- Prep the new server as per the Build Notes and Install Guide (Check with TacTools Powershell script)
- Disable secure boot (BIOS)
- Disable Digital driver signing enforcement run ->gpedit.msc User configuration->Administrative Templates->System->Driver Installation->Code signing for drivers set to disable
- From Admin CMD run the following command bcdedit.exe -set loadoptions DDISABLE_INTEGRITY_CHECKS
- Change DEP to essential windows applications
- Disable UAC
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System EnableUA set to 0
- Disable Windows firewall
- Set Quality Audio experience service to automatic start
- Set Simple mail transfer service to automatic start
- Check to make sure NO group policies are applied
- Check to make sure NO antivirus is installed (disable Defender)
- Disable automatic Windows updates
- Run ShoreTel compatibility checker
Monday, March 18, 2019
ShoreTel: Installing Connect on Server 2016
I have run into a few issues when installing ShoreTel Connect on Server 2016, and the main one is you run into a issue where while installing Connect you get a popup that says "A digitally signed driver is required" and the install fails. This is usually because driver signing and secure boot is enabled. So here is the check list I use when I install Connect on Server 2016.
