The Blog

This blog post explains my finding when an Autopilot Trust Relationship Error for Hybrid AD Joined Device. Today I was testing Hybrid Azure AD Join Autopilot provisioning and every machine I tested with had the same issue; they would briefly flash the Enrollment Status Page (ESP) then show the Windows logon screen as if they had completed successfully and even appeared to be AD joined based on the logon page. When attempting to log in, however, the following message was displayed: The security database on the server does not have a computer account for this trust relationship. Generally, this or … Read More

Microsoft announced that the general availability of the new Microsoft Edge Chromium on January 15, 2020. SCCM and Intune are already ready for this launch as both products include a feature to deploy and manage updates for Microsoft Edge. This blog post will describe how to deploy the Microsoft Edge browser to your computer using both SCCM and Intune and manage Edge Updates. You can download and install Edge Chromium from the Microsoft website. It’s available for Windows, macOS, iOS and Android. If you need to do SCCM Edge Deployment Update in Enterprise, continue to read our post. SCCM Edge … Read More

Microsoft has released a third SCCM version for 2020. SCCM 2010 has been released on November 30th, 2020. (SCCM has a new branding since 1910 – now called Microsoft Endpoint Configuration Manager (MEMCM). This post is a complete step-by-step SCCM 2010 upgrade guide, meaning that if you want to upgrade your existing SCCM/MEMCM installation to the latest SCCM/MEMCM updates, this post is for you. If you’re looking for a comprehensive SCCM installation guide to build a new server, refer to our blog series which covers it all. You won’t be able to install SCCM 2010 if you are running SCCM 2012. … Read More

If you’re using Endpoint Manager (Intune) to manage your device, doing Intune Company Portal Customization is important to provide a familiar and helpful experience for your users. The Intune company portal is for users to enroll in devices and install apps. The portal will be on your user devices. You’ll want to customize it to increase your user trust before doing any actions in the portal. In this post, we’ll show your how to do Intune Company Portal Customizations to reflect our company branding and gives our user more information to reach our helpdesk in case of problems. Intune Company … Read More

You may manage BitLocker in your organization using SCCM (MBAM). It’s also possible to create a policy for Bitlocker if you’ve switched to modern management and Endpoint Manager (Intune). If you’re not aware, Bitlocker is a Microsoft solution for drive encryption. Bitlocker is not a new solution. It has been introduced in Windows 7. As a system administrator, you can manage how to deploy it, its policy and the most important part, keeping the recovery key in a safe place. BitLocker provides the most protection when used with a Trusted Platform Module (TPM) version 1.2 or later. The TPM is … Read More

As part of your job, you are using SCCM daily. You are probably part of a team that performs multiple tasks each day. Sometimes it may happen that someone creates, modify or delete a particular component in SCCM (Collection, Package, Application…). You may want to monitor and audit SCCM changes to verify that there’s no error or maybe you just want to know who deleted a certain component. Error in the SCCM may happen and it’s important to know which Administrator made the error. This blog post will show how to use SCCM Status Message MessageID to identify who created, … Read More