Jump to content


Established Members
  • Posts

  • Joined

  • Last visited

Profile Information

  • Gender

drewz99's Achievements


Newbie (1/14)



  1. I think this will go one of two ways: Add the MP to AD, configure as needed. MOve the machine to the dmz and open only the ports needed for the dmz MP to communicate with the internal site or Purchase a third party ucc ssl cert and install on each MP/DP for authentication Any other thoughts regarding this issue? Anybody actually got this feature to work as advertised?
  2. Hello All, I am wondering if anybody has a step-by-step for implementing the IBCM for CM? I've read a lot of different articles, but none of them seemed to have all the pieces? Basic idea is to obtain the ability to manage portable devices (laptops) while those devices are off of the domain. EX. teacher laptops that need to be managed via CM while on summer break. There is NO AD in the DMZ. I can open needed ports on the firewall for communication between Primary site server/MP and MP in DMZ. We've got CM1511 fully functional within the domain. Client checks, dns, OSD, WSUS, etc all work great while on the domain. I am looking to put a MP in the DMZ to manage these portable devices, but I am lacking the knowledge to fully implement this solution. Any pointers to a complete guide would be VERY much appreciated.
  3. I've performed the removal and addition of the SUS role in my lab and at another customers site. system account was not removed from the site db. Not sure what the previous customers did, but, I am certain that the error was not caused by the removal of the SUS role.
  4. Question for all the SCCM 2012 R2 Admins: Basic overview: In an attempt to get a customers patching working correctly, I recently remoted in to find critical warnings at every turn. I was able to resolve the storage issue by expanding the drive size. I was able to resolve the sccmadm access errors by having the customer reset the password for that account ( I do not have that ability as a contractor for them) I had to stop/delete/remove all applications/packages/and process that were "hung" due to the storage/access issues. Here's where things get a little odd: I went to remove the SUP role for reinstallation and within 6ms of doing so, the server started showing the below message in the Event Viewer along with nearly every CM log: Login failed for user 'DOMAIN\SCCM2012$' Reason:Could not find a login matching the name provided. [CLIENT:<local machine>]. After a thorough investigation, the problem was located and it appears as if the NT Authority\System account no longer had access to the CM Site DB. Upon adding the NT Authority\System account back in, the errors stopped and all service started back up. The problem here is now, that the customer is telling me this was caused by removing the SUP role and they are not willing to pay for the time to resolve that particular issue. I have never seen this issue before? Could this account have been removed some time ago and the call to remove the SUP role have initiated the NT Authority\System account for removal then noticed it was no longer there? If I understand correctly, the removal of a system account would need domain admin/DBA permissions which neither I, nor the local system account have. Any thoughts as the why this error presented itself during the uninstallation of the SUP role? This has turned into the customer pointing fingers at me, most likely, due to an issue they created for themselves at some point in time.... Thank you in advance for your time and the sharing of your knowlede.
  5. I can deploy Java via Application with no issues. The issue when using the Application is adding the batch file for removing all previous verions of java. I've yet to succesfully created the deployment script that references the batch file while inside the Java deployment. Anybody have any ideas as to why my packages remain at 0.0% compliance when directed to deploy to collections? Applications deploy perfectly. Packages, sit for days on end. Deploy as soon as possible has been selected. Content has been distributed, but unable to figure out what's causing the packages to not push to the client machines? Thanks
  6. Would anybody happen to know what may be causing my packages to sit at 0.0% compliance once deployed to any specific collection? Applications deploy within 20 minutes, so there's no issues there. I need a specific package that references a .bat file togo out and uninstall ALL Java on a specific collection, but the package that contains the .bat file, will not deploy. It's been "deployed" longer than the software cycle so that's not what Im waiting for. Zero errors on DP. Also, would any of you knowledgable helpful folks be able to shed some light on scripting the deployment of the .bat file via Appplication that install Java 8u51? I've tried it multiple ways, but no success? Thank you in advance for all your support.
  7. I've been tasked with migrating a customer off of server 2008 R2 to Server 2012 R2. All FSMO roles have been transferred to the newly created Server 2012 R2 DC's and replication is taking place. Tomorrow, I would like to migrate dns off of the 2008 boxes. The scopes have replicated to the new dns servers, but how to I make sure the clients get pointed to the 2012 dns servers once I take the 2008 servers offline? I do have dns integrated into AD. I'm stuck at the "ensuring primary dns server" becomes my 2012 DC. Would the below powershell command set this across the domain? Set-dnsclientserveraddress –interfaceindex 15 –serveraddress (“xx.xx.xx.xx”,”xx.xx.xx.xx”) Any advice would be greatly appreciated. Thank to everyone!
  8. How would I go about that? Would that be built into the Application deployment? What would the most commonly accepted method for distributing that file to the follwoing directory be? C:\Users\<usernmae>\AppData\LocalLow\Sun\Java\Deployment. Thank you very much for your support.
  9. I am trying to push out Java v. I can successfully push this via an Application and Package, however, neither deployments are referencing the deployment.properties file? Can anybody shed some light on this subject? I've always been in an enviornment where they were using GPO's for settings like these, but this customer wants to use this deployment.properties file. Any help would be greatly appreciated. I do have a .cmd file for installation, and have run through the installation with a .bat file as well. Both work, but no settings from the deployment.properties file?
  10. I've recently taken over a MDT server that is using "hard coded" MAC/IP address for deployments. Can anyone tell me how to remove these settings? This is creating an unique deployment for each MAC which I'd like to get away from. I'd like to be able to have one deployment available for multiple server/workstation MAC/IP's. Is there a way to make the deployments available for all known and unknown machine types? I've done this with our 2012 Configmgr and it works great!
  11. I am experiencing an issue with the Capture Image process when launching the process via tsmbautorun.exe from mounted iso on virtual server. Server is running 2012 R2 Standard. The process completed successfully when capturing the image of my 2012 R2 Data Center build however. When running as Administrator, the process starts the wizard, i'm able to fill out all the information on the following 3 or 4 dialog boxes, but when i click finish, nothing happens? No smsts.log is created, no processes related to task are able to be located, and no errors in Event Viewer. Could there be a local GPO in place stopping this process (I've enabled Autoplay, no success)? Any help would be greatly appreciated seeing as the main image we will use to deploy these servers will be the standard version of course. Also, both of these images are DISA images containing all required STIG's. Just a little background on the image. Basically all GPO related items are hard coded into the loads and don't require a GPO to set these settings once the boxes are added to the domain. Thank you!
  12. What exactly will this script be doing? Would like to fully understand prior to running. thank you
  13. When executing this command, the following error is returned: Parsing MOF file: c:\smsdpprov.mof c:\smsdpprov.mof <1>: error SYNTAX 0X8004400a: Unexpected token at file scope Compiler returned error 0x8004400a Would you happen to have any other suggestions in regards to this issue? Thank you
  • Create New...