Symantec has a lot of great documentation for creating WinPE boot media with the PGP drivers baked in for one-off situations. Unfortunately those instructions don't speak to organizations with MDT and/or SCCM implementations since the boot media creation process is handled 'behind the scenes'.
This post aims to merge Symantec's existing instructions to leave you with MDT/SCCM boot media with PGP WDE drivers baked in. But first....
Danger, Will Robinson!
But, I'll happily take credit if it works! ;)
Surely you read the scary disclaimer above. I had to put it there for everyone's safety. I do hope you understand.
However, throughout this process we'll have a safety net in the event something goes wrong. So please be sure to complete your Safety Net Steps first before moving forward.
The instructions below:
Although you should be able to create x86 boot media, I don't [yet] have instructions for that. In essence, it'll be the same thing as below, just substiute amd64 with x86 and use the files listed in the 32-bit section of this document here: http://www.symantec.com/docs/TECH214419
As time permits, I'll update this post for x86 MDT media and SCCM once I complete the implementation.
Although this is specifically for MDT, the process is similar (read: nearly identical, less file paths) for SCCM environments.
I welcome any feedback, construtive criticism, corrections, tips etc. on this process.
I may be releasing a simple script in the future to automate the Safety Net steps outlined below.
This is so important!
cd /d C:\pgp_temp
pgppe.exe /winpe C:\pgp_temp\winpe_amd64 C:\pgp_temp\wde_files
dir c: dir e:
The volume does not contain a recognized file system. Please make sure that all required file system drivers are loaded and hat the volume is not corrupted.
diskpart
list disk list volume
pgpwde --disk 0 --auth -p xxxxx
Request sent to Authenticate disk was successful
Saved for SCCM notes, gotchas etc.