M
Mark K Vallevand
Testers of our released image are reporting user group SID corruption. The
Administrator group and the User group need to be re-created in the final
running image in the field because of the corruption. This corruption is
currently being blamed on the way I build the XPe image.
Here is what I do.
- Create an image with necessary components, including disabled EWF,
Administrator account, and 3 specific user accounts.
- Write the image to HDD.
- Boot through FBA.
- Sign on as Administrator and finish setting up the image. I include the
registry change for EWF to run without its partition.
- Disable pagefile.
- Enable EWF.
- Shutdown.
- Delete EWF partition using DOS.
- Startup.
- Sign on as Administrator and confirm that EWF is enabled and registry
value is correct.
- Delete pagefile.
- Commit EWF.
- Shutdown.
- Deliver image internally to another group that:
- Writes the image to CF device.
- Startup.
- Sign on as Administrator.
- Installs application software.
- Sets up IIS and webpages.
- Create user groups.
- Commit EWF.
- Restart.
- Sign on as Administrator. Confirm that image is ready to go.
- Commit EWF.
- Fbreseal.
- Power off and deliver to mass reproduction.
Is there anything in this sequence that can corrupt user group SIDs?
Does fbreseal change anything related to user or group SIDs?
Administrator group and the User group need to be re-created in the final
running image in the field because of the corruption. This corruption is
currently being blamed on the way I build the XPe image.
Here is what I do.
- Create an image with necessary components, including disabled EWF,
Administrator account, and 3 specific user accounts.
- Write the image to HDD.
- Boot through FBA.
- Sign on as Administrator and finish setting up the image. I include the
registry change for EWF to run without its partition.
- Disable pagefile.
- Enable EWF.
- Shutdown.
- Delete EWF partition using DOS.
- Startup.
- Sign on as Administrator and confirm that EWF is enabled and registry
value is correct.
- Delete pagefile.
- Commit EWF.
- Shutdown.
- Deliver image internally to another group that:
- Writes the image to CF device.
- Startup.
- Sign on as Administrator.
- Installs application software.
- Sets up IIS and webpages.
- Create user groups.
- Commit EWF.
- Restart.
- Sign on as Administrator. Confirm that image is ready to go.
- Commit EWF.
- Fbreseal.
- Power off and deliver to mass reproduction.
Is there anything in this sequence that can corrupt user group SIDs?
Does fbreseal change anything related to user or group SIDs?