Dell Wyse 5070 Windows 10 IoT Enterprise for Wyse Thin Clients Administrator s - Page 25

7.

Click

Apply

and then click

OK

.

8.

Open

gpupdate /force

using the run command.

9.

Restart the thin client to apply the group policies.

Steps

1.

Log in to the administrator account.

2.

Disable Unified Write Filter.

The thin client restarts.

3.

Log in to the administrator account again.

4.

Uncomment the following lines and update the pin—minimum of six characters—for TPM encryption:

•

If you are using Wyse Management Suite or USB Imaging tool—Go to

C:\Windows\Setup\CustomSysprep\Modules

\Post_CustomSysprep.psm1

and uncomment the following lines:

•

#cd C:\Windows\setup\Tools\TPM\

•

#.\TPM_enable.ps1 -pin TC#1234

•

If you are using System Center Configuration Manager—Go to

C:\Windows\Setup\ConfigMgrSysprep\Modules

\Admin_ConfigMgrSysprep.psm1

and uncomment the following lines:

•

#cd C:\Windows\setup\Tools\TPM\

•

#.\TPM_enable.ps1 -pin TC#1234

5.

Change the password to an alphanumeric format.

6.

Go to

C:\Windows\Setup

.

7.

Run

Build_master

.

8.

Run

Custom Sysprep

if you are using Wyse Management Suite or USB Imaging tool or

ConfigMgr Sysprep

if you are using System

Center Configuration Manager.

The thin client automatically turns off.

9.

Turn on the thin client and pull the image from the thin client.

10.

After the image pull is complete, push the image to the target client. Wait for the execution of first boot scripts and BitLocker

encryption to complete.

When the Sysprep is completed the target thin client reboots and the

TPM

is enabled.

11.

Enter the BitLocker password and verify the new alphanumeric password.

12.

Log in to the administrator account and verify the encryption of the C drive.

NOTE:

To update the BIOS in BitLocker encryption do the following:

a.

Copy the BIOS executable file to the USB drive.

b.

Connect the USB to the respective thin client.

c.

Right-click the BIOS executable and select Run as administrator.

d.

Select the Suspend BitLocker Drive Encryption checkbox and then click Update. Thin client reboots and the BIOS

is updated. Also the BitLocker is suspended for one reboot.

e.

Reboot the thin client to ensure that the BitLocker is active.

Initialize TPM and enable BitLocker manually

Steps

1.

Log in to the administrator account.

2.

Disable Unified Write Filter.

The thin client restarts.

3.

Log in to the administrator account again.

4.

Open

tpm.msc

using the run command menu.

5.

Verify the TPM status in

Trusted Platform Module Management

on the thin client.

The status should be displayed as

The TPM is ready for use

.

6.

Click

Close

in

Trusted Platform Module Management

on the thin client.

7.

Open

gpedit.msc

using the run command menu.

Administrative features

25

Section	Page
Windows 10 IoT Enterprise for Dell Wyse Thin Clients Administrator’s Guide	3
Introduction	6
Technical support	6
About this guide	6
Supported thin clients	6
Getting started	7
Automatic and manual login	7
Before configuring your thin clients	7
Using your desktop	8
Using the Start Menu	8
Using the search box	8
Grouping Applications into Desktops	8
Using Action Center	8
Connecting to a printer or an external device	9
Connecting to a monitor	9
Power state	9
Accessible applications	10
Browsing with Internet Explorer	10
Using the Dell Thin Client Application	10
Configuring Citrix Receiver session services	11
Citrix Workspace app	11
Configuring remote desktop connection session services	12
Using VMware Horizon Client to connect to virtual desktop	12
Using Ericom Connect and WebConnect client	13
Using Ericom PowerTerm Terminal Emulation	14
Windows Media Player	14
Wyse Easy Setup	14
Overlay Optimizer	15
Dell Secure Client	15
Key features of Dell Secure Client	15
Accessing Dell Secure Client	15
Configuring Dell Secure Client	16
Configuring policy using the Dell Secure Client user interface	16
Import a configuration	16
Export a configuration	16
CSV format	16
JSON format	17
Self-extracting file	19
Deploying a configuration	19
Command-line options	19
Generate and view logfiles	21
Tips and best practices	21
Error codes	21
Administrative features	23
Using Administrative tools	23
Configuring component services	23
Viewing events	23
Managing services	24
Using TPM and BitLocker	24
Initialize TPM and enable BitLocker using the imaging script	24
Initialize TPM and enable BitLocker manually	25
Configuring Bluetooth connections	26
Configuring wireless local area network settings	27
Using custom fields	27
Configuring RAM disk size	27
Enabling auto logon	28
System shortcuts	28
Viewing and configuring SCCM components	29
System Center Configuration Manager Client 2016 and 2019	29
Devices and printers	29
Adding printers	29
Adding devices	30
Configuring multi-monitor display	30
Managing audio and audio devices	30
Using sound dialog box	31
Setting region	31
Managing user accounts	31
Using Windows Defender	32
Windows Defender Advanced Threat Protection	32
Threat Defense	32
Endpoint Security Suite Enterprise	32
C-A-D tool	32
Wyse Device Agent	33
Citrix HDX RealTime Media Engine	33
Viewing and exporting operating system image manifest files	33
Viewing and exporting operating system image current manifest information	33
Viewing operating system image factory manifest information	34
Dell Docking Station WD19	34
Additional administrator utility and settings information	35
Automatically launched utilities	35
Utilities affected by log off, restart, and shut down	35
Unified Write Filter	36
Using Unified Write Filter	37
Running Unified Write Filter command–line options	37
Enabling and disabling the Write Filter using the desktop icons	38
Setting Write Filter controls	38
Application Launch Manager	39
ALM CLI tool	39
Configuration of nodes using ALM	39
xData Cleanup Manager	40
xDCM CLI tool	40
Configuration of nodes using xDCM	40
Capturing logfiles	41
Configuration of DebugLog XML file	42
Saving files and using local drives	42
Mapping network drives	43
Participating in domains	43
Using the Net and Tracert utilities	44
Managing Users and Groups with User Accounts	44
Creating user accounts	44
Editing user accounts	45
Configuring user profiles	45
Changing the computer name of a thin client	45
System administration	47
Accessing thin client BIOS settings	47
Unified Extensible Firmware Interface and secure boot	47
Booting from DOS USB key	47
Creating bootable UEFI USB key	48
Using Dell Wyse Management Suite	48
Ports and slots	48
TightVNC—server and viewer	48
TightVNC—Pre-requisites	49
Using TightVNC to shadow a thin client	49
Configuring TightVNC server properties on the thin client	50
Network architecture and server environment	51
Understanding how to configure your network services	51
Using Dynamic Host Configuration Protocol	51
DHCP options	51
Using Domain Name System	52
About Citrix Studio	52
About VMware Horizon View Manager	53
Installing firmware using USB Imaging Tool	54
Frequently asked questions	55
How to install Skype for Business	55
How to set up a smart card reader	55
How to use USB Redirection	55
How to capture and push Windows 10 IoT Enterprise operating system image	55
Troubleshooting	56
Keyboard customization issues	56
Resolving memory issues	56
Using Windows Task Manager	56
Using Unified Write Filter	56
Using File Explorer	56
Blue screen error or BSOD issues	56

Dell Wyse 5070 Windows 10 IoT Enterprise for Wyse Thin Clients Administrator s - Page 25

Initialize TPM and enable BitLocker manually

Page 25 highlights