Windows Deployment Services (WDS)/Microsoft Deployment Toolkit (MDT) basics on Server 2019

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
hello everyone today this tutorial is going to show you how to maneuver wds and handle most what i think are the most critical functions of wds now before we do all that you need a modern server os like 2019 or 2016 or even 2012 r2 can do this you need a client operating system like windows 10 professional enterprise education whatever your license for you need the windows 8 windows 10 adk kit which you can download from microsoft you need the windows pe add-on which you can also get from microsoft and any driver kits that may come with the computers that you're going to be imaging now hp dell lenovo all do have driver packages available for their business great machines so next steps you want to do which i've already did before starting this video i installed server 2019 i applied a static ip to my servers i installed a real web browser i strongly recommend you do that you can debate what a real web browser is but most of us here that are in it can agree that internet explorer is not a real browser as you can see firefox is the browser choice today now if you went went ahead and downloaded these tools like i did on for previous attempts to make this video then you may not need the web browser right away but if you didn't that's where the wheel the web browser comes into play you also need an ad service account for wds or mdt which i already did create that in a previous video but i will go through how to do that so now that we got that all all out of the way first thing you want to do isn't actually installed wds so you want to go to your server manager if it's not open already and let it do its thing i'm going to add roles and features roll base or feature base is fine select your server and you want to check off windows deployment services add whatever needs to add next don't need to install any other features so it's skipped right over on me roll services install them both and hit install and this will take take just a minute to do and your install is finally done so go ahead and close this out you can close out of the server manager at this point we will no longer need it so next thing you want to do is get your installs out of the way i have them saved onto a folder already along with all the other things we're going to use next thing you want to do is the deployment toolkit this is where you're going to do most of your work go ahead hit next you gotta accept the license terms and agreements if you want to read through that whole thing on your own time more power to you keep the defaults next up to you if you want to join the customer experience improvement program i selected no it's a test environment who cares i'm going to go ahead and hit install and it's already done and then adk setup is the next one you want to install this one is just taking a little bit to do and you will i want to point out one thing here uh if i can show you the application itself is two megs it's good this one's asking for 1.1 gigs of space this along with the pe add-on kit will install or download programs from the internet so if you have a slow dsl connection like on my very first attempt to do this you're going to be waiting a while if you have a 100 meg internet connection cable fiber that type of thing these install shouldn't take too terribly long maybe just a few minutes i'm going to hit no to this accept the license agreement i keep all the defaults here if there's any valid reason why we should be checking this please tell me constructively in the comments and then just go ahead and hit install okay so the assessment in deployment kit or the adk is now installed it took just two minutes next thing you want to do is go to the win pe setup and same thing with this one the original file was a little bit over a megabyte this one is 5.5 gigs so if you have a slower internet connection this is going to take a while who hit next license agreement and go ahead and install and the windows pe environment is officially installed so next thing you want to do is actually going to be an ad so open up so once you have your 80 controller opened up or active directory users and computers go ahead and make a service account i'm not actually going to get into making a service account but mine is called mdt in this case and pretty much standard procedure other than make sure the password never expires you may even want to check this user cannot change password in the off chance that somebody tries to be clever i'm going to go ahead apply to that and there's a lot of wds installations where this particular service account is a member of the domain admins account my general advice on that is don't do it just don't do it just do the work to give it the minimal access and be done with it you hate for your network or servers to be compromised because of a service account that got compromised in my case the member of tab is just domain users so nothing special there and many of the i t folks are going to be squawking if they don't know how to do this is well a domain user can't join a domain which is correct as is they cannot so to correct this go to the view make sure advanced features is checked right click on your domain and you go to properties go to the security tab mine's already got special permissions due to various attempts at this in case you don't you go over to the advanced on the bottom you go to add select the principal find your type in a name of your account and i believe the only count only thing we had to check in here you know doesn't show it here is this modify permissions and make sure the applies to this object and all their descendant objects is checked i just gotta verify that real quick if all those things are checked that should be pretty straightforward press ok don't remember this process 100 so i'm gonna take a quick look at some cheat sheets and oh i take that back there's actually you don't check this box at all it's a good thing about this channel it is largely unscripted so there'll be some kinks in the armor here the boxes you want to check will be these create and delete objects quite a ways down on the left column since i did all that already i'm going to cancel the next piece of this that you want to do will be again for your service account but when you go to the supplies to it is going to be descendant computer objects is the tab you want and there's going to be a handful of things you're going to want to check in this one too let this read all properties write all properties the third and fourth options down on the left column read and modify permissions that looks like it's the eighth now seventh and eighth options and then you want to go to the right column and i already see one of the options as soon as it decides to scroll change password reset password validate write to dns host name and validate right to service principal name once you have all those checked go ahead and press ok and then apply and then okay okay to this and you're done with active directory of users and computers so now go back to your wds box and go find the microsoft deployment workbench this is where the vast majority of your work is actually going to be done in it it's going to take a little bit to load on on this one for some whatever reason that's all good then you want to hit the deployment shares once you are determined that there's nothing there go to the right and go to new deployment share you can keep the default path that should be okay the default share name is good you name this whatever you want i'm keeping the default and i'm going to uncheck all these for this exercise and then finish or next this shouldn't take too terribly long okay so it looked like about 30 seconds to a minute to do that if you have a faster machine it probably considerably less but next thing you want to do is give your service account permissions to this folder so you want to go to the c drive or whatever drive your share is on right click your deployment share and go to properties you go first thing you do you go to the sharing tab advanced sharing permissions add your service account give it full rights and apply and okay you're going to go to the security tab and you're going to basically do the same apply and ok all right so love this folder this prereq folder because i will need it sooner rather than later and if you in my case since the iso is here and i'm going to need it really soon i am just going to double click this to open it and then i'll just go hit the back button to go back that folder minimize it for now so now you want to open up that deployment share drop down until you have this set of folders the next thing in play here first thing is first you need an operating system so go to the right and import one i do the full set you have to browse to your source directory which is the iso i just opened even if you know the drive letter of your source you actually have to browse to it i found that it doesn't work if you just type it in but once you have that it's next if you got your iso from the volume licensing service center it may show up as windows 10 education that is okay i'm going to short this title though to windows 10 and then we're going to hit next and this one may take a few minutes depending on the speed of your system and we are imported and with this iso it looks like there are several windows 10 enterprise education and professionals and there even seems to be some pro education pro workstation i don't know what they all mean i'm not concerned about that for this video and you could remove the unnecessary ones but i am not going to for this exercise the next critical piece is a task sequence so you want to hit up on the right go new test sequence just give this a shortened name for the test sequence id next standard client task sequence is good for day-to-day stuff so i'm going to hit next i'm just going to work with windows pro for now i'm not going to specify a product key if you have a kms server i don't believe you specify it here either if you have the multiple activation key then you hit the option in the middle and next you want to put in both a full name and organization just going to go with the windows user windows user specify an admin password this will cut down headaches down the road and finish and should take a few seconds like it did there okay one thing i want to show you is installing.net framework 2.0 to 3.5 there's too many applications out there that require that to basically ignore it especially if you're in a bigger organization so to do that i'm going to right click your new task sequence and go to properties and go hit the task sequence so first thing you want to do is select custom tasks then you want to go to add and this is where it gets a little this is one other thing i may have to review maybe it's in settings oh set task sequence variable that's the task you want to want to do so first we'll give it a name window source that is if i can spell correctly and for the value you have to point it to your deployment share windows source i cheated and i copied and paste and made a note of it on previous attempts so that's what i'm going to do here where do you get this name i will show you quick after i do an apply you go to the deployment share operating systems windows 10 sources and then your sxs folder so basically whatever is in here so you put that environment variable i believe it's called deployment share and then you can copy and paste this section into that line and that will get you the correct thing every time since that is done the next thing we want to do is actually install that task so i i'd like to do that right before install applications despite where it says up here to install applications i put it right before the scheduled tasks or custom tasks rather so install roles and features and just do the net framework on the very top if you want to add other services at this time that are pertinent to whatever you're doing this is the place to do it and press ok now we're going to do a couple applications so hit the applications folder and i did google chrome and notepad plus plus so we'll go application with source files and every application will be different on how you install it some of them cannot be silently installed but most of them can if you can do that that is ideal you notice i have each and every application in its separate folder if i were to select this whole prereq folder it'll copy everything in there that just takes up a lot of space really quick then go next and since one of those things that i did get the sequence of before i made this video it helps if i can type here's our applications text file this will be available through the google chrome's documentation now you'll notice that in my syntax it does quote an msi folder or msi file rather so the regular download that you go to google chrome's web page that's not going to work you'll have to go get the standalone enterprise installer i believe if you just google that term you'll get it so once you have that you hit next and do your copy and we're gonna do the same for notepad plus plus because it's good to have a couple things to show same drill go find your file now once every now you'll notice there is a option to move the files to the deployment share instead of copying them i'm leaving that unchecked just i don't like the idea of moving stuff and stuff can always be deleted later so i'll go next that name's fine i'm gonna go back to my cheat sheet here and the notepad plus plus makes it really easy to do a silent install there you go perfect and that's done next thing you want to do is there's some rules you can put in there to wds to automate things a little bit so we're going to right click on this deployment share in the workbench and go properties we don't have any x86 stuff in there so i'm going to uncheck that in mine if you have it keep it checked i'm going to head over to rules and i did cheat a little bit here as well i did copy and paste from other applications here there's a whole list of stuff here i'm just gonna copy and paste this whole thing on in here at least to that point anyway and where and why will it go maybe load up properties okay there we go and i'm just gonna wipe everything out of there and you just put a company name in there like like i did there not a requirement and this little syntax here the computer name this will grab the last five characters of the serial number of the computer skip capture no since we have an admin password defined i'm not worried about it product key i'm not worried about computer backup i'm not worried about the we don't need to do the rules in this case the bit locker i'm not worried about time zone we can skip because it's already selected and this is where your service account will come into play and this is there's a step when you select whether there's a work group or to join to a domain that's where these credentials come into play so i think we have everything pretty much under control here so i'm going to apply we'll edit the bootstrap file we're going to do want to add some syntax to that as well nothing of real significance will be put in here is a well hold on here before i do that i can change the username and i messed up the i cannot type today now we'll copy and paste that what this will do is this will once wds comes up it'll join automatically with this with these credentials if you don't want that you can leave this blank and yes i know i did i did indeed miss a step here so once you have everything in place you go apply press ok so now next step is you want to update this deployment share and this is critical because this is actually when our next step in wds this is actually going to create a boot image that we're going to need to copy over but for now we'll just optimize the boot process nothing doing there and this one's going to take a little bit and we are finished with this step and you can read through all this if you want i'm personally not going to so i'm just gonna go finish on that so now we will actually do the part of the exercise that requires wds itself there will be some light setup with this as well as you will see shortly just click on your server object right click configure server next integrate to active directory i keep the default install i've never had a problem with keeping this on the c drive so i'm going to continue with that respond to all client computers narrow summit some organizations will put the imaging server on their own network if your vlan off that last option shouldn't be a big deal i'm going to uncheck this option because it's going to ask you to do something you don't need to do the next thing you want to do is hit the boot images folder right click in the white space and go add boot image and we're gonna go to our newly created image that we did in the deployment workbench it's in the deployment share folder and i click too fast again you go to the boot folder this light touch pe win64 is the one we're going to use this is the one i just created for whatever reason it just doesn't want to select today next default name is fine and the file this file itself is about 300 megs i believe wds will actually extract it it'll be about a 2 gig file by the time it's all said and done shouldn't take more than a couple minutes actually just a few seconds so now you have that so in theory we should be ready to image i don't have an actual physical computer so i'm just gonna roll with the hyper-v that i have here my test environment if you do do this then use the generation 2 hardware this is a test environment so it's not going to be pretty install operating system later and finish you will have to be fairly fast with this one if you're doing it the hyper-v way or really any other way because there's going to be a boot any or press any key to boot that comes up i remember correctly i may have even done it too slow already no nope okay so press enter for network boot service and away we go so far so good now if you made the same mistake that i did in the first attempt at this you'll get a blue background and it'll ask you for a username and password what i did the first time around is i took the default boot wim from the windows 10 iso if you have microsoft deployment toolkit things look a little bit better it's processing through that file we modified earlier and it did not ask for a username and password so it was able to connect so we have one part is set up correctly so we go next now hyper-v doesn't play so nicely with the serial number so i'm just going to call it test wds for now i'm going to select both my applications and with this you can select as middle as little or as many that are needed i only have two they don't take long and away we go and it's gonna do all the fun stuff it's gonna partition your hard drive so if it is a physical computer back up your data if there's anything of value on it before you do this step otherwise you will lose everything there's one thing i didn't cover if you had drivers this would be the place where they would install them but looks like it's trying to apply the image and once i get a a percent number then i'll go show you real quick and do a real quick show on how to insert drivers okay so this will take a few minutes so i'm going to minimize this window go back to our wds server so if you do have drivers that's going to be in the deployment tool bench you go to out-of-box drivers and i like to create folders for whatever computers i may have and i'm just using some off the top of my head here so i'm not sure if some of these are going to be super up to date or not and for you for the lenovo fans i certainly did not forget about you so i am going to make a folder for that i think they are very good machines but they're a lot more expensive it seems like than their counterparts every time i go look for them so i haven't had one in a while but anywho so now we got your each computer listed so you open your folder and it's very similar to the applications you create a folder where you want them to go like our google chrome folder you just make a special folder for like the one i clicked on is the dell 7050 and for now i'm going to cancel this i don't have any drivers let's see how we're doing here this one's making us way over right now so once we get past this point i will continue the video from there with the magic of video editing okay we're just about done with the first part of this after it gets done with the install operating system portion of our imaging this will this will reboot shortly i believe it does a couple other things with scripts which we're going to find out together now we're about to find out if i did everything right uh that's the beauty of this channel being unscripted you get to point and laugh at my failures oh well if sometimes you gotta fail in order to learn from life and shortly after it'll say getting devices ready in the usual windows 10 getting ready stuff it shouldn't take any longer than setting up any other computer you get from the store yeah maybe so i'll make oh there we go now we're getting devices ready and getting ready so it looks like it says it's no longer getting ready so we'll try this again and we'll see where it goes from here it probably was sitting on that for probably a good five minutes so i'm not sure if it's uh an issue with my wds install or there's a severely underpowered vm coming into play here and now it does the normal windows 10 setup on i'm not sure if we can get rid of this part or not during the wds i know it's possible to get rid of all that eye candy stuff where it says windows is doing its thing but not sure if it's possible in wds you know for sure that it is tell me in the comment section and i'm not sure yeah it's gonna do the eye candy stuff now so hopefully this won't take terribly long and we got past the beauty stuff so now this next step will if you did a backup i think it does this here too this part will install the applications and this should install.net framework 3.5 it usually only takes a couple minutes to install the.net framework three even on something as disadvantaged as this particular hyper-v host is right now i guess it's taking a very long time i don't remember it taking this long but so taking a very long time also using one hundred percent of the cpu and ninety two percent of the disk that's is not going to help our case in any way at the not sure what's using all that still 98.96 oh there we go i did not see it install chrome so that is not a good sign yeah two errors so let's see what that's about so that looks like just some stuff i have to research and i also did notice that it did try to install the applications before.net framework so i'll mess with that but anywho outside of a couple little errors like what we're seeing here this is pretty much how you build a wds box um i'll probably do another short video on the retry of this uh re-image and see where we go if you have any questions comments or concerns or constructive criticism feel free to leave them in the comments section and thank you for joining me on this uh ride with some bumps in it
Info
Channel: i80386sx
Views: 11,400
Rating: undefined out of 5
Keywords:
Id: 5OhNtkunsDo
Channel Id: undefined
Length: 48min 27sec (2907 seconds)
Published: Sat Nov 28 2020
Related Videos
Microsoft Deployment Toolkit for the enthusiast, home or small business
Mike Galvin
14K
AZ-104 Microsoft Azure Administrator Associate Certification SUPER Study Cram
John Savill's Technical Training
51K
Install Windows like a PRO! Windows Deployment Services Tutorial
Craft Computing
169K
Special Lecture: F-22 Flight Controls
MIT OpenCourseWare
2.2M
HOW TO MAKE A SUPER EXTENSION CORD! (Perfect for Christmas!)
Stud Pack
1.1M
Windows Server 2019 Active Directory Domain Controller Install | For The Beginner
sysadmintutorials
30K
Introduction to OSD in Microsoft SCCM (WIMs, Boot Images, PXE, Drivers and More)
Patch My PC
142K
Microsoft Deployment Toolkit & Deploying Windows 10 - From Scratch!
Mike Galvin
89K
How To Set Up Windows Autopilot in Microsoft Intune
Harry Lowton
46K
Torch Cutting Basics Everyone Should Know | Oxygen & Acetylene Fuel
WeldTube
699K
Microsoft PowerShell for Beginners - Video 1 Learn PowerShell
Shane Young
1.3M
Using Microsoft Deployment Toolkit (MDT) UDI as Custom OSD Frontend in Microsoft SCCM
Patch My PC
48K
Kubernetes Crash Course for Absolute Beginners [NEW]
TechWorld with Nana
272K
How to make the ultimate Terminal Prompt on Windows 11 - This video is LONG and WORDY and DETAILED
Scott Hanselman
214K
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.