Jump to content

Audit mode

jbm
 Share

Recommended Posts

jbm

jbm

Posted
Posted (edited)

Using Autounattend.xml I boot to audit mode using the administrator account.

I install some apps and make other changes. The computer reboots after

completing one of the run syncronous commands. When I reboots it tries to logon

to the account named jim instead of the adminstrator account. If I enter

administrator and password it boots up and continues on.

Why doesn't it reboot into the administrator account?

The jim account is in oobeaudit.xml which I dont use until I run sysprep.

Found my problem, These xml files are good. The problem was I as importing a reg

file at the wrong time.

autounattend.xml

<?xml version="1.0" encoding="utf-8"?>
<unattend xmlns="urn:schemas-microsoft-com:unattend">
    <settings pass="windowsPE">
        <component name="Microsoft-Windows-International-Core-WinPE" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <SetupUILanguage>
                <UILanguage>en-US</UILanguage>
            </SetupUILanguage>
            <InputLocale>0409:00000409</InputLocale>
            <SystemLocale>en-US</SystemLocale>
            <UILanguage>en-US</UILanguage>
            <UserLocale>en-US</UserLocale>
        </component>
        <component name="Microsoft-Windows-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <ComplianceCheck>
                <DisplayReport>Never</DisplayReport>
            </ComplianceCheck>
            <Diagnostics>
                <OptIn>false</OptIn>
            </Diagnostics>
            <DiskConfiguration>
                <WillShowUI>Always</WillShowUI>
            </DiskConfiguration>
            <Display>
                <ColorDepth>32</ColorDepth>
                <HorizontalResolution>1200</HorizontalResolution>
                <VerticalResolution>800</VerticalResolution>
            </Display>
            <DynamicUpdate>
                <Enable>true</Enable>
                <WillShowUI>OnError</WillShowUI>
            </DynamicUpdate>
            <ImageInstall>
                <OSImage>
                    <InstallFrom>
                        <MetaData wcm:action="add">
                            <Key>/IMAGE/NAME</Key>
                            <Value>Windows 7 ULTIMATE</Value>
                        </MetaData>
                    </InstallFrom>
                </OSImage>
            </ImageInstall>
            <UserData>
                <AcceptEula>true</AcceptEula>
                <FullName>jim</FullName>
                <Organization>home</Organization>
                <ProductKey>
                    <Key>removed</Key>
                    <WillShowUI>OnError</WillShowUI>
                </ProductKey>
            </UserData>
        </component>
    </settings>
    <settings pass="offlineServicing">
        <component name="Microsoft-Windows-LUA-Settings" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <EnableLUA>false</EnableLUA>
        </component>
    </settings>
    <settings pass="auditSystem">
        <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <AutoLogon>
                <Enabled>true</Enabled>
                <LogonCount>5</LogonCount>
                <Username>administrator</Username>
                <Password>
                    <Value>YwAzADUAYQBiAGwAYgBQAGEAcwBzAHcAbwByAGQA</Value>
                    <PlainText>false</PlainText>
                </Password>
            </AutoLogon>
            <Display>
	   	<DPI>96</DPI>
                <ColorDepth>32</ColorDepth>
                <HorizontalResolution>1200</HorizontalResolution>
                <VerticalResolution>800</VerticalResolution>
            </Display>
            <UserAccounts>
                <AdministratorPassword>
                    <Value>YwAzADUAYQBiAGwAYgBBAGQAbQBpAG4AaQBzAHQAcgBhAHQAbwByAFAAYQBzAHMAdwBvAHIAZAA=</Value>
                    <PlainText>false</PlainText>
                </AdministratorPassword>
            </UserAccounts>
        </component>
    </settings>
    <settings pass="auditUser">
        <component name="Microsoft-Windows-Deployment" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <RunSynchronous>
                <RunSynchronousCommand wcm:action="add">
                    <Order>400</Order>
                    <Path>cmd /C start /wait %systemdrive%\Install\AuditUser.cmd</Path>
                </RunSynchronousCommand>
                <RunSynchronousCommand wcm:action="add">
                    <Order>401</Order>
                    <Path>cmd /C start /wait %systemdrive%\Install\installapps.cmd</Path>
                </RunSynchronousCommand>
                <RunSynchronousCommand wcm:action="add">
                    <Order>402</Order>
                    <Path>cmd /C start /wait %systemdrive%\Install\clean.cmd</Path>
                    <WillReboot>Always</WillReboot>
                </RunSynchronousCommand>
                <RunSynchronousCommand wcm:action="add">
                    <Order>403</Order>
                    <Path>cmd /C start /wait %systemdrive%\Install\sysprep.cmd</Path>
                </RunSynchronousCommand>
            </RunSynchronous>
        </component>
    </settings>
    <settings pass="oobeSystem">
        <component name="Microsoft-Windows-Deployment" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <Reseal>
                <ForceShutdownNow>false</ForceShutdownNow>
                <Mode>Audit</Mode>
            </Reseal>
        </component>
    </settings>
    <cpi:offlineImage cpi:source="wim:c:/se7en_ua/uadvd/sources/install.wim#Windows 7 ULTIMATE" xmlns:cpi="urn:schemas-microsoft-com:cpi" />
</unattend>
<!-- Another Unattended Se7en_UA install by MaxXPsoft  -->

oobeaudit.xml

<?xml version="1.0" encoding="utf-8"?>
<unattend xmlns="urn:schemas-microsoft-com:unattend">
    <settings pass="generalize">
        <component name="Microsoft-Windows-PnpSysprep" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <PersistAllDeviceInstalls>true</PersistAllDeviceInstalls>
        </component>
    </settings>
    <settings pass="specialize">
        <component name="Microsoft-Windows-IE-InternetExplorer" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <Home_Page>http://www.msfn.org</Home_Page>
            <CompanyName>Home</CompanyName>
            <FavoritesOnTop>true</FavoritesOnTop>
            <FilterLevel>Medium</FilterLevel>
            <Help_Page>http://www.msfn.org</Help_Page>
            <PlaySound>false</PlaySound>
            <ShowInformationBar>false</ShowInformationBar>
            <UserAgent>UAtest</UserAgent>
            <Window_Title_CN>That Guy</Window_Title_CN>
            <SearchScopes>
                <Scope wcm:action="add">
                    <ScopeDefault>true</ScopeDefault>
                    <ScopeDisplayName>Google</ScopeDisplayName>
                    <ScopeKey>Search1</ScopeKey>
                    <ScopeUrl>http://www.google.com/advanced_search?hl=en</ScopeUrl>
                </Scope>
            </SearchScopes>
            <BlockPopups>yes</BlockPopups>
            <DisableFirstRunWizard>true</DisableFirstRunWizard>
            <ShowCompatibilityViewButton>false</ShowCompatibilityViewButton>
            <SuggestedSitesEnabled>false</SuggestedSitesEnabled>
        </component>
        <component name="Microsoft-Windows-RemoteAssistance-Exe" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <fAllowFullControl>false</fAllowFullControl>
            <fAllowToGetHelp>false</fAllowToGetHelp>
        </component>
        <component name="Microsoft-Windows-Security-SPP-UX" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <SkipAutoActivation>true</SkipAutoActivation>
        </component>
        <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <ComputerName>front</ComputerName>
            <ProductKey>removed</ProductKey>
            <RegisteredOrganization>Microsoft</RegisteredOrganization>
            <RegisteredOwner>AutoBVT</RegisteredOwner>
            <Display>
                <ColorDepth>32</ColorDepth>
                <HorizontalResolution>1200</HorizontalResolution>
                <VerticalResolution>800</VerticalResolution>
                <DPI>96</DPI>
            </Display>
            <CopyProfile>true</CopyProfile>
            <ShowWindowsLive>false</ShowWindowsLive>
            <TimeZone>Mountain Standard Time</TimeZone>
        </component>
    </settings>
    <settings pass="oobeSystem">
        <component name="Microsoft-Windows-International-Core" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <SystemLocale>en-US</SystemLocale>
            <UILanguage>en-US</UILanguage>
            <UserLocale>en-US</UserLocale>
            <InputLocale>en-US</InputLocale>
        </component>
        <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
            <Display>
                <DPI>96</DPI>
                <ColorDepth>32</ColorDepth>
                <HorizontalResolution>1200</HorizontalResolution>
                <VerticalResolution>800</VerticalResolution>
            </Display>
            <RegisteredOrganization>Home</RegisteredOrganization>
            <RegisteredOwner>jim</RegisteredOwner>
            <TimeZone>Mountain Standard Time</TimeZone>
            <OEMInformation>
                <Logo>C:\Windows\System32\oemlogo.bmp</Logo>
                <Manufacturer>Jim</Manufacturer>
                <Model>My Computer</Model>
                <SupportHours>Anytime, visit the Forums</SupportHours>
                <SupportPhone>none</SupportPhone>
                <SupportURL>http://www.msfn.org</SupportURL>
            </OEMInformation>
            <OOBE>
                <HideEULAPage>true</HideEULAPage>
                <NetworkLocation>Home</NetworkLocation>
                <ProtectYourPC>1</ProtectYourPC>
                <HideWirelessSetupInOOBE>true</HideWirelessSetupInOOBE>
            </OOBE>
            <VisualEffects>
                <FontSmoothing>ClearType</FontSmoothing>
            </VisualEffects>
            <ShowWindowsLive>false</ShowWindowsLive>
            <Themes>
                <DesktopBackground>%SystemDrive%\Windows\Web\Wallpaper\ZA-wp2.jpg</DesktopBackground>
                <DefaultThemesOff>false</DefaultThemesOff>
                <ThemeName>Windows 7</ThemeName>
            </Themes>
            <AutoLogon>
                <Password>
                    <Value>YwAzADUAYQBiAGwAYgBQAGEAcwBzAHcAbwByAGQA</Value>
                    <PlainText>false</PlainText>
                </Password>
                <Enabled>true</Enabled>
                <LogonCount>5</LogonCount>
                <Username>jim</Username>
            </AutoLogon>
            <UserAccounts>
                <AdministratorPassword>
                    <Value>YwAzADUAYQBiAGwAYgBBAGQAbQBpAG4AaQBzAHQAcgBhAHQAbwByAFAAYQBzAHMAdwBvAHIAZAA=</Value>
                    <PlainText>false</PlainText>
                </AdministratorPassword>
                <LocalAccounts>
                    <LocalAccount wcm:action="add">
                        <Password>
                            <Value>YwAzADUAYQBiAGwAYgBQAGEAcwBzAHcAbwByAGQA</Value>
                            <PlainText>false</PlainText>
                        </Password>
                        <DisplayName>jim</DisplayName>
                        <Group>Administrators</Group>
                        <Name>jim</Name>
                    </LocalAccount>
                </LocalAccounts>
            </UserAccounts>
        </component>
    </settings>
    <cpi:offlineImage cpi:source="wim:c:/se7en_ua/uadvd/sources/install.wim#Windows 7 ULTIMATE" xmlns:cpi="urn:schemas-microsoft-com:cpi" />
</unattend>
<!-- Another Unattended Se7en_UA install by MaxXPsoft  -->

Edited by jbm
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...