Code: Select all
[SetupInfo]
Author =
CreationDate =
InventoryID =
Description =
Method =
Tested on =
Dependencies =
Command line options =/S2
Last Change =
Build =
[VarDefInfo]
; <Variable>, <Type: 0=Computer 1=User>, <Allow NULL values: 0=No 1=Yes>
[Setup]
Version=10.5
ShowCaption=1
BlockInput=0
Platform=*
[Requirements]
[Application]
ProductName=BitLocker
DeveloperName=Microsoft
Version=8.0
Revision=0
SetupName=%ProductName% %Version% %SetupWizard%
Text1="%DeveloperName% %ProductName% %Version%", Arial, 22, , 754D19, 4, , LEFT BOLD ITALIC
Text2="Bitte warten Sie... Die Software wird installiert.", Arial, 14, , FFFFFF, 4, 15% , LEFT BOLD ITALIC
Text3="Die Maus und die Tastatur sind während der Installation gesperrt.\n", Arial, 14, , FFFFFF, 4, , LEFT BOLD ITALIC
Text4="Veuillez patienter pendant\nl´installation du programme.", Arial, 14, , FFFFFF, 4, , LEFT BOLD ITALIC
Text5="Le clavier et la souris\nsont bloques pendant ce temps.\n", Arial, 14, , FFFFFF, 4, , LEFT BOLD ITALIC
Text6="Installing Software…\nPlease wait.", Arial, 14, , FFFFFF, 4, , LEFT BOLD ITALIC
Text7="The keyboard and \nmouse are locked during \nthe installation.", Arial, 14, , FFFFFF, 4, , LEFT BOLD ITALIC
Text9="%InstallationFor% %WindowsUser%", Arial, 14, , 754D19, 4, -18, BOTTOM ITALIC LEFT
BackgroundPicture=\\%empirumserver%\Configurator$\User\Pictures\Back-256.bmp, 0, 0, 100%, 100%, , STRETCHMIN STRETCHMAX
BackgroundColor=FF0000,000000
CopyDialogRect=0%, 0%, 100%, 100%, HCENTER VCENTER
UserKeyName=%DeveloperName%\%ProductName%
MachineKeyName=%DeveloperName%\%ProductName%\%Version%
UninstallKeyName=%DeveloperName% %ProductName% %Version%
UninstallDisplayName=%ProductName% %Version%
UninstallString=%ReinstallString% /U
ReinstallString="%CommonSetupDir%\Setup.exe" "%App%\%SetupInfDir%\Setup.inf"
ReinstallMode=1
SrcDir=..
ApplicationDir=%ProgramFilesDir%\Microsoft\%ProductName%
SetupInfDir=Install
AskUninstallOld=1
ShellLinks=1
CommonShellLinks=1
CreateUnresolvableShellLinks=1
UseStringSection=Strings:09
UseSysStringSection=SysStrings:09
DateWarning=1
SizeWarning=1
Reboot=0
PreventExternalReboot=1
StartServicesOnReboot=0
CallTimeOut=3600
AbortAfterCallTimeOut=1
DisableCancelButton=1
ShowEndMessage=1
EndMessage=%EndMessageDesc%
[Strings:07]
Disk1=Installationsmedium 1
EndMessageDesc=Die Installation wurde erfolgreich abgeschlossen!
ErrorLogMessage=Die Installation/Deinstallation wurde mit einer Fehlermeldung abgebrochen!
InstallationFor=Installation für:
InstallerDesc=Dienstprogramm zum Installieren einzelner Komponenten.
InstallerName=Installationsprogramm
SetupWizard=Installations-Assistent
Uninstallation=deinstallieren
ErrorText=Fehler
CallingText=beim Aufruf von
[Strings:09]
Disk1=Installation media 1
EndMessageDesc=Installation was completed successfully!
ErrorLogMessage=The installation/uninstallation aborted with an error message!
InstallationFor=Installation for:
InstallerDesc=Service program to install single components.
InstallerName=Setup program
SetupWizard=Installation Wizard
Uninstallation=Uninstallation
ErrorText=Error
CallingText=launching
[SysStrings:07]
Users=Benutzer
[SysStrings:09]
Users=Users
[Environment]
CommonSetupDir=%CommonFilesDir%\Setup%SetupBits%
V_MachineValuesPath=\\%EmpirumServer%\Values$\MachineValues\%DomainName%
V_UserValuesPath=%HKLM,"Software\matrix42\Software Depot","HomeServer"%\Values$\UserValues\%UserDomain%
; Maschinenabhängige Variablen
; machine dependent variables
VM_BitLockerOption=%%%V_MachineValuesPath%\%ComputerName%.ini,%ComputerName%,BitLockerOption%%
;VM_AccessConnectionsProfile=%%%V_MachineValuesPath%\%ComputerName%.ini,%ComputerName%,AccessConnectionsProfile%%
; Userabhängige Variablen
; user dependent variables
;VU_<Variable>=%%%V_UserValuesPath%\%WindowsUser%.ini,%WindowsUser%,<Variable>%%
; !!! Setzen der entsprechenden ReplaceEnv Befehle für die Variablen im Abschnitt [Product] nicht vergessen!!!
; !!! Don't forget to set the appropriate ReplaceEnv instructions for the variables in the section [Product]!!!
[Encryption]
Password=XXXXXXX
PIN=XXXXXXX
[Disks]
1=%Disk1%
[Options]
Installer = %InstallerName%, COPYALWAYS, Installer, "%InstallerDesc%"
Product = %ProductName%, COPYALWAYS, Product, "%ProductDesc%"
[OptionDependencies]
[OptionGroups]
[Installer]
1:..\..\..\..\User\Setup.exe, %CommonSetupDir%, OPTIONAL USEFILENAME DIRECTORY NOSIZEWARNING SETUP, 0
1:..\..\..\..\User\SetupDeu.chm, %CommonSetupDir%, OPTIONAL USEFILENAME DIRECTORY NOSIZEWARNING SETUP, 0
1:..\..\..\..\User\SetupEnu.chm, %CommonSetupDir%, OPTIONAL USEFILENAME DIRECTORY NOSIZEWARNING SETUP, 0
1:..\..\..\..\User\Mx42SynSem.dll, %System%, OPTIONAL USEFILENAME DIRECTORY NOSIZEWARNING SETUP WINDOWS32, 0
1:..\..\..\..\User\x64\Mx42SynSem.dll, %System%, OPTIONAL USEFILENAME DIRECTORY NOSIZEWARNING SETUP WINDOWS64, 0
1:%SetupInfDir%\Setup.inf, , NORMAL, 0
1:%Temp%\Setup64.exe, %CommonSetupDir%\Setup.exe, OPTIONAL NOSIZEWARNING SETUP ALWAYS WINDOWS64, 0
[FileCheckMachine]
ReplaceEnv V_MachineValuesPath
If DoesFileExist ("%V_MachineValuesPath%\%ComputerName%.ini") == "0" Then "FileIsntThere" EndIf
[FileCheckClient]
ReplaceEnv V_UserValuesPath
If "%UserDomain%" <> "%ComputerName%" Then "CheckClientFile" EndIf
[CheckClientFile]
If DoesFileExist ("%V_UserValuesPath%\%WindowsUser%.ini") == "0" Then "FileIsntThere" EndIf
[FileIsntThere]
ErrorLogMsg Values$\MachineValues\%DomainName%\%ComputerName%.ini or Values$\UserValues\%UserDomain%\%WindowsUser%.ini not found!
Abort
[Product]
#FileCheckMachine, MACHINE
;#FileCheckClient, CLIENT
ReplaceEnv VM_BitLockerOption
#Set:Product
#Set:Installation, DONTDELETE
#Set:Deinstallation, DELETE
#Reg:OnUninstallProduct, DELETE
#Reg:Product
#Ini:Product
#Security:Product
[Set:Product]
;Deinstallation mit Entschlüsselung
-call "\\SERVERXY\bitlockerkey$\BitLockerStatus_Entschlüsselung.cmd"
-call "%windir%\System32\manage-bde -off c:
[SET:Installation]
md "\\SERVERXY\bitlockerkey$\%computername%"
;BitLocker für Laufwerk C: aktivieren
;Wichtig: Gruppenrichlinie "Festplattenverschlüsselung (Bitlocker Win10)" muss aktiviert sein. (Standard)
;Status abfragen
call "\\SERVERXY\bitlockerkey$\BitLockerStatus.cmd"
sleep 4000
If DoesTextInFileExist ("Numerisches Kennwort", "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt") == "1" Then "VerschluesselungLaeuft" EndIf
setreboot 1
;TPM einschalten
Call powershell "%src%\enable_tpm.ps1"
sleep 1000
;Verschlüsselung einschalten
call "%windir%\System32\Manage-bde.exe" -on c:
ErrorLogMsg [Info] call "%windir%\System32\Manage-bde.exe" -on c: - Errorlevel: %ErrorLevel%
;RecoveryPassword auf Server Speichern.
call "\\SERVERXY\bitlockerkey$\SaveRecoveryPassword.cmd"
ErrorLogMsg [Info] call "\\SERVERXY\bitlockerkey$\SaveRecoveryPassword.cmd" - Errorlevel: %ErrorLevel%
;Status-Datei generieren abrufen
sleep 2000
call "\\SERVERXY\bitlockerkey$\BitLockerStatus.cmd"
ErrorLogMsg [Info] call "\\SERVERXY\bitlockerkey$\BitLockerStatus.cmd" - Errorlevel: %ErrorLevel%
;Status
if DoesPathExist ("\\SERVERXY\bitlockerkey$\%computername%\Wiederherstellungspasswort_%computername%.txt") == "0" Then "Set:ServerFehler" EndIf
ErrorLogMsg [Info] Bitlocker aktiviert - Wiederherstellungsschlüssel unter "\\SERVERXY\bitlockerkey$\%computername%\Wiederherstellungspasswort_%computername%.txt" abgelegt.
If DoesTextInFileExist ("TPM", "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt") == "0" Then "KeinTPM" EndIf
If DoesTextInFileExist ("Numerisches Kennwort", "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt") != "1" & DoesTextInFileExist ("Password", "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt") != "1" & DoesTextInFileExist ("Mot de passe", "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt") != "1" Then "KeinKennwort" EndIf
ErrorLogMsg [Info] Bitlocker-Option: %VM_BitLockerOption%
If %VM_BitLockerOption% == "PIN" Then "SET:PIN" EndIf
[Set:PIN]
;Die PIN ist verschlüsselt (Siehe Password-Depot BitLocker PIN Standard)
call "%windir%\System32\manage-bde" -protectors -add c: -tpmandpin %PIN%
call "\\SERVERXY\bitlockerkey$\BitLockerStatus.cmd"
[KeinTPM]
ErrorLogMsg [Fehler] Kein TPM-Modul für die Verschlüsselung aktivert. -> \\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt
abort
[KeinKennwort]
ErrorLogMsg [Fehler] Kein Wiederherstellunskennwort für die Verschlüsselung aktivert. -> \\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt
abort
[VerschluesselungLaeuft]
If DoesTextInFileExist ("100,0", "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt") == "1" Then "VerschluesselungFertig" else "VerschluesselungLaeuftNoch" EndIf
[VerschluesselungLaeuftNoch]
ErrorLogMsg [INFO] Die Verschlüsselung der Festplatte läuft noch. -> \\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt
abortsilent
[VerschluesselungFertig]
ErrorLogMsg [INFO] Die Verschlüsselung der Festplatte ist abgeschlossen. Status -> \\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt
[SET:Deinstallation]
[Set:ServerFehler]
ErrorLogMsg [Fehler] BitLocker: Wiederherstellungsschlüssel "\\SERVERXY\bitlockerkey$\%computername%\Wiederherstellungspasswort_%computername%.txt" ist nicht vorhanden.
Abort
[Reg:OnUninstallProduct]
[Reg:Product]
[Ini:Product]
[Security:Product]
[Shell:Product]
[SET:InstallationError]
ErrorLogMsg %ErrorText% %ErrorLevel% %CallingText% install.exe
Abort
[SET:DeInstallationError]
-Abort
-ErrorLogMsg %ErrorText% %ErrorLevel% %CallingText% install.exe
Code: Select all
call "%windir%\System32\Manage-bde.exe" -status c: > "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_%computername%.txt"
call "%windir%\System32\Manage-bde.exe" -protectors c: -get > "\\SERVERXY\bitlockerkey$\%computername%\BitLockerStatus_AllKeys_%computername%.txt"Code: Select all
Initialize-Tpm -allowclear
Enable-TpmAutoProvisioningUsers browsing this forum: No registered users and 0 guests