@jester805 For Windows 2012+ dhcp server there is guidance on how to set it up here: https://wiki.fogproject.org/wiki/index.php/BIOS_and_UEFI_Co-Existence#Using_Windows_Server_2012_.28R1_and_later.29_DHCP_Policy

The instructions are for 2012 dhcp server, but I can tell you they work well for 2016 dhcp server too.

A couple of deviations from the tutorial.

I would setup these classes Type Architecture Name ---- ----------------- 6 EFI IA32 7 EFI BC (EFI Byte Code) 9 EFI x86-64 Set your default dhcp option 67 to undionly.kpxe. Set dhcp option 66 to the IP address of your fog server In the custom filters only set dhcp option 67. Don’t set option 66 like in the instructions\

The idea is if one of the filters don’t match then it will pick the default values which will be for bios computers (undionly.kpxe)

If you are imaging for Forensic Analysis for legal reasons you should not use FOG. You need to use something like “Arsenal Recon” or “SANS SIFT” (which could be delivered by PXE booting in FOG). This software needs to be nationally recognized that exports its information in AFF format. If you don’t use a legally approved method the image collection will be discarded as tainted evidence.

@Sebastian-Roth : then don’t rush for me. What I can do for now is install the fog client and then copy the modules.dll that uses codepage 850. I have already created a script that does this. I will use this script to roll out the Fog client to all existing workplaces with psexec.

@bogle The FOG server talks to the target computer via the FOG Client/service. That service has a check in interval that is set in the fog settings. So the default may be 5 minutes (300 seconds), so if you issue a task to the target computer it could take up to 5 minutes before the target system reacts.

Also on the fog up/down indicator it doesn’t use a ping, but a connect to port 445 to confirm the system is up or not. If your windows firewall is blocking connections to port 445 then fog will assume its down.

@bogle Ah ok. I don’t know how the cloning would affect the intricacies of a web server. Please feel free to start a new thread if you run into any troubles with the windows imaging later.

@nexx34 said in PXE Booting ESXI 6.7u2:

Is it ever planned to make pxe booting “easier”?

Any suggestions are welcome. 🙂

We work a lot with scripts, we don’t use msi and exe, all our snapins are developed as scripts, usually powershell for windows and bash scripting for linux, we use sometimes php, python, perl… called from bash a so on.

Check the potential of the scripting for the 2 first points.
And as alternative to deploy software you can work with snapins+chocolatey

On the third point, we use fog snapins to start/stop services, deploy clients etc…

Currently we are using a reversed vnc server deployed/configured/started/stopped/removed as an unattended snapin, where we have firewalls, As GUI we use a Guacamole Gateway with a vnc-proxy, on the other side where we have not firewalls we are using Dameware and RDP to remote control. The services can be controlled with scripted snapins but the clients/servers/proxyes… must be provided as external services.

I only want to add, that with a deep knowledge of the targets, and with a good knowledge about scripting, and if you add a custom/complete toolset around FOG, you can get a pretty and usefull system admin/management environment.

@Sebastian-Roth said in MFA or logging for brute force attempts:

ust to clarify, what George meant was not actually AD logging done by FOG but using the LDAP plugin

Yes thank you for clarifying. I WAS talking about AD event driven logging. Since they are concerned about brute force attacks, I assume that there is already in place some kind of reporting against AD password hacking. Then from FOG’s standpoint there is nothing to monitor since everything is hitting AD.

@Sebastian-Roth @george1421 Thank you both. I understand that FOG was not really created for this large of a project, however, I’m interested to see how to handles it and what, if anything, will break along the way. I will keep everyone updated with my experiences and issues so that hopefully somebody else can avoid my mistakes in the future!

With the amount of stores we have, I think it may be better to use each FOG server independently to avoid overloading any single part of the system. This will make managing the project more difficult but in the end I think it will be better suited for this client. Each store has a maximum of 7 computers so that should be much more within the programs capabilities. For our corporate office and some of the larger daughter sites, (upwards of 300 computers per site) I will be performing local upgrades.

If I had more time to play around with a central FOG node I might try to make it work, but with Windows 10 support ending at the close of this year, I need to have all 1200+ computer upgraded by then as to not give our compliance department a stroke.

Again, thank you both for the prompt response and for supporting an opensource program.

@george1421 thanks for the reply!

After following your instructions I noticed that there is no “Installing Patch” text on the new server that is not behaving.
Also, /bin/fog.man.reg exists on both servers.

So I decided to follow the rest of your instructions on the old server that behaves as it should just to see what kind of results I should be getting. The results from following your post on the OLD server were as follows:

After getting to the command prompt I keyed in fog and hit Ctrl+C once i saw “* Running post init scripts … Installing Patch”. However, when I was returned to the command prompt and keyed in set |grep postinitpath nothing was returned and I was returned to the command prompt. I did grep for other words/variables that appear after keying in set by itself, just to make sure everything was functional, and set |grep type returned type=down as expected.

As for the NEW server, “Installing Patch” did not appear at all, just “* Running post init scripts … Done” . I did press Ctrl+C after this to see what set |grep postinitpath would return and it too output nothing and returned me to the command prompt. Keying in set |grep type for testing purposes returned type=down.

I also executed the fog command multiple times so that i could stopping the procedure at different debug steps to check set |grep postinitpath on both the OLD and NEW server and it never returned the location of the fog.man.reg.cust file.

Please let me know what you think.

@george1421 Worked flawlessly! Thank you and @Sebastian-Roth so much for the help!

@george1421 you are a wizard.

thats fixed!

now onto my next thing. heres to hoping that once i can grab a HDD big enough for my images that can support these ginormously underused HDD’s in these labs…that all is good 🙂

Yes you can.

Duplicate post: https://forums.fogproject.org/topic/13510/has-any-one-installed-fog-on-a-raspberry-pi

@Sebastian-Roth sorry it took so long, but I finally was able to create a separate thread in bug reports. https://forums.fogproject.org/topic/13486/fog-1-5-6-pushbullet-plugin-not-functioning

We are in the midst of reassembling classroom tech after the custodians did their cleaning so that is what caused the delay.

@Sebastian-Roth will do.
Thank you

@lucycle We’ll follow this one here for now: https://forums.fogproject.org/topic/13125/fog-postinit-not-executing-fog-reg-man-fix

@Quazz
You had the same. https://forums.fogproject.org/topic/7324/small-text-display-bug-image-capture
I should have seach before asking…

VirtualBox_vm1_28_06_2019_15_34_37.png

@george1421 Can confirm, had to switch to ProxyDHCP after the ISP upgraded the modem that has a buggy DHCP implementation (turning off DHCP makes it not give out IPs but the DHCP server is still running so it just NACKs all the IPs lol)

@mikmatcr OK since I still have the development system setup I just spun up a Gen2 vm client. MDT is currently building the golden image. I did see that they changed the disk controller to SCSI. It will take about 1hr for MDT to finish the build. I’ll get some bench mark numbers after that.

@geardog said in Resize failure?:

A cold boot with fast-start disabled allowed a good capture.

Just for another option:

Let sysprep power off the computer after its run Run the following command from a command prompt shutdown -s -t 0

Both of those commands will ensure that the system is properly powered off and ready for image capture.