What happens if you don't sysprep an image?

windows deployment sysprep images wds
44,488

Solution 1

Sysprep allows you to do the following:

  • Generates a new computer SID
  • Set a new computer name
  • Clear out event logs
  • Run mini setup to deal with hardware differences

Sysprep isn't necessary, as long as you change the SID and computer name. It's also a good idea if the hardware you're deploying to is the same or similar.

There are tools that you can use to change the SID so you don't need to run sysprep.
Ghost has a utility called ghostwalker. There's also NewSID which is a sysinternals tool.

Solution 2

http://oem.microsoft.com/public/seo/sysprep.htm

Microsoft does not provide support for computers that were set up with SID duplicating tools other than the Sysprep tool.

I always sysprep using the recommended documented way, because it's recommended and documented. Picture this: you're having a bunch of issues with your PCs, you call PSS, you happen to mention in the course of the call that you didn't sysprep them. Are PSS gonna want to touch you with a 10 foot pole? Or are they gonna tell you to set up the machines the correct way, see if the issues recur, then call them back?

Seriously, doing things the right way can put you in a position where your environment is supported. That's more than worth any number of shortcuts in my book.

Solution 3

Something I don't see people talking about is KMS in relation to sysprep. If you are planning on deploying a bunch of Windows 7 boxes, using KMS to license them, then you will have problems with the KMS server incrementing the count to activate. When you run sysprep you also create a unique CMID, in addition to the SID. The CMID is used with KMS to increment your count.

For example if you want to acivate your B license, you will need 25 machines with a unique CMID to checkin with the server. I have seen this issue popping up with people who have been deploying images to large sets of computers and who haven't been running sysprep w/ the /generalize and are new to deploying Windows 7.

Just a heads up! Not sure if this relevant to you yet but if you go KMS then this may bite you.

Solution 4

I'm one of those who doesn't like sysprep. I've also simply been using either Ghost or Drive Image images of machines and never had a problem doing so. Regardless of which way you go the target machine will need a unique name. For me it's no big deal to spend 30 seconds per machine to rename it. I've looked into the various ways machine names can be supplied during set up but regardless of whether it's a cold install, a complete image or using sysprep, nothing fits my preferred naming scheme, so I may as well just do it manually. The SID has never been an issue for me as I join the machines to the domain as the last stage of deployment.

Disclaimer: I've never had to set up more than about half a dozen machines at a time. If I was working with something like classrooms I would definitely use a more automated method.

Solution 5

The only practical issue I am aware of is that local accounts on one machine will have NTFS permissions on the others. This would definitely be an issue for clients, especially with worms spreading over admin shares, or just nosey clever people.

I've seen a number of Citrix MetaFrame servers at a previous workplace had the same SID - the Altiris tool hadn't been working right. These were maybe 20-odd HP blades, and had been in production for months. I'm not aware of any faults which could have been traced to the duplicated SIDs.

Names are another issue - your co-workers must be renaming machines or they couldn't join the domain.

Don't forget to clear out event logs and delete any system restore points before making the image.

Disadvantages of Sysprep on XP include all the new-user nonsense Microsoft litters the desktop and start menu with - media player icons, the windows tour, that $@%&!! search puppy... all this can be controlled with group policy, but I can understand why you would choose to avoid it altogether.

New user profile behaviour also changed with SP3 on XP, whether it was based on the Administrator's profile or not - more stress for those who already had a working deployment system prior to this.

Mini-setup on some ThinkPads (T61 and newer) can take like ten full minutes to finish setting up the network - this is time that could be better spent reading Server Fault.

Share:
44,488
Eric Haskins
Author by

Eric Haskins

Updated on September 17, 2022

Comments

  • Eric Haskins
    Eric Haskins over 1 year

    I've been researching WDS and other imaging tools, and the best practice seems to be to sysprep the master machine before imaging.

    However, where I've been working they simply build a machine then use Ghost to create an image. I asked them about sysprep, and they said it just causes problems. They've been doing it this way for years, and it seems to be working.

    Is sysprep necessary? What can happen if you don't sysprep?

    NOTE: I'm currently deploying XP, but if there are issues specific to Vista/7 I'd be interested to know what they are.

    • Chadddada
      Chadddada about 13 years
      I posted an issue that is specific to Vista/7 below - if 'they' decide they want to use KMS.
  • Eric Haskins
    Eric Haskins over 14 years
    But, what issues does that cause. From what I've seen it doesn't cause any issues.
  • Keith Stokes
    Keith Stokes over 14 years
    If machine1 and machine2 have the same SID, machine3 won't know which one is which.
  • user1364702
    user1364702 over 14 years
    Adding 2 machines with the same SID but different names will result in issues with Active Directory; also, permissions are tied to SID's. On domains you won't see it as much but it can still lead to issues with head-scratching related to file ownership/ACL's.
  • user1364702
    user1364702 over 14 years
    Funny they'd not support it if they supply NewSID also...?
  • Maximus Minimus
    Maximus Minimus over 14 years
    I'd assume NewSID is not intended for production environments. Ah yes: technet.microsoft.com/en-us/sysinternals/bb897418.aspx and support.microsoft.com/default.aspx?scid=kb;EN-US;314828
  • Dscoduc
    Dscoduc over 14 years
    I've been using NewSID for some time with great success. This avoids having to activate each time a new image is copied...
  • Dscoduc
    Dscoduc over 14 years
    Oh yeah, if you call up Microsoft Support and mention that you used a SID changing tool they will tell you it's unsupported... Sysprep is the only supported solution for OS duplication.
  • Shial
    Shial over 14 years
    blogs.technet.com/markrussinovich/archive/2009/11/03/… Changing SSIDs is actually been found to be useless. Its never used outside of the actual computer (so it doesn't matter if they are the same) and NewSID has now been depreciated.
  • jgoldschrafe
    jgoldschrafe about 13 years
    Note with the above that it's only the local machine SID that's irrelevant -- it's still extremely important that every system in a forest have a unique domain SID. Since this has nothing to do with NewSID, though, I'm probably being pedantic.
  • jgoldschrafe
    jgoldschrafe about 13 years
    Domain SIDs and machine SIDs aren't the same thing, though. Domain SIDs are generated at domain-join time. Machine SIDs have nothing to do with Active Directory and aren't tied to anything besides local user accounts and their corresponding NTFS ACLs.
  • Chadddada
    Chadddada about 13 years
    Don't forget the CMID part in a KMS environment - no sysprep generalize then no KMS client +

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

MDT 2013 Update 1 - Stalling at "Processing Bootstrap Settings"
Creating an ISO from a Hyper-V Machine
How do I perform Windows image deployment from a configured laptop?
WDS prompt for password
WDS Creating answer file for boot.wim
Unable to perform an unattended domain join using WDS and an answer file on Windows 8.1
Deploying Qt5 on Windows without Hardware Acceleration
Deploy a MVC 3.0 web application project on IIS 8.0
How to get rsync command on windows?
URLDownloadToCacheFile failed with HRESULT '-2146697208'