The Deployment Bunny

OS Deployment, Virtualization, Microsoft based Infrastructure…

  • Archives

  • Meta

The October 2017 Update – “Inaccessible Boot Device”

Posted by Mikael Nystrom on October 11, 2017

Also known as:

KB4041676 -  https://support.microsoft.com/en-us/help/4041676

KB4041691 – https://support.microsoft.com/en-us/help/4041691

KB4000824 https://support.microsoft.com/en-us/help/4000824

Affected systems:

This only affects systems that are managed trough WSUS and the patches was approved at the same time as the “delta” updates also was approved. Those updates was never intended to show up in WSUS, they should be deleted/Declined. You should NEVER have Delta updates in WSUS. It was a “woops” somewhere. But if they were approved, and distributed, and download, and installed at the SAME time as the full patch, then you are affected

image
These should be declined, and they should be gone at the next sync.

Result:

After installing the update and reboot, the pc will not boot, instead it gives you ”Inaccessible Boot Device”

Official Solution:

Currently the official solution is to contact Microsoft Support, but it is possible to use DISM.exe or PowerShell to remove the updates or reverse back a folder name.

read about the issue here (from Microsoft) https://docs.microsoft.com/en-us/windows-server/administration/windows-server-update-services/deploy/monthly-delta-update-isv-support-without-wsus

image
Information regarding the Delta’s from Microsoft in a forum.

The Quick fix Solution:

A very nice MVP manage to figure out how to remove all the updates using DISM, and yes, it does work like a charm!

(update: If this is a VM, you might need to add more memory. We have found that you need at least 3GB of RAM for WinPE to use larger scratch space.)

https://blog.workinghardinit.work/2017/10/11/quick-fix-publish-vm-wont-boot-after-october-2017-updates-for-windows-server-2016-and-windows-10-kb4041691/

Other ways to fix it is:

The idea is to rename the WindowsApps folder and that seems to work for some

image

https://marc.info/?l=patchmanagement&m=150007672922185&w=2

/mike

Posted in Windows 10, Windows Server 2016 | Tagged: , | 29 Comments »

OSD – Adding Description to the WIM file during Build and Capture

Posted by Mikael Nystrom on October 10, 2017

The default capture function in MDT does not add any description. It is not needed, but can be added by modifying ZTIBackup.wsf. In this case I added the Task Sequence Name, but you can add other things as will, like Task Sequence Description or Task Sequence version. I did this at a demo at Microsoft Ignite last week but I did not post it at that time, so here it is.

The Session from Ignite is here if you would like to see it: https://www.youtube.com/watch?v=H9HGSVEaqQk

The how:

Modifying the Script

Take a copy of ZTIBackup.wsf, open it in your favorite VBscript editor and look for this section:

image

At line 436 you will see this:

sCmd = " /Capture-Image /CaptureDir:" & oDrive.Path & "  /ImageFile:""" & sBackupPath & """  /Name:""" & sPrefix & Left(oDrive.Path, 1) & "Drive"" /Compress:MAX /ConfigFile:""" & sWimScriptPath & """ /ScratchDir:""" & oUtility.LocalRootPath & "\Scratch"""

Change that to:

sCmd = " /Capture-Image /Description:""" & oEnvironment.Item("TaskSequenceName") & """ /CaptureDir:" & oDrive.Path & "  /ImageFile:""" & sBackupPath & """  /Name:""" & sPrefix & Left(oDrive.Path, 1) & "Drive"" /Compress:MAX /ConfigFile:""" & sWimScriptPath & """ /ScratchDir:""" & oUtility.LocalRootPath & "\Scratch"""

(The yellow text shows the modification)

The result:

Using Get-WindowsImage will show you that the description is now set to the Task Sequence name:

image

If you import the WIM file into ConfigMgr you will also see the description set as well as the Comment:

image

/Mike

Posted in ConfigMgr, Ignite, MDT, OS Deployment, OSD | Tagged: , , , , | Leave a Comment »

Event – TrueSec Infrastructure Summit 21 of June–summer 2016

Posted by Mikael Nystrom on May 24, 2017

(Note: This event is held in the Swedish Language)

Vi har nu kört Windows Server 2016 och Windows 10 under lång tid och vi har samlat på oss så mycket erfarenhet, en del fantastiska upptäckter, en del mindre lustiga. Vi tror att du vill veta det här, så att du kan undvika “slukhålen” som vi själva har trillat ner i. Det här gäller så klart både på klientsidan där vi trodde att man skulle få helt andra problem än vad man verkligen fick, samma sak på datacenter sidan, det blev inte riktigt som vi trodde. Så vi har samlat ihop gänget som är där ute och jobbar och sliter varje dag och kör en heldag på Rival i Stockholm. Kan du inte komma dit, kan du sitta hemma i soffan och njuta ändå, vi kör ju med LiveStream. Så, ta genvägen till erfarenhet, och häng med oss på Rival, Stockholm!

TrueSec Infrastructure Summit, Stockholm, Sweden June 21 http://events.truesec.se/Event/Infrastructure_Summit_2017/Start

image

/mike

Posted in Event | Tagged: | Leave a Comment »

OSD – Workaround for ADK issue in 1703

Posted by Mikael Nystrom on May 16, 2017

The issue in ADK 1703 is that you cannot mount a WIM file in MDT/ConfigMgr, due to a signing issue with the WIM Mount Driver when running a system with UEFI and Secure Boot.

Workaround:

Michael Niehaus did found a workaround today, and that is to use the existing WIM mount driver that is already in the system.

https://blogs.technet.microsoft.com/mniehaus/2017/05/16/quick-workaround-for-adk-1703-issue/

image

/mike

Posted in ADK, Windows 10 | Tagged: , | Leave a Comment »

PowerShell is King – A Data Deduplication script that runs the Optimization,Garbage Collection and Scrubbing in a single sweep, including progress

Posted by Mikael Nystrom on April 28, 2017

I use Windows Server 2016 on all my lab machines, therefore I also use Data Deduplication to save space. But I don’t run it in the background, i run it basically when I need space.

The PowerShell script. (https://github.com/DeploymentBunny/Files/tree/master/Tools/Start-VIADeDupJob)


Function Wait-VIADedupJob
{
while ((Get-DedupJob).count -ne 0 )
{
Get-DedupJob
Start-Sleep -Seconds 30
}
}

foreach($item in Get-DedupVolume){
Wait-VIADedupJob
$item | Start-DedupJob -Type Optimization -Priority High -Memory 80
Wait-VIADedupJob
$item | Start-DedupJob -Type GarbageCollection -Priority High -Memory 80 -Full
Wait-VIADedupJob
$item | Start-DedupJob -Type Scrubbing -Priority High -Memory 80 -Full
Wait-VIADedupJob
}
Get-DedupStatus

/mike

Posted in Windows Server 2016 | Tagged: | 1 Comment »

Nice to Know – Windows 10 and Windows Server 2016 Update History

Posted by Mikael Nystrom on April 27, 2017

Here is a nice list, it gives you all released versions of Windows 10 and Windows Server 2016. So when ever you need to know the “latest” Cumulative Update of Windows 10, 1511, 1607, 1703 or Windows Server 2016 1607 you can use this page to find related information about the version, including the link for the download at Microsoft Update Catalog.

image
Update history for Windows 10 version 1703.

 

image
Specific information about the latest version of Windows 10.

 

image
Including the link to the cab file at Microsoft Update Catalog.

 

/mike

Posted in Windows 10, Windows Server 2016 | Tagged: , | 2 Comments »

Nice to Know – Performance guidelines for Windows Server 2016!

Posted by Mikael Nystrom on April 27, 2017

Yesterday, Microsoft announced the availability of performance guidelines for Windows Server 2016. They are not super advanced but they are perfectly fine. One nice thing is that you can view them offline (you don’t always have access to a fancy Internet connection working in a datacenter. My take on this is that you should browse trough the topics that you work with, take the ideas, convert them into reality and implement them in your deployment process. As they say in an old movie, and I quote:

– I feel the need, the need for more speed…

image

Server hardware

Server role

Server subsystem

Offline viewing is here: Download PDF

/mike

Posted in Windows Server 2016 | Tagged: | Leave a Comment »

Nice to Know – IT Pro documentation for Windows 10 is now on Microsoft Docs

Posted by Mikael Nystrom on April 27, 2017

So, Microsoft has “moved” W10 documentation to http://docs.microsoft.com. It does make sense, the “docs” site is better suited for having this information then TechNet/Msdn.

image

/mike

Posted in Windows 10 | Tagged: | Leave a Comment »

Nice to Know – IT Pro documentation for Windows Server 2016 is now on Microsoft Docs (and you can download it as a PDF)

Posted by Mikael Nystrom on April 27, 2017

So, Microsoft has “moved” WS2016 documentation to http://docs.microsoft.com. It dos make sense, the “docs” site is better suited for having this information then TechNet/Msdn.

You can find items like

And you can download it as a PDF, very nice to have – Download PDF

image

/mike

Posted in Windows Server 2016 | Tagged: | Leave a Comment »

Working in the Datacenter – SCOM 2016:Import management packs install button grayed out

Posted by Mikael Nystrom on April 26, 2017

The Issue:

I was about to import management packs for System Center Virtual Machine Manager 2016, but the install button was grayed out? Ok, so let us do what we always has been doing, remove the already imported MP’s, but then it all gets red and error, hmm

image
Install button is greyed out.

Let us try to remove the already imported MPs…

image
All already imported MP’s have been removed, still not possible to import…

The Solution:

By removing just “Microsoft System Center Visualization Virtual Network Dashboard” it works…

image

Hey, it works…

It seems that this is not only true for this scenario, here is a blogpost that explains the same issue when importing the SQL MP.

http://scug.be/dieter/2017/03/20/scom-2016-import-management-packs-install-button-grayed-out/

/mike

Posted in System Center 2016, System Center Operations Manager | Tagged: , | Leave a Comment »