Jump to content


tmiller_hockey

Established Members
  • Posts

    139
  • Joined

  • Last visited

Posts posted by tmiller_hockey

  1. It would be pretty straight forward as an application. I believe the install is an msi and symantec will have switches and variables to input for any config.

     

    My question is why would you want to use SEP which is a resource heavy product that costs money. Forefront is quite better and I believe if you're licensed for SCCM 2012 then you are licensed for the Forefront as well. We got rid of ESET which we were paying extra for and went to Forefront.

  2. I'm having the same thing now in a Hyper-V VM that I'm trying to build and capture Server 2008 R2. I get the error during the Apply Operating System portion but when it happens it is too fast for me to see if it slips by that portion to the next or not. I cannot F8 for some reason even though the command testing is checked. Don't know if that's related to Hyper-V or not.

     

    Since I can't get to the log I'm sort of stuck.

  3. On a collection you can set the wake up time. Also using the power management option it will shut down a computer after a period of inactivity. So why wouldn’t you use CM12 power management option?

     

    As for shut down this is just normal Power management stuff. The try with CM07/CM12 is that you can set different policy on each collections. Here is what you can set.

    http://technet.micro...y/ff977084.aspx

     

    I don't see any options in my console for shutdown and there aren't any in the link you provided. Sleep yes, shutdown no.

     

    In my case, I need the on the fly ability to shutdown computers due to Energy Management which is why the console extensions work for me.

  4. Kingen, it depends on the environment. Some schools have a SIS (Student Information System) that is separate from AD. In our case, administrators or registration clerks entered the data in the system and we exported the data out to import into AD.

     

    nry, I'm with you on being an IT function. IMO, non IT personnel do not need access to AD for any reason. Leaving it with the IT Department means you don't have to go out and configure the additional security to allow non IT people to add accounts. From the sounds of the size of your organization, the benefit of doing it yourself outweighs changing security.

  5. At my company I use DELL's asset label (not the asset tag) for the computer's account name in active directory. We set the asset label during our BIOS setup, and then my script extracts this value and assigns it to the SCCM variable for the computer name. If there is no asset label configure in BIOS, the entire process stops.

     

    We do this as well, pulling the service tag from the Dell's and the serial number from the Lenovo's with a short vbScript to populate OSDComputerName

  6. I'll disagree with them on that point.

     

    I've got a site running 10k users and 6k computers. I'm running overkill. Our site server is virtual with one processor and 16GB, usage never tops more than 4.5GB.

     

    Our SQL is offbox and it is also virtual and runs 32GB but usually stays around 16GB usage.

     

    My specs according to MSFT will support 100,000 clients.

  7. Actually it is a valid CM12 question when you consider the above image which should display logon information for the last 90 days. I know AD has the Last Login and Last Login Timestamp which often differ quite a bit. In this particular case the difference between them is 4 days.

     

    Also, some of my machines do display info in the image shown for users within the last 90 days. I'm leaning towards this being a user affinity problem as when it is set it is forcing the primary user of the device in and not worrying about anything else.

  8. We use User Affinity to determine primary users/devices and this works very well for our helpdesk. In a user collection, we can click on the user, select primary device and all is well. In the case which it can't determine a primary device, usually right clicking the user and selecting edit primary devices will display a list of machines they login to. From there it is pretty easy to determine which one they are on. Hope that helps.

    • Like 1
  9. I posed this question originally as a report question but figured I'd lay it out a different way in this one.

     

    Here's a scenario we encounter:

     

    Student Laptop gets stolen. We need to determine when the last time the machine was seen on the network and who the last person that was logged into it is.

     

    We have user affinity enabled based on the following parameters shown in the attachment.

     

    When searching the device and selecting primary user, it will display the primary user information which is good. After right clicking the listing in the column and selecting "Edit Primary Users" there is a section in the resulting dialog box that has an area for users who've logged into the machine in the past 90 days which is blank. See attachment 2.

     

    Why is this information not available and is there a way we can obtain it?

    post-14548-0-01244500-1351259383_thumb.jpg

    post-14548-0-51572700-1351259523_thumb.jpg

  10. Can someone give me some guidance.

     

    I am trying to use Report Builder 3.0 to create some custom reports. I found a tutorial here which includes a sample report for Endpoint done in Report Builder 3.0. When trying to run the report in Report Builder, I get a message that the user I'm using doesn't have permission to do this. It is a domain admin which has full rights under SQL management studio. It will allow me to publish the report but normal users cannot run the report, it gives errors although logged into the server as that same domain admin, I am able to open the reporting services website and run the report.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.