Dune is our resident expert on this, but he’s not on the list. I’ll proxy for
him.
First question: Windows client build and SCCM version
Second question: did they have any applocker rules/policy set up before
targeting WDAC?
If yes to the second, they should try booting the machine from
An update. The KB will be revised. The memory management registry keys are for
enabling protections on server only; they are not required on the client. You
don't generally need to modify these registry keys on client OS.
Also, we released a configuration baseline with Microsoft-signed content
t to ensure that it is virus free and no
responsibility is accepted by Canal (or its subsidiaries and affiliates) for
any loss or damage arising therefrom.
From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com>
[mailto:listsad...@lists.myitforum.com] On Behalf Of Aaron
Yeah, I'm checking on this.
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Robert Spinelli
Sent: Tuesday, 9 January, 2018 10:43
To: mssms@lists.myitforum.com
Subject: [mssms] RE: Confused - Spectre / Meltdown
I agree, something isn't right. I'm 99%
We just published a blog post with a piece on SQL (in Config Manager
infrastructure section):
https://blogs.technet.microsoft.com/configurationmgr/2018/01/08/additional-guidance-to-mitigate-speculative-execution-side-channel-vulnerabilities/
Let me know if you have any further
I haven’t heard of or seen such issues. Did you restart the systems on which
you upgraded the ADK?
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Johns, Damon (DoJ)
Sent: Friday, 27 October, 2017 14:07
To: mssms@lists.myitforum.com
Subject: RE: [mssms]
CMG is Standard A2 right now, as PaaS
We’re investigating making that more flexible in the future
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Jason Sandys
Sent: Thursday, 5 October, 2017 20:05
To: mssms@lists.myitforum.com
Subject: RE: [mssms] RE:
A few more points to add:
Moving SCCM to Azure for IaaS, clients still need to connect and communicate.
Think of IaaS as just extending your datacenter into Azure. Would you still
want to expose that raw to the Internet? Probably not. So this in itself does
not help the client roaming
Video and post these stories!
http://aka.ms/ConfigMgr25
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Lindenfeld, Ivan
Sent: Friday, 29 September, 2017 11:24
To: mssms@lists.myitforum.com
Subject: RE: [mssms] 25 years of SMS
Lots of smiles watching
Two separate things.
You can put SCCM site roles in Azure IaaS (infrastructure as a service) where
you create and manage the VM, just think of using Azure like another datacenter
for your company. That’s the link you shared below.
CMG and CDP use Azure PaaS (platform as a service) – SCCM
Correct, currently the full client cannot be used on the Surface Hub, but you
can use the SCCM on-prem MDM feature.
We’re also talking with the Surface Hub team about future manageability
improvements.
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of
Two clarifying comments.
Server 2016 = Redstone server = Win10 1607. As we’ve stated in other places, we
only support Win10 LTSB 2015 and the first two builds of Win10 CB with SCCM
2012, which does NOT include 1607. Therefore, no plans at this time to support
Server 2016 with SCCM 2012.
As
"publicly state their dedication"
See
https://blogs.technet.microsoft.com/msdeployment/2015/12/22/mdt-2013-update-2-now-available/
Q: Is this the last release of MDT?
No, we will continue to iterate and invest in the product.
I'm the PM for MDT (among other things), and seem to be asked a
Ok...I'll bite. :)
I get what you're saying, and I'm really interested to see how this petition
progresses, but my personal opinion is that this is like asking Stanley to
standardize on how to join together building materials. Do I use a hammer and
nail, nailgun, screwdriver and screw (Phillips
http://social.technet.microsoft.com/wiki/contents/articles/2303.understanding-access-to-microsoft-certificate-revocation-list.aspx
-Original Message-
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Jason Wallace
Sent: Wednesday, 14 September,
mber, 2088.
Though I don't think Microsoft thought this through. What do we do after 9912?
Is this SCCM's Y2K?
#FutureAaronProblems
On Fri, Jul 8, 2016 at 8:10 AM Aaron Czechowski
<aaron.czechow...@microsoft.com<mailto:aaron.czechow...@microsoft.com>> wrote:
https://technet.microsoft.com/
https://technet.microsoft.com/en-US/library/mt607046.aspx
The following versions of Configuration Manager are available as a baseline, an
update, or both:
Version
Availability date
Baseline
in-console update
1511
5.00.8325.1000
12/8/2015
Yes
No
1602
5.00.8355.1000
3/11/2016
No
Yes
At least as of 1602 I don’t think you can deploy the Win10 upgrade via
traditional software updates. Your options are task sequence (for greater
control but with more manual work) or servicing plan (less manual work but not
as flexible yet).
Go watch the MVA that Wally and I did a while back:
https://technet.microsoft.com/en-us/library/mt613198.aspx
The WSUS Administration Console is required on the Configuration Manager site
server when the software update point is on a remote site system server and
WSUS is not already installed on the site server.
[System_CAPS_important]Important
What a coincidence, we were just talking about “slow moving software” in this
morning’s Shiproom….
To reiterate Michael’s comments, our marketing team is working on this, even
talking with BradAnd, and as I hear have until 2/27 to publish. The list I’ve
seen so far includes three additional
Could one of you do me a huge favor and file this on Connect? I’m compiling a
list of these sort of oddities into a bucket of things to potentially do in the
future to improve the product. ☺
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of
Soon...
The usual: release + 90 days. Yosemite released on 10/16, so at least by 1/16.
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Darin Nelson
Sent: Tuesday, December 2, 2014 1:39 PM
To: mssms@lists.myitforum.com
Subject: [mssms] SCEP
be great.
On Fri, Nov 14, 2014 at 10:03 PM, Aaron Czechowski
aaron.czechow...@microsoft.commailto:aaron.czechow...@microsoft.com wrote:
Hi Paul –
We’re actually currently investigating this very issue that came in from
Windows TAP. The original parameters are coming from the .TCF that’s cached
Hi Paul –
We’re actually currently investigating this very issue that came in from
Windows TAP. The original parameters are coming from the .TCF that’s cached on
the machine, but then the MSP is no longer where it was originally. This could
also impact clients that have issues and get a repair
Does the behavior change if there is not currently a scan in progress? (If the
agent is idle)
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Gilmanov, Nile
Sent: Thursday, October 16, 2014 10:01 AM
To: mssms@lists.myitforum.com
Subject: [mssms]
We do have a bug already tagged for this – I’ll followup with doc team. No
worries if you’ve already emailed smsdocs, just add me to the thread.
And the value is in seconds, default is 60.
Thanks
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of
Bill blogged about this recently, even automated with PowerShell :)
http://www.billamoore.com/2014/03/13/powershell-automating-push-button-reset-configuration-manager/
He also includes a link to the core TechNet article on the topic:
http://technet.microsoft.com/en-us/library/hh824917.aspx
Hi Daniel -
I think this hotfix is specific to SP1, although the issue does occur in R2 as
well. Sustained engineering is already tracking a fix for R2 (but don't ask me
when, I don't know). The following is the key log entry in execmgr.log:
ContentProgressEx invalid request GUID handle
The
[mailto:listsad...@lists.myitforum.com] On
Behalf Of Aaron Czechowski
Sent: Donnerstag, 3. April 2014 04:51
To: mssms@lists.myitforum.com
Subject: RE: [mssms] wtgcreator.exe option: /enableBootRedirect
It maps to the Windows 8 control panel, “Windows To Go Startup Options” – see
attached. You can get here
It maps to the Windows 8 control panel, Windows To Go Startup Options - see
attached. You can get here by searching Control Panel for Windows To Go, it
shows up under the Devices and Printers category.
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Funny, this came up internally last week as well when one of our testers hit
the exact same issue. We confirmed it's by design with unattended domain join,
you can't specify a container, just an OU. If you want it to join the computers
container, don't specify anything. We did file a UI bug so
to the system account.
From: Aaron Czechowski [mailto:aaron.czechow...@microsoft.com]
Sent: 28 February 2014 01:06
To: mssms@lists.myitforum.commailto:mssms@lists.myitforum.com
Subject: RE: [mssms] Applications with no source files in task sequences
Hi Matt –
Out of curiosity, can you provide more detail
Hi Matt –
Out of curiosity, can you provide more detail on the app that doesn’t have
content?
Thanks
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Matt Wilkinson
Sent: Thursday, February 27, 2014 2:01 AM
To: mssms@lists.myitforum.com
Subject:
Sounds remarkably similar to a question I got yesterday from our doc team - did
you also ping smsdocs? :)
Looking at http://technet.microsoft.com/en-us/library/jj679892.aspx:
Because Windows Server 2012 Foundation comes pre-installed with your server
hardware, you do not need to separately
Sounds remarkably similar to a question I got yesterday from our doc team - did
you also ping smsdocs? :)
Looking at http://technet.microsoft.com/en-us/library/jj679892.aspx:
Because Windows Server 2012 Foundation comes pre-installed with your server
hardware, you do not need to separately
) of
Windows Boot Loader references.
Jason
From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com
[mailto:listsad...@lists.myitforum.com] On Behalf Of Aaron Czechowski
Sent: 17 December 2013 17:36
To: mssms@lists.myitforum.commailto:mssms@lists.myitforum.com
Subject: RE: [mssms] UEFI
FYI, I know there is at least one case open with Microsoft Support on this.
Lots of variables come into play, so hard to narrow down to what might be the
issue. When doing speed test comparisons or standalone tests, make sure you're
doing HTTP transfers. In one instance someone was comparing
upgrading that he couldn’t install the r2 client agent… I
need to follow up on that last one.
Andrew
Von: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] Im
Auftrag von Aaron Czechowski
Gesendet: Dienstag, 22. Oktober 2013 07:41
An: mssms@lists.myitforum.com
Betreff: RE
the recommended setting for SSD’s?
/ Johan
From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com
[mailto:listsad...@lists.myitforum.com] On Behalf Of Aaron Czechowski
Sent: den 21 oktober 2013 23:42
To: mssms@lists.myitforum.commailto:mssms@lists.myitforum.com
Subject: RE: [mssms
I’ve got that wrong?
Dre.
From: listsad...@lists.myitforum.commailto:listsad...@lists.myitforum.com
[mailto:listsad...@lists.myitforum.com] On Behalf Of Aaron Czechowski
Sent: Tuesday, 22 October 2013 2:52 PM
To: mssms@lists.myitforum.commailto:mssms@lists.myitforum.com
Subject: RE: [mssms] How
Yep - that should now work.
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of christopher.catl...@us.sogeti.com
Sent: Monday, September 9, 2013 12:25 PM
To: mssms@lists.myitforum.com
Subject: [mssms] RE: Windows 8.1 RTM and Windows Server 2012 R2
This should be addressed in R2 Preview.
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of CESAR.ABREG0 .
Sent: Wednesday, August 21, 2013 4:55 PM
To: mssms@lists.myitforum.com
Subject: Re: [mssms] SCCM 2012 WinPE issue.
So are. CU2
On Aug 21,
Surface Pro is a 64bit UEFI device, so the architecture has to be consistent
throughout, thus only x64 boot image. See
http://support.microsoft.com/kb/2858199/EN-US.
Also, check out the Surface Pro deployment guide:
We're investigating the issue. And by we I mean ConfigMgr and Windows product
groups. Not much more to share at this point than that.
Aaron
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Linkey, Mike
Sent: Wednesday, August 14, 2013 9:10 AM
To:
Interesting thread, definitely one I'll file away. :) As the program manager
for both OSD and MDT now, let me echo Jason's comment: MDT is still in
development, we continue to invest in it, and will continue to do so. For all
three scenarios: LTI, ZTI and UDI. (And when I say scenario, I mean
45 matches
Mail list logo