Jump to content

All Activity

This stream auto-updates

  1. Yesterday
  2. It's ok, triggered a heartbeat onto the collection and the info was updated
  3. We just recently started moving our environment into intune for a ~2500+ device deployment for teachers/admin/students. We have a Hybrid AD Domain Join step that starts it and joins it to our on premises AD. We have ad sync /azure connect going where it syncs with on-prem. Our goal is to have the users turn a computer on and through OOBE login and as immediately as possible have onedrive / all o365 apps linked up and most importantly have it automatically sync the known folders (documents/pictures/videos/etc) to the onedrive location. The Hybrid AD Domain Join step works like a charm. Then the user logs in and after it loads the profile it gives the "Select here to fix your credentials. Or, go to settings > Accounts > Access work or school settings, and select Sign in again to fix your work or school account. If I reboot the computer, sometimes this goes away completely. Sometimes it takes 2-3 reboots. If the user clicks it and logs in, usually onedrive will then kick in via the configuration profile we have setup to 1) login / start syncing one drive and 2) silently redirect folders to onedrive locations. Unfortunately, neither of these work immediately...some take 3-4 reboots. In our on-premises group policy, we have the Intune Device Enrollment group policy applied to "Enable automatic MDM enrollment using default Azure AD credentials. The option for "Select Credential Type to Use is set to "User Credential", not Device Credential. I don't have anything in the MDM Application ID. I'm guessing this is correct? I'm grasping at straws to get this as seamless as possible, so any help to get this streamlined would be greatly appreciated. Is there anything I'm missing? I feel like this is something that should be an easy fix that i'm just overlooking. Thank you!
  4. I have some servers being seen as physical machines 'Virtual Machine = no' while these are virtual machines running ESX. I can create queries for collections but on what is the value based in the console?
  5. Last week
  6. the script is downloadable still (scroll up this page for the link...), you just need to be a logged on member to download it, so please try again
  7. Hello, I have some issues after updating the ADK kit with the new Winpe enviroment, i get some BSOD after the Winpe Restart, do you still have this script somewhere? I would like to see if there is some missing drivers. Thank you
  8. I am able to download Microsoft updates and create SUG's and deploy. But I can't get non-Microsoft 3rd party updates to come down. I think I setup the 3rd party updates correctly. Admin \ client settings \ software updates \ enable third party updates = YES Admin \ config components \ software update point \ enable third party updates = Checked (yes) config man is managing the Certs. software library \ software updates \ third party update catalogs Publisher name: Dell Last Sync: Success I subscribed to Dell and checked the cert. I picked which models I wanted to get updates for. Yet no Dell updates ever come down. So I'm missing something. Any hints would be wonderful.
  9. I got this working. I had to add 066 and 067 to DHCP and that fixed everything.
  10. Earlier
  11. Anyweb, I also want to check with you. Forest Discovery created automatically ip ranges boundaries. Also it pulled SITE names from AD Sites that has been published on AD. Could you check this is my Secondary Site Boundary Group Could this be correctly setup. Regards,
  12. I changed those subnets to IP Range as we talking now... As you can see from picture..
  13. you mentioned subnets, and that's not advisable, have a read of Jason's old blog post here to get some ideas https://home.memftw.com/ip-subnet-boundaries-are-evil/
  14. Well, I used the Discovery Method of Forest Search and Because Sites published on AD it automatically discovered networks and created boundaries based on that. Isnt this the best method? You can see from the picture that's one of the secondary sites where forest discovery created for it... Regards,
  15. does this have anything to do with hosting a KMS server ? if not, please raise a new topic, thanks
  16. Introduction This is part 8 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on enabling the compliance policies workload. This series is co-written by Niall & Paul, both of whom are Enterprise Mobility MVP’s with broad experience in the area of modern management. Paul is 5 times Enterprise Mobility MVP based in the UK and Niall is 11 times Enterprise Mobility MVP based in Sweden. In part 1 we configured Azure AD connect to sync accounts from the on premise infrastructure to the cloud. In part 2, we prepared Azure resources for the Cloud Management Gateway, in part 3 we created the cloud management gateway and verified that everything was running smoothly. In part 4 we enabled co-management. With co-management, you retain your existing processes for using Configuration Manager to manage PCs in your organization and you gain the additional advantage of being able to transfer workloads to the cloud via Endpoint Manager (Intune). In part 5 we enabled the compliance policies workload and reviewed how that affected a co-managed computer. In this part we will enable conditional access and see how that can be used to deny access to company resources. In part 6 we configured conditional access and used it to deny access to company resources unless the device was encrypted with BitLocker. In part 7 we showed you how to co-manage Azure AD devices. In this part we'll enable Tenant Attach and take a brief look at it's features. Cloud attach - Endpoint Managers silver lining - part 1 Configuring Azure AD connect Cloud attach - Endpoint Managers silver lining - part 2 Prepare for a Cloud Management Gateway Cloud attach - Endpoint Managers silver lining - part 3 Creating a Cloud Management Gateway Cloud attach - Endpoint Managers silver lining - part 4 Enabling co-management Cloud attach - Endpoint Managers silver lining - part 5 Enabling compliance policies workload Cloud attach - Endpoint Managers silver lining - part 6 Enabling conditional access Cloud attach - Endpoint Managers silver lining - part 7 Co-managing Azure AD devices Cloud attach - Endpoint Managers silver lining - part 8 Enabling tenant attach Tenant attach first showed up in Technical Preview 2002.2, but was released in ConfigMgr 2002 which you can read about here. You can think of tenant attach as being a way to give your Endpoint Manager admins access to ConfigMgr actions/data via the MEM console (login to your tenant at https://aka.ms/memac) without needing to do it via the ConfigMgr console. The prerequisites The user account needs to be a synced user object in Azure AD (hybrid identity). This means that the user is synced to Azure Active Directory from Active Directory. For Configuration Manager version 2103, and later: Has been discovered with either Azure Active Directory user discovery or Active Directory user discovery. For Configuration Manager version 2010, and earlier: Has been discovered with both Azure Active Directory user discovery and Active Directory user discovery. The Initiate Configuration Manager action permission under Remote tasks in the Microsoft Endpoint Manager admin center. For more information about adding or verifying permissions in the admin center, see Role-based access control (RBAC) with Microsoft Intune. Note: In case it’s not clear above, you need to configure Azure AD Connect to sync your on-premise users to the cloud for the user actions to succeed. You also need to go through the Azure services in ConfigMgr and configure cloud management to sync Azure Active Directory User Discovery. Step 1. Create a collection This is an optional step, but helps you to keep track of which devices are Tenant Attached. Create a collection called Tenant Attached, you will use that collection to populate your tenant attached devices. Once created, place one or more devices into the collection. Step 2. Enable tenant attach In the ConfigMgr console, select the Administration node and expand cloud services, select Co-management (2103 or earlier) or based on what we saw in the recent technical preview (Technical Preview 2106) select Cloud Attach (2107 or later). Select CoMgmgtSettingsProd, right click and bring up the properties. In Co-management properties, click on the Configure upload tab. Next, place a check in the Upload to Microsoft Endpoint Manager admin center checkbox, and select a collection, for example use the Tenant Attached collection we created in step 1, Note: If you select All devices managed by Microsoft Endpoint Configuration Manager then all devices (including servers) will show up in the MEM console. Next, deselect the Enable Endpoint Analytics for devices upload to Microsoft Endpoint Manager. And finally click Apply. When prompted to authenticate to Azure services, enter the credentials of your Global Admin account for the applicable tenant. After correctly entering your credentials, the changes will be applied and you can review the success or failure of your actions via the CMGatewaySyncUploadWorker.log Step 3. Verify upload of data After a device is added to the target collection, you can look at the CMGatewaySyncUploadWorker.log to verify that it uploads data for the number of records you added. So if for example you add one computer to the Tenant Attached collection, then it'll state "Batching 1 records" as shown below. This will only happen when it detects a new device, in the next upload (15 minutes later) it'll return to Batching 0 records and so on unless of course new devices are detected in the collection. This upload of data occurs every 15 minutes. In the below screenshots, all highlighted devices are tenant attached and are in the Tenant Attached collection. Next, login to your tenant at https://aka.ms/memac this will display your devices. After the data is uploaded from ConfigMgr, check devices in Microsoft Endpoint Manager and depending on the type of device you'll see one or more devices matching that device name. In the first example, we have a device that is shown with two records, one is listed as co-managed and the other record as ConfigMgr. That record is tenant attached. The Managed by column will denote how the device is managed and tenant attached co-managed devices (hybrid azure ad joined) may have a second record where it states managed by ConfigMgr. We saw this repeatedly with this specific client, even after clean installing Windows 10 on it...the client version in this particular case was CM2103. If it's an Azure AD joined device that is also co-managed (as we described in Part 7) then the managed by column will state Co-managed and yet this device will have only one record. Lastly if the device is merely managed by ConfigMgr (not co-managed, not azure ad joined) then it will show up with one record. Step 4. Looking into tenant attach features Now that we can identify the different types of devices that are tenant attached, let's take a look at the power of tenant attach. If we look at the Azure AD joined, co-managed device which we deployed in part 7, we can see that the following additional capabilities are now available by enabling tenant attach and adding this computer to that collection so that the device becomes tenant attached. The following are available (in preview): Resource explorer Client details Timeline Collections Applications CMPivot Scripts in addition, you can now trigger the following actions Sync machine policy Sync user policy App evaluation cycle In the MEM console, the tenant attach abilities are highlighted below in red. Below you can see the Timeline feature and some of the data it can provide. To grab more data, click the Sync button and then refresh the screen. And here's a quick look at CMPivot Resource explorer is chock full of data Conclusion Using Tenant attach gives your admins more power to do ConfigMgr actions via the MEM console without needing to even install the ConfigMgr console.
  17. Hello. I have a question. a few years ago i built a server, modded the BIOS with SLIC and used happilly Windows Server 2012 r2. Two weeks i decides to upgrade my Hardware to a i5-9600k on an asrock H370m-itx and to Change to Server 2019.I thought this would be as easy as a few years ago. but contraryI requested for a modified BIOS and got one.But due to Asrock security, i can't flash it:the older Version of afuwin makes my PC Freeze.the newer Version has no /gan optionIntel FPT Fails with "error 20: cannot locat ME device"Maybe someone could help me?
  18. 1. that's normal see https://docs.microsoft.com/en-us/mem/configmgr/core/clients/deploy/assign-clients-to-a-site 2. I wouldn't setup boundaries using subnet, that's probably going to cause you issues, use IP ranges instead for your boundary definitions. Clients should download content from the distribution point closest to them (based on boundaries) or from fallback dp's if you have configured that.
  19. Hi Guys, I just finished installing 1 Primary and 4 Secondary Sites. I have all the Boundaries setup properly using Forest Search and IP Subnet Boundaries for corresponding Secondary Sites. When I look at my Devices I can see 750 devices which all assigned to Primary site instead of they assigned in to their own Site. My questions: 1- Is this normal? 2- When we deploy package or OSD those clients set to My Primary Site will they download the content from Primary Site or Their Own Site?? Capture 4 picture Shows the DLC Site Client Push Settings... Regards, Gokhan
  20. I am getting this same error trying to move machines from 2008 to 2102. The 2008 updates install fine, but I thought that the Feature Update to 2102 should be able to install. Care to elaborate on the setting in the web control panel you adjusted to make it work for you? Actually, never mind! After this months 2008 patch installed, the 2102 Feature Update went on fine.
  21. you already hired such specialist? Game advancement industry is quickly developing, refreshing, and redesigning the current advances and items. The quantity of game sweethearts everywhere on the globe is in the millions and consistently individual has appreciated or if nothing else experienced playing PC games. In addition, portable game improvement stays aware of work area forms, raving with countless advancements like AR and AI utilization. HD illustrations, stunning sound and special visualizations, super high stacking speed – every one of these are fundamental highlights of a decent game these days. Thusly, for a computer game engineer organization, employ an elegant game advancement expert with a colossal encounter and an imaginative working methodology. Solidarity game designers end up being the most capable specialists with a wide scope of highlights offered by this motor. This post contains an exhaustive manual for game advancement highlights and drifts and will assist you with finding and recruit a game designer with a solid encounter and Unity knowledge.Game improvement industry is developing apace and no big surprise that there is incredible rivalry among computer games organizations and game software engineers available. Game engineers continually dispatch an ever increasing number of cutting edge innovations and advancements, joining strategical, specialized, and inventive ways to deal with draw in and engage gaming auditory.Among the primary patterns in game improvement this year are AR/VR advances, prevailing versatile games improvement, streaming, and shockingly, raising ubiquity of non-gaming superstars utilized for game promoting. For instance, when Drake, Travis Scott, and JuJu Smith-Schuster joined Fortnite stream of a renowned Tyler "Ninja" Blevins decoration, Twitch broke it's anything but a most-saw stream by a solitary player. The stream hit 628,000 simultaneous watchers, and that is no joke.Also, there is a propensity of re-valuating plans of action among enormous game improvement organizations. Following the most recent advancements, they endeavor to venture into programming arrangements. It is worth focusing on AR/VR by and by here. These advances direct the future, and each organization is keen on breaking the gaming business with the new items the gamers have never experienced. There is no compelling reason to say that everybody needs to be a trailblazer.There is an incredibly high simultaneousness among game creating organizations, check more details here https://mobilunity.com/blog/hire-a-game-developer/. At the point when you enter this market as a product maker, you need to as of now have everything on point, from the game idea to an efficient expert team.One of the first and the main stages as getting ready for a game improvement project is picking a game motor to assemble the game with. In the event that you pick a game motor that doesn't have highlights fundamental for your undertaking thought and doesn't uphold your necessities without limit, the time went through working with this motor is essentially squandered and you should begin without any preparation. In this way, cautiously survey data about various game motors, their upsides and downsides, and what projects they can add to the best.A game motor is a game advancement system that permits software engineers to fabricate the center usefulness of the game, including the principle design and fundamental highlights. For instance. game motors can assist with delivering 2D or 3D illustrations, actual rationale, crash recognition and taking care of, audio effects, informing frameworks, etc.Unity computer game motor end up being the most famous game on the planet, holding very nearly a portion of piece of the pie that covers more than 600 million clients around the world. Solidarity game designers lean toward this motors for a capacity to foster the entire game at one spot. Solidarity motor is known for it's anything but, a wide scope of arrangements and highlights accessible, and fast reaction time handling. Solidarity game manufacturer can without much of a stretch collect resources and pictures into complex conditions and scenes, continue with visual and sound impacts, set lighting, and even make livelinesss in couple of snaps which truly speeds the improvement interaction up and assists software engineers with focusing on the task overall as opposed to going through hours with some other fundamental engine.Corona SDK is a simple to-utilize and quite possibly the most dependable 2D game motors for junior experts keen on creating cross-stage games for iOS, Android, Kindle, and so on This benefit worth featuring independently: Corona is totally free.GameMaker is another more established game advancement arrangement that actually has a great deal of relevance and acknowledgment among great game motors. With the new dispatch of GameMaker Studio 2, this game motor turns out to be all the more remarkable, speedy, and valuable. GameMaker can likewise be utilized for cross-stage game turn of events, permitting to assemble a game with a solitary codebase and that can run locally on various game improvement platforms.Unreal game motor is the second most famous game motor that is generally utilized for first-individual shooters, MMORPGs, RPGs, battling games, and so on Stunning game improvement motor backings cross-stage assembles and is viable with a major number of stages and gadgets, making it well known experienced game engineers.
  22. There are a few Q there: Here is a list of all of the report and what they display. List of reports - Configuration Manager | Microsoft Docs Reports will show current detail, as of the last HW inventory cycle (not historical), and I hope HW inv. is set to daily too Remember that all report can be exported to a CSV or PDF or Word or Excel. Just use the save option on the report sub menu. Are their other prefab reports out there, Yes. some are free, some are not or you can create your own just be carful to do it right. Keep in mind that I do work for a company that does create prefab reports and as such I can't point you to others out there.
  23. Hi all, With respect to the one-liner "Use the built-in reports.": There are like 250 canned reports in SCCM, and I have yet to find a good summary of what-all they do and which are superior for what purposes. I regularly use the "Add Remove Software" to see historically what an individual device has installed, but like the original request, I'm looking for a better report to export in CSV format what machines have what software installed into them on a collection-wide basis. Any opinions on what reports or pre-fab queries might offer this search? Thanks!
  24. what have you tried and did it fail ? why not raise your own topic and explain what you've tried and what you want to achieve...
  25. Im trying to develop some react app for kids, but stuck with some problem. Anyone senior here?:)
  26. Yes, It's probably caused because wrong boundary group settings.
  1. Load more activity
  • Newsletter

    Want to keep up to date with all our latest news and information?
    Sign Up
  • Create New...