How to make different SID on protected CF card

L

leo peng

Hello All:
I want to produce unique SID for each XPE on different CF cards,which were
under EWF protection. Following are my steps:

1 run Etprep.exe to delete the EWF volume.
2 run Fbreseal.exe and restart.

I notice the clone operation always execute in the OS starting phase,but I
don't hope it did like this.
How can I resolve the problem?
I'd appreciate your help.

Regards.
 
B

Brad Combs

leo peng,

Could you add a RunOnce request to the registry just before you reseal that
could do an EWF commit and restart after the next boot. This would preserve
the newly created SID on the EWF protected volume.

HTH,

Brad Combs
Imago Technologies
 
L

leo peng

Brad Combs:
Maybe you are right. I will try it.
But I am afraid the SID is stored in the registry which is unchangeble under
EWF protection.

Regards,
Leo
 
B

Brad Combs

Leo,

I would say, start EWF disabled. Configure your runtime, and add the run
once registry key. Then set EWF to start on next boot (ewfmgr c: -enable).
Then reseal, and reboot. Make your image at this point. The next time the
system starts it will reseal, and the run-once will commit and reboot. This
should do the trick unless I'm overlooking something. (which is always
possible :p)

HTH,

Brad Combs
Imago Technologies
 
L

leo peng

Brad Combs:
Unfortunately,it's doesn't work at all after following steps:
1 Add the run-once request of fbreseal.exe in registry .
2 Enable the ewf.
As you know,OS will delete the items under the run-once ,but items were not
really deleted if ewf enabled. So fbreseal.exe will run every time when OS
boot.
 
S

Slobodan Brcin

Leo,

You have followed Brads steps, but probably in wrong order.

1. I suggest that you configure your EWF trough registry only without the
temporary partition. Go to www.xpefiles.com find and download instructions
regarding this.
2. Use TD to configure EWF like said in step 1, and also make sure that EWF
is disabled by default.
3. Run FBA. And configure what ever you want.
4. Modify runonce registry entry to execute ewfmgr c: -enable next time you
boot.
5. Call fbreseal.exe (manually).
6. At this phase multiply this image.

After you boot reseal will complete. And ewfmgr c: -enable will be executed.
Also you can execute some other things like set ip address, or computer
name, etc.
When you are satisfied with changes. Reboot your device. And your EWF will
become active during the next boot.
You can merge some steps to more automate this task.


More or less this should work.

Regards,
Slobodan
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Fbreseal problesm with SP2. 12
Possible to make a bootable CF card ROM w/o secondary disk/partiti 3
Cloning CF, EWF and "A duplicate name exist on the network" 2
How to get multiple EWF RAM Modes on the same device? 3
STOP: 0x000000F4 on 1GB CF 1
My method for setting up CF card and cloning 6
How to clone an XPE system using EWF? 3
How to change the SID on a Windows XP, Windows 2000, or Windows NT computer... 3

Top