September 25, 2018
HomeConfiguration ManagerHow to show OOBE for AzureAD Join after OSD with SCCM

How to show OOBE for AzureAD Join after OSD with SCCM

By  Configuration Manager, Windows 10  15 Comments

I am writing this post because I am lazy and already have Configuration Manager in my lab. But it is useful in other scenarios as well to get the latest version of Windows 10 on a computer before testing AzureAD Join/Autopilot for example.
When I am testing more and more scenarios with AzureAD Join and Autopilot I ended up doing this little workaround to be able to deploy Windows 10 using Configuration Manager, uninstall the SCCM client and then reboot the machine and come up in OOBE.

Fellow MVP Per Larsen wrote a blog post on how to do it with MDT a while back which is great, if you use MDT have a look at it https://osddeployment.dk/2016/08/26/how-to-show-oobe-for-azuread-join-after-mdt-deployment/

I use a little Powershell script that uninstalls the SCCM client and then run Sysprep on the machine which I trigger using the SMSTSPostAction command.

The PowerShell script.

Start-Process -FilePath "C:\Windows\ccmsetup\ccmsetup.exe" -ArgumentList "/Uninstall" -wait
Start-Process -FilePath "C:\windows\system32\sysprep\sysprep.exe" -ArgumentList "/oobe /reboot"

I created a package of the script and added a small file called copy.cmd file to copy the PowerShell script to C:\Windows\temp so it can be executed from there.

I run the script the last thing I do and then I let the SMSTSPostAction execute the script.

The end result is as expected a Windows 10 machine in OOBE and can be AzureAD Joined.

It saved me time when testing AzureAD Join and Autopilot in my lab, with different versions of Windows 10. I hope it will save you time as well.

Tags:

Related Posts

About Author

Jörgen Nilsson

15 Comments
  1. Jonathan

    Hello I was wondering what the contents of copy.cmd is? and is there a way to just stop at SMSTSPostAction and delete the tasks at the bottom of that?

    Thanks!

    Reply
    • Jörgen Nilsson

      Hi,
      It is simply
      copy /y “%~dp0prepareOOBe.ps1” “C:\Windows\Temp”
      Just to copy the Powershell script.
      Regards,
      Jörgen

      Reply
  2. Sander Noordijk

    Thanks, worked like a charm! It does however leave the ccmsetup.exe and log file, but Autopilot didn’t recognize the device as SCCM maneged anymore so everything worked out.

    Reply
  3. Bob Wilkerson

    I confused about the task order. The copy.cmd is at the bottom and the task to run the PowerShell script is in the top series of tasks. Is this the correct order or should the PowerShell script be run after it is copied to the device.

    Reply
    • Andrew Manning

      I’ve confused on this as well.
      Are they the right way round?

      Reply
      • Evan Burt

        This is correct. The call to the script itself is listed as a task sequence variable; SMSTSPostAction. This runs at the conclusion of the task sequence. In this case it’s the command to call the script via PowerShell. At the end of the task sequence (prior to SMSTSPostAction executing) the copy.cmd script runs and makes sure the PowerShell script is present.

        Reply
  4. Bob Wilkerson

    Do you have any information on the whole task sequence process? I would like to see the settings for each task in the whole sequence to make sure I am setting this up right? I have been struggling with using SCCM to deploy the image to my devices and get them joined to Intune and would love to see the whole process step by step.

    I have made some Autopilot configuration JSON files that I would like to deploy to my devices to get them to auto-join at the OOBE screen and make so I do not have to use flash drives.

    Reply
  5. Bob Wilkerson

    I think I am getting close as the device gets to the OOBE Screen and when I put in the configuration flash drive it joins up to Intune/AzureAD fine but under managed by it says “MDM/ConfigMgr Agent” and when I try to sign in it sits on Account Setup Identifying forever.

    Reply
  6. Yusuf Pietersen

    Hi,
    While in OOBE, I do not get the Shift F10 funtionality to work. Have you come across this?

    Reply
  7. JR

    Thanks for the info, works great! I do have a strange side effect when using this with AutoPilot.

    For some reason Intune will not deploy Win32 Apps to computers I have setup via AutoPilot after re-imaging this way. Intune reports them as “Waiting for Install Status”, and they never install.

    If I setup the system with a clean install of Windows from a USB key, AutoPilot + Install of Win32 Apps works flawlessly.

    Strange issue, just thought I would throw it out there in hopes that someone has dealt with this before.

    Reply
    • Jörgen Nilsson

      What Configuration Manager version are you using?
      Regards,
      Jörgen

      Reply
  8. Håkan

    Is there any reason that you can think of, that this wouldn’t work when using White Glove?

    Reply
    • Jörgen Nilsson

      No, maybe only if there are some leftovers from the cmclient.
      Regards,
      Jörgen

      Reply
  9. Chris

    Hi
    Im seeing a strange error using this method which results in a failed AutoPilot Enrollment with the error code 0x800705b4.

    I get this on a Hyper-V User Driven Enrollment the same on a physical device. I understand this is meant to be something with the TPM and despite disabling Bitlocker in the SCCM TS before deploying the new OS for AutoPilot it fails every time.

    Do you have any idea why this could be happening.

    Thanks

    Reply

Add a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.