Search the Community
Showing results for tags 'AD'.
-
Good morning, I'm setting up a system based on this guide: http://www.windows-noob.com/forums/index.php?/topic/1782-how-can-i-deploy-applications-based-on-ad-security-group-membership-for-computers-using-a-task-sequence/ Here's what I'd like to do: When I set up a computer association, I'd like SCCM to check what AD groups the old computer is a member of, and add the new computer to the same groups as part of the replace task sequence. That way, the migration would "migrate" the user's software along with user preferences and settings. Is this possible? The only way I've found is to write a powershell script that would copy a computer's AD groups. Would I need to write this script and have the replace task sequence run the script? The script would have to create the computer in AD and move the group settings. Thanks for any thoughts or ideas.
-
I tried to modify the schema following this guide in preparation for SSCM installation. http://www.windows-noob.com/forums/index.php?/topic/489-how-can-i-configure-sccm-2007-sp1-in-windows-server-2008/ I am an Schema Admin but I am running this command on my SSCM server itself not on the DC, does it matter? and I am getting the following errors. Any ideas? <10-24-2011 15:08:28> Modifying Active Directory Schema - with SMS extensions. <10-24-2011 15:08:28> DS Root:CN=Schema,CN=Configuration,DC=mydomain,DC=com <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-Site-Code. <10-24-2011 15:08:29> Defined attribute cn=mS-SMS-Assignment-Site-Code. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-Site-Boundaries. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-Roaming-Boundaries. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-Default-MP. <10-24-2011 15:08:29> Defined attribute cn=mS-SMS-Device-Management-Point. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-MP-Name. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-MP-Address. <10-24-2011 15:08:29> Defined attribute cn=mS-SMS-Health-State. <10-24-2011 15:08:29> Defined attribute cn=mS-SMS-Source-Forest. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-Ranged-IP-Low. <10-24-2011 15:08:29> Defined attribute cn=MS-SMS-Ranged-IP-High. <10-24-2011 15:08:29> Defined attribute cn=mS-SMS-Version. <10-24-2011 15:08:29> Defined attribute cn=mS-SMS-Capabilities. <10-24-2011 15:08:30> Failed to create class cn=MS-SMS-Management-Point. Error code = 8202. <10-24-2011 15:08:30> Failed to create class cn=MS-SMS-Server-Locator-Point. Error code = 8202. <10-24-2011 15:08:30> Failed to create class cn=MS-SMS-Site. Error code = 8202. <10-24-2011 15:08:30> Failed to create class cn=MS-SMS-Roaming-Boundary-Range. Error code = 8202. <10-24-2011 15:08:30> Failed to extend the Active Directory schema, please find details in "C:\ExtADSch.log".
-
Hello I'm having a problem with my patch management colletion queries. We want to make sure that we do not include manually patched servers in our SCCM patch management, and want to control this through a Exclusion group in AD. I'm having a hard time getting the correct results though. I want to include servers in Group A, and I want to remove servers that is included in Group B. The point is to remove servers that is in both groups. As a kind of fail safe. I've gotten this far: select SMS_R_SYSTEM.ResourceID,SMS_R_SYSTEM.ResourceType,SMS_R_SYSTEM.Name,SMS_R_SYSTEM.SMSUniqueIdentifier,SMS_R_SYSTEM.ResourceDomainORWorkgroup,SMS_R_SYSTEM.Client from SMS_R_System where SMS_R_System.SystemGroupName like "Domain\\G_Patch_server_Pilot" and SMS_R_System.ResourceId not in (select ResourceID from SMS_R_System where SMS_R_System.SystemGroupName = "Domain\\G_Patch_server_Exclusions") This gives me the servers in G_Patch_server_Pilot group from the correct domain, but it does not honor the Exclusion groups that is not supposed to be added to the query. If I do the same query with OU's, I get the desired result: select SMS_R_SYSTEM.ResourceID,SMS_R_SYSTEM.ResourceType,SMS_R_SYSTEM.Name,SMS_R_SYSTEM.SMSUniqueIdentifier,SMS_R_SYSTEM.ResourceDomainORWorkgroup,SMS_R_SYSTEM.Client from SMS_R_System where SMS_R_System.SystemOUName like "Domain.com/Machines/Servers" and SMS_R_System.ResourceId not in (select ResourceID from SMS_R_System where SMS_R_System.SystemOUName = "Domain.com/Machines/Servers/Database") This query will exclude the sub OU called Databases. We can not however, base this on OU's as there is different types of servers that need to be excluded. What am I doing wrong here?