Join Log in
Score:0
avatar Server

Within MDT can we specify `UserID` in the `Bootstrap.ini` based on MAC address?

ve flag
Tim

We have an MDT server provisioned in our environment that used for two processes.

  1. The deployment of PCs. i.e. Help Desk personnel provision new machines using the images in MDT/WDS.
  2. A nightly hands-off process related to MDT.

Within the Bootstrap.ini file we have the following settings:

[Default]
SkipBDDWelcome=YES
DeployRoot=\\192.168.1.2\DeploymentShare$
UserID=example
UserPassword=hello
UserDomain=me.local

This works great. Meaning, when someone loads LiteTouch they are not asked to authentication. They are instead just taken right into selecting the Task Sequence.

That said, what I would really like to do is set the UserID, UserPassword and UserDomain based on the MAC address. Basically, something like what's below:

[Default]
SkipBDDWelcome=YES
DeployRoot=\\192.168.1.2\DeploymentShare$

[7A-81-CC-E9-A4-70]
UserID=example
UserPassword=hello
UserDomain=me.local

The idea being that, everyone should need to authenticate except for one specific MAC address. If the computer being imaged has the MAC address specified above, then use the UserID (etc) values specified above.

I tried this a couple of times, and LiteTouch appears to ignore the credentials unless they are under [Default]. I can't find any documentation to know whether that's buy design, or if there is something I'm doing wrong.

Anyone have any ideas?

124
0 + 0
mdt
de flag
Zoran Jankov
First question, what is the point of doing that? So I can help you to get to the end goal.
0
Reply
ve flag
Tim
@ZoranJankov, we're using MDT for two processes. One is a zero-touch process that runs each night. That process is a tied to a specific task sequence that automatically launches when for a specific MAC address, and requires that MDT launch, select and run the task sequence without LiteTouch prompting for a username/password. As for the other usecase, it is a help desk technician provisioning PCs.
0
Reply
ve flag
Tim
I would like a) the zero-touch process to continue to function as it currently does, i.e. auto-authenticate using the credentials based on the computers MAC address. And, b) for LiteTouch to prompt any other computer/user to authenticate when trying to use MDT/LiteTouch.
0
Reply
ve flag
Tim
Checking in to see if anyone else had any comments.
0
Reply
de flag
Zoran Jankov
I don't think that is possible with MDT. You would need MS Endpoint Configuration Manager SCCM for that.
0
Reply
ve flag
Tim
Hmm... I'm going to admit that I wish I better understood your answer, @ZoranJankov. I don't know of a feature in Endpoint Configuration Manager that would allow this functionality over MDT on its own.
0
Reply
Score:0
avatar Server
ru flag
McKenzie

Sorry to revive an old thread.

Have you tried to change Priority under Settings to include "Selection by MACAddress"?

[Settings]
Priority = MACAddress, Default

[Default]
SkipBDDWelcome=YES
DeployRoot=\\192.168.1.2\DeploymentShare$

[7A:81:CC:E9:A4:70]
UserID=example
UserPassword=hello
UserDomain=me.local

MAC addresses should be separated by colons ':'

0 + 0
ve flag
Tim
I finally got around to testing this, and it worked flawlessly. Thank you for the suggestion.
0
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.