technick
-
Total Posts
:
2
- Scores: 0
-
Reward points
:
560
- Joined: 6/28/2012
-
Status: offline
|
Enable Dell TPM during OSD
Thursday, June 28, 2012 1:38 PM
( permalink)
I have followed quite a few different how to's to create a task sequence that will set a BIOS password enable the TPM, activate the TPM and enable BitLocker. However, whether I use command lines, or try using SCE created in CCTK, the task sequence completes, but there are no logs to indicate that it failed, and yet the BIOS password isn't set, nor is the TPM on. I have emailed back and forth a few times with a Dell tech. that has written a white paper on the subject, and even after what he has added no luck.
|
|
|
|
shadster
-
Total Posts
:
280
- Scores: 3
-
Reward points
:
21880
- Joined: 8/6/2008
- Location: Central Ohio
-
Status: offline
|
Re:Enable Dell TPM during OSD
Friday, June 29, 2012 3:00 PM
( permalink)
we are a dell shop too and i just got MBAM working with TPM via a TaskSequence... I will be looking into this next week probably as that is the next logical step. we have used that tool to generate bios.exe's in the past to change a password or bios setting and deployed that with old version of sccm/sms previously with great success the only caveat was that you had to know what the current password was... which over time and attrition that could be a number of passwords changes ago we had to make a bat file that would try about 30 different .exe (each with a different possible password) until it succeed without error... if it still failed we just sneaker netted the list of failures to manually blank them out since we obviously didn't know it :) I would start by un-checking "continue on error" for that step so you don't have to go through process if you haven't already since it is very early on in the TS
<message edited by shadster on Friday, June 29, 2012 3:03 PM>
|
|
|
|
TXbluzmn
-
Total Posts
:
26
- Scores: 0
-
Reward points
:
6500
- Joined: 5/7/2012
-
Status: offline
|
Re:Enable Dell TPM during OSD
Friday, June 29, 2012 6:17 PM
( permalink)
Congrats on getting MBAM up and running, Shadster! We have a mixed Dell/HP shop and I have both working. I used the latest version of the Dell CCTK to create my TPM enable files. I created two separate EXE's and ran the one to set the password first, then ran the exe to enable the TPM. I'd suggest to (in the CCTK) create your files to work on multiple versions of DELL BIOS even if you only have one model.
|
|
|
|
technick
-
Total Posts
:
2
- Scores: 0
-
Reward points
:
560
- Joined: 6/28/2012
-
Status: offline
|
Re:Enable Dell TPM during OSD
Friday, August 03, 2012 1:18 PM
( permalink)
Finally got everything working... now I am having trouble with Bitlocker itself. When running the configmgr 2012 built in step to enable bitlocker, does that step take ownership of the TPM? We have extended the schema in AD to allow for storage of keys. When we run bitlocker within windows, or via cmd, it successfully begins the encryption process, taking ownership of the TPM and storing the keys in AD. HOWEVER, running the built in step, or the 'manage-bde' cmd via task sequence, no success.
|
|
|
|
TXbluzmn
-
Total Posts
:
26
- Scores: 0
-
Reward points
:
6500
- Joined: 5/7/2012
-
Status: offline
|
Re:Enable Dell TPM during OSD
Monday, August 06, 2012 3:01 PM
( permalink)
Are you trying to use MBAM too or just plain bitlocker?
|
|
|
|