Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET

Moving from one OU in AD to another with a VBS .wsf file designed for MDT

Home Forums Scripting Windows Script Host Moving from one OU in AD to another with a VBS .wsf file designed for MDT

Viewing 1 post (of 1 total)
  • Author
    Posts

  • tblackwell
    Member
    #165532

    Hey guys, new here trying to learn what I can.

    I use MDT to image computers and add them to a domain and specific OU. However the issue I am facing is all of the OUs in my domain have a legal disclaimer page that is blocking the task sequence from continuing.

    What I did was built an OU specifically for deployments that disregards that policy. However what my goal was at the end of the task sequence I add it to an AD group using a script file I found online that works flawlessly. I’ve attempted to modify it to do the same thing except change the OU rather than adding it to an ADGroup, but my VBS knowledge is having trouble reading the code to make the modifications, I just don’t know all the variable meanings yet.

    This is the original script I’m looking at that uses the customsettings.ini file to add it to the AD group. I’ve added the variables to the .ini file that will be used with the newly built script. I just know there is something basic I’m missing here.

    Here is the .ini file settings in MDT I’m using currently:

    [Settings]
    Priority=Default
    Properties=MyCustomProperty, ADGroup, MoveOU

    [Default]
    _SMSTSOrgName=Running %TaskSequenceID% on %OSDComputername%

    SkipBDDWelcome=YES
    UserID=****
    UserPassword=****
    UserDomain=****
    SkipAdminPassword=YES
    OSInstall=Y
    SkipCapture=NO
    AdminPassword=****
    SkipAdminPassword=YES
    SkipProductKey=YES
    SkipComputerBackup=YES
    SkipBitLocker=YES
    SkipTimeZone=YES
    SkipLocaleSelection=YES
    TimeZoneName=Central Standard Time
    SkipUserData=YES

    JoinDomain=****
    DomainAdmin=****
    DomainAdminDomain=****
    DomainAdminPassword=****

    MachineObjectOU=OU=****,DC=****,DC=com

    ;AD Group variable for New Workstations AD group
    ADGroup = LDAP://CN=****,OU=****,OU=****,OU=****,DC=****,DC=****

    ;Move OU variable for Workstations OU move
    MoveOU = LDAP://OU=****,DC=****,DC=****

    SkipSummary=YES
    SkipFinalSummary=YES
    FinishAction=REBOOT

    This is the script I use for the ADGroup one, I was hoping I could do something similar for the MoveOU one, so I could call it at the end of my task sequence, followed by a gpupdate and then the reboot to log out the local admin account.




    Is this possible? Please help or advise.

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

Live on Tuesday, September 28th, at 9:30 AM ET!

GET-IT: EndPoint Management 1-Day Virtual Conference

The management of endpoints is complicated and the risks associated with having unsecured devices roaming outside the firewall are quickly becoming a targeted vector for malicious users. In this Petri one-day virtual conference, we will be diving deep into how you can improve the way you manage your endpoints and learn from industry experts and MVPs about best practices, available tools to streamline your operations, and what's coming soon with Windows 11.

RSVP Now!

Sponsored By

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: