Frequently Asked Questions

« Previous
Which VLANs are at the campus BMC-router?
Next »
What is my IP-address and MAC-address?

windows ubuntu macos xibo network zenworks android storage

4. How does the reinstallation of Windows computers work at BMC-IT?

See also:

These are instructions for installing Windows 10 x64 Enterprise via MDT 2013.

  1. Prepare installation
    1. Create USB flash drive
    2. Configuration for network boot
    3. Configuration of router filter
    4. Permissions for autojoin domain
    5. Hardware support
  2. Configure BIOS
  3. Starting install via USB flash drive
  4. Starting install via network
  5. Clearing partitions
  6. Continue with installing
    1. Select task sequence
    2. Fill in computer name and join domain
    3. Select applications
    4. Wait while installing
    5. Administrator password

Prepare installation

Create USB flash drive

  1. Get access to the installation directory through User-AD group bmc-autoadmin-group. Mail a mail to BMC-IT ( with your username and what you want.
  2. Get one or several 8 GB USB flash drives. Login on a Windows 10 computer with USB-ports as administrator.
  3. Insert the USB flash drives (max 4 at the same time) in Windows 10 computer.
  4. Open a windows explorer window and go to \\\MyGroups$\Bronze\BMCI_MDT
  5. Right-click on the file MDT-stick - FORMAT.lnk and select "Run as administrator".
    This will format and erase all USB flash drives inserted in computer!
  6. Wait a long time. The faster the USB flash drives the better.
  7. Done!

Update USB flash drive

  1. If you already have done the above steps on a USB flash drive, you can choose to only update the USB flash drive.
  2. Open a windows explorer window and go to \\\MyGroups$\Bronze\BMCI_MDT
  3. Right-click on the file MDT-stick - SYNC.lnk and select "Run as administrator".
    This will not format, just update the sticks with changed files.

Installation of Dell Latitude 7390

  1. Install the USB-stick prepared according to the instructions above.
  2. Start the computer, press F12 to enter BIOS.

  3. Remove USB from the "Boot Sequence", save and exit BIOS setup.

  4. Boot the computer from USB      (start the computer, press F12).

  5. Fill in computer name.
    The new computer name standard is first three letters for institution, then a dash and the computer serial number.
    The serial number is automatically read from the computer BIOS.
    If you are using a Virtual Machine, then name the computer TLA - VM USERNAME.
    Example: A computer at BMC used by a user with AKKA-name jny25782  would be named BMC-VMJNY25782.

  6. Create a physical Dymo-label and put it on the computer.

  7. Select applications to install during deploy.
  8. Wait up to two hours, but normally 20-30 minutes while the computer is running MDT for installing OS and applications.

  9. Done! Login using your AKKA-id and start "ZENworks Application Window" to finish installing applications.

    For computers in USER-AD at BMC the local administrator password is set by a GPO to a unique hash for each computer. Any locally set password will be overwritten.

    Without the GPO SetLocalPassAsMD5 the password will be set to bytgenast which means that you are responsible to CHANGE PASSWORD when the installation is done.

    Currently the algorithm looks like this: The serial number is upper case, cut to 11 characters, and padded by zeroes until 12 characters length, and then a secret password is added. The following works at the command line at macOS or Linux to create the password.

Configuration for Network boot

For Windows DHCP it looks like this:

For ISC dhcpd it looks like this: from dhcpd.conf (this is using the central server)

 filename "bmc/pxelinux.0";
 next-server "";
/tftpboot/pxelinux.cfg/default (already done)
DISPLAY msgs/boot.msg

      MENU LABEL ^Local Boot (default)

LABEL mdtmt
  MENU LABEL Windows MDT LiteTouchPE x64
  KERNEL memdisk
  APPEND iso initrd=LiteTouchPE_x64.iso raw

/tftpboot/msgs/boot.msg (already done)
Displaying t from

 l        Local Boot (default)
 mdtmt    Windows 10 Enterprise x64

Pxelinux is coming from It is included in most Linux-distributions.

The LiteTouchPE_x86.iso is located at \\\BMCIT-Common\MDT\Boot\LiteTouchPE_x64.iso

Configuration of router filter

TFTP is using UDP. The request to the TFTP-server is sent on port 69/udp from any port. The TFTP-server at ( is using UDP source ports 6900-6999 for responding.

Open up UDP, both directions, from host to your clients. Usually this is all of your subnets. Send a request for this to

Permissions for autojoin domain

The account USER\bmc-autoadmin-mdt must at least have permission to Create Computer objects in the correct OU to be able to join automatically.

Also, make sure the account are allowed to logon interactively on the computer, otherwise the AD description can't be updated during MDT deploy.

To make the AD description update work, give the account security right "Write Description", or if this option is not available use "Write all properties".

If the security change doesn't work you can try to delegate the permission instead, but it shouldn't be neccesary.

Hardware support

MDT 2013 based on Windows 10 have these requirements:

Microsoft has for Windows 8.1 dropped support for CPUs without the PrefetchW-feature. This includes the Pentium D 8xx CPUs hich are used in for example many Dell Optiplex GX620 desktops. So even if they have 4 GB RAM they cannot run the installation.

Some other Dell Optiplex with the slightly faster Intel Pentium D 9xx are working fine.

Check model with wmic csproduct get vendor, version

Configure BIOS

  1. Make sure you have the latest BIOS for the computer.
  2. Press F12 or F10 or whatever to enter BIOS. It depends on the computer model.

  3. To use UEFI-mode and install from USB flash drive, select: (BEWARE: This differs from computer to computer! Only an example below!)
    • Secure boot: OFF
    • Legacy boot: OFF
    • SATA mode: AHCI (not RAID)
    • UEFI boot order: Deselect USB flash drive

  4. To use Legacy-mode and install from network, select:
    • Legacy option ROMs: ENABLED
    • Secure boot: OFF

Starting install via USB flash drive

  1. Press F12 or F10 or whatever it is to be able to select boot source. It depends on the computer model.
  2. Choose to boot via USB. Some older computers might be limited to boot from an USB2-port. USB3 might not work on older computers.
  3. Continue with installing.

Starting install via network

  1. Press F12 when starting computer to boot via Network. If the Network adapter do not show PXE-booting may have to be enabled in BIOS.
  2. Choose to start MDT by typing M D T M T and pressing ENTER

  3. This will boot the netinstallation ISO over TFTP.
    If it do not work, boot via USB flash drive instead.
  4. Continue with installing (next section below).

Clearing partitions

If the installation stops because of a previous installation attempt or if something else is weird with the partition table, previously created partitions may be cleared manually.
  1. Press F8 during installation to start a command prompt
  2. diskpart
  3. sel dis 0
  4. cle
  5. exit
Diskpart can also be used for unmounting a drive:
  1. Press F8 during installation to start a command prompt
  2. diskpart
  3. list volume
  4. sel dis 0
  5. remove all dismount
  6. exit

Continue with installing

  1. For computers in USER-AD at BMC the local administrator password is set by a GPO to a unique hash for each computer. Any locally set password will be overwritten.


    This entry mdt was last modified 2020-06-26


    This documentation is covered by GNU Free Documentation License. 13 ms