The bare metal task sequence will fail because it will have trouble staging the WinPE boot image to the hard disk. The task sequence will fail any time it detects an NTFS primary partition that is is unable to write to. The task sequence sees that there is an NTFS partition and assumes that it will be able to write to it to stage the WinPE image for reboot, but it cannot. You might need to inject a check and format into the pre-execution hook stage. The task sequence can't just blow away the partition because task sequences are also built for refresh scenarios where you would need to keep the existing NTFS partition for USMT to do its capture. You might be able to rejigger some of the rules on the partition and format section at the top of the task sequence so that it runs more frequently. But I would guess those rules are detecting that there is a reasonable NTFS partition (and there is not)
Regarding the TPM, chip. Yeah, you have to clear that manually. You could check to see if it is present and cleared in a pre-execution hook and notify the user, but there is no way to clear it programmatically. Just give up on that right now. I wish I could have those two weeks back. From: [email protected] [mailto:[email protected]] On Behalf Of Keith Garner (hotmail) Sent: Wednesday, February 17, 2016 10:00 AM To: [email protected] Subject: RE: [MDT-OSD] Can't Do Bare Metal on Bitlockered PC - Dell BIOS Issue MDT Lite Touch or Zero Touch? >From what I recall, MDT Litetouch should be intelligent enough to just blow >away the existing Bitlockered partition and continue. Same with the TPM, but I >haven't had a Dell in a while (I get a new XPS 13 next week). From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Marcum, John Sent: Wednesday, February 17, 2016 6:05 AM To: [email protected]<mailto:[email protected]> Subject: [MDT-OSD] Can't Do Bare Metal on Bitlockered PC - Dell BIOS Issue Sorry if I've asked this before, it's been on my list of things to fix for a very long time and I'm just now actually getting to it..... When doing at bare metal deployment on any PC that has had the disk encrypted with bitlocker I have two issues: 1. I have to manually going into diskpart and blow away the partitions. Shouldn't the TS do that for me? 2. I have to clear the TPM in the bios manually. i. On the newer Dell laptops this in itself is a challenge. I find that I must pray to Michael Dell, hold me tongue just right and stand on my head to start with. If I do all that just right I have to clear the TPM, activate the TPM and then clear it again and then load the bios defaults in the security node or I get an error when I try to setup the BIOS in my task sequence. I see this problem on the currently shipping Latitudes, the 6400 takes one more step that I must completely power it off after doing all those steps and power it back on or it fails. Am I the only person seeing this issue? ________________________________ John Marcum MCITP, MCTS, MCSA Desktop Architect Bradley Arant Boult Cummings LLP ________________________________ [H_Logo] ________________________________ Confidentiality Notice: This e-mail is from a law firm and may be protected by the attorney-client or work product privileges. If you have received this message in error, please notify the sender by replying to this e-mail and then delete it from your computer. ________________________________ Notice: This UI Health Care e-mail (including attachments) is covered by the Electronic Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and may be legally privileged. If you are not the intended recipient, you are hereby notified that any retention, dissemination, distribution, or copying of this communication is strictly prohibited. Please reply to the sender that you have received the message in error, then delete it. Thank you. ________________________________
