Jump to content


  • 0
anyweb

how can I PRESTAGE a computer for WDS ?

Question

You can use Windows Deployment Services to link physical computers to computer account objects in Active Directory Domain Servers (AD DS). This is called prestaging the client. Prestaged clients are also called known computers.

 

If you have set WDS to only respond to known computers then you'll need to prestage the computers otherwise the PXE boot will fail.

 

wds_pxe_known.jpg

 

To prestage a computer for WDS deployment you'll need to know the mac address or GUID of it, you can get that info in a variety of ways, the easiest (for one computer) is to simply press the PAUSE button on your client pc when it is PXE booting to the server, you'll see both the MAC address and GUID listed.

 

mac_and_guid.jpg

 

If you want to use scripts to get these values then download the following from Microsoft (Sample_RIS_Scripts.zip), this bunch of scripts can collect GUIDs and more...

 

ok, now that we have the GUID lets start Active Directory Users and Computers, click on Computers and right click, choose New, Computer.

 

ad_new_computer.jpg

 

give the computer a name

 

computer_name.jpg

 

click next and make sure to select This is a managed computer

 

Input the GUID or MAC address with no -

 

eg: if the GUID reported in the bios pxe boot screen is

 

C2EB3E06-82DB-F741-A5F0-8312855E7753

 

then remove the dashes so it reads

C2EB3E0682DBF741A5F08312855E7753

 

the Next button below will remain Greyed out (inactive) until you input the GUID (or mac address) correctly

 

 

guide.jpg

 

select your Remote Installation server (the WDS server....)

 

remote_installation_server.jpg

 

click next and review the summary, click finish and you have now prestaged your computer in Active Directory.

 

computer_prestaged_in_ad.jpg

 

at this point you can PXE boot the client and WDS will treat it as a 'known' computer and you can deploy as per normal.

 

more info about prestaging with WDS from Microsoft here >

Creating Computer Account Objects in AD DS

 

You can use Windows Deployment Services to link physical computers to computer account objects in Active Directory Domain Servers (AD DS). This is called prestaging the client. Prestaged clients are also called known computers. This allows you to then configure properties on the computer account to control the installation for the client. For example, you can configure the network boot program and the unattend file that the client should receive, as well as the server from which the client should download the network boot program. You can create a computer account object and associate it with a physical computer using the following methods:

 

* Using WDSUTIL. You can prestage client computers before they have attempted a network boot, by running WDSUTIL /Add-Device /Device:<name> /ID:<ID>. You cannot prestage computers by using the Windows Deployment Services MMC snap-in, but you can set the Auto-Add policy and approve or reject pending computers.

* Using the Active Directory Users and Computers snap-in. You can prestage client computers before they have attempted a network boot using AD DS. For instructions, see the section "To prestage a client computer" in How to Manage Client Computers.

* Enabling the Auto-Add policy. If you enable this policy, when you approve the installation for an unknown client, the installation will proceed and a computer account will be created in AD DS for the client. For more information, see Enabling the Auto-Add Policy

* Using Windows Deployment Services as part of the image installation. By default, all operating system installations using Windows Deployment Services result in a client computer that is joined to a domain. You can disable this functionality using the Client tab of the server’s properties

Share this post


Link to post
Share on other sites

Recommended Posts

  • 0

here's what microsoft say on the subject

 

http://technet.microsoft.com/en-us/library/cc770832.aspx

 

Prestaging Client Computers

 

Creating Computer Account Objects in AD DS

 

You can use Windows Deployment Services to link physical computers to computer account objects in Active Directory Domain Servers (AD DS). This is called prestaging the client. Prestaged clients are also called known computers. This allows you to then configure properties on the computer account to control the installation for the client. For example, you can configure the network boot program and the unattend file that the client should receive, as well as the server from which the client should download the network boot program. You can create a computer account object and associate it with a physical computer using the following methods:

 

* Using WDSUTIL. You can prestage client computers before they have attempted a network boot, by running WDSUTIL /Add-Device /Device:<name> /ID:<ID>. You cannot prestage computers by using the Windows Deployment Services MMC snap-in, but you can set the Auto-Add policy and approve or reject pending computers.

* Using the Active Directory Users and Computers snap-in. You can prestage client computers before they have attempted a network boot using AD DS. For instructions, see the section "To prestage a client computer" in How to Manage Client Computers.

* Enabling the Auto-Add policy. If you enable this policy, when you approve the installation for an unknown client, the installation will proceed and a computer account will be created in AD DS for the client. For more information, see Enabling the Auto-Add Policy

* Using Windows Deployment Services as part of the image installation. By default, all operating system installations using Windows Deployment Services result in a client computer that is joined to a domain. You can disable this functionality using the Client tab of the server’s properties page.

 

Benefits

 

Prestaging clients provides three main benefits:

 

* An additional layer of security. You can configure Windows Deployment Services to answer only prestaged clients, therefore ensuring that clients that are not prestaged will not be able to boot from the network.

* Additional flexibility. Prestaging clients increases flexibility by enabling you to control the following:

o The computer account name and location within AD DS.

o Which Pre-Boot Execution Environment (PXE) server should service the client.

o Which network boot program (NBP) the client should receive.

o Other advanced options — for example, what boot image a client will receive or what Windows Deployment Services client unattend file the client should use.

* The ability for multiple PXE servers to service the same network segment. You can do this by restricting the server to answer only a particular set of clients. Note that the prestaged client must be in the same forest as the Windows Deployment Services server (trusted forests do not work).

 

so, install WDS, reboot, verify its installed correctly and try again...

 

cheers

anyweb

Share this post


Link to post
Share on other sites

  • 0

So, I have followed the instruction on how to pre-stage computers, and yet WDS is still generating a random machine name. I have even gone in and used the syntax for WDSUTIL, and yet, WDS still generates a random Machine Name. Any help would be appreciated.

 

UPDATE: So I set this up on my test lab at home, and it worked with no problems. The only difference is the fact that I am running a Novell DHCP server instead of a windows DHCP server and the WDS server is sitting in a different subnet than the machine that I want to image. My guess is that it has something to do with the Novell DHCP server and WDS can not authorize to a Novell DHCP server. If anyone has any knowledge of this, please let me know.

Share this post


Link to post
Share on other sites

  • 0

[sorry, do mean create ;)

But when i right click the computers container, choose new/computer object than no next is available. I am using w2008 dc's; maybe thats the problem .

 

I've run into this exact same issue. Did you ever find a resoultion?

 

I've tried using AD Users & Computers from the WDS server, from a DC, from a windows 7 box, none of them give me an option to move beyond that first screen and add more info.

Share this post


Link to post
Share on other sites

  • 0

I've run into this exact same issue. Did you ever find a resoultion?

 

I've tried using AD Users & Computers from the WDS server, from a DC, from a windows 7 box, none of them give me an option to move beyond that first screen and add more info.

 

 

I believe it as windows 2003 thing. I don't have the next button avaiable on any of my win7 machines with RSAT installed. However, my coworker installed adminpak.msi and has the next button feature when creating a new computer object. Makes it a little hard to prestage though.

 

Nevermind, I just ate my words. I went to add remove features on a w2k8r2 member server and install the AD DS tool set. I opened up AD users and computers and low and behold, there was the next option.

 

Can't explain why they doesn't appear on my win7 box with RSAT....

Edited by wuzzle

Share this post


Link to post
Share on other sites

  • 0

To prestage a computer for WDS deployment you'll need to know the mac address or GUID of it, you can get that info in a variety of ways, the easiest (for one computer) is to simply press the PAUSE button on your client pc when it is PXE booting to the server, you'll see both the MAC address and GUID listed.

 

post-1-1221676606_thumb.jpg

 

 

 

We use WDS and not RIS, do you have a script for WDS to collect GUIDS on startup or something?

Share this post


Link to post
Share on other sites

  • 0

I believe it as windows 2003 thing. I don't have the next button avaiable on any of my win7 machines with RSAT installed. However, my coworker installed adminpak.msi and has the next button feature when creating a new computer object. Makes it a little hard to prestage though.

 

Nevermind, I just ate my words. I went to add remove features on a w2k8r2 member server and install the AD DS tool set. I opened up AD users and computers and low and behold, there was the next option.

 

Can't explain why they doesn't appear on my win7 box with RSAT....

 

In case someone else runs across this - in order to see the "Next" button when adding a new computer you must turn on "Advanced Features" in Active Directory Users & Computers - Click on "View" and then click on "Advanced Features".

 

Dave

Share this post


Link to post
Share on other sites

  • 0

I am playing around WDS on Windows Server 2008 R2. I tried to install WDS on the second server, which is just a member server firstly. But I couldn't prestage computer via Active Directory Users and Computers on the DC, no that option;

Once I installed WDS on the DC, I tried and achieved it.

 

hbrlhd

Share this post


Link to post
Share on other sites

  • 0

for security reasons I would not install the wds service on the DC

Just add the Features: Remote Server Administration Tools->Windows Deployment Services Tools and you will be able to pre-stage Computers with the GUID!

 

Note:

Do not use the GUID which you see in the BIOS! This may differ from the SMBIOS GUID!

=>Due to this your machine will not boot your wINPE image

 

Use instead the SMBIOS GUID which you will see in the logs of SCCM PXE Server (SMSPXE.log) or the WDSSERVER!

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Answer this question...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...


×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.