Software Update Cleanup in System Center 2012 Configuration Manager

If you need some understanding on how software updates and cleaning up expired or superseeded updates works in System Center 2012 Configuration Manager – SCCM 2012, i can recommend this great little article that describes the automatic progress that runs in the background and also shows you the manuelt steps that can be done to remove old updates no longer needed.

http://blogs.technet.com/b/configmgrteam/archive/2012/04/12/software-update-content-cleanup-in-system-center-2012-configuration-manager.aspx

Best Regards

/Mads

Updating #FEP or #SCEP definitions gives error 0x80248014 – small fix required when using Windows Update as source

If you update Forefront Endpoint Protection from the agent shown below, it will sometime not update its definitions from Microsoft Update unless you have allowed the OS to receive updates from other products than Microsoft.

SCEPGUI

If you encounter something like the error code 0x80248014 below when updating FEP – Forefront Endpoint Protection or SCEP – System Center Endpoint Protection definitions, you need to make a small adjustment.

Microsoft Antimalware has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.173.226.0
Update Source: Microsoft Update Server
Update Stage: Search
Source Path: http://www.microsoft.com
Signature Type: AntiVirus
Update Type: Full
User: NT AUTHORITY\SYSTEM
Current Engine Version:
Previous Engine Version: 1.1.10502.0
Error code: 0x80248014
Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Forefront Endpoint Protection cannot get Definition updates from Microsoft Update unless you check this box “Give me updates for other Microsoft Products when I update Windows”:

Image

 

If SCCM 2012 show this Antimalware Policy configuration, the “Updates distributed from Microsoft Update” will not work until you have checked the box.

Image

You can use a VB script to change it:

Save the text below in a file with a VBS extension.

Set ServiceManager = CreateObject(“Microsoft.Update.ServiceManager”)
ServiceManager.ClientApplicationID = “My App”
‘add the Microsoft Update Service, GUID
Set NewUpdateService = ServiceManager.AddService2(“7971f918-a847-4430-9279-4a52d1efe18d”,7,””)

Run the below command in an elevated command prompt: cscript optinMU.vbs

 

The reverse step is also possible with a simple alteration:

Set ServiceManager = CreateObject(“Microsoft.Update.ServiceManager”)
ServiceManager.ClientApplicationID = “My App”
‘remove the Microsoft Update Service by GUID
ServiceManager.RemoveService(“7971f918-a847-4430-9279-4a52d1efe18d”)

Source: http://support.microsoft.com/kb/2832355

Windows Intune & Configuration Manager – Free Trail Getting Started Guide

There is a way to get started with Windows Intune and Configuration Manager without creating a paid Microsoft Developer Account and buying a Symantec Certificat.

If you would like to try out Windows Intune with Configuration Manager 2012 R2 for Windows Phone 8, Android, IOS and Windows 8 PC’s for 30 days, this is what you will need.

Intune subscription and configuration login: http://account.manage.microsoft.com

Intune configuration login: http://manage.microsoft.com

If you would like to change the PoC to a production environment, you will allso need these:

If you would like to install your own Microsoft Store apps on Windows 8 or 8.1 without showing them to the public inside the store, and making the installation forced, this can be done by the term “Sideloading”.

You would need to look into Sideloading Keys HERE and HERE

 

The Windows Intune Team have written a blog regarding the Support Tool for Windows Intune Trail Management of Windows Phone 8 HERE

Solution – Error: Service health log: WP appStoreURI is missing for account 73dab792-979c-40be-947b-b7c8040e725b and userId

Solution – Error: We weren’t able to set up this company account on your phone

Changing Mobile Device Management Authority

System Center Tech

Managing mobile devices is possible through the use of Windows Intune in Standalone mode or through ConfigMgr 2012 SP1 or R2, with Intune integrated through the Intune Connector. During the initial configuration process, you have to select a mobile device management authority. When configuring Intune in standalone mode, this is performed through the Intune Admin Console, or in ConfigMgr integrated mode, this is performed through the ConfigMgr Console. Unfortunately, once this has been configured, you can’t switch the management authority through the provided tools, should your requirements change. Luckily there is another option.

View original post 59 more words

Install a Configuration Manager 2012 R2 in a lab – 4. Install SQL Server 2012 SP1 (Powershell)

IT's magic!

I finished my experiment with unattended installation of SQL Server 2012. It was not that complicated I guessed but you cannot say it’s easy. So many setup switches…

What you have to do before starting the script I wrote (it’s at the end of this blog):

  • Copy the content of the SQL installation sources to disk
  • create an folder in this sources which is called “SQLUpdates” (you can name it different)
  • Copy the Service Pack 1 and the Hotfix KB2793634 into the folder created

Following the script/command line I wrote, start from the root of the source files folder:

.setup.exe /ACTION=Install /IACCEPTSQLSERVERLICENSETERMS
/UpdateEnabled=1 /UpdateSource=.SQLUpdates
/features=”SQLEngine” “RS” “SSMS”
/installshareddir=”D:SQL(X64)”
/InstallsharedwowDir=”D:SQL(X86)”
/instancedir=”D:SQL(X64)”
/Instancename=MSSQLSERVER
/q
/AGTSVCACCOUNT=”NT AuthoritySystem”
/INSTALLSQLDATADIR=”D:SQL(X64)”
/SQLBACKUPDIR=”E:MSSQLSERVERBACKUP”
/SQLCOLLATION=SQL_Latin1_General_CP1_CI_AS
/SQLSYSADMINACCOUNTS=”labordomain admins” “laboradministrator”
/SQLSVCACCOUNT=”NT AuthoritySystem”
/SQLTEMPDBDIR=”E:MSSQLSERVERTEMPDB”
/SQLTEMPDBLOGDIR=”E:MSSQLSERVERLOGS”
/SQLUSERDBDIR=”E:MSSQLSERVERUSERDB”
/SQLUSERDBLOGDIR=”E:MSSQLSERVERLogs”
/RSSVCACCOUNT=”NT AUTHORITYSYSTEM”
/INDICATEPROGRESS
/PID=”xxxxx-xxxxx-xxxxx-xxxxx-xxxxx”

Now I explain the different switches I used:

/ACTION=Install –> install SQL
/IACCEPTSQLSERVERLICENSETERMS –> to accept the license terms
/UpdateEnabled=1…

View original post 209 more words

HP Proliant BL460c G8 PXE Boot Black screen SOLVED

When booting into Windows PE with the HP Proliant BL460C G8 server (and maybe many others), it will load WinPE and go into a black screen, nothing can be done.

HPProliantPXEBlackscreen

This is because this server does not support WinPE 5.0 (yet) which Configuration Manager 2012 R2 is using.

To fix this problem use the Boot.wim file from a Windows Server 2012 media, and import this into Configuration Manager by using the Console and right clicking “Boot Images” choosing “import”. (Remember to place it on the Distribution Points allso)

Use this image and the servers can now boot again, the downside is that Configuration Manager 2012 R2 does not give full administration possibilities with the WinPE 4.0 image, so it is not possible to import drivers using the console. But none the less it was not nessesary in my case.

I hope it will help you in your struggle.

Update: HP have supplied the following links for this issue, but i have not tested any of them.

  1. Media Driver is missing
  2. Technical White Paper

How to install SCCM 2012 prerequisites the easy way

Very simple, to install all the required components for an simple, easy and quick installation, start Powershell as administrator and run these commands:

Get-Module servermanager
Install-WindowsFeature Web-Windows-Auth
Install-WindowsFeature Web-ISAPI-Ext
Install-WindowsFeature Web-Metabase
Install-WindowsFeature Web-WMI
Install-WindowsFeature BITS
Install-WindowsFeature RDC
Install-WindowsFeature NET-Framework-Features
Install-WindowsFeature Web-Asp-Net
Install-WindowsFeature Web-Asp-Net45
Install-WindowsFeature NET-HTTP-Activation
Install-WindowsFeature NET-Non-HTTP-Activ

SCCMRequirementsInstallation

 

If you want to install SQL Server 2012 SP1 in a line for you lab, use this as an example:

E:\setup.exe /ACTION=Install /IACCEPTSQLSERVERLICENSETERMS /UpdateEnabled=1 /features=”SQLEngine” “RS” “SSMS” /installshareddir=”C:\Program Files\SQL” /InstallsharedwowDir=”C:\Program Files (x86)\SQL” /instancedir=”C:\Program Files\SQL” /Instancename=MSSQLSERVER /q /AGTSVCACCOUNT=”NT Authority\System” /INSTALLSQLDATADIR=”C:\Program Files\SQL” /SQLBACKUPDIR=”C:\Program Files\SQL\Backup” /SQLCOLLATION=SQL_Latin1_General_CP1_CI_AS /SQLSYSADMINACCOUNTS=”solvoit.com\domain admins” “solvoit.com\ml-admin” /SQLSVCACCOUNT=”NT Authority\System” /SQLTEMPDBDIR=”C:\MSSQLSERVER\TEMPDB” /SQLTEMPDBLOGDIR=”C:\MSSQLSERVER\LOGS” /SQLUSERDBDIR=”C:\MSSQLSERVER\USERDB” /SQLUSERDBLOGDIR=”C:\MSSQLSERVER\Logs” /RSSVCACCOUNT=”NT AUTHORITY\SYSTEM” /INDICATEPROGRESS

You can find all the commands at this site: http://msdn.microsoft.com/en-us/library/ms144259.aspx#roleparameters

Have a nice day 🙂