I've been struggling to find a reliable PXE server setup for deploying Windows 11 installations. I initially tried using the FOG Project, but it doesn't support Secure Boot. Today, I attempted to get WDS working, only to find out that Windows 11 deployment via WDS is blocked by Microsoft. What I'm looking for is a PXE server that supports Secure Boot, can be initially set up with internet, and will run on an offline network. Bonus points if it allows for the use of an answer file for automation. Any recommendations?
4 Answers
I've been in a similar situation and found WDS pretty convoluted since capturing images is a hassle now. Instead, I create a Windows 11 USB installer and drop the necessary MSI files onto it, then use a script that installs everything for me. Plus, I incorporate an answer file to set up a local admin account. Once that's done, I just connect the PC to the domain and install antivirus, and it's all set!
WDS is pretty much outdated for newer setups. The best course right now is to go for PXE with WinPE. You can set it up as PXE → WinPE → Install.wim. Tools like iPXE or Serva handle Secure Boot much better nowadays. If you already have your answer file and SMB sharing, just move that setup into WinPE for a smoother imaging process!
Here's a method I've used with FOG that might work for you: Start by enabling Secure Boot on your master machine and installing Windows as you wish. Once done, disable Secure Boot and upload the image to FOG. When you're imaging, just toggle Secure Boot off for PXE/FOG deployment and turn it back on after. It's worked wonders for me, especially in a lab setting!
You might want to check out this Bootimus tool, as it supports Windows Secure Boot. I found their feature set really impressive, so I'm optimistic it'll work out for you. Here's the link: https://github.com/garybowers/bootimus.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures