SCCM Bitlocker Disk Partition Task Sequence Problems

SCCM Bitlocker Disk Partition Task Sequence Problems (Full Version)

All Forums >> [Management Products] >> System Center Products >> System Center Configuration Manager

Message

cchan -> SCCM Bitlocker Disk Partition Task Sequence Problems (9/16/2008 1:28:53 PM)
In the tast sequence I created two primary volumes. The primary volume is the MBR with a 1538 MB fixed size. The problem i'm having is naming the drive letter to Q. I used the Advanced option with a Variable Q in the Format and Partition Disk properties . During the imaging process SCCM chooses the next available drive letter D by default. Does anyone know how to assign a drive letter? Thanks, Calvin [image]local://upfiles/20600/88A420D085A548C198EE45DD99EC846A.jpg[/image]

brpo -> RE: SCCM Bitlocker Disk Partition Task Sequence Problems (9/16/2008 3:24:46 PM)
Hi You can't set a drive letter while in Winpe, as it won't be kept anyway. however, you can use the Q variable you set in the TS to change the drive letter to Q after you reboot in a full os. (the variable will be kept after reboot). You will need to script this though. brgds

cchan -> RE: SCCM Bitlocker Disk Partition Task Sequence Problems (9/16/2008 3:32:56 PM)
Would you happen to have a script I can use? Would the diskpart commands work?

brpo -> RE: SCCM Bitlocker Disk Partition Task Sequence Problems (9/17/2008 3:21:41 AM)
Hi I don't see a reason why the diskpart command would not work you would have to select the volume based on your variable, then change drive letter assign letter=o: (you might also check that the drive is not being used already). brgd

tomeyers -> RE: SCCM Bitlocker Disk Partition Task Sequence Problems (9/25/2008 3:27:16 AM)
This doesn't work because you can't modify the drive letter assignment on a boot partition. I'm trying to work through this same issue, and it's a pain in the ass. If you follow Microsoft's steps for using the built-in Format and Partition Disk and Enable BitLocker tasks, you get C and D partitions and your DVD drive becomes E, which is not acceptable for our 40,000 users.

swilbers -> RE: SCCM Bitlocker Disk Partition Task Sequence Problems (12/8/2008 10:54:03 AM)
I am not sure if you resolved your issue, but here is what i did to get a specifc drive letter for the second partion: 1. For your "Format and partition" tasks, just create one partition using the entire disk 2. Download the Bitlocker Drive Prep Tool - http://www.microsoft.com/downloads/details.aspx?FamilyID=320b9aa9-47e8-44f9-b8d0-4d7d6a75add0&displaylang=en 3. Install this on a test workstation and copy the files from the install dir (if i remember correctly it is in Program Files) to all distirubtion points. I have MDT integrated into SCCM in my environment, so i copied the files into the Application Dir of the MDT package. 4. Create a new task in your State Restore Phase with this command line: bdehdcfg.exe -target C: shrink -newdriveletter s: -size 1536 -quiet 5. Working dir for my task looks like this: %deployroot%\Applications\Bitlocker Prep Tool\x86 6. Add a restart computer task after this step 7. Add the "Enable Bitlocker" task after the reboot This will work for anything that is being started through a PXE boot or boot from media. For a refresh scenario, you will have to add a couple additional tasks: 1. During the State Capture phase you will need to add a task to detect if Bitlocker is configured and set/add a TS variable to use later. 2. During the Install phase, directly after the "Restart to Windows PE" task, add an additional "Format and Partition Disk" task and add a condition so that it will only run if Bitlocker was detected during the State Capture phase

mlindgren -> RE: SCCM Bitlocker Disk Partition Task Sequence Problems (12/10/2008 12:21:48 PM)
I´m also running MDT and I tried the method with Bitlocker Drive Prep Tool, it works great when running New Computer scenario but I´m not able to figure out how to make it work in the refresh computer scenario. The task sequence fails with an error in the smsts.log saying that the drive needs to be decrypted before Windows PE can be staged on the drive. Even if I decrypt the drive with a task sequence step, I´m not sure that I will be able to repartition the drive when rebooting in PE? And what about backed up user state data if it is saved to local drive? Then I also need to back up user state data to state migration point or other network place if the computer is running Bitlocker. Do you have a more detailed explanation on how to make refresh computer scenario work with bitlocker? Thanks!

Page: [1]

Forum Software © ASPPlayground.NET Advanced Edition 2.4.5 ANSI

0.328125