONLY supports sysprep for buttoning up windows images Microsoft no longer supports 3rd party tools No sidgen ghostwalker newsid e
7. m Port 1688 m Host offering the service mskms psu edu Imaging Essentials Using the KMS Continued e Method Z2 continued o Statically set your primary DNS suffix on the client Do not leave it up to DHCP as if your laptop is taken to a different network and DHCP assigns a different suffix your machine may try to activate to someone else s KMS Server Imaging Essentials Using the KMS continued e Method 3 Let it all happen automatically pretty much requires Active Directory o KMS will auto register to DNS in an AD environment o The primary domain suffix is set automatically on the clients in an AD environment o both those items are satisfied then it just works Clients will automatically find the KMS server and activate if the clients are installed with the KMS key Imaging Essentials Using the KMS continued e You need at least 25 windows Vista machines to use KMS e Microsoft enforces this e Your Windows 7 machines WILL NOT ACTIVATE until at least 25 machines have requested activation from your KMS server e Your computers can remain activated for 180 days After 180 days and a grace period the machine will de activate if it does not connect to a KMS server and successfully re activate e Your machine will constantly try to reactivate every days default but this can be stretched to a maximum of 30days e ALL of the KMS client settings can be controlled centrally on the KMS server host e Complete
8. post install tasks o Scripted installs are like installing the OS off CD except it uses an ISO of the OS and Kace automates the procedure e Image o Supports pre and post installation tasks KBOX2000 Scripted Install e Using the Media Manager we can upload an iso into the KBOX2000 that we can boot off of from our KBE e Using the KBOX2000 Scripted Install ttm wizard we can even create an answer file to completely automate a zero to running installation of an iso on a machine just as if we were installing from a disc e This can be handy for creating our initial XP image as well as troubleshooting situations where our images do not work e For Windows 7 we will want to mostly use Scripted Installations since only a cab file is uploaded to the computer vs XP where many small files are copied and there are multiple reboots during an XP install KBOX2000 Scripted Install e In most situations with Windows 7 we will want to do a ocripted Install as mentioned previously e Per KACE these usually take 18 20 minutes should be completely automated e Drivers during a scripted install are taken care of by the KBOX2000 there is a drivers share with network and mass storage drivers then Windows Update should take care of the rest e Ihe KBOX2000 does NOT install the 100MB partition as part of the installation e Our own test of the Scripted Install takes a little over 21min over a Gigabit connection Apr 8 15 24 01 Apr 8 12
9. to use Fog s built in DHCP server you should be all set o If you did not choose to use FOG s DHCP server I hope all of us already have a DHCP server then you will need to add a line option to your dhcp server config to enable bootp PXE booting off the FOG server For ICS dhop linux in etc dhcpd conf put these lines in your subnet scopes general section next server your fog ip here filename pxelinux 0 Fog Installation dhcp continued For Windows Server dhcp too many click here steps to list so go here http tinyurl com 26mhmz7 for a good list Fog Installation e You should be all set Browse to your FOG url using your favorite browser http lt ip address gt or dns name e Log in with the default username and password username fog password password FOG Imaging Methods of Importing Machines 1 Upload a comma delimited file of hostnames and mac addresses quick for a batch pointless for imaging one new machine o CSV file format below No header Required fields are in bold MAC Address Host name IP Address Description OSID ImagelD o The OSID and ImagelD can be found in the OS and Image drop downs next to each OS and Image definition 2 Add the computer by hand into FOG via the Web Interface quick for one new machine image obviously slow for a batch 3 PXE boot the machine and do a quick inventory right from the PXE boot prompt FOG PXE Boot
10. 000 to upload create your first KBE environment KBOX2000 KBE Creation e Make sure the necessary drivers are in your boot environment by attempting to boot into it on a target PC o Place missing drivers here in raw form with a inf file WourkboxWdriversyourOS Organize in folders o Re cache driver share o Re do the KBE environment by re uploading with the media manager KBOX2000 Driver Feed e Driver feed has drivers for all Dell machines in recent history e Working on getting HP into the driver feed but they are reportedly ignoring their requests Contact your HP rep KBOX2000 KBE Windows Recovery Main Menu Ccrpte cl Installation VV i n d ows R ecove ry Imaging Eu Edit the Registry Restart Machine EE Edit a Users Registry oe Back to Main Menu e Example of the KBE boot environment e When you have a KBE environment working you can pull images and perform scripted installs KBOX2000 KBE In Depth Look e When you boot into the KBE you can do a e Scripted install e Imaging push and pull e command prompt e File browser to browse and change files on the computer e Edit the Users registry e Edit the whole registry e Hardware Inventory to detect and fix unknown device issues e VNC into the KBE environment remotely via the Kbox Web Interface for remote troubleshooting using the features above KBOX2000 OS Deployment Methods e Scripted install o Supports pre and
11. 1 or version 4 e Version 4 supports windows XP SP3 or higher e Version 3 is the ONLY version that will migrate profiles from a XP machine to another XP machine e Use version 4 for updating an XP SP3 machine to 7 e You can only have USMT version 3 OR version 4 enabled at one time You can switch between the two versions but you have to re upload every time you do this e You upload the USMT to the Kbox 2000 with the Kace Media Manager just as you would upload a Windows ISO KBOX2000 OS Deployment Process Scripted Installation GUlI driven modification build Gold Master machine Machine Preparation Prepare Drivers Driver Harvesting or Post Installation Tasks Windows Automated Installation Kit WAIK Sysprep Machine Prepare Unattend File WAIK or K2000 Scripted Installation Wizard Capture in KBOX Boot Environment KBE Only Capture in Image KBE Deploy Deploy OS Deploy in either KBE or Boot Action Examining KBOX1000 e Integrates with LDAP AD Does Software Distribution service Desk HelpDesk Device Discovery Inventory Reporting Web Console e AD integration allows your users to log in and install manage their own computer based on rights you give them e Integrates with KBOX2000 as the after imaging tool KBOX1000 will provide its inventory for the KBOX2000 allows for seamless switching between the two Web Ul s e Extremely powerful tool o Ex unfreeze 140 machines inst
12. Deploying Windows With Third Party Tools Presenter Josh Hiner REMC1 What do you mean by 3rd Party tools Tools Other than the Standard tools offered by Microsoft 1 Microsoft Windows Deployment Services built into Server 2008 Network boot off WDS and deploy a Windows 7 Image 2 Microsoft Group policy Built into Active Directory You can push applications rolled into MSI packages right from Group policy This somewhat automates software deployment 3 Pay to use Microsoft Systems Management Services Application deployment automation ZTP Zero Touch Provisioning etc 4 Imagex The good ole command line imaging tool from Microsoft http tiny remct org ajqnp eC los TA dud iu 4 LA Arana CANIT Aa NTA ADAMQ SAUTAUM A e Fog Free Open Source Ghost image and application deployment computer inventory software deployment http www fogproject org e Linbox Pay to play image and application deployment computer and software inventory remote support much more Some OSX support http tiny remc1 org fgyv e Kace Pay to play Major player on the computer management scene Owned by Dell Full OSX imaging and software support image and application deployment scripted Install computer and software inventory remote support Helpdesk ticket system http www kace com OCD 3rd Party tools covered iventoru e he FOG solution will require a 2nd free package for so
13. FOG Computer Cloning Solution Run Memtest86 Quick Host Registration and Inventory Perform Full Host Registration and Inventory Quick Image Client System Information Debug Mode Boot from the local hard drive If you are unsure select this option F An Open Source Computer Cloning Solution www Loaproject ove created by Chuck Sypercki f Tian Zhang FOG Imaging Fog and General imaging standards e Once your machine has been through Quick Inventory it should now show up in the Fog web interface e Prep your computer INSTALL THE FOG CLIENT e RUN FOG PREP PRIOR TO SYSPREP e Both are located here http yourserver fog client e Sysprep your machine in accordance with the Imaging Essentials section above e You can now assign tasks to the host e Click on the host then select basic tasks e Upload an image to start with Assign the basic task Upload Image If you want the task to execute immediately next time the machine netboots then dont schedule it Just click the Upload Image button Pulling an Image with FOG e Upon rebooting into PXE network boot it should automatically start grabbing your image saue partition to image file dev sdal 3923426304 bytes tnp pigzi 857 25 MiB min 71 44 MiB 1 33 GiB used data blocks to cancel CtrlS to pause Ctrl to resume Deploying a computer with FOG e To use FOG effectively the computer s you intend to image should be preloaded into FOG befo
14. all firefox update AVG refreeze in just under 45 minutes e Costs more money roughly 4x as much per license as the KBOX2000 Examining KBOX1000 Computer Lifecycle Management KACE K2000 KACE K1000 Deployment Appliance Management Appliance all Recovery Discovery amp Inventory Centralized Deployment Library Asset Management User State Migration Software Distribution Network OS Install Remote Control OS Imaging Service Desk Configuration Management Power Management Security amp Patching KBOX1000 Installation 3 4 Dont sweat it Its easy KBOX1000 Installation e Import the K1000 VM e Boot it B e The setup wizard runs and asks for an IP and Master Password e Done KBOX1000 Machine Inventory e Searchable by Name IP last user logged in e Machine actions available by IP address allows for one click VNC ping RDP SSH can be configured for other actions blue and white symbols One click VNC only works if you push out your own VNC server Machine action smart buttons are editable e Green symbol on left shows AMP connection whether or not a machine is up and running with the KACE Client e f you click on a machine you are brought to the machines inventory which has lots of information regarding the machine printers software OS Hardware info etc KBOX1000 Machine Inventory KACE Organization REMC amp 1 Global Search 9 55 Distribution Xo S
15. art label They are smart and linked to a filter e When you create a smart label the machine has to check in before it goes into a smart label e You can create label groups You then manually assign labels to a label group e You can have a smartlabel select criteria based on a machines existence in another smart label KBOX1000 Custom Inventory Fields e Two uses o When KACE does not create a software record for your piece of software you can manually create one and tie a CIF to it o Can be used to report information from a machine to a new inventory field this can then be used in your Smart Labels or Advanced Searches e Syntax on Custom Inventory Fields can be found in the KBOX1000 Administrators Guide Located in Settings gt Support gt K1000 Series Documentation KBOX1000 Custom Inventory Fields e A good example is the REMC1 NTP server ntp remc1 net we want this enabled on every machine and we want to know which ones we still need to apply the script to e Create a new software record with our CIF name Software Display Name Title CIF Time Server Publisher Vendor Display Version e Add our Custom Inventory Rule per the Admin Guide Syntax KBOX1000 Custom Inventory Fields e The next time a machine checks in it will check the registry entry we specified in our rule and report it under the machines inventory Inventory Information Software 1 CIF Time Server ntp1 remc1 net s
16. cripted Install Windows make sure to have a post installation task to install the KBOX1000 Agent after the scripted install completes 5 Create a Smart Label that will find these machines based on oystem Name and add all of the software you would like on these machines to it 6 Boot your machines and sit back 6 KBOX2000 Post Installation Tasks e You can create Post Installation tasks to push software but there is no software inventory system which means once the Post Installation tasks have run on the KBOX2000 the computer is on its own for updates and other software you may have forgotten e For this reason we would like to also introduce to you the KBOX1000 Management Center e With the KBOX1000 all tasks become dynamic and automated so the only post install task you have is to sit back and relax KBOX 2000 User State Migration Tool USMT e Capture the user states profiles off a machine prior to re imaging or re installing via scripted install e Re deploy the user states to a new machine e Theoretically to upgrade a users hardware o Create a USMT capture boot action o Reboot their machine o Capture the user profiles from their ps machine o Ship them new the new machine with PXE boot enabled as default boot device o Create Script Install Image boot action and PXE boot new machine o Re deploy their user profiles KBOX 2000 User State Migration Tool USMT e Can upload USMT version 3 0
17. cripting amp Security Ja Help Desk 24 Reporting Home E Inventory Computers Software Processes Startup Service IP Scan MIA View by All Items v a Search Choose Action v Showing 1 150 of 2778 computers Next gS ie der jst U r 8 7s Elm Lab 10 80 52 3 1m Lr 8 0 9s HS Lab 137 ONT1283 10 50 62 19 i8macombee D H 10s 10 100 46 43 empty U o 18s ONT1280 HS Lab 137 10 50 62 16 hockey O 24s wts1029Lib01 10 190 59 111 mlomastro e 26s ONT1284 HS Lab 137 10 50 62 20 i13ashley OD 9 27s Elm Lab 10 80 52 13 i8ozanicha m G 2 27s 10 100 55 27 i7hamling D un 44s 10 100 55 15 i5risera Fr 9 lt 47s 10 20 100 137 chill D gm 48s 10 100 55 26 iSbastianc U 8 48s 10 100 55 4 iSrunionj O Gb 48s 10 100 55 7 15lylee2 C 48s 10 100 55 19 13keskimaj D H Sis 10 100 55 21 iShuffmase T 8 57 10 100 55 2 15anzalonn O 58s 10 100 55 13 i3hyslopi D H 59s 10 100 55 17 13woodforl D amp H im 10 100 55 28 15schmidtt D H im 10 100 55 5 i5demsket O gm im 10 100 55 8 15rudkinb D im Elm Lab 10 80 52 26 17rogane D H im 10 100 55 24 iSdonnells OD 9 im 10 100 55 23 i5revoyra O G im 10 100 55 6 i5riuttab r 9 im 10 100 55 14 iSteliina O Bu im 10 100 55 12 15rudkinb D H im 10 100 55 1 16russellb O im 10 100 55 9 15murphyj g 2m Rm 107 Teacher 10 80 40 14 kuuree r 1 11 2m Teacher Workstation TKO Dell Optip 10 150 42
18. defaults true qb e The fog defaults true sets all features to enabled FOG Client Features Deploying Advanced Settings e f needed manipulate config manually here c program files fog etc config ini e Auto Log Off 0 16 gt Auto logs off after inactivity period e Hostname Changes gt Changes machine host name to that in FOG Client compares at every checkin AD compat e Active Directory Integration gt Joins PC to domain e Directory Cleaner 0 16 gt Auto cleans specified directories at user logoff e Display Manager 0 16 gt Auto sets screen resolution at login e Green FOG 0 16 gt Reboot or shut off computers on a schedule regardless of user logon FOG Client advanced Settings e Host registration gt Never used this but guess it registers extra mac addresses on already existing hosts e Task Restarting gt Restarts a machine if Client detects the machine has been assigned a deployment task and nobody is logged in e Snapin Installation gt Allows installation of snap ins at client check in Interval defined in config ini of client 10min Client will way 5min after startup before checking in e User Tracker gt Tracks user logins e Printer Manager gt Checks on service startup for new printer tasks e User Cleanup 0 16 gt This module will remove all users not white listed in management portal on log of Will white list based on the begining portion of the entry For instance if y
19. ell known standard like Symantec Ghost don t see a reason in covering solutions that most already use want to go over new material that brings with it a suite of integral features 22 You decide Why Image Computers 1 Consistency o Not just for consistent correctness but also for consistent mistakes If you pushed an image out to X machines and made a mistake you know the same mistake has been made in the same way and is on every computer The solution is the same to fix all computers 2 Confusion Avoidance along the same lines as the above definition Why Image Computers 3 Speed o Its a lot faster than doing it by hand 4 Automation o Exceptional deployment solutions allow bare metal to a finished system simply from hitting F12 for network PXE boot by linking inventory items by MAC address to images Why Image Computers o In today s economy efficiency is a must Huge support staff is unaffordable Automation is key 5 Maintenance tracking after deployment o Your imaging solution should be able to keep inventories of hardware and update software There shouldnt be any guessing about whats out there o Your imaging solution should be able to push out software dynamically No more running around installing programs by hand Why Image Computers 6 Security updates Version updates for Software more of an argument for a complete software management package o Along
20. er NetBooks New Machines Adams b Bessemer b b Chassell b CTE Dollar Bay b DougJInstall Ewen Trout Creek b GOISD b Hancock b Houghton b Install A Ga Install R180 Ironwood b lwd Math machines Jim Base Install Kace Update Lake Linden b Master Labels b Matt Temp Need 3 Ontonagon b REMC Remove Machine Only Authentication rog base Secretaries Ted temp wak temp Wakefield b Watersmeet b Wesley Temp RFBD Audio book WTS Ryskey WTS 1 Zach Temp i2therriae b ui KBOX1000 Smart Labels e Smart Labels allow for dynamic assignment of labels which in turn dynamically assign software deployments e Using smart labels we can do a Zero to Deployed installation from the KBOX2000 gt KBOX1000 gt User Ready View by All Items Search dis Smart Label ate a t label ply enter the search crite nd select the label a E l ce x Jectsp Master sss ete ee sees a fo TE 8 agent Ver Choose label ccisp ave v Test Smart Label Create Smart Label Reset Choose Action v Showing 1 150 of 203 computers C 8 OD 8 48s 10 20 100 108 11hietalag n C 8 8m 10 20 100 127 iigriffite r 8 8 10 20 100 117 likoskis E s 12m LC Room 102 Student Computer 172 17 50 22 cotem r 8 16m 172 17 40 29 scott E 8 16m 10 20 100 192 lisergeyea Lr d 16m 10 20 100 131 i2tikkanea KBOX1000 Smart Labels e You cannot manually add remove items to a sm
21. es that make your system inoperable e Integrated with Dell has added features for shops that use only Dell machines driver updates hotfix patches KBOX2000 Installation e KBOX2000 can be downloaded from www kace com with your KACE login comes in an ovf file that can be converted into VMware VM is currently limited to a 220GB drive e Future versions Kace says the next version will allow you to add your own external storage e Requires some configuration from the console of your VM need to set admin password IP domain name You are walked through performing these steps No command line necessary e Once configured you can get to the KBOX2000 by pointing your web browser at its IP address or DNS name KBOX2000 Installation e After you install your KBOX2000 Server it is important to take the guided tour of your new appliance e In the next slide we will be specifically reviewing the setup portion of the tour KACE newkbox2000 K2000 Console Currently Idle z 3 3 Home j Library le Deployments EJ Systems WF Reports Z Settings amp Maintenance 2 Help Q G Tasks Guided Tour Search Ll Welcome to the Guided Tour for the Dell KACE K2000 Deployment Appliance The linked topics below are designed to help you explore the K2000 and quickly illustrate how the K2000 can save you time and your organization money We have picked the topics that customers just like you have told us they find most va
22. ftware inventory recommend OCS inventory screenshots http tinyurl com yeydfvp Home Page http www ocsinventory ng org e OCS Inventory has a client that runs on any OS imaginable e OCS Inventory is amazing You can also push applications from OCS Inventory BUT believe you should utilize FOG s snap in feature at least for initial computer deployment FOG will deploy software immediately and correctly after its deployed the image e Use OCS Inventory later for one off or large group software deployments e OCS Inventory is MUCH better than Linbox s built in software inventory 3rd Party tools covered SESIKCCEENW FAPKSS IT S EVERYTHING IT Almost e How about Spiceworks o Ok but it doesnt deploy software We are looking for a complete deployment system It does have other nice features though o Check it out for yourself but seriously recommend OCS Inventory instead for its software management side http Iwww spiceworks com m rav Tul i C NL E KARELA hia oranan __ a aco reer Me mace gover nint Ae Why are you not covering oymantec Ghost Clonezilla DD command line disk imaging for Unix Linux BSD Answer e Computer deployment is much more than just deploying images If the solution does not include inventory features application deployment as well as image deployment chose not to cover it Deployments need to be tracked and maintained e Also if its a w
23. ines hit the PXE menu is minimal Imaging and App Deploy 7 e http www appdeploy com o Rolling your own MSI s or finding MSI triggers o Great tools exe to msi creator msi viewer AppDeploy Repackager o AppDeploy Repackager is Freeware o AppDeploy Repackager allows you to create msi files for legacy software by taking pre and post system snapshots and comparing the two o AppDeploy is Integrated with the Kace K1000 unit to be reviewed later e MSI viewer http tinyurl com d6yo9 e AutolT Create autolT scripts and convert to exe to hide usernames and passwords http tinyurl com 3awmvcc e bat2exe http www battoexe com convert bat files to exe Other Software Deployment Resources e http wpkg org Category Silent Installers o Has great silent install resources what commands to use for what program lists over 400 common programs explains iss file creations for more complicated installs Linbox Rescue Server LRS Examining Linbox mo po Optimized unused data blocks not backuped In any case used sectors are compressed before being saved Examining Linbox e Download Demo in either VM or traditional package form here http tiny remct org hxuov e f you download the VM its already licensed for 2 machines It has 10gigs of space but you should be able to stretch that out with Gparted e he software developers native language appears to be French This will come into play
24. later when you install the software e Linbox is a webmin module integrated into a custom webmin install Linbox Installation e After you install import the VM into VmWare Player or ESXI or ESX you will have to change the mac address to the mac listed in the installation doc since its registered for ONLY that mac address 00 50 56 31 01 79 e When you fire up the VM for the first time a script will walk you through the initial setup e After the initial setup point your browser to the IP that you assigned to Linbox while running through the setup script e When prompted for a logon use username root and the password you set during the setup script Linbox Installation e Linbox User Manual http tiny remc1 org nkwmv e DHCP Options will need to reflect those set out in the manual o next server linbox ip address o filename tftpboot revoboot bin revoboot pxe Linbox Adding A Client e Two ways to add a client to linbox o Manually add the information to linbox under the Home gt Add a client tab then when we boot into the LRS the hardware information will be populated automatically you Will then be brought to the orange boot menu o Boot the client into the LRS you will be prompted with a blue and black boot screen asked for the clients name and your linbox password then it will update the client information and bring you to the orange boot menu o The default linbox password is linbox You can change
25. lf of the time and using essentially no bandwidth e The picture below is from the Reports section of the KBOX2000 we spoke about earlier MAC Address Machine Information System Image Server P Deploy Started Deploy Completed Duration d HP Comp 4 4 n m 4 NOM du A AR AP Fri 72 1741 150 31 Windows 7 Base Test 72 162069 1 7 Zu pr 29 15 05 27 Fri Apr 29 15 16 22 10m 55s 2011 bd el MEN lt lt Anr29 13 54 42 Fri Apr 29 14 16 55 124 741 150 00 24 81 1153 Windows 7 Base Test 1 20 1 172 16 20 69 TU UE E KBOX2000 Imaging Features Pre installation Tasks e We can do many things to a machine even before we start our imaging e Ex Collect Computer Name Format the disk as NTFS Create Single Partition Install MBR Collect Computer Name Collect Mac OS X Computer Name Create Single HFS Partition on diskO _ Create Single Partition Display Device Compatibility Format C as NTFS Format System Drive as HFS Image JoinDomain Ironwoo d Install 2000 xP 2003 MBR Install vista 2008 7 MBR Scan User States Offline Upload Hardware Inventory e We normally will not want to format the disk as NTFS as this will really decrease the benefits that de duplication has to offer KBOX2000 Imaging XP vs Vista 7 e Windows XP will require multiple images based on each model machine you are working with e The easiest way to create multiple images is by
26. luable We recommend all users review the Introduction and Setup topics as they include important information for correctly configuring the K2000 Get a fast start with a K2000 overview support resources and how to contact KACE Getu gt Prepare your network for deployment Access every deployment asset required to service your network from a single location Build out a gold master reference machine to capture images from Capture and deploy images using KACE s innovative imaging format K imaging Deploy user specific files and settings along with a Windows 7 scripted installation or image deployment Easily Diagnose and Repair machines on your network Support resources for the K2000 Learn about the Dell KACE K1000 Management Appliance used for ongoing systems management Terms and Definitions Read the full product documentation KBOX2000 KBE Creation e The KBOX2000 uses a customized version of Windows Pre installation Environment to perform scripted installs and imaging called the Kace Boot Environment e The KBE offers many tools and options on a graphical interface When you boot into the KBE you can do a scripted install imaging push and pull command prompt file browser e Windows Automated Installation Kit WAIK is a tool from Microsoft that includes the WinPE environment http tinyurl com 36wzsc6 e Steps to create your KBE will also require you to install the Media Manager from the KBOX2
27. making a Scripted Install for Windows XP and then running it on each machine model we want an image for e Due to De Duplication our many XP images will take up minimal space on the KBOX2000 unit e We will generally want to do an Image over a Crip tod Install for Windows XP e Thanks to a redesigned installer we will really only ever want to do a Scripted Install of Windows 7 e With the new installer a single cab file is moved from the KBOX2000 to the machine during installation KBOX2000 Post Installation Tasks e Post Installation tasks can be tied to both Scripted Installs and Images e Ex Join a Domain Install KBOX1000 Agent Enable Disable Services Registry Changes Install Software Choo m T pplication Application pplication K1000 Agent K1000 Agent Naming Rule BAT Script Naming Rule E For Deployment 6 Easy Steps 1 Create managed installs of all software you would like installed in the KBOX1000 2 Scan your MAC Addresses into a CSV 3 Copy Paste the MAC s into the namedb dat file in the KBOX2000 Post Installation Task Name Machine give the machines names please note that it is important to have a very functional naming scheme to allow for Smart Labels based on machine name 4 Copy Paste the MAC s into a Boot Action and set it to S
28. nstall string KBOX1000 software Inventory vs Software Deploy e Found under Inventory gt Software e Adding labels limits where this software can be deployed e Software records are created by KACE here you need to attach software to the record for it to show up in Distributions A Home LA Inventory el Asset 5 Distribution D E SS ftwari Processes Startup erv l Computers Softy e Found under Distribution tab e Adding labels deploys software to that label at the machines next check in e Managed Installations can be added here once you attach software to the record in the inventory KBOX1000 Labels e Adds a layer of organization to your machine inventory e Labels can be put inside of labels to add even more organization for bigger IT departments e Machines Software Scripts and Security Policies can be tied to labels for easy distribution View by All Items Search 10 110 0 10 110 0 10 90 MEETS 10 300 Ccisp 10 240 66 50 10 190 10 20 100 109 10 190 56 21 10 70 40 22 10 80 40 38 10 90 40 22 10 240 41 28 10 20 100 147 10 20 100 121 10 150 52 65 10 70 40 17 10 90 58 205 1 0 172 17 254 253 10 20 100 118 10 20 100 152 172 17 41 98 10 190 59 115 172 17 41 39 10 150 58 103 10 20 100 142 10 90 40 247 10 150 52 66 10 150 46 50 10 150 46 35 10 150 46 49 10 110 59 18 10 70 52 20 10 110 59 24 All Items Centurion Lab Mast
29. of Windows XP Piracy Essentials 7 C H S THIS DISK OST COULD COST 2 000 Any information on piracy Should be pastied to The Federavon Against Software Theft Telephone 01 240 6756 Imaging Essentials Microsoft Volume Licensing o The good old days of Windows 2000 and XP are over o With Vista and 7 you have 2 options o MAK multiple activation key or KMS Key management server o With a MAK you can only activate the key for the of activations you purchase You manage your MAK s through a microsoft licensing portal https www microsoft com licensing servicecenter o You can also manage your MAK or KMS keys with Volume Activation Tool http tinyurl com 2vrivho o The VAT will do more too Download and read on it via the URL above o Link to a pdf and movie about how volume licensing works http tinyurl com mt4m4p Imaging Essentials Using the KMS Key Management Service e Download the KMS here http tinyurl com 3132032 e Install it on Windows 7 or Windows Server 200X 2003 with a special update e The KMS can be installed on any machine running a supported OS Its light weight The server can be running other services It can be a domain controller e All windows Vista have the KMS client e To tell windows you want to use a KMS server you use a special KMS key when windows prompts for the activation key e There is a special key for each Micorsoft OS called KMS
30. ou whitelist admin then admin and administrator will be whitelisted FOG Client Continued e Client Updater gt Auto updates the Fog Client if a new version is detected Deploying Applications with FOG e Requires the FOG client should be in your images e Done via the Snap Ins Section e Can be assigned to groups or individual hosts e Cannot see what snap ins are assigned to a group because your not really assigning the snapin to a group your associating the snap in to the hosts within the group e Re applying a snap in or re removing it from a group is not an issue though If in doubt just re apply or remove the snap in to the group e Once you have deployed the snap in it will never re deploy if the user uninstalls the program That wont be an issue though because your users dont have administrator or power user rights Correct http tinyurl com Ixw5vz e You need to create a snap in to uninstall an application too This is optional though Deploying Printers with FOG e Incredible simple Works just like deploying software e Drivers must be on a public read only share KACE KBOX 2000 Deployment Center Examining KBOX2000 KA 3E DEPLOYMENT CABE CENTER e www kace com e High monetary cost For a shop with 1000 machines cost would be about 7000 up front and about 1500 per year for support e Has great support 6am 4pm PST live chat phone ticket system good priority system for those issu
31. re hand This can be done utilizing the 3 methods we outlined before CSV upload type by hand into web interface boot into PXE and do a quick inventory e Add machines to a group e Assign an image to the group e Assign snap ins application installs to the group for installation after imaging e Setup and enable auto join to AD domain if necessary see next slide e Make sure all the computers you are imaging are set to PXE boot as the first boot option as outlined earlier e Power on the machines They should start pulling the image automatically after PXE booting Deploying a computer with FOG Auto joining to an AD domain e Requires Fog Crypt windows app included in the original download package e Requires Fog Crypt to be recompiled with a new encryption key Dont worry its easy instructions here http tinyurl com 3w5lwat e Follow the fairly easy instructions to change the default fogcrypt encryption key Instructions also go over encrypting your domain login and pasting it into FOG e Domain join will happen after image deployment to that group or computer App Printer and Advanced Settings deployment e Requires that the fog client be installed on every machine you want to manipulate e The Fog client should be included in your images Its required to join a domain via Fog and push out snap ins after deployment e To install the fog client after the fact here is the silent install string setup exe fog
32. run the insta sh e The Fog install will attempt to download missing packages Hangups for RHEL CentOS 1 The fog installation script does not provide the full path for binaries in usr sbin therefore you need to modify your PATH environment variable prior to running the installation script add usr sbin to PATH as root or via sudo fog PATH usr kerberos sbin usr kerberos bin usr bin bin usr sbin fog export PATH Fog Installation 2 Turn off SELinux o Things simply just did not go well at all until SELinux was turned off had to re install just re run the installation script after turning off SELinux to get Fog to work So as root or via sudo fog nano w etc sysconfig selinux change enable line to SELINUX disabled Reboot Fog Installation e Work arounds for small installation issues with the various CentOS versions 5 X http tinyurl com 3at3sva uv WORKAROUNDS Somtimes they re worse than the problem you re trying to avoid TERY DEMOTIVATIONAL c Fog Installation 3 After the installation make it so you can upload large applications called snap ins to Fog The default php allows you to upload is 2 megabytes expand this to 2 gigabytes fog nano w etc php ini e change the following lines to post max size 2000M upload max filesize 2000M e Restart apache fog etc init d httpd restart Fog Installation 4 Setup DHCP correctly o If during installation you chose
33. tc e You MUST sysprep all Windows images prior to deployment reset the image SID activation properly prep the default user account basic image generalizations etc Imaging Essentials e Dont MANUALLY create a default user profile in XP or 7 When you sysprep windows will overwrite it with the administrator s profile This has been the default since XP service pack 2 If you have been losing your power management settings etc after you sysprep this is why For windows its a setting in your unattended xml file Microsoft got tired of people messing up the default file permissions of default user Reference http tinyurl com 3dlhqq8 Imaging Essentials e he best Windows sysprep howto l ve found from start to finish e Introduces you to Windows Audit mode e Shows how to create an unattended xml file from start to finish for most of your basic needs e Link to site http tinyurl com 4kjg2xf Imaging Essentials e The F12 dream Bare metal to functioning system automatically If you auto PXE boot you do not even need to hit F12 e Set your first boot option on all your computers to be PXE boot If you do not do this then every time you want to re image virus scan hard disk surface scan etc etc you need a user to hit F12 If you can just remotely reboot or have the user reboot and things happen automatically via boot actions that is awesome e The extra load on your deployment server for having all mach
34. the same lines as the previous point on Maintenance and tracking We all know how many updates come out for Firefox and Flash etc Windows Imaging has been otreamlined e Microsoft has made Windows imaging a breeze by re doing the HAL hardware abstraction layer You now only need one generalized sysprep ed Windows 7 image for any hardware platform because in Windows there is only one HAL Source Microsoft Technet http tiny remc1 org etlic e Windows XP had 6 HALS of which only 3 were used on todays technology but wait usually only 2 of those were used HELLO Tits Source Symantec http tiny remc1 org pipdx Feature Comparison Boot Raw Smart Multicast FT PoSt a nication Scripted De Remote Install Install Cost Inventory Interface Options Copy Copy Imaging Tasks Tasks Deployment Install Dupe Control Web After PXE Requires Requires Backups Imaging Linbox rai CD Scripting Scripting Only Needs Config Web Requires Requires FOG cy PE Client In Client In Image Image KACE Web PXE Native USB D KBOX2000 eu S ES iari zu gt Systems Management D 9 Lini o Vs Freeper 5 5 Imaging Essentials e Successfully imaging a machine using 3rd party tools includes successfully licensing and activating that machine in an automated fashion e Windows Vista keys and activation methods have changed for the Enterprise e This was inevitable with the rampant piracy
35. tring 2 CIF WSUS Key Report TargetGroup WSUS CCISD string 3 CIF WSUS Key Report WUServer http wsus remc1 net string y 1 KBOX1000 Process Metering e Allows you to keep track of which machines run a process and how long its running for e Inventory gt Processes enable metering here e Asset gt Metering for tracking your metered processes KBOX1000 Windows Update Feed e Windows updates e OSX updates e The K1000 utilizes Lumension for patch management Patches are tested prior to being issued to your K1000 KBOX1000 and 2000 site Replication Feature yw EN e Allows for load balancing between your sites e Reduces network traffic over slow backbone links e Does NOT provide failover from your main units e KBOX1000 requires a Windows Server Machine VM e KBOX2000 requires a use of a VM image v PNE d de ae BET V ss yw ANC i Y op 39 5 Oh c S i A eee L P n Nr ES ge SSS 1 N a rA Am T rra n E be gt Thay Te pe v z 74 HU T4 za ye yy aba ded O0 n E EESTI S eo Bee a2 a E Questions Or Comments
Download Pdf Manuals
Related Search