Hello everyone,

The problem continues to persist (and even during the creation of the image)

When I have to restart my PC (in OOBE mode) to: change domain, restart after name change, restart after update, etc…

This happens randomly during a reboot. I come across this error. It is therefore impossible for me to create an image.

I find solutions (change on regedit, etc) but my OOBE mode is lost and I have to start over each time.

A solution ?

@UserBxl

@UserBxl said in problem : partition is too big for the disk (in deploy):

OOBE mode

…i dont know what to say about this…i have not tried it…here are my captured default images :
527adc98-edf6-4ef7-949a-afef3a1649d3-image.png

Thank you for the quick replies. Turns out I did have Fastboot enabled. The Recovery environment was not setup as well. Had to copy winre.wim, and enable the reagentc. Did those things and recaptured the image. Deployed to another laptop and it’s working properly.
Thanks again.

@Logan

Problem solved :

I just disabled “fast boot” in the BIOS.

@george1421

Ok, let me try some things this week and let you guys know. Thanks guys.

@RusinovAA

1.) When preparing Windows 10 for cloning (for capturing an image using FOG), is there a need to run and apply the Sysprep /oobe /generalize /shutdown utility. Or FOG, when capturing an image, performs procedures for decoupling Pts from binding to equipment and resets the OS identifier?
Sysprep (system preparation) prepares a Windows client or Windows Server for imaging. Sysprep can remove computer-specific information from a Windows installation (aggregate) so that it can be installed on different computers.

FOG does not react with the target system OS. It is Microsoft’s best practice to sysprep your golden image before image capture. I can tell you from experience if you want to make a neutral image that can be deployed to any hardware you should sysprep the golden image. If you capture from a Dell 5430 laptop and then restore to another Dell 5340 laptop you can image this way without sysprep. Understand that just because it works doesn’t mean this is the best choice. For me always sysprep the image if going to the same hardware or not. That way (for my campus) I have 1 golden image for 12 different hardware platforms both laptop and desktops. I install the required drivers using a FOG post install script, but that is a different discussion.

Quick answer, must sysprep? Yes to different hardware between golden image and target computer. Imaging between the same hardware you should sysprep but I’ve seen people no sysprep cloning and it works.

2.) Does the current version of FOG have the ability to automatically add computers running Ubuntu Server / Ubuntu Desktop to the Active Directory domain when distributing an image?

Quick answer is no, fog will not do this. A bit longer answer is that you can do this when ubuntu boots, and make a bash script to add the computer to AD.

@Sebastian-Roth said in Host can’t join AD:

In a fair amount of cases people had to use domain\username in the username field but also specific the domain in it’s own field to make it work

You have totally right, it works with myDomain\userName.

Thanks Sebastian.

@cwufog Is there enough diskspace for this application to install? Assuming it is an installer package in teh first place…

It seems a windows based error code

@Sebastian-Roth

Hello Sebastian,

i will try to think about this feature and i will contact to you if need help 🙂

Best Regards
Youzersef

@hammerc807 I actually never use sysprep and just deploy golden images. We do that exactly, the images are not domain joined and completely local workgroups and no AV installed.

Once imaged to a new laptop, we rename hostname, join domain and add AV and for some reason have issues with VPN

@george1421 Thanks for that George, and also for all the help over the years!

Had a tinker with unattend.xml and it’s fine now. Thinking it was the mismatch with local admin acct setup in there vs what I’d set locally initially, but all ok now.

However have done none of the service off/restart it options post-sysprep (and was wondering even if I’d just put something in group policy later on that’d do it, as the last time I ran this having ANY setupcomplete at all broke the sysprep process) it was in fact just fine and happy. Maybe something in 22H2 Edu is just alright with it, or the stars aligned for me on that one.

Either way all working now and thanks for diving in there. 🙂

@lebrun78 Had another idea.
Since it does work with the system account in the psexec shell you try the scheduled task method again and have it use the system account. It would look something like below

Also, matching just ‘IPV4’ from the firmware boot options may not yield the most reliable results as not every device will name their network boot option like that. Another option that may work would be finding what your various models do use for pxe identification and script finding that one within this script, that would take some effort to maintain but would always get you the options you want
Another possibility is finding all possible choices and putting them all above the windows boot manager. For example, I have a custom built pc that has 3 options related to network boot (excluding ipv6) options, I could find each of those guids and put them all at the top of the list so each one will be tried at boot. I altered the script below to use that method matching the things I found in a couple places (‘IPV4’, ‘Network’, ‘pxe’) and I switched the matching up using a method I found here https://stackoverflow.com/questions/16903460/bcdedit-bcdstore-and-powershell to parse the enum of firmware into a powershell object, it’s not a perfect conversion to an object but it’s workable.

Another other option would be to get the tftpboot pxe files locally and add them to the efi partition and have it try a couple known ones, this method would work nicely as well especially on devices that don’t have built-in ethernet as they won’t have to support pxe boot to get to the bootfile that will get you into fog. But to make that work in a way that would support multiple pxe boot file options is a bit out of scope of this post.

#start the task 10 seconds after its defined $trigger = New-ScheduledTaskTrigger -Once -at ((Get-date).AddSeconds(10)) $settings = New-ScheduledTaskSettingsSet -WakeToRun -Priority 0; #make sure temp path exists, and use temp path to avoid issues with permissions on root of C if (!(Test-Path 'C:\temp')) { mkdir 'C:\temp'; } #use system account $principal = New-ScheduledTaskPrincipal -UserId 'NT AUTHORITY\SYSTEM' -RunLevel Highest -LogonType ServiceAccount; $sb = { $Configs = New-Object -TypeName System.collections.generic.List['System.Object'] $NameArray = @() $Pattern = '^(?<name>[a-z]*)?\s*(?<value>.*)?$' $firmware = (bcdedit /enum firmware); foreach ($item in $firmware ){ if ( $item.trim() ){ $res = [regex]::matches( $item, $pattern ) if ( $res ){ $Value = $res[0].Groups['value'].value $Name = $res[0].Groups['name'].value if ( $Value ){ if ( $Name ){ "$item creating pso" | out-host; $PSO = [PSCustomObject]@{ Name = $Name Value = $Value } $NameArray += $PSO } else { if ( $NameArray.count ){ ( $NameArray | Select-Object -last 1 ).Value += "; $Value" } } } } } else { if ( $NameArray ){ $Configs.add(($NameArray)) $NameArray = @() } } } #the above loop from the example I found doesn't add the final item, so run this bit one more time if ( $NameArray ){ $Configs.add(($NameArray)) $NameArray = @() } $netbootsipv4 = $configs | Where-Object { $_.Value[-1] -match "Network" -OR $_.Value[-1] -match "PXE" -OR $_.Value[-1] -match "IPV4" } | Where-Object { $_.Value[-1] -notmatch "IPV6" } #loop through the found netboot options and put each one at the top so all of them are before windows boot $result = New-Object -TypeName System.collections.generic.List['System.Object'] $netbootsipv4 | ForEach-Object { $GUID = $_.Value[0]; $bootOption = "Adding Desc: $($_.Value[1]) GUID: $GUID to boot first"; $addBootToTop = (bcdedit /set "{fwbootmgr}" displayorder $GUID /addfirst); $result.add($bootOption); $result.add($addBootToTop); } #now that for sure all pxe boot options are first boots, try to find the active connection that matches and make it for sure the first boot option $upNets = (get-netadapter | Where-Object status -eq up).InterfaceDescription $upNets | ForEach-Object { #set the current item to a variable $adapterName = $_; #see if the active adapter's description matches any of the found ipv4 boot options $adapterBootEntry = $netbootsipv4 | Where-Object { $_.Value[-1] | Select-String -pattern $adapterName -SimpleMatch} if ($adapterBootEntry) { $guid = $adapterBootEntry.Value[0] $bootOption = "This interface is active, put it towards the top - Adding Desc: $($_.Value[1]) GUID: $GUID to boot first"; $addBootToTop = (bcdedit /set "{fwbootmgr}" displayorder $GUID /addfirst); $result.add($bootOption); $result.add($addBootToTop); } } $newBootOrder = (bcdedit /enum "{fwbootmgr}"); #make c:\temp if it doesn't exist if (!(Test-Path 'C:\temp')) { mkdir 'C:\temp'; } #log everything in a new C:\temp\firmware.log file $resultString = "Firmware: $($firmware | out-string)`n`nresult: $($result | out-string)`n`nNewBootOrder: $newBootOrder`n" New-Item -path C:\temp\firmware.log -itemType File -value $resultString -force; } $netBootScript = "C:\temp\netboot.ps1"; New-Item $netBootScript -value $sb.tostring() -force; $action = New-ScheduledTaskAction -Execute "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Argument "-File 'C:\temp\netboot.ps1'" $task = New-ScheduledTask -Action $action -Description "update bcd" -Principal $principal -Trigger $trigger -Settings $settings; $taskName = "boot-to-IPV4"; #register the task Register-ScheduledTask -InputObject $task -TaskName $taskName; # force the task to start Start-ScheduledTask -TaskName $taskName; # wait for the task to finish while ((Get-ScheduledTask $taskName).State -eq 'Running') { Start-Sleep -Seconds 1; } #delete the task Unregister-ScheduledTask -TaskName $taskName -Confirm:$false -EA 0; #delete the created script file remove-Item $netBootScript -force -ea 0;

I saved the above as a .ps1 file and made it a snapin and it worked for me when I tested it on a vm. However, it did make it so when fog booted to the hard disk via refind it wasn’t able to boot into windows. This may be related to my own custom configs in refind, but something to test for on a few different platforms to be on the safe side.
Wait wait, I made a small change to the logging and updated the snapin and then it didn’t work the second time. That’s odd… I recreated and couldn’t get it to work a second time. There’s something weird going on for sure. I know I double checked that things were not already configured to boot to the network the time it did work.
Granted, since it’s happening via scheduled task, if you have an AD environment you could deploy this script in a scheduledTask via a gpo. Add the file (the one created from the $sb in the script) to computers with file preferences and create the scheduled task that runs as the system account using a scheduled task gpo.

Will have to dig more into this on why the script isn’t doing anything via snapin, maybe @Sebastian-Roth can help a bit on troubleshooting the client side. And maybe other @testers could test using this script as a snapin too to see what results are being had elsewhere.

Then just as an fyi to anyone reading this, you can revert back to the normal windows boot manager with (bcdedit /set "{fwbootmgr}" displayorder "{bootmgr}" /addfirst);

@Sebastian-Roth Ok so I found a fix for single boot. By a chance several of the devices worked after a complete reimage and have no issues. The other devices that still had issues had a slightly more strenuous issue.

Install Iso Image Via USB:
Windows 11 and Windows 10 (Version 1709 and newer):
Rebuild the BCD store.

First run the command below to back up the old BCD:

ren BCD BCD.bak

Now re-create it using this command:

bcdboot c:\Windows /s <boot letter>: /f ALL (You can add a switch before /s for the computer locale: /l <language code>. By default, /l en-us English USA is used.)

bootrec /rebuildbcd

@george1421 I’ll be damned, pardon my french.

So I guess I was just not patient enough. You guys were right, the acpi error has nothing to do with this other than distracting it from the real process.

After changing the log to level 7, I noticed at some point it says its resizing right before the acpi errors take over. I realized its not stuck, its just taking a while to proceed bc resizing always takes a little longer when capturing image.

So I just let it sit there and eventually it proceeds on capturing the image. It doesn’t look pretty with all the acpi errors but it still does what it suppose to do.

Thank you @george1421 and @Sebastian-Roth for helping on this.

@Sebastian-Roth said in Windows Keys Management Plugin:

overwrite each others settings

Yess…this was the cause …i’ve uninstalled the plugin and now all seems ok 🙂
10x dude 💪

@pauleb Intriguing. So you didn’t need to create a EFI entry for the drive? I wonder if it was already there for that drive from the previous image or something.

I guess mine did not work because I first imaged my test machine with an MBR image, which made the EFI entry no longer show up.

Good luck, and thanks for the info.

@Flyer I create users in the setupcomplete.cmd batch file. That gets executed at the end of the WinSetup process and before the first login.

You can also with the unattend.xml file define an auto admin login process for a specific user. You can set up a counter so the auto login process only executes X times then reverts to login required. This is configured in the unattend.xml file. There is also a first run section where you can do things to update the user’s current profile.

So the idea would be to have the setupcomplete.cmd file create the user with a predefined secure password, then in the unattend.xml file have this user account setup to auto login once or twice depending on what you need, then have the first run section do what is needed to the user’s profile.

One of the last steps in the unattend.xml file is to delete the setupcomplete.cmd and the unattend.xml to erase any clear text passwords that might be contained within. Finally reboot the computer.

These are just ideas on alternate ways to go about solving this problem. I agree that accounts you create before should still exist after winsetup, but M$ typically has other ideas for us.

@itmod This piece of information still has not made it to the official docs (which are under work anyway). So here you go with a forum link: https://forums.fogproject.org/topic/16703/dual-boot-2-disks-unable-to-boot-grub

@kalafina Thanks for the update.

Nevertheless I opened an issue on github to look into making the fog-client a 64 bit application at some point.

@RTOadmin Are those topics related? https://forums.fogproject.org/topic/16715/printer-assignment-problem

May I ask you to not do double/cross posts? I know we have not answered in more than a week but opening another topic is not going to help. No offense! Just want to give you a heads up.