Systems Center Configuration Manager (SCCM, formerly known as Systems Management Server) is Microsoft’s system software for managing large groups of not only Microsoft computers, but those running other operating systems, such as Linux, OS-X, and various mobile technologies.

Share tech news, updates, or what's on your mind.

Sign up to Post

We are a primarily Dell laptop environment. I have deployed SCCM 2016 successfully and am working out minor kinks here and there with deployment of software and OS things

I have configured all my PXE settings and I can get the laptop to boot to PXE but it does not identify anything to connect to IE: my sccm server to pick up the image I built.

After it attempts to find a connection it fails then reboots.

Any idea on areas to check? I modified my DHCP options set for PXE 60, 66 and 67.

The DC that host DHCP and DNS is Windows Server 2012r2 and the SCCM server is 2019
Expert Spotlight: Joe Anderson (DatabaseMX)
LVL 13
Expert Spotlight: Joe Anderson (DatabaseMX)

We’ve posted a new Expert Spotlight!  Joe Anderson (DatabaseMX) has been on Experts Exchange since 2006. Learn more about this database architect, guitar aficionado, and Microsoft MVP.

Our company exists in one building.  We have a single SCCM (1710) server for our internal network.  We have different subnets (wired and wireless) for different floors. Each "wired" subnet has an associated "ip address range" boundary in SCCM that's included in the boundary group for our building.

Should we include subnets associated with our wireless networks in the Boundary Group that contains our internal "wired" subnets, or should the "wireless" subnets be in their own Boundary Group, or should SCCM not pay attention to any wireless subnet?

Any and all advice is greatly appreciated!!

We're using SCCM 1710 to deploy 64-bit Windows 10 2016 LTSB (version 1607) .

At the very end, we enable BitLocker (successfully).  We've found that the DRA protector is not enabled b/c the volume identifier is still unknown.  We define the identifier via GPO.  This GPO is applied to the OU where this newly imaged computer is dropped during the deploy process.  

We discovered that if we run "manage-bde.exe -si c:", the identifier is assigned, and the DRA protector is then listed when you run a "manage-bde -status".

So we're trying to add a "Run command line" task to do the "manage-bde.exe -si c:" after the enable BitLocker task.

No matter what syntax we try (based on various suggestions we've found here and there), the task always fails with an "Element not found" error.  The error code is 0x80070490.

We've added a pause to our task sequence after the "Enable BitLocker" ask so we can test different ideas.  So far we're finding lots of ways to not create a light bulb.

We're also finding that at this stage of the deploy, "gpresult /r" does not work in the command prompt. We're thinking this could mean that BitLocker is not aware of the identifier GPO settings at this stage.

Is there a way to set the volume identifier during the OS deploy so the DRA protector is added to the disk?

Is there another way to add the DRA protector?

Any help is greatly appreciated!!
I am working with SCCM 2016 on server 2019. I have a client that is functional but the CcmMessaging log display these messages:

No reply message from Server. Server may be temporarily down or a transient network error.
Post to http://Hood.IFM/ccm_system_windowsauth/request failed with 0x8000000a.

I have full connectivity to the device, it shows active in SCCM console, I can use SCCM to remote control and deploy software (I have been testing software center all morning with no issues)

I looked up the errors and people suggested reinstalling the MP which is on "hood" and as soon as I do that, everything breaks, and I cannot restore a connection to the device no matter what I do during the reconfiguration.

*Any suggestions or other logs I should look at?
SCCM maintenance window question.

I have four collections:
  1. Servers = No Maintenance Window
  2. Group1= Maintenance Windows Monday 01:00 - 04:00
  3. Group2 = Maintenance Windows Tuesday 01:00 - 04:00
  4. Group3 = Maintenance Windows Wednesday  01:00 - 04:00

Servers Collection contains all devices within all three Group Collections.
I deploy to Servers.

Will the installation and restarts (if needed) only happen based on the Group's Maintenance Window?
Attempted to enable HTTPS connections in SCCM. Now I have lost client connectivity though I believe every step is accurate. I cannot figure out what is causing the issue.

CCMMessaging log (constant error, Hood is server name)
Successfully queued event on HTTP/HTTPS failure for server 'HOOD'.
Post to http://HOOD/ccm_system/request failed with 0x87d00231.

[CCMHTTP] ERROR: URL=http://HOOD/ccm_system/request, Port=80, Options=224, Code=0, Text=CCM_E_BAD_HTTP_STATUS_CODE
[CCMHTTP] ERROR INFO: StatusCode=403 StatusText=Forbidden      CcmMessaging      3/7/2019 11:05:15 AM      8308 (0x2074)
We are currently running Configuration Manager 2012.

Version 5.0.8634.1000
Build number 8634

Our DBA is upgrading our MS SQL Server 2014 to SP3.  So far, I have been unable to find any information stating that Config Manager 2012 is compatible with SQL Server 2014 SP3.  If anyone could point me to a document with a (current) compatibility list it would be a big help.

Note - there is a great compatibility list in Microsoft Docs but it specifically states it is for Current Branch.  I can't assume that just because the Current Branch IS compatible with SQL 2014 SP3 our 1802 version is.

Thank you,
Ken -
hello SCCM guru's!

We are upgrading to SCCM 2012 R2 1810. However, the pre-req check fails on here: [Failed]:No Active MP Replica detected. (We do not even have a MP replica.)

All else passes. But it will not allow upgrade without resolving that error.

Any ideas on how to get past that?

Thank you for your assistance!

I want to migrate from Windows 7 to Windows 10 version 1809. I am using SCCM and have my task sequences ready to start everything.

My question is related to applications compatibility. Is there any easy way with SCCM and/or any kind of configuration/package where I could take the application inventory from SCCM and somehow validate their compatibility with Windows 10 (any version). Or execute an application compatibility test for the applications running on my clients with Windows 7.

I do not want to go manually because there are a few thousand computers and many many applications to test.

Hello SCCM Experts,

I'm pushing out updates over the weekend to all of our PCs.  I have 3 systems that are going to be running some process throughout the weekend and I don't want them to get the updates and reboot.  My question is if I disable the SMS Agent Host service on the 3 systems, will that prevent the updates from being installed?
CompTIA Network+
LVL 13
CompTIA Network+

Prepare for the CompTIA Network+ exam by learning how to troubleshoot, configure, and manage both wired and wireless networks.

We use HP Elitebook G2 - G4's in my environment and they are imaged using SCCM 2012 which work without issue. I've recently purchased the HP ProBook 650 G4 and when I try to PXE boot, it begins to load but it returns to the boot menu shortly after. The BIOS has been updated but I still cant get the PXE to work. Any advice/suggestion is welcomed. Thanks!
What are the steps to enable Phased Deployments within SCCM 1810?
I'm looking for the steps for using SCCM 2016 to deploy the Server 2019 and 2016 operating systems to VMware and Hyper-V virtual machines.
Guys, a recent update by our cybersecurity team to the fleet of workstations has broken the SEP AV client on it, resulting in the client not being able to talk back to the management server, and they have no way to remediate this via the SEP console, so they want us to remove this via SCCM (we have an SCCM instance managing our desktop fleet)
The SEP install on clients is password protected, laptops have BitLocker pins, so multiple reboots is an issue, might have to disable the BitLocker pin prompt to facilitate this install.
Can you point me to a script/SCCM package of the sort that can achieve this, please?
Version of SEP installed = 14.2.760.000
Clients are a mixture of Windows 7/8.1 and 10 (1803) clients
What are the best books for learning Microsoft System Center Configuration Manager (SCCM) 2016?

I need to learn how to use SCCM 2016 to:

- Approve and install Windows updates on Windows Servers and Windows 10 computers

- Install applications such as Microsoft Office, WinZip, Acrobat, Adobe Flash, Google Chrome, etc. on remote computers

- Deploy Server 2016 and Server 2019 within VMware and Hyper-V virtual machines

- Deploy Windows 10 on computers using PXIE boot

- Perform upgrades from Windows 7, Windows 8, and Windows 8.1 to Windows 10 on existing computers leaving all of the existing applications and settings intact

I am only interested in books that describe and have step-by-step exercises on how to do this for SCCM 2016.

I am hoping to find a book that describes these things exactly as they need to be done so that while I am on the job I will be able to refer to this book for the steps on how to do these things.
I am trying to upgrade Windows 10 Enterprise from 1703 to 1809 using SCCM Current branch on Surface Pro 4 and Surface Pro 5.
I have just published the upgrade to a collection which will then appear in Software Center "Updates".
The update is received and installed and you then get prompted to reboot.
Once rebooted the upgrade hangs on around 75% or 79%. The upgrade never completes and you have to power off\on and Windows remains on 1703.
Some upgrades have worked and have successfully completed, but it seems I have a batch that has issues.

I have tried the following:
1. Increased the maximum runtime to 240min (Made no difference)
2. Installed the latest Surface Pro driver and firmware pack (Made no difference)
3. Ran Microsoft Fix it tool which did delete the MS update datastore and created a new one (Made no difference)

I have attached the setuperr.log which contains a host of errors.
Be grateful for any help.

we have two separate active directory forests with no trust relationships. SCCM 2012 r2 is deployed in one of the AD forests and sccm site systems are installed in our domain that we used for deploying apps and updates. Our SCCM is a multiple forest deployment with no trusts.

we have very limited control on the SCCM servers deployed in the other domain. there seems to be an issue with the SCCM for a long time and we are unable to deploy apps or updates in our domain.

Now there is an urgent requirement to deploy some updates and also upgrade the internet explorer.

I am thinking of temporarily deploying a wsus server, importing the updates and Internet Explorer updates, redirecting clients in domain by using GPO to point to the temporary WSUS server. Deploy the updates and later remove the GPO so that it goes back to the original configuration  of reporting to a SUP installed on the SCCM site system.

My worry is if the clients won't revert back to the existing SUP once the GPO is unlinked.

Are there are other means of deploying some updates and internet explorer on Windows 7 SP1 both x86 and x64?
SCCM  applying updates to client.  For some reason When I go to deploy new updates I do not see 2012 Server updates as required.  When I ran a manually scan from Control Panel | Windows Update (not SCCM scan) I got back 115 updates. Now this is not the case for my Server 2008 group.  I am not seeing errors so I am not sure what the root cause is.
Hello All!
I'm back again. So myself and another guy I work with have inherited the SCCM system from our predecessor who is no longer with the company. (hence all the SCCM related questions)

We are looking at upgrading to ConfigMgr 1810 from 1802. I'm doing some research to understand the process and make sure I am not missing anything major so that we can make this as seamless as possible.

Some basics about our setup:
-14 DP's of which 11 are Pull DP's
-1 Cloud DP
-Only run OSD from a single site - the Main SCCM site
-Have only recently begun expanding application deployment via SCCM, so minimal applications on the DP's at this point
-We have about 1500 clients installed including VM's, servers, and end user workstations

What I am wondering is what the major considerations we have to think about before we get this started. I'm speaking specifically to your experience and or resources. I have the MS TechNet upgrade checklist, back up procedures for the the site, and a step by step upgrade guide from System Center Dudes. We are planning on taking a snapshot of the SCCM server ahead of time to protect the system if it all blows up.

Would be great to get some insight from anyone with experience in this as I want to minimize the surprises (I know I can't eliminate them all) for this upgrade.

Thanks in advance! Looking forward to your insight!
Why Diversity in Tech Matters
LVL 13
Why Diversity in Tech Matters

Kesha Williams, certified professional and software developer, explores the imbalance of diversity in the world of technology -- especially when it comes to hiring women. She showcases ways she's making a difference through the Colors of STEM program.

I need to copy a file from a network share to this location C:\Program Files\software\Client Management\Client\config\Identity.ini  on all devices . I like to do this with Powershell and add the powershel lscript  to a task sequence in SCCM
Over the years I've been creating images and rolling them out in my environment.
I started using Ghost and I'm currently using Wim images and booting with a Winpe USB drive. and then running a script to deploy on a one off basis.
I have a single WIM image for all of my users and this has many applications installed. We have standardized on a a single vendor for our PC's and basically have the same computer for entire user population.

Im at a point of creating a new image and would like to start using System Center for Build, Capture, deploy and management of all my computers.

I'm new to system center and want to understand the best way to accomplish this task.

I'd like a good high level to understand the entire process,

Then also anything indepth that would help me out in starting the job.

Some of my basic questions .
1. Do I create a Windows 10 machine and install all of my applications and then SYSPREP ? from what I've seen the answer is NO and I  should capture a refrence computer and install application packages when deploying ?
2. How many applications CAN/DO I install with Application packages ? we currently have  over 30 Applications installed on our image.
3. My computers are all HP Prodesk 600 and I am going to use Windows 10 1809, any problems ?
4. Will Bios update also be able to happen when deploying new image ?
Can anyone help me, I am trying to image a machine using SCCM with task sequences, with a Windows 10 Enterprise 1709 image.
The unit is a HP z8 G4,  two NVMe M.2 SSD drives:

I want to install the OS on Disk1 the 238GB drive,  how do I create a task sequence to pick this drive.  
I don't want it to install on Disk0 (2TB).

I am new to MDT/SCCM imaging, and am trying to learn this.  I am really stumped on this one.
I need to copy a file using sccm to existing clients is there a way i can do this thru a package ? the file being copied is in the repository and it needs to be copied to a directory on the local clients and over write the file thats already there.

Am thinking i have to build a package that executes a batch file but am not quite sure how to make it happen ...NEw to SCCM
Hey All,
So I have an issue with a PC I am trying to deploy an image to using SCCM. This PC was a warranty for the hard drive so I need to get it re-imaged and re-deployed. Here is the problem. Every time I run the PXE task sequence, it says that it failed to retrieve a task sequence. Now I thought that perhaps since it was previously deployed, then maybe SCCM thought it was still in the system and thinks it is a "known" PC. The OSD task sequence is currently only deployed to the "All Unknown Computers" collection, and I don't know the name of the PC it was previously built under, so I don't have any way to confirm specifically if that is true. So I created a custom device collection, using a query searching solely on the MAC address of the machine, assuming that if it were in the DB, it would come up. There is nothing. We have a few other tools that can perform a similar function of our AD environment, and using those tools, I couldn't find the PC listed based on the MAC address. So just to see, I grabbed a USB to Ethernet adapter and tried imaging over this device using SCCM. Still no available deployments.... Now I am really confused.

I had imaged 5 other machines previously today, all of which connected, found the deployment, and deployed the image correctly, so I don't believe it is an issue with the task sequence or deployment. There is something about this PC that SCCM doesn't like and I can't figure it out. We re-image PC's regularly, so I need to make sure this…
Hello there,I have SCCM 1702 on Windows Server 2016 and I've been encountering a strange problem. I have an automatic deployment rule set to distribute and install Windows 10 Updates to our Workstations. However, when they run each month, they force restarts of the workstations. I've had it set to suppress restarts but it unchecked that setting each month. Is there a higher setting somewhere overriding this?






Systems Center Configuration Manager (SCCM, formerly known as Systems Management Server) is Microsoft’s system software for managing large groups of not only Microsoft computers, but those running other operating systems, such as Linux, OS-X, and various mobile technologies.