Windows Tips & Tricks UPDATE, August 9, 2004, —brought to you by the Windows & .NET Magazine Network and the Windows 2000 FAQ site
Make sure your copy of Windows Tips & Tricks UPDATE isn't mistakenly blocked by antispam software! Be sure to add XPandWin2K-TipsandTricks_UPDATE@list.winnetmag.com to your list of allowed senders and contacts.
This Issue Sponsored By
Free download: Protect your data with Undelete
Windows Scripting Solutions
Sponsor: Free download: Protect your data with Undelete
UNDELETE provides a safety net to protect files from being accidentally deleted. The recycle bin on Windows servers doesn't protect files deleted over the network. Traditionally, if a file was accidentally or maliciously deleted, the only recourse was a time-consuming restore from backup. Now, there's Undelete(R) Server: A data safety-net that captures and protects *all* deleted files, allowing you to recover them instantly. With Undelete installed on both servers and workstations, your users can even recover their own deleted files without calling the Help Desk. With Undelete, you simply never have to worry about accidentally or maliciously deleted files again! Click on the link to try Undelete FREE for 30 days.
- Q. How can I use a Microsoft Windows Preinstallation Environment (WinPE) boot to capture an Automated Deployment Services (ADS) image?
- Q. Where can I find adssupport.dll?
- Q. How can I use a Microsoft Windows Preinstallation Environment (WinPE) boot to restore an Automated Deployment Services (ADS) image?
- Q. Why doesn't my system respond when I execute a command after I run imgdeploy.exe?
- Q. I have an internal firewall between sections of my network. What ports must I open to allow user and computer account authentication?
by John Savill, FAQ Editor, email@example.com
This week, I tell you how to use a Microsoft Windows Preinstallation Environment (WinPE) boot to capture or restore an Automated Deployment Services (ADS) image and where to find adssupport.dll. I also explain why a computer fails to execute commands after you've run imgdeploy.exe and what ports you need to open in your internal firewall to allow user and computer account authentication on a network.
Sponsor: Windows Scripting Solutions
Try a Sample Issue of Windows Scripting Solutions
Windows Scripting Solutions is the monthly newsletter from Windows & .NET Magazine that shows you how to automate time-consuming, administrative tasks by using our simple downloadable code and scripting techniques. Sign up for a sample issue right now, and find out how you can save both time and money. Click here!
Q. How can I use a Microsoft Windows Preinstallation Environment (WinPE) boot to capture an Automated Deployment Services (ADS) image?
A. By default, you can capture images that ADS can use by rebooting the server to be captured, then rebooting it through Preboot Execution Environment (PXE). PXE runs a set of automated steps and captures the content of the local disk, then uses the ADS deployment agent to create an image file. Sometimes you might want to manually create images by booting from an alternative medium, such as a WinPE boot CD-ROM or by using WinPE over a network. To let you manually create images in this way, Microsoft provides the imgdeploy.exe command, which is typically used to capture and restore server images but works for imaging any type of disk partition. To use imgdeploy.exe, you need these three files:
The imgdeploy.exe and imglib.dll files are located by default in the C:\program files\microsoft ads\bin folder. (Adssupport.dll is installed only with the full installation of ADS.) Place these files in the same folder. Then, to capture a partition, run the command
imgdeploy /capture /p <partition to capture> <location for the captured file> "<a comment about the captured image>"
For example, you might type
imgdeploy /capture /p c: m:\images\xppro.img "Windows XP Professional image"
(The command wraps to two lines here because of space constraints.) In this sample command, the /p switch compresses the disk image--which contains the entire content of the C drive--and copies it to an image file called xppro.img in the \images folder on network drive M. As the command executes, you'll see a capture-progress message like the figure at http://www.winnetmag.com/content/content/43552/imgdeploycapture.gif. You can deploy the image file to other servers or use it as a backup copy of the partition.
Q. Where can I find adssupport.dll?
A. Adssupport.dll is installed only with the full installation of Automated Deployment Services (ADS). (The full installation includes all ADS services.) Therefore, to ensure that adssupport.dll is available, you need to install ADS on a server running Windows Server 2003 Enterprise Edition or Windows Server 2003 Datacenter Edition. After you've installed ADS, you'll find the adssupport.dll file in the C:\program files\microsoft ads\nbs\repository\deploymentagent folder.
Q. How can I use a Microsoft Windows Preinstallation Environment (WinPE) boot to restore an Automated Deployment Services (ADS) image?
A. To restore a captured ADS image to a disk, boot through a WinPE medium (i.e., a CD-ROM or a network), then run the following command:
imgdeploy /restore <partition to restore to> <location of the captured file>
For example, the command
imgdeply /restore c: m:\images\xppro.img
restores the xppro.img file to the C drive.
Q. Why doesn't my system respond when I execute a command after I run imgdeploy.exe?
A. This problem typically occurs when adssupport.dll isn't in the same folder as imgdeploy.exe and imglib.dll. To solve the problem, simply copy adssupport.dll to the folder that contains imgdeploy.exe and imglib.dll. You can then execute commands in the usual way.
Q. I have an internal firewall between sections of my network. What ports must I open to allow user and computer account authentication?
A. Basic authentication on a network consists of several steps. First, the client locates a domain controller (DC), which requires DNS connectivity--port 53 on UDP and TCP. Next, the client performs a connectivity test by using a Lightweight Directory Access Protocol (LDAP) Ping--port 389 over UDP. Then, the client uses Kerberos (port 88 via UDP and TCP) and Server Message Block (SMB, port 445 via UDP and TCP) to complete the authentication to the DC. Therefore, you must enable all these ports.
Hands-on Windows 2000/XP/2003 Internals & Advanced Troubleshooting class
Dig into the internals of Windows 2000/XP/2003 with Mark Russinovich and David Solomon, authors of Inside Windows 2000, in their hands-on (bring your own laptop) 5-day Windows internals and advanced troubleshooting class, September 27-October 1 in San Francisco, featuring the Sysinternals tools.
(from Windows & .NET Magazine and its partners)
In September, Windows & .NET Magazine will become Windows IT Pro! Act now to get our special charter issue that shows you how to plug DNS holes and select the best scripting editor, plus learn more about the business side of IT. And discover the top 10 PC trends we think you need to keep an eye on. Get two risk-free new and improved issues and a subscription at 40% off the cover price at
Take the next steps against the "silent killer" and learn how to prepare for directory harvest attacks. Plus, find out how to eliminate spam and viruses by learning spammers' new covert tactics designed to get past conventional spam content filters. Get the latest Email Security Toolkit now!
This eBook will educate Exchange administrators and systems managers about how to best approach the migration and overall management of an Exchange 2003 environment. The book will focus on core issues such as configuration management, accounting, and monitoring performance with an eye toward migration, consolidation, security, and management.
(A complete Web and live events directory brought to you by Windows & .NET Magazine: http://www.winnetmag.com/events )
In this free Web seminar, you'll learn best practices for managing software packaging and pre-deployment preparation. Discover how your organization can benefit from managing the workflow of the pre-deployment process to cut time and costs. Plus, you'll learn about different business scenarios that show ROI improvements from accurate workflow management. Register now!
Comparison Paper: The Argent Guardian Easily Beats Out MOM
Free Download--New - Launch NetOp Remote Control from a USB Drive
Here's how to reach us with your comments and questions:
- About the newsletter — firstname.lastname@example.org
- About technical questions — http://www.winnetmag.com/forums
- About product news — email@example.com
- About your subscription — firstname.lastname@example.org
- About sponsoring UPDATE — email@example.com
Contact Our Sponsors
Executive Software -- http://executive.com
This weekly email newsletter is brought to you by Windows & .NET Magazine, the leading publication for Windows professionals who want to learn more and perform better. Subscribe today.
Receive the latest information about the Windows and .NET topics of your choice. Subscribe to our other FREE email newsletters.