Introduction This HowTo is based around the security changes that MS has made with MDT 2013 Update 1. These are some changes I no...
Introduction
This HowTo is based around the security changes that MS has made with MDT 2013 Update 1. These are some changes I noticed myself so I decided to share the info.
Steps (5 total)
In the past when you created a MDT deployment share the correct permissions were automatically set for you. With Update 1 the Creator Owner account is the only account given access to the deployment share. You may need to add the "Everyone" account and give Read/Write or Full Control to the deployment share in order to gain access during deployment.
If the permissions mentioned in step 1 are not performed then this error is the result. Also you may get an error of Access Denied during a capture or a deployment.
In previous versions of MDT when you created your deployment share the bootstrap was created with the DeployRoot= included. With Update 1 we will need to add that in ourselves. My guess is because the everyone group did not have access to the deployment share (because we did not make the DS yet) it could not add that code in for us automatically. Be sure your deployroot and path to the deployment share is in the Bootstrap.ini after you create your deployment share.
When trying to browse the deployment share via Windows Explorer you will get a security prompt about permission. Click continue to give yourself access if you like.
The .cab file used in previous versions of MDT included its great help file. With Update 1 the help file is online. See link.
https://technet.microsoft.com/en-us/library/dn781292.aspx
https://technet.microsoft.com/en-us/library/dn781292.aspx
Conclusion
The security in MDT 2013 Update 1 should be relaxed and it may change with a new revision.
For the latest on MDT please visit the link below:
http://blogs.technet.com/b/msdeployment/
For the latest on MDT please visit the link below:
http://blogs.technet.com/b/msdeployment/
No comments
Post a Comment