Let's Build A Standalone Deployment Server!
You have decided to deploy OS images over the network but you want to test it out or you want to create a small deployment lab. Building a standalone deployment server is the way to go. Windows Deployment Service (WDS) and Microsoft Deployment Toolkit (MDT) are an easy way to accomplish that. In this standalone setup the server is not part of a domain and has DNS (Domain Name System) and DHCP (Dynamic Host Configuration Protocol) on the same system as WDS and MDT.
In order to keep up with the demand of deploying workstation images to hundreds and thousands of systems quickly you need to have a deployment mechanism in place. There are plenty of products out there that can deploy images. But let's say you don't have those products. How can you do it? Well MDT and WDS do a great job together, also they are free (as long as you have a Windows Server license for WDS).
Assumption
Windows Server is fully installed on the system without any outstanding issues. A basic understanding of Windows Server administration. The IP address range has already been determined. A user account on the server has been created with read access to the deployment share.
DNS
Installation
- Open Server Manager
- Click Manage
- Click Add Roles and Features
- The Add Roles and Features Wizard window will appear
- On the Before you begin screen click Next
- On the Select installation type window click Role-based or feature-based installation and click Next.
- On the Server destination server window select
- Select a server from the server pool
- Under Server Pool select the server name
- Click Next
- On the Select server roles screen select DNS
- On the pop-up window click Add Features
- Click Next
- On the Select features screen click Next
- On the DNS Server screen click Next
- On the Confirm installation selections screen click Restart the detitanation server automatically if required. Click Yes to the pop-up then click Install
- Wait for the installation to complete.
- Once the installation is complete click the Close
Configuration
- Click Start -> Windows Administrative Tools -> DNS.
- In the DNS Manager window click on the server name.
- In the right pane, right-click Forward Lookup Zones and then click New Zone…
- In the New Zone Wizard on the Welcome screen click Next.
- On the Zone Type screen select Primary zone and click Next.
- On the Zone Name screen enter the name of the Zone and click Next
- On the Zone File screen leave the default selections and click Next.
- On the Dynamic Update screen select Allow both nonsecure and secure dynamic updates and click Next.
- On the Complete the New Zone Wizard screen click Finish.
DHCP
Installation
- Open Server Manager
- Click Manage
- Click Add Roles and Features
- The Add Roles and Features Wizard window will appear
- On the Before you begin screen click Next
- On the Select installation type window click Role-based or feature-based installation and click Next.
- On the Server destination server window select
- Select a server from the server pool
- Under Server Pool select the server name
- Click Next
- On the Select server roles screen select DHCP
- On the pop-up window click Add Features
- Click Next
- On the Select features screen click Next
- On the DHCP Server screen click Next
- On the Confirm installation selections screen click Restart the detitanation server automatically if required. Click Yes to the pop-up then click Install
- Wait for the installation to complete.
- Once the installation is complete click the Close
- On the Server Manager window click the Warning icon at the top and then click Complete DHCP Configuration.
- The DHCP Post-Install configuration wizard opens up.
- On the Description screen click Commit.
- On the Summary screen click Close.
Configuration
- Click Start -> Windows Administrative Tools -> DHCP.
- In DHCP window expand the server in the left pane.
- Right-click IPv4 and click New Scope…
- The New Scope Wizard window appears.
- Click Next.
- On the Scope Name screen enter a name and description for the scope and click Next.
- On the IP Address Range screen enter the Start IP address and End IP address Verify that the Subnet mask is correct and then click Next.
- On the Add Exclusions and Delay screen do not enter any information, click Next.
- On the Lease Duration screen change the Days to 1, click Next.
- On the Configure DHCP Options screen select Yes and click Next.
- On the Router (Default Gateway) screen do not enter an IP address, click Next.
- On the Domain Name and DNS Servers screen enter the IP address of the server and click Add, then click Next.
- On the WINS Servers screen do not enter any IP address, click Next.
- On the Activate Scope screen select Yes and then click Next.
- On the Completing the New Scope Wizard screen click Finish.
- Reboot the server.
MDT
Installation
- Install ADK
10. Go to Windows ADK website and download the latest Windows ADK for Windows 10. 11. Run exe 12. The Windows Assessment and Deployment Kit – Windows 10 window opens. 13. On the Specify Location screen
1. select the Download the Windows Assessment and Deployment Kit – Windows 10 for installation on a separate computer radio button. 2. Browse to the desired download path to save the files.
- Click Next
- On the Windows Kits Privacy screen select No and then click Next.
- On the License Agreement screen click Accept.
- On the Download is complete screen click Close.
- Copy the files to the server if needed.
- Open the folder with the downloaded files.
- Run adksetup.exe
- The Windows Assessment and Deployment Kit – Windows 10 window opens.
- On the Specify Location screen browse to the desired install path and click Next.
- On the Windows Kits Privacy screen select No and then click Next.
- On the License Agreement screen click Accept.
- On the Select the features you want to install screen select the following items and then click Install
- Deployment Tools
- Windows Preinstallation Environment (Windows PE)
- User State Migration Tool (USMT)
- Wait for the installation to complete.
- Uncheck Learn more about the Windows Assessment and Deployment Kit and then click Close.
- Install MDT
- Go to the Microsoft Deployment Toolkit site and download the latest version of MDT.
- Run the MDT setup.
- On the Welcome screen click Next.
- On the End-User License Agreement screen select I accept the terms in the License Agreement and click Next.
- On the Custom Setup screen select the desired installation location and click Next
- On the Customer Experience Improvement Program screen select I don’t want to join the program at this time and click Next.
- On the Ready to install screen click Install.
- When the installation completes click Finish.
Configuration
Adding Deployment Share
- Click Start -> Microsoft Deployment Toolkit -> Deployment Workbench.
- The Deployment Workbench window opens.
- An existing deployment share can be added or a new one can be created.
- Opening an existing deployment share.
- Right-click Deployment Shares and click Open Deployment Share.
- The Open Deployment Share Wizard appears.
- Opening an existing deployment share.
- On the Path screen browse to the deployment share and click Next.
- On the Summary screen click Next.
- When the operation completes click Finish on the Confirmation screen.
- Creating a new deployment share.
- Right-click Deployment Shares and click New Deployment Share.
- The New Deployment Share Wizard appears.
- On the Path screen browse to the desired location for the new deployment share and then click Next.
- On the Share screen type in the desired name of the share or leave the default and then click Next.
- On the Descriptive Name screen type in a description for the share and then click Next.
- On the Options screen select the options you would like to have the deployment perform and then click Next. Note: these can be changed later.
- On the Summary screen review the selections and then click Next.
- Once complete click Finish on the Confirmation screen.
Update username and password for Deployment Share
A username and password are required for the boot image from MDT to access the MDT share.
- Create Deployment service account
- Click Start -> Windows Administrative Tools -> Computer Management.
- Expand System Tools -> Local Users and Groups.
- Right-click Users and click New User…
- On the New User window enter the information for the MDT Deployment service account and then click Create.
- Close the Computer Management window
- Set Share and Security Permissions
- Open File Explorer.
- Navigate to the deployment share.
- Right-click on the deployment share and click Properties.
- Set the following permissions for the Deployment service account on the Deployment share.
- Share permissions – Read
- Security permissions – Read & Execute, List Folder Contents, Read
- Add Deployment service account to the Bootstrap.ini file.
- Open the MDT Deployment Workbench.
- Right-click the deployment share and then click Properties.
- Click the Rules tab and then click Edit ini in the lower right of the Properties windows.
- The Bootstrap.ini file will open in Notepad.
- Under the [Default] section of the Bootstrap.ini file enter the following information.
- UserID=Deployment service account name
- UserDomain=Name of the deployment server
- UserPassword=Password for the deployment service account
- Save and close the Bootstrap.ini file.
- Close the deployment share Properties window.
- Right-click on the Deployment share and click Update Deployment Share.
- On Options screen of the Update Deployment Share Wizard select Completely regenerate the boot images and then click Next.
- Click Next on the Summary
- Click Finish on the Confirmation
Windows Deployment Services (WDS)
WDS facilitates the Preboot Execution Environment (PXE) portion of the network deployment of the Windows 10 image to the laptops. PXE facilitates the network booting of a computer to be able to pull down a bootable image file.
Installation
- Open Server Manager
- Click Manage
- Click Add Roles and Features
- The Add Roles and Features Wizard window will appear
- On the Before you begin screen click Next
- On the Select installation type window click Role-based or feature-based installation and click Next.
- On the Server destination server window select
- Select a server from the server pool
- Under Server Pool select the server name
- Click Next
- On the Select server roles screen select Windows Deployment Services
- On the pop-up window click Add Features
- Click Next
- On the Select features screen click Next
- On the WDS screen click Next
- On the Select role services screen select both Deployment Server and Transport Server, click Next
- On the Confirm installation selections screen click Restart the detitanation server automatically if required. Click Yes to the pop-up then click Install
- Wait for the installation to complete.
- Once the installation is complete click the Close
Configuration
- Click Start -> Windows Administrative Tools -> Windows Deployment Services.
- The Windows Deployment Services window opens.
- In the left pane expand Servers
- Right-click on the server and click Configure Server
- The Windows Deployment Service Configuration Wizard
- On the Before You Begin screen click Next
- On the Install Options screen select Standalone server, click Next
- On the Remote Installation Folder Location screen select the location path and then click Next.
- On the Proxy DHCP Server screen select both options and then click Next
- On the PXE Server Initial Settings screen select Respond to all client computers (known and unknown) , click Next.
- On the Task Progress screen, click Finish when it completes.
- If the WDS server did not start, right-click the server and select All Tasks -> Start.
- Right-click on the server and click Properties.
- On the server properties page go to the Boot tab.
- Under the PXE Boot Policy section select Continue the PXE boot unless the user presses the ESC key for both Known and Unknown clients.
- Click OK
- Under the server right-click Boot Images and click Add Boot Image…
- The Add Image Wizard window appears.
- On the Image File screen browse to the file location of the MDT boot image (it is in the boot folder in the deployment share) and then click Next.
- On the Image Metadata screen type in the name and description for the image and then click Next.
- On the Summary screen review the information and then click Next.
- On the Task Progress screen click Finish when complete.
Note: If you receive and Access Denied error make sure that the share permissions on the RemoteInstall have the user account that is being used listed and have at least Read and Change permissions.
Finished
The server is now configured to answer PXE requests and deploy an image that is configured in MDT. An imaged must be developed in MDT before it can be deployed.
Comments
- Anonymous
November 15, 2017
thank you for this post! :) - Anonymous
May 21, 2019
Be aware that, starting with Windows 10, version 1809, Windows Preinstallation Environment (PE) is released separately from the Assessment and Deployment Kit (ADK).