I used the following links and included the latest IE11 cumulative security update KB3104002 that was released 12/8/15.
http://joji.me/en-us/blog/create-internet-explorer-11-batch-deployment-package https://technet.microsoft.com/en-us/library/security/MS15-124 From: [email protected] [mailto:[email protected]] On Behalf Of Daniel Ratliff Sent: Thursday, January 07, 2016 3:49 PM To: [email protected] Subject: [mssms] RE: FYI, if you still have versions of IE older than 11 out there... Same here, task sequence with the post-IE11 CU installed. The good news is if you install using the .exe, the post-install CU doesn't require a reboot before being installed. One single reboot for everything. Daniel Ratliff From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of ODONNELL Aaron M Sent: Thursday, January 7, 2016 1:40 PM To: '[email protected]' Subject: [mssms] RE: FYI, if you still have versions of IE older than 11 out there... We are just finishing up our rollout of IE11 and ran into the same issue. The SCCM software updates scan on the workstation wasn't catching computers fast enough when we deployed IE11 overnight so people would log in the next morning and IE would still be unpatched and then have various enterprise mode issues. Our solution was to use a task sequence to push out the IE update installer with an added command line step for using DISM to apply the .cab file of the latest IE cumulative update and kick off another reboot. Kind of the brute force method but it eliminated a lot of problems for us. Thanks, Aaron O'Donnell From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Miller, Todd Sent: Thursday, January 07, 2016 1:25 PM To: [email protected]<mailto:[email protected]> Subject: [mssms] RE: FYI, if you still have versions of IE older than 11 out there... Hey, on this topic... I am in the final stages of preparing to deploy IE 11. During the testing phase I discovered that it is deployiong IE 11 and the client end up with the June 9 2015 Cumulative update installed. This is version 11.0.20. That version is supposed to be new enough for the Enterprise Mode "stuff' but the Enterprise mode stuff is not working and not showing in the Tools menu. Only after a more recent CU is installed - like the December 2015 update - does the Enterprise Mode start working. (I've looked in the registry on the machines and the policy entries are there -so it is not because the GPO is not making it to the client) I can't figure out why 1) The June 2015 version is not "new" enough for the Enterprise mode stuff that came in 2014 and 2) if there is a way to pack in a newer Cumulative Update. I don't honestly know how the June 9 2015 CU got included in the package either... Looking on the internet - there are gobs of blogs about adding pre-requisites, but nothing on post requisites. I've tried to use a similar method to include an MSU in the IEAK, but set it to "after system restart" but that is a no go. Internet research tells me that function in IEAK doesn't work anyway. So any tips on deploying IE 11 with a version that can use Enterprise mode out of the gate? Otherwise my clients are without Enterprise mode for 1-6 days depending where they are on the software update re-scan cycle. I'm about to throw in the towel and just have some web sites not work for a few days while the clients catch up with a new IE 11 Update version that supports Enterprise mode. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Art Flores Sent: Thursday, January 07, 2016 1:13 PM To: [email protected]<mailto:[email protected]> Subject: [mssms] FYI, if you still have versions of IE older than 11 out there... Time to push out a GPO if you want to avoid some new nag notifications. https://support.microsoft.com/en-us/kb/3123303 http://blogs.msdn.com/b/askie/archive/2015/12/17/how-to-implement-the-end-of-life-feature-control-key-outlined-in-kb3123303-using-group-policy.aspx ________________________________ Notice: This UI Health Care e-mail (including attachments) is covered by the Electronic Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and may be legally privileged. If you are not the intended recipient, you are hereby notified that any retention, dissemination, distribution, or copying of this communication is strictly prohibited. Please reply to the sender that you have received the message in error, then delete it. Thank you. ________________________________ The information transmitted is intended only for the person or entity to which it is addressed and may contain CONFIDENTIAL material. If you receive this material/information in error, please contact the sender and delete or destroy the material/information.
