Setup SCCM Cloud Management Gateway (SCCM CMG 1806+)

Jonathan LefebvreSCCM38 Comments

The ConfigMgr team is working really hard to make SCCM admins job easier for some of the key components of Modern Management. Starting with SCCM 1806 release, they ease a bit the setup of the SCCM Cloud Management Gateway (CMG). If you are new to the concept of SCCM Cloud Management Gateway, the main advantage is that it doesn’t expose your SCCM servers to the internet. The downside is that it requires an Azure subscription which brings recurring monthly costs. If you’re still unsure which method to use, you can read the Microsoft documentation and see our blog post about internet … Read More

Hybrid AD Joined Device has Trust Relationship with Active Directory after Autopilot Completes

Adam GrossSCCM2 Comments

This blog post explains my finding when an Autopilot Trust Relationship Error for Hybrid AD Joined Device. Today I was testing Hybrid Azure AD Join Autopilot provisioning and every machine I tested with had the same issue; they would briefly flash the Enrollment Status Page (ESP) then show the Windows logon screen as if they had completed successfully and even appeared to be AD joined based on the logon page. When attempting to log in, however, the following message was displayed: The security database on the server does not have a computer account for this trust relationship. Generally, this or … Read More

Deploy Microsoft Edge and Manage Edge Updates using SCCM or Intune

Benoit LecoursSCCM36 Comments

Microsoft announced that the general availability of the new Microsoft Edge Chromium on January 15, 2020. SCCM and Intune are already ready for this launch as both products include a feature to deploy and manage updates for Microsoft Edge. This blog post will describe how to deploy the Microsoft Edge browser to your computer using both SCCM and Intune and manage Edge Updates. You can download and install Edge Chromium from the Microsoft website. It’s available for Windows, macOS, iOS and Android. If you need to do SCCM Edge Deployment Update in Enterprise, continue to read our post. SCCM Edge … Read More

How to send SetupDiag Result in your SCCM Inventory during a Windows 10 Feature Update

Jonathan LefebvreSCCM, WINDOWS 106 Comments

Windows 10 Feature updates can be tricky for many reasons. Fellow SC Dudes, Adam Gross, created a free and easy-to-implement solution to help debug and track down Feature Update logs. This solution, along with our previous post to track down Windows 10 Feature Update hard blocks, will greatly ease Windows 10 Servicing. Windows 10 SetupDiag SCCM Inventory Benefits Centralized log for any on-prem Feature Update attempt SetupDiag details stored in Hardware Inventory, which can be monitored by SQL query/reports and PowerBI While we recommend sticking to Feature Update to deliver new Windows 10 builds, this solution will work the exact … Read More

Step-by-Step SCCM 2010 Upgrade Guide

Benoit LecoursSCCMLeave a Comment

Microsoft has released a third SCCM version for 2020. SCCM 2010 has been released on November 30th, 2020. (SCCM has a new branding since 1910 – now called Microsoft Endpoint Configuration Manager (MEMCM). This post is a complete step-by-step SCCM 2010 upgrade guide, meaning that if you want to upgrade your existing SCCM/MEMCM installation to the latest SCCM/MEMCM updates, this post is for you. If you’re looking for a comprehensive SCCM installation guide to build a new server, refer to our blog series which covers it all. You won’t be able to install SCCM 2010 if you are running SCCM 2012. … Read More

Troubleshoot Windows 10 Update hard block

Jonathan LefebvreSCCM, WINDOWS 10Leave a Comment

Windows 10 Feature Updates can be tricky to troubleshoot. The trick is to find relevant information about what’s causing the Windows 10 Feature Update to fail. In a previous post, we covered the Windows 10 Feature update error 0XC1900208. This is still accurate and possible that it happens for a Feature Update to Windows 10 20h2. We followed the instruction in the blog post to find what’s preventing the Feature Update to run. We start to test the Feature Updates from Windows 10 1809 to 20h2 at a client site. Our previous post was not helping, since running Setup.exe manually … Read More

How to Customize the Intune Company Portal

Benoit LecoursSCCMLeave a Comment

If you’re using Endpoint Manager (Intune) to manage your device, doing Intune Company Portal Customization is important to provide a familiar and helpful experience for your users. The Intune company portal is for users to enroll in devices and install apps. The portal will be on your user devices. You’ll want to customize it to increase your user trust before doing any actions in the portal. In this post, we’ll show your how to do Intune Company Portal Customizations to reflect our company branding and gives our user more information to reach our helpdesk in case of problems. Intune Company … Read More

Create an Intune BitLocker policy for Windows 10 devices

Benoit LecoursSCCMLeave a Comment

You may manage BitLocker in your organization using SCCM (MBAM). It’s also possible to create a policy for Bitlocker if you’ve switched to modern management and Endpoint Manager (Intune). If you’re not aware, Bitlocker is a Microsoft solution for drive encryption. Bitlocker is not a new solution. It has been introduced in Windows 7. As a system administrator, you can manage how to deploy it, its policy and the most important part, keeping the recovery key in a safe place. BitLocker provides the most protection when used with a Trusted Platform Module (TPM) version 1.2 or later. The TPM is … Read More

Use SCCM Status Message MessageID to Audit Administrator actions

Benoit LecoursSCCMLeave a Comment

As part of your job, you are using SCCM daily. You are probably part of a team that performs multiple tasks each day. Sometimes it may happen that someone creates, modify or delete a particular component in SCCM (Collection, Package, Application…). You may want to monitor and audit SCCM changes to verify that there’s no error or maybe you just want to know who deleted a certain component. Error in the SCCM may happen and it’s important to know which Administrator made the error. This blog post will show how to use SCCM Status Message MessageID to identify who created, … Read More

SCCM SQL 2019 Install Guide

Jonathan LefebvreSCCMLeave a Comment

In the first part of this SCCM Current Branch blog series, we planned our hierarchy, prepared our Server and Active Directory. Click the following link to see all supported SQL versions. For our post, we will install SQL 2019 locally on the same server where the Primary Site will be installed. SCCM SQL 2019 Install Guide Execute Setup.exe from the SQL installation media, select New SQL server stand-alone installation Provide the product key and click Next Review and Click Next Check Use Microsoft Update to check for updates and click Next Select SQL Server Feature Installation Select the Database Engine feature and … Read More