Using MDT 2010 in a Group Policy environment

When you use MDT 2010 to deploy Windows 7 in a production environment where Group Policy is used, strange things can happen.  For example, if your environment uses Group Policy to enforce User Account Control (UAC) on client computers, then when you deploy a new computer using MDT to your environment it may happen that the Lite Touch wizard will fail to start after the autologon that occurs at the end of the deployment process.  To resolve this issue, you could configure your MDT task sequence to deploy the computer to a staging OU where such policies are not being applied. Then you could add a new task to the end of your task sequence that runs a script at the completion of the deployment process to move the computer accounts from the staging OU to the appropriate production OU so the policy can be applied.

Mitch Tulloch is a seven-time recipient of the Microsoft Most Valuable Professional (MVP) award and widely recognized expert on Windows administration, deployment and virtualization. For more tips by Mitch you can follow him on Twitter or friend him on Facebook.


About The Author

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top