wiki: compile rednour (full) — Carrie Win11 SAFE_OS/APPLY_IMAGE failure + RMM-not-working note
This commit is contained in:
@@ -13,6 +13,7 @@ sources:
|
||||
- clients/rednour/session-logs/2026-06/2026-06-26-howard-nick-mac-rmm-rootcause.md
|
||||
- clients/rednour/session-logs/2026-06/2026-06-29-howard-nick-mac-rmm-install-attempt.md
|
||||
- clients/rednour/session-logs/2026-06/2026-06-29-howard-legalasst-zip-hang-wp5-win11.md
|
||||
- clients/rednour/session-logs/2026-06/2026-06-29-howard-carrie-win11-upgrade-applyimage.md
|
||||
- clients/rednour/onboarding-baselines/FRONTDESKRECEPT-20260529T195614.md
|
||||
- clients/rednour/onboarding-baselines/LEGALASST-20260529T200647.md
|
||||
- clients/rednour/onboarding-baselines/REDNOURCARRIEVI-20260529T202250.md
|
||||
@@ -240,6 +241,16 @@ Mike was flagged via Discord DM (message_id 1521264675965374656) that the macOS
|
||||
|
||||
All diagnostic changes were reverted (Adobe/7-Zip Blocked-list test entries removed; an orphaned RMM diagnostic process killed) — the box was left clean.
|
||||
|
||||
### 2026-06-29 — Carrie's machine Win10 -> Win11 upgrade fails at SAFE_OS / APPLY_IMAGE
|
||||
|
||||
**Operator: Howard Enos** (diagnostic only; no remote action). The in-place Windows 10 -> 11 upgrade on **Carrie's machine** (REDNOURCARRIEVI / rednourcarrievirt) rolled back with `0x8007000D - 0x2000C` — "The installation failed in the SAFE_OS phase with an error during APPLY_IMAGE operation."
|
||||
|
||||
Decoded: `0x8007000D` = `ERROR_INVALID_DATA`; `0x2000C` = failure in the SAFE_OS (offline WinPE) phase during the APPLY_IMAGE step — Setup choked while laying down the new image. This signature points at corrupt/incomplete setup media or download, a storage/disk issue, or interference from drivers/AV/attached externals — NOT a TPM/hardware-compatibility block (which fails earlier with a different message).
|
||||
|
||||
Remediation path provided (prioritized): (1) unplug all non-essential externals + temporarily disable third-party AV; (2) build fresh media via the Media Creation Tool and run `setup.exe` from a mounted ISO rather than the in-place download/Update Assistant; (3) clear the upgrade cache (`$WINDOWS.~BT`, `$WINDOWS.~WS`, `SoftwareDistribution\Download`) after stopping wuauserv/bits; (4) DISM RestoreHealth + SFC + chkdsk, confirm 20+ GB free; (5) update storage/chipset drivers (Intel RST / AMD RAID is a classic APPLY_IMAGE culprit).
|
||||
|
||||
Howard reported driver updates and OS repairs were already done. He will attempt the upgrade **manually on-site tonight (2026-06-29)** and loop back if it fails. **GuruRMM is not working for Rednour**, so this cannot be assisted remotely — it is a hands-on effort. If the next attempt fails, the actionable next step is to pull the first error from `C:\$WINDOWS.~BT\Sources\Panther\setuperr.log` around the APPLY_IMAGE step.
|
||||
|
||||
## Patterns & Known Issues
|
||||
|
||||
- **EWS required for personal contact work.** No app in the ComputerGuru suite holds `Contacts.Read` or `Contacts.ReadWrite` on Graph. Personal contact folder reads and modifications must go through EWS (`full_access_as_app` on the Exchange Operator SP with `ExchangeImpersonation`).
|
||||
@@ -250,6 +261,8 @@ All diagnostic changes were reverted (Adobe/7-Zip Blocked-list test entries remo
|
||||
- **Prior MSP agents still installed.** ScreenConnect, Splashtop, and Syncro on all workstations; Datto RMM on REDNOURCARRIEVI. Not yet remediated as of 2026-06-29.
|
||||
- **macOS RMM agent installs but does not enroll (site code vs UUID bug).** The macOS install script writes the site enrollment CODE (`GREEN-FALCON-7214`) into `site.plist` as `site_id`. The server's `EnrollRequest.site_id` is typed `uuid::Uuid` — posting the code string causes a 422 UUID deserialization error; the agent retries enrollment forever without connecting. Fix: overwrite `site.plist` with the site UUID `c7f5787c-8e71-45b3-841f-fa52436f7d26` and reload the LaunchDaemon. The paste-block fix was delivered to Howard's Discord DMs (2026-06-26) but has not been applied to Nick's Mac (blocked: no onsite access + no Mac password as of 2026-06-29). Root code fix for Mike: either the install script should stamp the UUID (like the `.pkg` postinstall), or `/api/enroll` should accept a site code. Secondary: add a macOS branch to `default_config_path()` in `agent/src/config.rs`. Coord todo: 6f2d22be-e653-48c8-9f9b-0155420b315d (project gururmm).
|
||||
- **LEGALASST and REDNOURCARRIEVI are on Win 10 22H2 (EOL).** No security updates since 2025-10-14. Plan OS upgrade to Win 11.
|
||||
- **GuruRMM is not working for Rednour.** As of 2026-06-29 remote management/remediation via GuruRMM is not usable for this client — any assist must be hands-on / on-site. (Scope verify: whether the agents are offline fleet-wide for Rednour or RMM is simply not a viable path for interactive feature-upgrade work. Note this contradicts earlier live-over-RMM diagnostics on LEGALASST — confirm current agent state before relying on RMM here.)
|
||||
- **Win11 in-place upgrade on REDNOURCARRIEVI fails at SAFE_OS / APPLY_IMAGE (`0x8007000D - 0x2000C`).** ERROR_INVALID_DATA while applying the image in the offline phase — points at media/download corruption, storage/disk, or driver/AV/external-device interference, NOT a hardware-compat block. Fix path: fresh ISO via Media Creation Tool + `setup.exe` from mounted ISO, externals unplugged, AV off, upgrade cache cleared, DISM/SFC/chkdsk done. If it recurs, pull the first error from `C:\$WINDOWS.~BT\Sources\Panther\setuperr.log` around APPLY_IMAGE. Drivers + repairs already done by Howard; manual attempt scheduled 2026-06-29 evening.
|
||||
- **REDNOURCARRIEVI: Defender was off at onboarding.** Confirm it has been re-enabled; it is a critical finding.
|
||||
- **REDNOURCARRIEVI: RDP enabled without NLA at onboarding.** Restrict RDP to VPN-only or require NLA.
|
||||
- **LEGALASST: built-in Compressed Folders handler hangs explorer on `.zip` open.** Local zips; Word/PDF fine. `zipfldr.dll` intact (environmental, not a corrupt DLL). AppHang Event 1002, no faulting module. Workaround = 7-Zip as default for `.zip`. Win11 upgrade planned to resolve. If it persists post-upgrade, suspect Defender archive-scan + cloud (MAPS) lookup stalling the shell. To test-disable any shell extension reversibly, add its CLSID to `HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked` (delete to restore).
|
||||
@@ -264,7 +277,8 @@ All diagnostic changes were reverted (Adobe/7-Zip Blocked-list test entries remo
|
||||
| P1 | Re-enable Defender on REDNOURCARRIEVI | Howard/Mike | Was off at onboarding 2026-05-29; confirm current state |
|
||||
| P1 | Remove prior MSP agents (ScreenConnect, Splashtop, Syncro, Datto RMM) | Mike/Howard | Present on all 3 machines; Datto RMM on REDNOURCARRIEVI only |
|
||||
| P1 | Upgrade LEGALASST to Windows 11 | Mike/Howard | Expected to resolve the explorer-on-.zip hang (rebuilds shell/system files) + applies pending SFC repair. Pre-reqs: enable fTPM + Secure Boot (Ryzen 3 3200G is Win11-supported), bump RAM from 5.9 GB, remove leftover Syncro agent. Test a local `.zip` with the built-in handler post-upgrade |
|
||||
| P1 | Upgrade REDNOURCARRIEVI to a supported OS | Mike | Win 10 22H2 (EOL 2025-10-14) |
|
||||
| P1 | Upgrade REDNOURCARRIEVI (Carrie's machine) to Windows 11 | Howard | Win 10 22H2 (EOL 2025-10-14). In-place upgrade fails at SAFE_OS / APPLY_IMAGE `0x8007000D - 0x2000C` (ERROR_INVALID_DATA). Drivers + DISM/SFC/chkdsk already done. Manual attempt scheduled 2026-06-29 evening (fresh ISO, externals unplugged, AV off, cache cleared). RMM not usable for Rednour — hands-on only. If it fails, pull `C:\$WINDOWS.~BT\Sources\Panther\setuperr.log` around APPLY_IMAGE |
|
||||
| P1 | Restore/verify GuruRMM functionality for Rednour | Howard/Mike | 2026-06-29: RMM reported not working for this client — confirm scope (agents offline vs not a path for upgrades) and restore remote management |
|
||||
| P1 | Fix GuruRMM macOS agent enrollment on Nick's Apple Silicon Mac | Howard/Mike | Agent installs but does not enroll. Root cause: install script writes site CODE not UUID; server expects UUID. Fix = overwrite `/usr/local/etc/gururmm/site.plist` with `site_id = c7f5787c-8e71-45b3-841f-fa52436f7d26` and reload LaunchDaemon. Paste-block delivered to Howard's Discord DMs (2026-06-26). Blocked: need onsite access + Mac password. Code fix for Mike: enroll.rs accept site code OR install script stamp UUID. Coord todo 6f2d22be |
|
||||
| P1 | Vault migration of plaintext local-account passwords in Syncro customer notes | Howard/Mike | Accounts carrie, ale; not yet vaulted |
|
||||
| P2 | LEGALASST: WordPerfect 5 "not enough free space" on save | Howard | 2026-06-29: error on save regardless of location; ample free space verified. Likely legacy free-space overflow on large volume; OS upgrade will NOT fix. Mitigate via DOSBox / SUBST small-capacity drive; confirm WP version/edition |
|
||||
|
||||
@@ -31,7 +31,7 @@ Run `/wiki-lint` to check for stale entries and broken backlinks.
|
||||
| [Grabb & Durando Law Office](clients/grabb-durando.md) | Personal injury law firm; GND-SERVER GuruRMM enrolled; AI demand review app scoped ($4K–$7K); website migration pending; plaintext DB password in README needs vaulting | 2026-05-24 |
|
||||
| [Pavon](clients/pavon.md) | Former/archive client; GeoVision NVR surveillance; OwnCloud at 172.16.3.22 backed by Uranus; cron stacking fixed; Nextcloud migration deferred 3–6 months | 2026-05-24 |
|
||||
| [Rieusset Corp (Tom Sorensen)](clients/rieusset-corp.md) | Small business; email hosted on Neptune Exchange (4 mailboxes: tsorensen, tomrc, ojodeagua, csorensen @rieussetcorp.com); Mailprotector domain ID 57833; outbound via SBR Outbound.Sorensen connector; clipto.com allow rule added 2026-06-08 | 2026-06-08 |
|
||||
| [Rednour Law Offices](clients/rednour.md) | Law firm (break-fix/T&M, prepay 0); M365 rednourlaw.com (tenant 4a4ca18a) onboarded, 5 ComputerGuru SPs consented, no MDE license; 3 Win workstations GuruRMM-enrolled (all RED, prior MSP agents pending removal); REDNOURCARRIEVI hosts the firm's peer-to-peer SMB shares (Nick's Mac access done 2026-06-25); **LEGALASST explorer hangs on .zip open (built-in Compressed Folders handler) — 7-Zip workaround + Win11 upgrade planned**; WordPerfect 5 "not enough free space" save error (legacy large-volume bug, OS upgrade won't fix); macOS RMM agent installs but won't enroll (site code-vs-UUID bug, fix staged, coord 6f2d22be); plaintext local-account creds from Syncro notes vaulted (clients/rednour/local-accounts) | 2026-06-29 |
|
||||
| [Rednour Law Offices](clients/rednour.md) | Law firm (break-fix/T&M, prepay 0); M365 rednourlaw.com (tenant 4a4ca18a) onboarded, 5 ComputerGuru SPs consented, no MDE license; 3 Win workstations GuruRMM-enrolled (all RED, prior MSP agents pending removal); REDNOURCARRIEVI hosts the firm's peer-to-peer SMB shares (Nick's Mac access done 2026-06-25); **LEGALASST explorer hangs on .zip open (built-in Compressed Folders handler) — 7-Zip workaround + Win11 upgrade planned**; WordPerfect 5 "not enough free space" save error (legacy large-volume bug, OS upgrade won't fix); macOS RMM agent installs but won't enroll (site code-vs-UUID bug, fix staged, coord 6f2d22be); **Carrie's machine (REDNOURCARRIEVI) Win11 upgrade fails at SAFE_OS/APPLY_IMAGE 0x8007000D-0x2000C — manual attempt 2026-06-29 eve; GuruRMM not working for Rednour (hands-on only)**; plaintext local-account creds from Syncro notes vaulted (clients/rednour/local-accounts) | 2026-06-29 |
|
||||
| [Peaceful Spirit Therapeutic Massage](clients/peaceful-spirit.md) | Massage therapy practice; PST-SERVER (192.168.0.2) + 5 GuruRMM agents; L2TP/IPsec RRAS VPN complete; 2026-06-04 site-wide outage resolved (UDR Ultra reboot dropped VPN port-forward, re-added in controller); BridgettePSHomeComputer re-enrolled (new UUID 01160fc8); vault drift open (pst-admin password); Syncro 278525 (Peaceful Spirit Massage) | 2026-06-04 |
|
||||
| [Patriot Internal Medicine](clients/patriot-internal-medicine.md) | Medical practice, two locations (Tucson + Sonoita); GuruRMM client+sites provisioned 2026-06-18 (Tucson: NORTH-WOLF-6270, Sonoita: LIGHT-HARBOR-9617); no agents deployed yet; enrollment keys vaulted; infrastructure discovery pending | 2026-06-18 |
|
||||
| [Sombra Residential LLC](clients/sombra-residential.md) | Property management; Server2013 (actually WS2012 EOL, unpatched) + DESKTOP-UQRN4K3 GuruRMM enrolled; Transwiz migration artifacts cause Office credential prompts | 2026-05-24 |
|
||||
|
||||
Reference in New Issue
Block a user