(Un-)Expected Software Update Point behavior
(Un-)Expected Software Update Point behavior
Posts by Category
1706
AAD
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
Advanced Logging
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
AttackSurfaceReduction
Reducing attack surface with Application Control and managed installer(s) - Part 2
This post will pick up where we left off in Part1.
Reducing attack surface with Application Control and Managed Installers.
This post will explain the basics of how a Windows Defender Application Control managed installer works.
Making the case for reducing (ConfigMgr) attack surface by staying current
Servicing your Endpoint Manager Configuration Manager environment isn’t only about getting those shiny new features, it’s about security too. A case in point.
Attack surface reduction
The attack surface reduction principle should be top of mind for IT admins.
Autopilot
Logging in a cloud-world - Part 3 (Intune/Autopilot)
Let’s implement the functionality we discussed in Part 1 and Part 2 in Autopilot/Intune.
Azure
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
Azure AD
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
CMG
Configure the new cloud management gateway in HTTP mode
How to configure a cloud management gateway (CMG) in HTTP modus…(thus without a PKI infrastructure… sort of)
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
An interesting use-case for Intune and SCCM Co-Management - Part 1
Real-World scenario on where Intune and SCCM Co-management could come in handy. Setting up the Cloud Management Gateway.
Cloud Management Gateway
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
An interesting use-case for Intune and SCCM Co-Management - Part 1
Real-World scenario on where Intune and SCCM Co-management could come in handy. Setting up the Cloud Management Gateway.
Co-Management
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
An interesting use-case for Intune and SCCM Co-Management - Part 1
Real-World scenario on where Intune and SCCM Co-management could come in handy. Setting up the Cloud Management Gateway.
Configmgr
Unleashing Efficiency: Exploring the Benefits of Microsoft Endpoint Manager Co-Management and cloud attach
Microsoft Endpoint Manager (MEM) Co-Management and ConfigMgr cloud attach are game-changers in the realm of mature IT management, offering a comprehensive su...
Making the case for reducing (ConfigMgr) attack surface by staying current
Servicing your Endpoint Manager Configuration Manager environment isn’t only about getting those shiny new features, it’s about security too. A case in point.
Powershell App Deployment Toolkit - GUI (Updated version 1.4)
GUI for creating Intune & SCCM applications using the Powershell App Deployment Toolkit, including creating Software ID Tags for easier License Managemen...
Getting alerts on Inbox backlogs
Receiving alerts on Inbox backlogs
Collection based on pending reboot
So Ryan asked on twitter whether you coud build a collection out of the Shiny new Pending Reboot column added in SCCM 1710.
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
An interesting use-case for Intune and SCCM Co-Management - Part 1
Real-World scenario on where Intune and SCCM Co-management could come in handy. Setting up the Cloud Management Gateway.
(Un-)Expected Software Update Point behavior
(Un-)Expected Software Update Point behavior
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 & Current Branch 1706 feature highlight : Android and iOS Enrollment Restrictions
Android and iOS Enrollment Restrictions explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
Technical Preview 1706 feature highlight : Create and run scripts
Create and run scripts feature explained and demoed
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
Setting up an SCCM Labo using Powershell Direct - Part 4
Automating a full SCCM Labo setup using PowerShell Direct. Part 4 is the Task Sequence and a template for new servers.
What does SCCM End of Support For SQL & Windows 2008 Versions really mean?
As Announced, SCCM Current branch 1702 no longer supports the 2008 editions of SQL or Windows. What does this mean if you’re SCCM infrastructure is still run...
Setting up an SCCM Labo using Powershell Direct - Part 3
Automating a full SCCM Labo setup using PowerShell Direct. Part 3 is the setup and configuration of a Configmgr Server.
Setting up an SCCM Labo using Powershell Direct - Part 2
Automating a full SCCM Labo setup using PowerShell Direct. Part 2 will be on setting up and configuring the Domain Controller.
Setting up an SCCM Labo using Powershell Direct - Part 1
Automating a full SCCM Labo setup using PowerShell Direct. Part 1 focuses on setting up router virtual machine
Set Network Access account in SCCM Current Branch using PowerShell
Hello World ! My First blog-post on OSCC on setting a NAA in SCCM CB using PowerShell
MVP Summit hackathon edition 2016-Part 3
This years MVP summit took place a little bit over a month ago, and I am feeling like I am in a permanent state of jet-lag.
MVP Summit hackathon edition 2016-Part 2
The 2016 MVP summit took place a little bit over a week ago, and I believe I’ve recovered from jet-lag.
MVP Summit hackathon edition 2016-Part 1
This years MVP summit took place last week, and I am still recovering from jet-lag.
Protecting the Network Access Account using Configuration Items Quest – Part1
So this post is long overdue and needs to start with referencing and thanking a couple of people upon which this work is built, as happens so often in commun...
MMS MOA 2016– Policies A through Z
At MMS MOA 2016, the best ConfigMgr community event world-wide globally, Tom Degreef and I delivered a session about a deep dive into Configuration Manager p...
SCCM Telemetry data unhashed – revisited for Security Auditors
A while ago, I wrote a pretty extensive blog on telemetry,
Cant Create Windows Phone Deeplink Deployment Types Due To New Store Urls
This issue has been closed as fixed on the connect page. If you’re still seeing this issue please install the latest CU updates or upgrade to Configuration M...
The future of Configuration Manager and Microsoft Intune – my personal view
This is a blog post that is long overdue from my part, as I’ve been willing to write this for a long time. I will however start off with a “disclaimer” on th...
Protect Network Access Account
An over-priviliged network access account is a security risk specific to SCCM environments. This post is about protecting that account.
Template Post
Header Line
Template Post
Header Line
Debug Logging
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
Hyper-V
Setting up an SCCM Labo using Powershell Direct - Part 4
Automating a full SCCM Labo setup using PowerShell Direct. Part 4 is the Task Sequence and a template for new servers.
Inboxes
Getting alerts on Inbox backlogs
Receiving alerts on Inbox backlogs
Intune
Powershell App Deployment Toolkit - GUI (Updated version 1.4)
GUI for creating Intune & SCCM applications using the Powershell App Deployment Toolkit, including creating Software ID Tags for easier License Managemen...
Intune - Security baselines (Preview)
The modern alternative for security baseline GPO’s
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
An interesting use-case for Intune and SCCM Co-Management - Part 1
Real-World scenario on where Intune and SCCM Co-management could come in handy. Setting up the Cloud Management Gateway.
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 & Current Branch 1706 feature highlight : Android and iOS Enrollment Restrictions
Android and iOS Enrollment Restrictions explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
Known Issue
Logfiles
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
MEM
The best of MEM, must read fridays - wk2211 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM, must read fridays - wk2210 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM, must read fridays - wk2209 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM, must read fridays - wk2208 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM, must read fridays - wk2207 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM, must read fridays - wk2206 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
Modern end-user communication on a WDAC enforced device.
We’ve done quite a bit of Application Control work in the past months/years. One item that is always challenging in these types of projects is end-user commu...
The best of MEM, must read fridays - wk2205 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM, must read fridays - wk2204 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
The best of MEM must read fridays - wk2203 .
This post highlights the most interesting blogs, tweets and articles I’ve read relating to MEM in the past week.
Getting started with WDAC by Kim featuring Adam.
Application Control will most likely still be one of the major ways to combat malware in 2023. We’ve seen and helped implement quite a bit of implementations...
MMSDE
(Mini) MVP summit and MMS Desert edition (2018)
A recap of the 2018 Mini-MVP summit and MMS Desert Edition
MMSMOA
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
NAA
Set Network Access account in SCCM Current Branch using PowerShell
Hello World ! My First blog-post on OSCC on setting a NAA in SCCM CB using PowerShell
OSD
Modern driver management in Configuration Manager Current Branch
** ###Updated after MMS 2017 session ###**
The holy grail of ConfigMgr driver management / whatever you’d like to call it.
There’s a multitude of ways to handle driver management in Configuration Manager and OSDeployment.
PasswordSolutions
Perfmon
Getting alerts on Inbox backlogs
Receiving alerts on Inbox backlogs
PoSh
Powershell App Deployment Toolkit - GUI (Updated version 1.4)
GUI for creating Intune & SCCM applications using the Powershell App Deployment Toolkit, including creating Software ID Tags for easier License Managemen...
Technical Preview 1706 feature highlight : Create and run scripts
Create and run scripts feature explained and demoed
PowerShell
Setting up an SCCM Labo using Powershell Direct - Part 4
Automating a full SCCM Labo setup using PowerShell Direct. Part 4 is the Task Sequence and a template for new servers.
Setting up an SCCM Labo using Powershell Direct - Part 3
Automating a full SCCM Labo setup using PowerShell Direct. Part 3 is the setup and configuration of a Configmgr Server.
Setting up an SCCM Labo using Powershell Direct - Part 2
Automating a full SCCM Labo setup using PowerShell Direct. Part 2 will be on setting up and configuring the Domain Controller.
Setting up an SCCM Labo using Powershell Direct - Part 1
Automating a full SCCM Labo setup using PowerShell Direct. Part 1 focuses on setting up router virtual machine
Set Network Access account in SCCM Current Branch using PowerShell
Hello World ! My First blog-post on OSCC on setting a NAA in SCCM CB using PowerShell
PowerShell Direct
Setting up an SCCM Labo using Powershell Direct - Part 4
Automating a full SCCM Labo setup using PowerShell Direct. Part 4 is the Task Sequence and a template for new servers.
Setting up an SCCM Labo using Powershell Direct - Part 3
Automating a full SCCM Labo setup using PowerShell Direct. Part 3 is the setup and configuration of a Configmgr Server.
Setting up an SCCM Labo using Powershell Direct - Part 2
Automating a full SCCM Labo setup using PowerShell Direct. Part 2 will be on setting up and configuring the Domain Controller.
Setting up an SCCM Labo using Powershell Direct - Part 1
Automating a full SCCM Labo setup using PowerShell Direct. Part 1 focuses on setting up router virtual machine
Powershell
Powershell App Deployment Toolkit - GUI (Updated version 1.4)
GUI for creating Intune & SCCM applications using the Powershell App Deployment Toolkit, including creating Software ID Tags for easier License Managemen...
Technical Preview 1706 feature highlight : Create and run scripts
Create and run scripts feature explained and demoed
PowerShell Logging using Log4Net in CMtrace format
This post goes wider than regular ConfigMgr stuff and is about adding logging to all your scripts.
Upon Request – Launching the CM Current branch Software center in List view
So this isn’t going to be the cleanest blogpost, but I had 2 MVP’s requesting the following functionality a short while ago. [System.Windows.Forms.SendKeys]...
Collection Evaluation and Such – Part 1 (of who knows how many)
Another post that is long overdue, based on a session Jason Sandys and I delivered at MMS 2015. In that session Jason and I covered the internals of collecti...
SCCM
Unleashing Efficiency: Exploring the Benefits of Microsoft Endpoint Manager Co-Management and cloud attach
Microsoft Endpoint Manager (MEM) Co-Management and ConfigMgr cloud attach are game-changers in the realm of mature IT management, offering a comprehensive su...
Making the case for reducing (ConfigMgr) attack surface by staying current
Servicing your Endpoint Manager Configuration Manager environment isn’t only about getting those shiny new features, it’s about security too. A case in point.
Logging in a cloud-world - Part 2
Copying log files through azure was great start, now let’s try and make it more secure !
Logging in a cloud-world - Part 1
Configmgr provides a wealth of information in logfiles, but they are only useful if you have access to them …
Powershell App Deployment Toolkit - GUI (Updated version 1.4)
GUI for creating Intune & SCCM applications using the Powershell App Deployment Toolkit, including creating Software ID Tags for easier License Managemen...
Defending the (SCCM) Castle
With great power comes great responsibility !
Getting alerts on Inbox backlogs
Receiving alerts on Inbox backlogs
Collection based on pending reboot
So Ryan asked on twitter whether you coud build a collection out of the Shiny new Pending Reboot column added in SCCM 1710.
An interesting use-case for Intune and SCCM Co-Management - Part 5
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring compliance and Conditional Access.
An interesting use-case for Intune and SCCM Co-Management - Part 4
Real-World scenario on where Intune and SCCM Co-management could come in handy. Deploying the Configmgr Agent through Intune.
An interesting use-case for Intune and SCCM Co-Management - Part 3
Real-World scenario on where Intune and SCCM Co-management could come in handy. Enabling the Co-management feature
An interesting use-case for Intune and SCCM Co-Management - Part 2
Real-World scenario on where Intune and SCCM Co-management could come in handy. Configuring Azure AD Discovery
An interesting use-case for Intune and SCCM Co-Management - Part 1
Real-World scenario on where Intune and SCCM Co-management could come in handy. Setting up the Cloud Management Gateway.
(Un-)Expected Software Update Point behavior
(Un-)Expected Software Update Point behavior
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 & Current Branch 1706 feature highlight : Android and iOS Enrollment Restrictions
Android and iOS Enrollment Restrictions explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
Technical Preview 1706 feature highlight : Create and run scripts
Create and run scripts feature explained and demoed
Modern driver management in Configuration Manager Current Branch
** ###Updated after MMS 2017 session ###**
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
Setting up an SCCM Labo using Powershell Direct - Part 4
Automating a full SCCM Labo setup using PowerShell Direct. Part 4 is the Task Sequence and a template for new servers.
What does SCCM End of Support For SQL & Windows 2008 Versions really mean?
As Announced, SCCM Current branch 1702 no longer supports the 2008 editions of SQL or Windows. What does this mean if you’re SCCM infrastructure is still run...
Setting up an SCCM Labo using Powershell Direct - Part 3
Automating a full SCCM Labo setup using PowerShell Direct. Part 3 is the setup and configuration of a Configmgr Server.
Setting up an SCCM Labo using Powershell Direct - Part 2
Automating a full SCCM Labo setup using PowerShell Direct. Part 2 will be on setting up and configuring the Domain Controller.
Setting up an SCCM Labo using Powershell Direct - Part 1
Automating a full SCCM Labo setup using PowerShell Direct. Part 1 focuses on setting up router virtual machine
Set Network Access account in SCCM Current Branch using PowerShell
Hello World ! My First blog-post on OSCC on setting a NAA in SCCM CB using PowerShell
MVP Summit hackathon edition 2016-Part 3
This years MVP summit took place a little bit over a month ago, and I am feeling like I am in a permanent state of jet-lag.
MVP Summit hackathon edition 2016-Part 2
The 2016 MVP summit took place a little bit over a week ago, and I believe I’ve recovered from jet-lag.
MVP Summit hackathon edition 2016-Part 1
This years MVP summit took place last week, and I am still recovering from jet-lag.
The holy grail of ConfigMgr driver management / whatever you’d like to call it.
There’s a multitude of ways to handle driver management in Configuration Manager and OSDeployment.
ConfigMgr LTSB, ‘The do NOT use Edition.’!
Really, I can’t be more clear than that, don’t ever use it.
Upon Request – Launching the CM Current branch Software center in List view
So this isn’t going to be the cleanest blogpost, but I had 2 MVP’s requesting the following functionality a short while ago. [System.Windows.Forms.SendKeys]...
Collection Evaluation and Such – Part 1 (of who knows how many)
Another post that is long overdue, based on a session Jason Sandys and I delivered at MMS 2015. In that session Jason and I covered the internals of collecti...
Protecting the Network Access Account using Configuration Items Quest – Part1
So this post is long overdue and needs to start with referencing and thanking a couple of people upon which this work is built, as happens so often in commun...
MMS MOA 2016– Policies A through Z
At MMS MOA 2016, the best ConfigMgr community event world-wide globally, Tom Degreef and I delivered a session about a deep dive into Configuration Manager p...
System Center Search Providers Help Me Help You And Myself
The product documentation for System Center used to have a metatag called AppliesToProduct.
SCCM Telemetry data unhashed – revisited for Security Auditors
A while ago, I wrote a pretty extensive blog on telemetry,
Configuration Manager telemetry, usage metrics, work in progress
Telemetry, what is it about?
SCCM updates and servicing feature!
On the 23rd of September 2015 the ConfigMgr Product team released a blog on an update for Configuration Manager Technical Preview 3.
Cant Create Windows Phone Deeplink Deployment Types Due To New Store Urls
This issue has been closed as fixed on the connect page. If you’re still seeing this issue please install the latest CU updates or upgrade to Configuration M...
The future of Configuration Manager and Microsoft Intune – my personal view
This is a blog post that is long overdue from my part, as I’ve been willing to write this for a long time. I will however start off with a “disclaimer” on th...
Client Notification Status Custom Admin Ui Node
This blog post is a follow-up to my tweet around figuring out how-to create custom nodes in the Configuration Manager admin UI.
Protect Network Access Account
An over-priviliged network access account is a security risk specific to SCCM environments. This post is about protecting that account.
Template Post
Header Line
Template Post
Header Line
SUP
(Un-)Expected Software Update Point behavior
(Un-)Expected Software Update Point behavior
Software Update Point - Supersedence Rules
Changed behavior of the “WSUS cleanup wizard”
Security
Making the case for reducing (ConfigMgr) attack surface by staying current
Servicing your Endpoint Manager Configuration Manager environment isn’t only about getting those shiny new features, it’s about security too. A case in point.
Attack surface reduction
The attack surface reduction principle should be top of mind for IT admins.
TP
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 & Current Branch 1706 feature highlight : Android and iOS Enrollment Restrictions
Android and iOS Enrollment Restrictions explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
Technical Preview 1706 feature highlight : Create and run scripts
Create and run scripts feature explained and demoed
Task Sequence
Setting up an SCCM Labo using Powershell Direct - Part 4
Automating a full SCCM Labo setup using PowerShell Direct. Part 4 is the Task Sequence and a template for new servers.
Verbose Logging
Follow up on MMSMOA Session - Configmgr Advanced Logging
Enabling more logging on Configuration Manager (server & client side)
WDAC
WDAC Training halfway through selling out
I started off this year stating that 2023 would become the year of Windows Defender Application Control.
Our WDAC training partners with ViaMonstra!
It’s time to announce the next run of our popular WDAC training.
The year of WDAC - March 2023
I tweeted at the start of the year that 2023 should be the year of Windows Defender Application Control aka WDAC.
The year of WDAC - February 2023
I tweeted at the start of the year that 2023 should be the year of Windows Defender Application Control aka WDAC.
The year of WDAC - January 2023
I tweeted at the start of the year that 2023 should be the year of Windows Defender Application Control aka WDAC.
Modern end-user communication on a WDAC enforced device.
We’ve done quite a bit of Application Control work in the past months/years. One item that is always challenging in these types of projects is end-user commu...
Getting started with WDAC by Kim featuring Adam.
Application Control will most likely still be one of the major ways to combat malware in 2023. We’ve seen and helped implement quite a bit of implementations...
Windows
802.1X is not working properly with Windows 11 ADK
Dot3Svc won’t start in default Windows 11 ADK
Windows 10
(Un-)Expected Software Update Point behavior
(Un-)Expected Software Update Point behavior
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
hybrid
Technical Preview 1706 feature highlight : Device Health Attestation assessment for compliance policies for conditional access
Device Health Attestation assessment for compliance policies for conditional access explained and demoed
Technical Preview 1706 & Current Branch 1706 feature highlight : Android and iOS Enrollment Restrictions
Android and iOS Enrollment Restrictions explained and demoed
Technical Preview 1706 feature highlight : Register Windows 10 devices with Azure Active Directory
Register Windows 10 devices with Azure Active Directory explained and demoed
osccservices
SCCM Healthcheck
A deep dive into your SCCM environment
Stay Current with SCCM and Windows 10
The rapid release cadence of Windows 10 & SCCM makes ‘staying current’ a mandatory task to keep the environment secure. OSCC offers an industry best prac...
SCCM Vulnerability assessment
System Center Configuration Manager is gaining interest of the Infosec community at large. OSCC’s deep understanding of its internal operations and focus on ...
Windows application whitelisting with Defender Application Control (WDAC)
Application whitelisting allows you tight control of what applications are allowed to run in your environment. OSCC’s approach mixes the Systems Management k...