Jump to content

Search the Community

Showing results for tags 'domain'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Cloud
    • Azure
    • Microsoft Intune
    • Office 365
    • Windows 365
  • General Stuff
    • General Chat
    • Events
    • Site News
    • Official Forum Supporters
    • Windows News
    • Suggestion box
    • Jobs
  • MDT, SMS, SCCM, Current Branch &Technical Preview
    • How do I ?
    • Microsoft Deployment Toolkit (MDT)
    • SMS 2003
    • Configuration Manager 2007
    • Configuration Manager 2012
    • System Center Configuration Manager (Current Branch)
    • Packaging
    • scripting
    • Endpoint Protection
  • Windows Client
    • how do I ?
    • Windows 10
    • Windows 8
    • Windows 7
    • Windows Vista
    • Windows XP
    • windows screenshots
  • Windows Server
    • Windows Server General
    • Active Directory
    • Microsoft SQL Server
    • System Center Operations Manager
    • KMS
    • Windows Deployment Services
    • NAP
    • Failover Clustering
    • PKI
    • Hyper V
    • Exchange
    • IIS/apache/web server
    • System Center Data Protection Manager
    • System Center Service Manager
    • System Center App Controller
    • System Center Virtual Machine Manager
    • System Center Orchestrator
    • Lync
    • Application Virtualization
    • Sharepoint
    • WSUS

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start



Website URL



Found 20 results

  1. Hey Guys / Niall - So I manage an environment of ~10,000 workstations and ~900 servers on a single domain. A few months ago, we acquired a new company which has their own SCCM environment on a different domain. Finally, I am wrapping up a build of SCCM on a 3rd domain. The plan is to migrate all clients from the two old domains onto the new one. I have a couple of questions about this procedure so wanted to post to get opinions... 1. Migrate Many Clients to New Site Prior to Domain Change The main question is that their current plan is to migrate the domain on workstations a department at a time over a six month period. While doing so, they want to use my script to migrate each of the workstations' SCCM client while changing the domain. The last thing i want is to have 3 separate and constantly changing environments to manage, so am trying to find the best way to potentially migrate the clients from both old domains to the new one before (like few months in some cases) the domains on the workstations are changed. There's currently a one-way trust between the new domain and both old ones and don't know if I can get them to make it more flexible. Basically, I'm curious what I would need to do in order to achieve the goal above. My experience tells me the below would be needed - at least in theory: Add scope of system's OUs / containers in old domain to discovery on new site Script executed per system to change the site of the client to the new site The SCCM Network Service account to have local admin rights on all workstations (per old domain) Specific DNS records modified / changed to point to the FQDN of the new primary instead of the old ones (per old domain) Is the above all that would be required, know of any helpful posts related to this, or any suggestions / thoughts? 2. Migration of Packages, Applications, etc with New Source Path I'll be moving a lot of packages and such over to the new environment, but am now using a new "master" share for the sources of all packages, applications, etc. It's simple to migrate an SCCM package from one site to a new one, but when doing so; it retains the same source path for it. Does anyone know of a PowerShell script or overlooked options which would allow me to change just the first part of the source path for migrated packages when moving to the new site? If capable of copying the source content during the migration, that would be ideal; but if not copying it would still be faster than changing each manually. I'm considering simply exporting certain packages, then importing them back in. Will have to play with that a bit more to see how it would work. Suggestions? All 3 sites run SCCM 2012 R2 SP1 CU4. We cannot go to current branch yet due to numerous legacy apps on workstations which don't play nice with .NET 4+. Most site servers (especially on the new environment) run Windows 2012 R2. Any suggestions or comments would be appreciated. Thanks!!
  2. Hi All Hoping you can help. We are starting to talk about upgrading all our domain computers to Windows 10 Ent. We already have MDT setup with an image that we can use to do individual computers but need help to find out if its possible to automate the process so we don't have to go out to all our sites and sit at each computer to kick the process off. We know you can using SCCM but is it possible with MDT?
  3. Good morning, Long time reader, first time poster. I have an issue with SCCM and clients already added to ADUC. If i build a computer with a name not already in ADUC the task sequence executes correctlt and the machine joins the domain for example KS-Win10-V5. If i use the exact same task sequence and attempt to build a machine already in ADUC (for example ks-wk-adm-01) it executes the task sequence but fails to join the domain... I have added the netbootguid to the machine in ADUC and updated the System discovery in SCCM and this has made no difference. Does anyone have any idea what i could try? I've got a site with 500 devices to rebuild next week. Thank you in advance. If you need any more info let me know. Mark
  4. Hi I've recently installed WDS on a new server and has been setup and works fine. We have been able to capture images and deploy images fine. I have made a Unattend.xml file that does all the windows setup bits and works fine. The only one problem i'm having is auto joining the domain. I've added the unattended join to the XML and still won't do it trying unsecure and secure option. I've noticed if not using the unattend and just prestage the device it will join the domain at the end of the deployment. Some extra information that may be needed is we have it set so that the computer goes into Pending and it is then "Name and Approve" this is so the computer is named for the deployment. Please let me know if anymore information is required
  5. Hey Guys / Niall - I'm in need of assistance with an issue, please. Our company is moving all systems over to a new domain over the next few months. One other change will be that the new domain will have a new SCCM environment. Since I'd rather not manage multiple environments, the plan is to migrate all workstations over to the new SCCM environment over about a week's time before migrating the domain on the systems. I've already built the new environment and all site servers on the new domain so was ready to start client migration. Changing a system to the new SCCM site and new domain works great - however - changing the client to the new SCCM site while retaining the old domain is not working. Overall, I have ~10,000 workstations on our current domain which are members of the existing SCCM site. I'm needing to migrate the clients to a new SCCM site which is on a new domain, but without changing the domain. I'm using a VBS file to change the client's site code to the new environment. Once I do, communication isn't correct, though. Client's log files show: ClientIDManagerStartup.log RegTask: Failed to refresh MP. Error: 0x8000ffff LocationServices.log: There is no AMP for site code "BCD". LsRefreshManagementPointEx failed with 0x8000ffff Failed to refresh security settings over AD with error 0x87d00215 Failed to refresh security settings over MP with error 0x8000ffff The New SCCM environment's console shows the hostname of the test system plus shows that it's a member of the old domain. It shows that "No" client is installed on the system both prior to and after the test to migrate it. Finally, below are the things I've configured in preparation prior to the test: A two-way trust exists between the old and new domains Boundary added in New SCCM environment (ip range) for test system which is assigned to a Boundary group /w assigned site code & MP SRV record added to old domain so that new site code resolves and points to FQDN of the new SCCM server's primary server Discovery methods configured to scan for systems in the old domain Both SCCM sites are HTTP (not HTTPS) Any suggestions? Thanks!!
  6. Good morning, I have been working on getting an offline OSD task sequence working for some Lenovo Yoga 12 tablets we just purchased, and I do not want to go the route of doing them via ethernet dongle. I've got it to where it will go through the entire task sequence, but something weird is happening that I'm sure will be obvious to someone out there that can help. It goes through the entire task sequence, and when it gets to the end it has added the wireless profile and is connected, but the following has failed: 1) For some reason the local administrator account has a blank password, AND is disabled. The task sequence is set to set our specific administrator password. Not sure why this fails? 2) The last step before a restart is to join the domain, which fails for some reason. When it finishes the task sequence, it does not show any errors. It shows up at the login screen, which no logins will work. It does show that it's connected to our wifi at the bottom, which has connectivity to our domain controllers. Here's a pic of our task sequence order: Do i have something out of order, or just done completely wrong? Any input is greatly appreciated, thank you!
  7. Hello all, I've upgraded my sccm server to 2012 sp1 and deployed windows 10 all went fine and applications installed without problems on the windows 10 machine. Right now i am setting my group policy right and facing a isue of windows 10 what i think need to be turned of in a domain network. You got different Privacy policy's that can send wifi passwords, account information, Keyboard recorder ( key logger) to the microsoft servers. Where and how can i set this OFF by group policy?
  8. I have a dilemma where I have machines as part of a domain and others that are attached to a different domain(not controlled by our company) but connect back to our network via F5 Networks BigIP client. There is a necessity to be able to manage and also deploy software\updates to those machines on the separate domain as well as do inventory. Our current setup is SCCM 2012 allowing intranet and internet connections. We use PKI certs for all our machines including the ones that are on this separate domain. I have modified the Hosts and LMHosts files and checked the netbios cache and the machines are configured to see our management point. However, these machines always show as inactive and I cannot contact them. Is this because they are on a different domain and because they have no schema in their AD? What might I be missing? Is this even possible?
  9. Afternoon, Recently, I have noticed that some our machines are not consistantly joining the domain as part of the task sequence. I find the issue is very strange, for example the same laptop can take multiple attempts before finally going through and completing the task sequence. The issue occurs with different laptop/desktop manufacturers and models. It also occurs with machines that have previously been sucessful through the task sequence. Our setup has been in place for 18 months and the task sequence has not been altered. The boot image has also not been altered and the correct network drivers are present. I have read that the network drivers in the driver package may need updating, however as the machines will occasionally work I am unsure as to whether that is the correct answer. Within the task sequence I have checked that the user account used to join the machine is correct and it has appropriate permissions. After reviewing the SMSTS logs I have noticed the following: Found network adapter "IntelĀ® Ethernet Connection I217-V" with IP Address TSMBootstrap 04/06/2015 12:32:50 2920 (0x0B68) So I think it must be failing due to the IP address. I am unsure as to why a 169.254 address would be issued. Can anyone explain why it picks up this address during the image build? Towards the end of the SMSTS log I can see the following: Retrying... TSManager 04/06/2015 12:47:36 2972 (0x0B9C) CLibSMSMessageWinHttpTransport::Send: URL: sccm-vm-wm1.XXXX.co.uk:443 CCM_POST /ccm_system_AltAuth/request TSManager 04/06/2015 12:47:36 2972 (0x0B9C) In SSL, but with no client cert TSManager 04/06/2015 12:47:36 2972 (0x0B9C) Error. Received 0x80072ee7 from WinHttpSendRequest. TSManager 04/06/2015 12:47:36 2972 (0x0B9C) unknown host (gethostbyname failed) TSManager 04/06/2015 12:47:36 2972 (0x0B9C) hr, HRESULT=80072ee7 (e:\nts_sccm_release\sms\framework\osdmessaging\libsmsmessaging.cpp,8936) TSManager 04/06/2015 12:47:36 2972 (0x0B9C) sending with winhttp failed; 80072ee7 TSManager 04/06/2015 12:47:36 2972 (0x0B9C) So I google'd the above and it is effectively telling me that machine can not speak to the DC in order to join the domain. Which makes sense as it has a 169.254 network. Hopefully someone may have seen something like this before. It is starting to cripple our productivity. Please let me know if any further information. Thanks in advance. Stephen
  10. Hello, I have a problem with trying to join a domain and name the PC as part of a UDI task sequence using standalone media. The task sequence works just fine when PXE booting, but it will not do either task when using a USB drive. Do the task sequence variables that are set by the UDI somehow get reset before the domain join step when not connected to the SCCM server? If so, is there a way to get around this? Maybe using an unattend.xml file? I would appreciate any insight on this. Thanks. TheWes
  11. Hi guys, I was hoping someone could provide some guidance. We are currently in the process of a forest/domain consolidation. We have two AD forests with one domain in each. We are in the process of standing up a third forest with one domain in it on 2012 R2 that we will be moving all resources and users to over the next year. I understand that i'll need to bring up a new primary site with a new Site Code in the new third forest/domain. Some other details about the SCCM 2007 environment: One Site Server running SCCM 2007 R3 One Remote SQL server running 2008 Forefront Endpoint Protection is Integrated WSUS with a remote WSUS server on 3.0 is integrated Windows OS Deployments with WIndows Deployment Services are integrated and currently configured for deploying Windows 7 Parallels Management Suite for Managing Macs is integrated We are currently deploying many applications via SCCM Updates Publisher 2011 is current integrated with SCCM on the site server. My question is, should i migrate from the existing SCCM 2007 environment to SCCM 2012 whilst still in the same forest first before migrating collections and packages etc to the new forest? Or just migrate once and migrate the SCCM 2007 forest collections and packages etc to the new 2012 R2 forest so as to not do double work? Any pros and cons either way? If anyone has done this sort of migration i would appreciate your recommendations. Thanks Joey
  12. Hello, I am trying to run a OSD task sequence on a Dell XPS 13 laptop. This particular model does not have an ethernet port built in, and requires a ethernet to USB dongle. I have baked the drivers for the Dell LAN7500 into the image itself and everything is downloading, such as the driver packages and applications. The only problem is that it will not join the domain. My theory is that the dongle driver isn't ready to use until after the initial reboot and setup of the Windows installation, which happens after the Apply Network Settings step. I have tried moving that step to after the initial reboot, but it just hangs and eventually errors out. Has anyone successfully done this? Thanks! TheWes
  13. I have been wrestling with for sometime. SCCM 2012 sp1 MDT 2012 Integration I am using UDI Wizard along wth customsettings.ini Goal: I want to have users get the UDI wizard and choose the settings like what OU they want the computer to go into during the task sequence. I then want the computer name to be based on the OU that has been chosen eg: If the user picks Eastern Regions in the UDI Wizard then during the taks sequence the name of the computer will be be based on the OU that the computer is put int for example - EASw7L-%serial% I need help understanding how to setup the variables using OSDDomainOUName if needed and what step to use this in the Join Domain vs Apply Network Settings. We can do a remote connection so you can see whats going on if that will make things easier. Thanks for any help with this!
  14. Hello! First time poster and also new to SCCM (2012) in general, but catching on pretty quickly. Much thanks to this forum. A little back story - we created capture media so that we could capture a manually built reference machine (a virtual machine). This capture spit out what would be our new base WIM. It worked great. This base WIM is essentially Windows 7x64 Enterprise SP1, all up-to-date software updates, MS Office 2010, and Internet Explorer 10 only. We kept our base very simple. The issue - We are running in to a very strange problem where we add our base WIM to our deployment task sequence, all seems great until you log in with a domain account. The Windows theme is some sort of "Windows Classic" or "Windows XP" theme. This does not happen for the local admin account though. So, you can log in as local admin, you get Windows 7 Aero theme. Log off, log in as a domain user and you get "Windows Classic/XP" theme (I've tried 4 domain user accounts to rule out the possibility of it being tied to a specific account). Log off and log back on as local admin and you get the Windows 7 Aero again. No idea what could be causing this. I thought it was possibly group policy because I was using a domain user account and maybe something was tied to it, but then I figured this would most likely happen to a lot of users in production and it isn't. I asked a friend and he said maybe look in to the unattend.xml, but I don't really know where to start with that. What could be in there that would be kicking off that classic theme look? This is especially weird when I am using a base WIM that I created from a Win7x64 Enterprise virtual machine that did have Aero turned on when it was captured. I found the following article from TechNet, but this talks about when migrating from XP to Win7. We are going from Win7 to Win7...We are simply updating our Win7 image because our most recent version was created with poor practice. The base WIM has so many programs that not all users need installed on - essentially a fat image and it's no good. The article seemed very close to what my issue is, but I cannot undererstand it. I do not know what scanstate and loadstate are, nor a config.xml. Plus, since I am not coming from XP this probably won't fix my issue. http://blogs.technet.com/b/askds/archive/2010/02/24/get-shiny-with-usmt-turning-the-aero-theme-on-during-xp-to-windows-7-migration.aspx Any help is greatly appreciated. Thank you!
  15. Hello, I am a new user. I ran into trouble with the windows 7 x64 deployment. During deployment is obviously skipped a few steps. After deployment the Windows started normally, but i noticed: - computer was not joined to a domain - a local administrator account is disabled (the Apply Windows Settings step is not applied) - there is no application installed The log files are located (when i go in to a safe mode) on location c:\_SMSTaskSequence\Logs. There are three files: dism, smsts, smsts-20130718-201442 What can i do? tnx, Andrej
  16. Hello, I have 4 domains being monitored under SCOM. I have a very weird problem as every now and then one of the domains (always the same one), appears as offline (by domain, i mean all the servers that are in the domain). Evey time this happens, i check all servers, and they are absolutely fine. I can ping them, RDP, nothing in the event logs etc. It comes back after a couple of hours on it's own... Do you have any ideas? Which log should i be looking into? Thank you in advance! PS. I am a newbie in SCOM so please "be simple" in your answers
  17. Hi, I am currently in the process of setting up a server at home, for educational purposes as I wish to pursue a future career into the IT sector when I finish my College Diploma in IT. I have setup a domain on Windows Server 2008 R2. Also I have set up a remote desktop service that allows workstations to remotely connect to the server. o Although this is not neccesary, I am purely doing this for education purposes. I would now like to achieve the opposite. So I would like to be able to log into a user/onto a computer which is connected to my domain/server The reason for this is because I want to be able to easily see the results on my PC connected to my domain, without having to get up and go to the computer itself. Lazy I know, but once again for education purposes. If anyone could help it would be muchly appreciated
  18. Hi Currently setting up a testlab for SCCM 2012 and have just finished the MDT step. I run into a problem (i think) that I'm unsure on how to handle. Problem: When creating a new MDT UDI TS I'm first prompted to supply a TS Name. After this it jumps to Boot Image, skipping domain and such, After this it jumps to MDT Package followed by USMT package. Now it skips everything in between. In the image attached I've marked steps skipped with RED and steps that Im able to complete in GREEN. Is this how it's intended to work? MDT Clients TS and Server TS goes through all steps just fine, the others don't. MDT Version: 2012 Update 1 (Downloaded 2013-05-14) SCCM Version: 2012 SP1 OS Version: Windows Server 2008 R2 Eng Thanks Martin
  19. Hi guys.. we have a server (08r2) that does all. wsus, eset rac, pdq inventory, print server , etc .. we only have this one box.. I was wondering if i could house SCCM within a VM inside this server to play with package deployment and stuff or if i would need a separate box (no budget). server is pretty robust and fast and its currently managing about 100pc's . please let me know thank you
  20. Couple of issues that I can't quite remember when dealing with sysprep. 1) I have a couple images that aren't to be joined to our domain, yet when I set <JoinWorkgroup>WORKGROUP</JoinWorkgroup> in sysprep.xml AND in WDS I select "Do not join the client to a domain after an installation", it still ends up connecting to the domain. 2) I'm noticing in the registry, the original computer name that had been sysprepped and captured was still showing up. I used: sysprep.exe /oobe /generalize /shutdown I can't recall if this is just how it happens or if it's supposed to be like that.
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.