Microsoft Deployment Toolkit (MDT) 8450 is now available

The latest and new release of Deployment Toolkit (MDT) for Windows is now available for download at ​https://www.microsoft.com/en-us/download/details.aspx?id=54259 This version supports Windows 10 build 1709 (Fall Creator Update) and SCCM current branch (1710), as well as includes some fixes like: Win10 Sideloaded App dependencies and license not installed CaptureOnly task sequence doesn’t allow capturing an image Error received when starting an MDT task sequence: Invalid DeploymentType value "" specified. The…

Read More

SCCM – You can now easily identify devices with pending reboot

UPDATE additional information and screenshots after Patch Tuesday This has always been a nightmare for sysadmins, identifying devices with pending reboot. Now with SCCM, it becomes easier. The latest update for SCCM Current Branch (build 1710) has a new column to use in the Console\Devices to identify such devices with pending reboot To get this information, access the Assets and compliance workspace from the SCCM console and go to Overview\Devices.…

Read More

SCCM – Update – Create Azure AD Joined device collection

You may have already read my post on how to create an SCCM device collection to get Azure AD Joined devices (https://t.co/uJ5eBAtutT). This post is an update, so you can now forget the first one. With one of the latest SCCM update (sorry did not notice earlier – but at least the last update 1710) you can update your device collection membership rule to use the Out of the Box…

Read More

SCCM – Customize options available in Software Center

With the latest update of SCCM Current Branch (1710) you can define which options (Applications, Updates, Operating Systems, Installation Status, Device Compliance or Options tabs) are displayed in the SCCM Software Center. To configure it, open your SCCM console and access the Administration workspace. Then access the Client Settings and edit the client setting (either the default one or the custom one) to enable/disable the various options available in the…

Read More

SCCM – Nested Task Sequence is now available

It has been a long awaited feature but now this is it; with the latest SCCM Current Branch (1710) update, you can now run nested task sequences. To do so, you obviously need at least 2 tasks sequence. You need to keep in mind the following when using nested task sequence (also known as child task sequence): Both parent and child task sequences are combined into a single policy; this…

Read More

SCCM – Co-management is now available in SCCM Current Branch (1710)

The latest update for SCCM Current Branch is now available and includes the announced co-management feature. The co-management feature allows you to manage your devices with Intune and SCCM without having to setup an Intune subscription on SCCM. Especially in scenarios where Windows 10 Azure AD Joined device needs to use the SCCM agent. Once you have installed the SCCM update (as usual you can force it by using the…

Read More

SCCM – Integrate SCCM with OMS Update Management

If you are using SCCM and Azure OMS, you already know that you can integrate SCCM with OMS. But do you know you can leverage the OMS capabilities to manage updates with SCCM?   Prerequisites This is possible if you match the following requirements and apply the below configuration You must have an OMS workspace and have deployed the OMS Update Management Solution Windows clients managed by SCCM (workstations and/or…

Read More

Windows 10 – Windows Defender Advanced Threat Protection

Windows Defender Advanced Threat Protection (ATP) is a security functionality built in Windows 10 to help detecting, investigating and protecting against threats, introduced with Windows 10 build 1607 (or known as Anniversary Build). In this post, I’m going to implement ATP integrated with SCCM Current Branch (you can request a trial for ATP here http://aka.ms/register-wdatp) Once you have requested the trial and get approved, you will receive an email to…

Read More

SCCM – Identify Azure AD Joined device

UPDATE this post has an updated version here https://t.co/W3AUonuSR9 Following my post to create an SCCM device collection for Windows Core (https://t.co/ZGdL91Vkht), I wanted to do the same to identify all Azure AD Joined device. So the first thing was to find how to identify an Azure AD Joined device; and the answer is with the following registry key which only exist if the device is joined to Azure AD:…

Read More

SCCM – Create a device collection for Core server

There is a lot of resources available on Internet to create System Center Configuration Manager device collection based on the operating system but none are helpful to create a device collection to identify all Windows Core servers, especially Windows Server 2016 Core as there is no more switching between Core and UI. So after digging around I found this MSDN resource which explains how to identify a core server (https://msdn.microsoft.com/en-us/library/hh846315(v=vs.85).aspx).…

Read More

SCCM – Issue to deploy Hyper V Gen 2 VM with OSD

I recently faced an interesting issue to deploy Hyper V generation 2 virtual machines with SCCM OSD. The PXE boot was stuck in downloading the NBP boot file (smsboot\x64\pxeboot.n12). While Generation 1 was PXE booting successfully, and it used to work as most of the VM’s were deployed using OSD and are Generation 2. So after digging around and Microsoft Support request it ended with the following updates in the…

Read More

SCCM – It is now easier to manage Internet clients

With the release of the build 1706 of System Center Configuration Manager Current Branch, it is now easier to manage Internet clients. Windows 10 Azure AD Joined devices do not need anymore certificate to authenticate against your SCCM. The need for client authentication certificates is now removed (there is some prerequisites) and you can now deploy the SCCM client to these clients too. So here are the steps to take…

Read More

SCCM – Build 1706 of System Center Configuration Manager current branch is available

The latest build (1706) for System Center Configuration Manager has been released. It is being rolled out globally but as usual if you want to get it early you can use this script (https://gallery.technet.microsoft.com/ConfigMgr-1706-Enable-9dd40f68) to force SCCM to get the update. After running the script you will get the build being downloaded As part of this update, there is a lot of improvements related to hybrid mode – Windows 10…

Read More

Intune – You can now switch your MDM authority without Microsoft support and not re enrollment

With the June 2017 updates for Intune, it is now possible to switch the MDM (mobile device management) authority from Intune to SCCM Hybrid and vice-versa without opening a support request AND without having to re enroll devices already enrolled (see https://docs.microsoft.com/en-us/sccm/mdm/deploy-use/change-mdm-authority)

Read More

SCCM – Cloud Distribution Point

Following my previous post regarding the Cloud Management Point gateway feature introduced with the fast channel current branch update (see http://blog.hametbenoit.info/Lists/Posts/Post.aspx?ID=838), another new “cloud” feature has been introduced called Cloud Distribution Point. As with the Cloud Management Gateway, this will help managing internet based client with SCCM. This new feature will make your internal distribution point(s) available to the internet client based using Azure. Enable the Cloud Distribution Point NOTE…

Read More