Migrate Office 365 Architecture from 32-bits to 64-bits using SCCM

Benoit LecoursSCCM3 Comments

In the past, if you had a computer with Office 365 32-bit version and wanted to migrate to the Office 365 64-bit version, you needed to uninstall the existing 32-bit version before installing the 64-bit version. Now, the Office Deployment Tool and its configuration files support a new attribute: MigrateArch. When set to True, the Office 365 installation will be migrated to the architecture specified in the OfficeClientEdition attribute. Another great feature is that MigrateArch, will preserve all the installed products, languages and other deployment settings. If desired you can also make changes to the installed products and languages. In … Read More

Use Powershell to generate certificates for your lab

Thomas LarsenPowershell, SCCM1 Comment

Certificates are becoming more and more important and are used almost everywhere and many solutions need a certificate to even start up. In production, you should have a healthy PKI solution up and running, but in your lab environment or if you just want to quickly test things without involving your company’s PKI-guy you can use PowerShell to quickly spin up certificates. Here’s how to use Powershell to generate certificates in your lab : Create a Root CA First we’ll create our root certificate. Copy the Thumbprint of your newly generated root cert into notepad ,you’ll need it later. This … Read More

Enable SCCM Distribution Point Maintenance Mode

Benoit LecoursSCCMLeave a Comment

SCCM Distribution point maintenance mode is a new feature available in SCCM 1902. Following Microsoft documentation, you can enable maintenance mode when you’re installing software updates, or making hardware changes to the server. During maintenance mode the SCCM distribution point can/can’t: The site doesn’t distribute any content to it Management points don’t return the location of this distribution point to clients The distribution point properties are read-only. For example, you can’t change the certificate or add boundary groups When you update the site, a distribution point in maintenance mode still updates Any scheduled task, like content validation, still runs on … Read More

SCCM 1902 Step-by-Step Upgrade Guide

Benoit LecoursSCCM17 Comments

Microsoft has released the first SCCM version for 2019. Microsoft still uses the same standard naming versions. You can begin upgrading your SCCM Current Branch environment to the latest 1902 release. If you want to install the latest updates, this post is a complete step-by-step SCCM 1902 upgrade guide. If you’re looking for a comprehensive SCCM installation guide, see our blog series which covers it all. You won’t be able to install SCCM 1902 if you are running SCCM 2012, but 1902 this is the new baseline version. This means that if you’re downloading the source from Volume Licensing, 1902 will … Read More

Monitor and identify SCCM Maintenance Windows

Benoit LecoursSCCM1 Comment

During a recent SCCM Assessment, I encountered a customer having hundreds of Maintenance Windows. I had to identify which collection and which devices were assigned those SCCM Maintenance Windows. SCCM has only 1 built-in report for Maintenance Windows monitoring (Maintenance windows available to a specified client). This report lists all maintenance windows that are applicable to a specified client. This is fine but what if I need to have the maintenance window on multiple clients or collections? It would also be nice to have a list of all collection on which there’s maintenance window applied. Free SCCM Maintenance Windows Report … Read More

Deploy Windows Server 2019 using SCCM Task Sequence

Stephane FaubertSCCM4 Comments

In this post, we will deploy the recently released Windows 2019 with SCCM 1810. We will describe how to create a SCCM Windows 2019 deployment task sequence and deploy it to your servers. If you are already deploying Windows 10 in your environment, or even Windows Server 2016, chances are that you won’t need to change anything in your environment. This task sequence will help you deploy a “vanilla” Windows Server 2019 Standard edition using the default Install.wim from the Windows 2019 media. This means that you’ll end up with a basic Windows 2019 with the SCCM client and nothing else. You will be able to edit … Read More

Block Apple Facetime Built-in App with Microsoft Intune

Nicolas PilonApp Protection Policies, Intune, SCCMLeave a Comment

Block Apple Facetime Intune

A new bug was discovered with Apple’s Facetime app that gives the caller the ability to listen to the other device and even watch the video without approving the call. This vulnerability is not giving access to corporate data or personal information, but have more consequences on personal level. Even though Apple temporarily kill the switch of the service and seems to have solved the problem via a future software update, there are some actions that can be made if you want to avoid trouble. You can manually turn off the Facetime app with iOS and MacOS. But, can we … Read More

SCCM Best Practices (Tips and Tricks)

Benoit LecoursSCCM11 Comments

Sccm best practices

That being said we are doing numerous SCCM Assessment these days, looking at various SCCM setup and configuration. Here’s our compiled list of settings, configuration and tricks we can give you to makes your SCCM configuration better. Central Administration Site (CAS) Don’t use a CAS. You’ll see this advice everywhere… and it’s true. Don’t use it. Just don’t. When the Central Administration Site was introduced back in SCCM 2012 SP1 there was no concept of a preferred site system. If you had to manage thousand of clients in a remote site/region and a secondary site was not an option, the … Read More

Remove Recurring Schedules from Device Collections in SCCM Before Upgrading to 1810

Adam GrossSCCM16 Comments

Today I upgraded my production SCCM/ConfigMgr environment from 1806 to 1810, but before I did, I took care of some housekeeping that saved me a fair amount of work on the backend. If you’re like me, you try ensure that your collections aren’t being refreshed unnecessarily. For collections where I have direct or include/exclude rules, I always uncheck the incremental and scheduled refresh boxes when setting up the collection. However, there’s one extra step that I haven’t been doing that requires just a bit of consideration before upgrading to 1810. The picture below is the setting in question. The Issue … Read More

Failed to sign in to Azure error when configuring SCCM Cloud Management Gateway

Jonathan LefebvreSCCM8 Comments

While configuring the Cloud Management Gateway (CMG) at different client sites, we stumbled on an issue ‘Failed to sign in to Azure‘ to create the Azure web applications. While we don’t know the official cause or how to prevent it, a workaround is possible. If you are looking to configure the Cloud Management Gateway from A to Z, see ourprevious post. SCCM CMG Failed to sign in to Azure – Symptoms One of the first step to configure the Cloud Management Gateway is to configure the Azure Services. This step consists of creating the connection to the Azure Tenant and create … Read More