Hi,
My team is going to be creating a base, gold image to be used for Windows Server 2008 server builds. As part of this image, I want to make sure that it has a SEP 12.1 MP1 agent. Based on this, I have a few questions:
1) As I understand it, when you put an agent on the gold image itself, you are to make sure that it gets the latest updates and then perform a scan, then use the clientsidecloneprep tool. Therefore, does the SEPM manager need to be installed prior to doing this so the agent can check-in, receive policy, and then perform a scan, prior to using clientsidecloneprep tool? I am assuming it would, so the agent knows the details of the SEPM?
If not, how does the agent associate with the SEPM, if the SEPM is installed after the agent is put on the base image using the agent installer?
2) Can you confirm these steps are accurate:
a) Once the image is built, install a SEP agent
b) Update the SEP agent for content/virus def. and run full scan
c) run virtual exception tool
d) run clientsidecloneprep tool
e) save image (upon reboot, the agent will receive a unique identifer)
3) Finally, does the clientsidecloneprep tool do only what is needed for SEP agents to be brought up uniquely? (i.e. not involved with the OS uniqueness at all) Basically what I am asking is, since I am assuming on the windows side the virutal machines need uniqueness as well, is there something that will be done in windows imaging building that will impact when the clientsidecloneprep tool will need to be run?