Fear not. Just grab mbr2gpt.exe from the \windows\system32 folder on a windows 10 machine and drop it anywhere you want on the new server, then run:
mbr2gpt /convert /disk:X /allowfullos
and you will be ready to restart and set your bios to UEFI support and finishing booting to your new uefi partition!
We finished. It took forever to get the motion sensor working. We ended up using a Microwave Radar Sensor. Here is this finished product. He loves it!
@jasgot said in What Are You Doing Right Now:
Starting a complete domain migration of 1100+ workstations. New Domain, New File Servers, New Exchange Server. Gonna be pretty busy for the foreseeable future. Oh, and redesigning the whole printing infrastructure.
Done!
About 25 hours of hands-on over four days. Did not physically visit any of the 7 locations.
We are thankful for BackStage and Powershell!
A few minor issues along the way.....
Of the 1100+ workstation migrations:
• We had to re-install MS Office on four of them.
• We had to manually move redirected folders back to the laptop on 6 of 15 that were at remote locations and using redirected folders.
• We had to re-write one script to handle application settings for one mission critical app that exists on every PC. The script provided by the software company was unreliable.
• We missed two users during account creation in the new domain, so we handled that on the fly.
• We misspelled one user's name during account creation in the new domain, so we handled that on the fly.
• We usually use Code Two for mail migration. On this project, we had a hiccup and ended up scripting the mailbox export and import for all 1100+ users. After a successful setup and test of the Code Two software, we ran Windows updates on the new Exchange server and the updates broke Code Two. The killer part was that no matter what we tried, we could not uninstall the two updates that gave of this trouble. So, another PS script to the rescue!
All in all....Piece of cake and smooth as silk!
My boy is building a Magic Mirror from a RP3 and a shadow box; and some other items. He is learning a wee bit about Linux and Python. It's fun! I'll post pics when he is done.
I will say, however, the Magic Mirror has taken a back burner to the new puppies......
@JasGot said in Script to Clean up Windows 10 Start Menu:
Only if you want to play, else I'll do that this weekend. I was just hoping someone would say they have already experimented with it.
I'll report back with my findings.....
I'm reporting back. I spent the day upgrading from Windows 7 Pro to Windows 10 Pro, testing with Win10crAPPRemover.ps1 in a variety of ways. Rinse, Repeat, many times with many different variations of approach.
I can say definitively that the Start Menu items and Tiles come with the first Windows 10 login even if you have an already existing profile. Meaning, I can now reliably achieve my goal of a clean Windows 10 interface with an existing profile.
Here are my reproducible steps to achieve my goal:
Log in as another existing (but not yet logged in under windows 10) account and you will see your DeCrapped GUI.
This means I can do an in-place upgrade from Win7 Pro to Win10 Pro and de appify the existing user accounts as long as I de appify the computer before those already existing accounts log in to the Window 10 Pro install.
I did not test with any version other than Pro. I don't care about Home and Enterprise is de-appified from the OOBE.
If you feel the need to argue about what I have done, please ask for clarification before doing so, I'm sure I have left room in my words for misunderstanding.
This experiment is a success and it allows me to achieve my goal with great reliability.
We are going to be migrating almost 1100 workstations to a new domain in a month and I wanted to be sure all the Windows 10 PCs were on the latest version before we start.
This is what you will see (version may vary) if this is your situation.
We started this process last night, doing about 25 per day. Five per department at a time so they are not all affected at once. (Just a safeguard against potential Windows issues.)
Here is my working command and script to accomplish this.
Your execution may vary slightly. We run this from the BackStage window in ScreenConnect. This allows us to kick it off without interrupting the user and it is already an elevated Powershell Prompt. The PC will restart after hours.
We store the .ps1 script on the Deployment Share and we paste the command into the Powershell window of ScreenConnect Backstage.
This is the Script in the Deployment Share:
# Script Name: FUWindows.ps1
# Description: Trigger Windows 10 Feature Update and allow to restart after hours.
#Grab current Build Number and run the Update if we are behind.
$build = (Get-ItemProperty -Path 'Registry::HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion' CurrentBuild).CurrentBuild
if ($build -lt 19043)
{
# Setup the download location
$dir = "C:\FUWindows"
mkdir $dir
# Setup the Downloader
$webClient = New-Object System.Net.WebClient
$url = "https://go.microsoft.com/fwlink/?LinkID=799445"
$file = "$($dir)\Win10Upgrade.exe"
# Download the latest Feature Update
$webClient.DownloadFile($url,$file)
# Start the Feature Update Installer
Start-Process -FilePath $file -ArgumentList "/quietinstall /skipeula /auto upgrade /copylogs $dir"
}
else
{Write-Warning "Already at Desired Build"
}
This is the command we paste into the Powershell in Backstage(ScreenConnect):
Set-ExecutionPolicy -ExecutionPolicy Unrestricted -Scope Process -Force; \\server\Deployment\FUWindows.ps1
The Feature Update runs quietly and there is no indication it is running unless you look at running processes. But, if you run the script again, you'll get a Pop-Up window telling you it is already running. You'll probably do this the first few times to be sure, but then you'll learn to trust it.
Tell us a little more about yourself, and who your company is.
Your first, post, 8 days after you signed up, resembles a Cold Call we might receive at the office. In order to not dump your question into the round file, we (I, anyway) would need to be a little more comfortable with the person asking the questions..... 
@manxam said in 12 yo is learning a bit about Linux and Python.:
That looks fantastic. Do you have a build log or instructions that you followed?
P.S. Why is that deer looking at me?!
We looked at some examples and then followed our noses. https://magicmirror.builders/
Got an $89 24" LED from Walmart, https://www.walmart.com/ip/onn-24-1920x1080-VGA-HDMI-60hz-14ms-LED-Slim-Design-Monitor/144551706
an 18"x24"x2.5" rear load shadow box from Michael's https://www.michaels.com/black-shadow-box-by-studio-decor/10360333.html
A Raspberyy Pi 2 ( the 3 and 4 have built-in WiFi that play havvoc with the motion sensing.) https://smile.amazon.com/Raspberry-Pi-Model-Desktop-Linux/dp/B00T2U7R7I/ref=sr_1_9?dchild=1&keywords=raspberry+pi+2&qid=1593385167&s=electronics&sr=1-9
and case: https://smile.amazon.com/gp/product/B00MQLB1N6/ref=ppx_yo_dt_b_search_asin_title?ie=UTF8&psc=1
Radar Motion Sensor https://smile.amazon.com/gp/product/B07MTWZDQZ/ref=ppx_yo_dt_b_asin_title_o04_s00?ie=UTF8&psc=1
and a two way mirror: https://smile.amazon.com/gp/product/B01G4MQ966/ref=ppx_yo_dt_b_search_asin_title?ie=UTF8&psc=1
We like BackupAssist.
Backs up to Local, NAS, RSYNC, FTP, RDX, USB Drives, Private Cloud, Public Cloud, iSCSI, Tape, etc....
All with Central Management.
Been using them for 10 years or more. Have it installed on over a hundred servers right now. We also VERY much prefer the way it detects Ransomware over other providers (like Unitrends).
We use it mostly for RDX and iSCSI, but have jobs for every destination available if you look at all the installs.
Any IT professionals in the Detroit Area available for short term projects?
Mostly Windows AD, Windows Server and Windows Workstation stuff. Some Unifi setup and management.
Speak up if this is you
I want to explore the possibility of moving from VPN for RDP connections to Zero Trust.
I have Cloudflare Zero Trust working but I want to add MFA to the mix.
I am not married to Cloudflare, it was just something that I found and setup pretty easily.
@JasGot Thanks everyone. This was very helpful. And that other discussion was too.
After further discussion with them, they are only trying to protect the routing and account number for accounts. The same routing and account number that is printed on their check and sent through us mail.
They agreed, this level of secure transmission is not required.
Thanks.....
We have a customer that is asking about delivering documents to their customers; securely.
Much like a bank would do it. They send you an email with instructions to visit their site, login, and download your file.
Anyone aware of a service that does this?
@WrCombs Not really. Windows 10/11, MS 365, Hosted Exchange, Active Directory.
We have a customer that would like 24/7 helpdesk support. We are not able to provide this. Are there companies how offer helpdesk services as a reseller service?
@JaredBusch We use Liquidweb. We like them.
@Jimmy9008 That's hard. It may be time for some tough love.
You could:
@scottalanmiller said in Is the domain .Local a real problem in a private lan that has no public facing services?:
Nothing in the Windows world uses it. Mac uses it, and some isolated Linux stuff. Really minor in most cases.
That what I had read also. Thanks. They are keeping .local during the transition!