Jump to content


Established Members
  • Posts

  • Joined

  • Last visited

Everything posted by fj40ratt

  1. I've been trying to remove this update on a test device for the last 3 days using a task sequence with the command line wusa.exe /uninstall /kb:5005565 /quiet /norestart or inserting the .msu file. Neither attempt will work. I have been successful in the past removing troublesome Windows updates using this method but this one is driving me crazy. Has anyone else had to remove this particular update and been successful using SCCM? Thanks.
  2. I've tried both creating a TS from scratch and copying from another TS. Neither has been successful. I even tried just making it a simple 8 character password containing nothing but letters with no luck. Crazy thing is that when I verify the account and password connection to the OU within the TS it verifies just fine and that same account and password will manually join a device to the domain successfully. Might be time to get Microsoft involved.
  3. Jumped the gun. The new password works for one of my task sequences but not for any of my other TS's including any new from scratch TS's. This is crazy.
  4. I seem to be running into this more often as of late. I've created a basic OSD task sequence but when I attempt to deploy it the collection I wish to direct it to, it does not appear in my list. I know it is there because I have deployed other OSD task sequences to the same collection previously without issue and I can see the collection. I also run into this when I create a new device collection and try to deploy an existing TS to it. Thoughts? Thanks.
  5. Update: New 15 character password that utilized all 4 of the complexity rules in AD worked successfully. The previous attempts that were failing were only matching 3 of the 4 requirements which should have still worked since the password rule states you must have at least 3 of the 4. Really odd. Thanks for the input and willingness to help test everyone.
  6. Will try to get that info to you sometime today or tomorrow. Attempting another password change today.
  7. The computer name has 8 characters. I won't be able to get a smsts.log file to you until Monday. I have people imaging this week so I can't test a password change until they are finished.
  8. It was not integrated. Thanks Niall. Good luck. I'm trying to do more testing this week myself.
  9. Update: A 15 character pwd with nothing but upper and lowercase letters and numbers caused the device to not join the domain. Also double checked to make sure the password was meeting the domain complexity requirements and it is. This one is really odd.
  10. Thanks pzov, appreciate the input. I've run up against that type of issue with other systems in the past as well. I believe this is the first time I've attempted that complex of a password with SCCM. You would like to believe that Microsoft would make sure their complexity requirements were standard across the company. If Active Directory accepts that long of a password from a user, their own systems should allow it when they talk to each other. lol I will test with a long password avoiding any special characters and update here with the results.
  11. Version 2002 Console Version: 5.2002.1083.2000 Site Verison: 5.0.8968.1000
  12. Always appreciate your advice Niall. I have. I'm actually using it in the Apply Network Settings task. I don't have a Join Domain section in the TS anywhere. Another test I just ran is I added an additional character to the original password to create a new password of 9 characters. Old password that worked prior was only 8 characters. I then changed the pwd in the TS to the new 9 character pwd and it still works as intended. When my AD admin changed the password earlier on the domain join account, he changed it to a 20 character password and that is the TS would fail to join the device to the domain. Is there a password length restriction that anyone is aware of?
  13. Good morning SCCM brains. Here is one that has me about ready to trade mine in for a beer. Last week our AD admin changed the password for the account that does our AD joins during task sequence image deployments. I have entered the new password in the TS, verified it's access to the OU in AD successfully, and can use the new password to manually join a device to the domain without issue. Unfortunately when the TS now runs the device fails to join the domain. I've looked in the netsetup.log, setuperr.log and setupact.log to verify the correct account is present which it is but the error indicates it is still a bad username or password. I had our AD admin change the password back to the original password in AD and imaging works perfectly with the device joining the domain as expected. Is there somewhere else in SCCM I should be looking for that password to be changed? Thanks in advance.
  14. I'm trying to deploy an application that has multiple dependencies. One of the dependencies is Visual C. The application deployment fails because it states that Visual C already exists and it must be uninstalled through control panel for the deployment to succeed. Is there a way during application deployment to bypass a dependency if it already exists on the target computer? Thanks in advance.
  15. Thanks for the reply Niall. I totally understand not using the capture method but I don't know of another way get a single WIM file to the company that will be doing our imaging of new machines and still maintain the multiple partitions needed for BitLocker. These machines need to be as close to end user ready when they arrive here. The goal is to eliminate as much customization work as possible for our field techs. It's unfortunate that SCCM lets you create the multiple partitions during the TS but it doesn't provide a way to then capture the machine exactly as it is once you have it customized just for situations like this unless I'm missing something.
  16. Work is wanting to use a third party to start imaging new devices prior to delivery. My MBAM setup in SCCM is working great and I don't want the new devices getting encrypted until they are on prem and I can place them in my BitLocker Policy collection. I have a reference machine built with the proper partitions but the company only takes image files as a WIM. The multiple partitions seem to be causing my grief. If there is a better way to do this I'm all ears. Thank you in advance for any advice.
  17. I'm trying to capture a Win 10 reference computer that has multiple partitions in preparation for BitLocker. The machine is not domain joined. Is there a proven way to do this? My task sequence keeps failing when trying to capture the machine. If I image the machine with a single partition image the capture works flawlessly.
  18. When I try to open the Recovery Audit Report from the HelpDesk portal nothing happens. If I right click it and tell it to open in a new tab I get about:blank#blocked. I'm able to open the report from within SCCM console and I am a member of the required security groups. Any ideas? Thank you in advance.
  19. How did you resolve this keywan? I have the same situation. My portals work, my policy deploys to the targeted collection, the agent installs just fine, but I get no pop-up. My Group Policy Handler log has 3 errors stating Failed to commit Group Policy. Thanks.
  20. Hopefully this isn't a stupid question but...... Do I need to go my Windows Update Service on my primary servers and approve the updates I want in order for them to appear in the Software Center on the client? All of my components are green. My synchronization is good and green but no Windows Updates ever show up in the Software Center. Thanks.
  21. I'm making an assumption that when creating the ADR and I get to the Download Location settings that I would want to download software updates from the internet or is there a location that should already contain those updates from the WSUS setup? These guides have been extremely helpful. Thanks.
  22. I followed all of the steps. My machine PXE boots fine, Win 7 installs without any problem but it never starts or completes the capture process. Where do I begin to look to find out why everything works except the capture? Thanks in advance.
  23. When running multiple primary servers do you need to enable the different discovery methods on all primary servers? Also, do I have to assign my default-first-Site-Name to a boundary group? I have created multiple boundaries to cover different IP ranges and boundary groups to accommodate the boundaries but have not done anything with the actual default AD site. Is that a problem? I'm having issues installing the CM client using windows update and wondered if that was the problem? Thanks.
  24. Running into another issue that I hope someone can help with. With a CAS and two primary sites WSUS and SUP is installed on all 3 machines. I have created the custom client settings and deployed them to the proper collections so they are pulling from the correct primary site. I know my account settings and firewall settings are all ok because I can manually push the client without any problems. Trying to use the Windows update function though keeps failing with an error code 1 at the client machine. Any thoughts on where to start looking for the problem would be most helpful. I will post the ccmsetup.log shortly. Thanks.
  25. Great tutorials by the way. My question is about the WSUS and the SUP install. We are running a CAS and 2 primary sites. Do I need the follow the steps on both primary sites or just one of my primary sites? Thanks in advance.
  • Create New...