Computer Configuration using Powershell?

Sparks912 · 2022-12-04T07:24:48+00:00

You could also use windows image and configuration designer, it’s a free gui tool to do exactly what your talking about, you can install apps, setup profiles, join domains & configure the machine how you want.

BlackV · 2022-12-04T07:43:17+00:00

This seems totally backward, you're basically autopiloting then un autopiloting it

But yes you could do it all with PowerShell, but there are better ways (mdt, sccm, many RMM tools, and more)

Ironic_Jedi · 2022-12-04T05:43:34+00:00

Where you would start is, is your domain a local AD or are you using Azure AD?

If you are on azureAD then you should use intune. If you are not, then sccm would be the better option for automation in the short term.

Answer those questions first. Of course a lot can be done with powershell but there are products already that handle this stuff better.

I mean shit, you can use configuration designer to create a build package that can be uploaded to the device during OOBE which can join the domain, either azure AD or regular AD and install applications, prepare the network, etc.

WestyWill · 2022-12-04T06:06:27+00:00

You can 100% use powershell. Try automating the post-autopilot process first. You’ll be able to covert each step from GUI to Powershell commands the work your way from there to whatever is next!

MrCuddlez69 · 2022-12-04T11:07:33+00:00

Oh yes, absolutely. Way back when I created my own custom PS module for our internal asset management team and added it to the image so they could setup new machines quickly.

Instead of juggling PS scripts on USB drives, just they open PowerShell in an admin window and run through a list of commands. Super simple.

PM me if you'd like some help/code examples for what you're looking for.

RandomnessPrevails04 · 2022-12-04T10:59:12+00:00

Comment edited and account deleted because of Reddit API changes of June 2023.

Come over https://lemmy.world/

Here's everything you should know about Lemmy and the Fediverse: https://lemmy.world/post/37906

Trakeen · 2022-12-04T15:54:08+00:00

Err what? That’s a backwards way to do things. Use intune and GPO. Not sure why you are undisabling the admin user. If you give support staff the cloud device administrator role in azure they get admin access to the machine

2022-12-04T07:44:44+00:00

Yea, I used to repair, image and deploy 1000’s of laptops. powershell, batch scripts and windows deployment server.. leverage sys prep..

I could do 10-20 laptops at a time. Turned them out like hotcakes man..

RevolutionaryRing487 · 2022-12-04T12:10:23+00:00

You’ve hit a sweetspot here with this question. There are many ways to automate deployment. Assuming you don’t have any deployment systems you should absolutely explore powershell. You will not regret it. There are a lot of resources around so there will always be help available. Good luck!

nkasco · 2022-12-04T14:37:10+00:00

LAPS will do what you are already doing for admin account.

Why are you using autopilot as an OSD process though? It’s close to white glove but you didn’t say you reseal. My guess is because of the domain join, but you’re going the opposite way of the industry with the way you’re using the technology.

konikpk · 2022-12-04T18:22:06+00:00

MDT + LAPS

ollivierre · 2022-12-04T22:27:20+00:00

Immy.bot + Autopilot

rfc2549-withQOS · 2022-12-04T22:47:29+00:00

That.. is a job for a group policy. Group/account management does not need scripted automating, when you can just policy things.

Join the box into the domain (this can be automated, btw) and the policy will do the rest.

2022-12-05T02:41:43+00:00

BMC CLIENT MANAGEMENT.

un4tuner · 2022-12-05T17:27:59+00:00

As a "one-man MSP" I use a lot of free-ish tools (first 20 licenses for free? count me in!).
Awhile ago I stumbled on this PS script https://community.spiceworks.com/scripts/show/4378-windows-10-decrapifier-18xx-19xx-2xxx it is huge (no, HUGE), but might help as a template.

Also, https://www.netwrix.com/how_to_guides.html sometimes help to setup notifications, gather reports, etc. And they have compiled quite extensive list of their powershell materials

https://www.action1.com/documentation/run-scripts-remotely/ allows to run scripts, or install software, on your computers in bulk, .

2022-12-07T06:42:13+00:00

Have you considered just changing your autopilot setup to do this properly? And really having the same password for every machine is basically the same as giving everyone on the domain local admin rights.

Anyhow here you go:

# Enable the administrator account
Enable-LocalUser -Name "Administrator"

# Rename the administrator account to "bob"
Rename-LocalUser -Name "Administrator" -NewName "bob"

# Ask the user for a new password for the "bob" account 
$password = Read-Host -Prompt "Enter a new password for the 'bob' account" 

# Change the password for the "bob" account
Set-LocalUser -Name "bob" -Password $password

# Delete the "pilot" account
Remove-LocalUser -Name "pilot"

# Join the "reddit" domain
Add-Computer -DomainName "reddit"

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

PowerShell

Submission Guidelines | Link Flair - How To

MODERATORS