Deploing with or without sysprep?

B

Bulakov Alexy

Do I really need to use SYSPREP to deploy many WinXPs with all needed
applications and SMS installed on it? Or it is enough to remove one from
domain, delete specific drivers and clone it to all another?
 
M

Mike Brannigan [MSFT]

Bulakov Alexy said:
Do I really need to use SYSPREP to deploy many WinXPs with all needed
applications and SMS installed on it? Or it is enough to remove one from
domain, delete specific drivers and clone it to all another?
Click to expand...

You should use SYSPREP. You need to have the machine generate the
appropriate unique security identifiers etc.

--
Regards,

Mike
--
Mike Brannigan [Microsoft]

This posting is provided "AS IS" with no warranties, and confers no
rights

Please note I cannot respond to e-mailed questions, please use these
newsgroups
 
B

Bulakov Alexy

One of the system administrators in company I work for insists that I
shouldn't use it because unique SID is generated when machite is added to
domain. No arguments I told him could convinece him of using SYSPREP. But I
think we must use SYSPREP. Can you give me some heavy arguments why should
we use it and what will happen if we don't?
 
M

Mike Brannigan [MSFT]

Bulakov,

The machine does generate a unique SID for its Domain Membership BUT it's
local SID will still be duplicated, you also may have problems with support
from Microsoft and third parties for any security related issues until in
each case you prove that the problem can also occur on a properly built
machine.

So heavy arguments
- do you want to be supported easily or go through an extra layer of testing
to prove it is not related to your not using SYSPREP to correctly deploy the
machines.
- you are still a security risk with duplicated machines in the environment,
regardless of Domain Membership.
- we (Microsoft) have always reserved the right to use the internal data
structures (SIDs/GUIDs) of machines for any purpose in the future. Your
duplicate machines may cause problems with future updates or products.
- Do it now, it will save you potential problems in the future and why not?
It is just a simple step in the deployment process. Not doing it does not
really save you anything and will help prevent problems.


--
Regards,

Mike
--
Mike Brannigan [Microsoft]

This posting is provided "AS IS" with no warranties, and confers no
rights

Please note I cannot respond to e-mailed questions, please use these
newsgroups
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Single master image, sysprep, bsod, not what you think.. 7
Sysprep Question 2
Unmountable Boot Volume after Sysprep 6
Sysprep doesn't find drivers? 5
Driver not found during Sysprep 2
sysprep ignoring computer name 1
"C:\Sysprep\drivers" or "C:\Drivers"? 4
Sysprep operation with and without the -mini option 1

Top