anyweb

thanks for the thanks ! i've got to get back into it !

we've seen Windows 7 upgrades to Windows 10 fail when say trying 1809 or later, but with 1803 it seems to be better, so give it a go...

ah bummer, i missed that, ok back to the drawing board. What you could try is upgrade to a 'lesser' version that would work better with Windows 7, for example, try upgrading to Windows 10 1803 first, and if it suceeds then upgrade to 1903. can you give that a go ?

this would be a perfect candidate for running SetupDiag, read about it here https://docs.microsoft.com/en-us/windows/deployment/upgrade/setupdiag can you please run it on the failing machine and see what it advises you to do cheers niall

and after adding the drivers to the boot wim attached to your task sequence, make sure to distribute the boot image to all your distribution points.

take a look at this topic, it should help...

Security is a major concern for IT admins and if you’re responsible for important workloads hosted in Azure, you need to know your security is as tight as possible. In this free webinar, presented by Thomas Maurer, Senior Cloud Advocate on the Microsoft Azure Engineering Team, and Microsoft MVP Andy Syrewicze, you will learn how to use Azure Security Center to ensure your cloud environment is fully protected. The webinar covers: · Azure Security Center introductions · Deployment and first steps · Best practices · Integration with other tools · And more! Being an Altaro-hosted webinar, expect this webinar to be packed full of actionable information presented via live demos so you can see the theory put into practice before your eyes. Also, Altaro put a heavy emphasis on interactivity, encouraging questions from attendees and using engaging polls to get instant feedback on the session. To ensure as many people as possible have this opportunity, Altaro present the webinar live twice so pick the best time for you and don’t be afraid to ask as many questions as you like! There are certain topics in the IT administration world which are optional, but security is not one of them. Ensuring your security knowledge if ahead of the curve is an absolute necessity and becoming increasingly important as we are all becoming exposed to more and more online threats every day. If you are responsible for important workloads hosted in Azure, this webinar is a must. Webinar: Azure Security Center: How to Protect Your Datacenter with Next Generation Security Date: Tuesday, 30th July Time: Webinar presented live twice on the day. Choose your preferred time: ● 2pm CEST / 5am PDT / 8am EDT ● 7pm CEST / 10am PDT / 1pm EDT Save your seat

great that you solved it Andi, cheers niall

thanks !

Today I got a fantastic email from Microsoft stating that I’ve once again been awarded MVP in Enterprise Mobility It’s my 9th time to be awarded so I’m humbled, honored and very pleased indeed and of course I’m extremely grateful to Microsoft for the honor. Thank you thank you thank you Microsoft ! and thank you to all the people who visit my blog (windows-noob.com) and of course this website. Last but not least, thanks to my family for putting up with me blogging and researching. To get an overview of what a Microsoft MVP is please read this and if you are interested in becoming an MVP yourself check out my blog post on the subject here. and here’s to the 10th title, I’ll work hard on producing lots of great content this year for that ! cheers niall

Mozilla addressed two zero-day vulnerabilities in Mozilla Firefox that were being used in targeted attacks in the wild. CVE-2019-11707 is a type confusion vulnerability in Mozilla Firefox that can result in an exploitable crash. CVE-2019-11708 is a sandbox escape vulnerability. Combining both CVE-2019-11708 and CVE-2019-11707, attackers can perform arbitrary code execution. Thunderbird is also affected but generally cannot be exploited since scripting is disabled when reading mail. It is recommended that these two vulnerabilities are patched as soon as possible. Following this, patches were also released to address vulnerabilities in Adobe, Apple, Google, and Mozilla. Here, we have the complete list of updates released: 24910 Update iCloud (7.12.0.14) fixes multiple vulnerabilities. 24911 Update Apple iTunes (12.9.5.7) fixes multiple vulnerabilities. 24912 Update Apple iTunes (X64) (12.9.5.7) fixes multiple vulnerabilities. 24976 CVE-2019-7845 is fixed in the Adobe Flash Player Plugin (32.0.0.207) 24977 CVE-2019-7845 is fixed in the Adobe Flash Player ActiveX (32.0.0.207) 24978 CVE-2019-7845 is fixed in the Adobe Flash Player PPAPI (32.0.0.207) 24997 iCloud 10.4 fixes multiple vulnerabilities in Windows 10 version 18362.145 or higher 24998 CVE-2019-5842 is fixed in Google Chrome (75.0.3770.90) 24999 CVE-2019-5842 is fixed in Google Chrome (x64) (75.0.3770.90) 25006 CVE-2019-11708 fixed in Mozilla Firefox (67.0.4) 25007 CVE-2019-11708 fixed in Mozilla Thunderbird (60.7.2) 25008 CVE-2019-11708 fixed in Mozilla Firefox ESR (60.7.2) 25009 CVE-2019-11708 fixed in Mozilla Firefox (x64) (67.0.4) 25010 CVE-2019-11708 fixed in Mozilla Firefox ESR (x64) (60.7.2) Kindly patch these vulnerabilities ASAP to keep your network secure from exploits. For patching third-party applications, you can use Patch Connect Plus which integrates with SCCM. You can also learn more and free trial the catalogs from here.

you must have a conflict between wsus/sccm/group policy as the 0x87d00692 translates to Group policy conflict Source: System Center Configuration Manager ----- so start your troubleshooting with that in mind

Windows 10 will not display a SCEP icon, it will only show the Windows Defender icon, I should probably update that post, maybe soon

this should help you

ok well you can always post your smsts.log here and we'll advise

take a look at the following post and scroll down for Orphaned Content. https://www.niallbrady.com/2017/01/24/what-is-the-contentlibrarycleanup-tool-and-how-can-i-use-it/

is it shared storage ? " Consider reducing the IO load on the system or choose a shadow storage copy volume that is not being shadow copied. "

It's still in progress, these guides take time to write, please be patient... i'll update here when it's done, thanks !

try updating your boot wim(s) to the distribution points again, to make sure they get injected with all the new binaries from the SCCM 1902 upgrade.

it seems like you have PXE booted and SCCM detects three USB drives and no local drive, is that correct, can you tell me a bit more about how you are testing here ? why are you not trying to test this with virtual machines ? also, if you are indeed testing on real hardware that is not detecting the hdd, then have you added any storage drivers for the chipset to your boot wim ? cheers niall

it's not enough to go on, please copy the smsts.log file from x to your usb drive and attach it here.

enable diagnostic support in your boot wim, then press f8 at the pxe password screen, in the cmd prompt use cmtrace x:\windows\temp\smstslog\smsts.log and review the failures in red to see why it's having issues, if you can attach the smsts.log file here that would help or if you cannot, then attach screenshots of the errors highlighted in SMSTS.log

good to hear it !

woo hoo

I'm checking with Microsoft, in my lab at least there were no BitLocker keys in AD but perhaps we need to configure something in order for this to happen, let's see if i get a reply... The replies I got simply reminded us that this feature in SCCM is still in preview, i.e. work in progress. Also, storing the keys in AD is not MBAM specific but via GPO's. Watch this space to learn more about when the feature goes public in the Current Branch releases.