[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More







Systems Center Configuration Manager (SCCM, formerly known as Systems Management Server) is Microsoft’s system software for managing large groups of not only Microsoft computers, but those running other operating systems, such as Linux, OS-X, and various mobile technologies.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have WSUS running on a ConfigMgr server, and ConfigMgr is currently patching clients and servers through ADR's. We're in the process of removing our servers from ConfigMgr management due to costs, clients will remain within ConfigMgr.

My question is, can I use the existing WSUS feature to patch the servers via GPO's? I ask because with ConfigMgr, you basically install WSUS and then don't touch it again. All patch management is done within ConfigMgr. I'm concerned that approving updates within WSUS might start to break things for ConfigMgr.
Microsoft Azure 2017
LVL 12
Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

Deploying Windows 10 with SCCM current branch 1607.  I need to do a restart early in my task sequence, but a restart back into WinPE - which is easy. The trick is that I want to pick up where I left off in the task sequence - otherwise I'm stuck in an endless loop.

I know if I chose to "reboot into the installed OS" option for this step, the TS would pick up where it left off. The problem is I haven't installed the OS at this point. I'm clearing the TPM chip before installing Windows 10.

Does anyone know the (hidden) trick to get me out of this endless loop?
Trying to create a Distribution Point for SCCM and I am getting this error...

verify that the site server computer account is an administrator on the distribution point computer.

I have verified that the site server computer is in the local admin group...
Hi Experts.
Can you please provide some assistance in terms of how I can respond to our client,
We have about 6000 workstations in our environment, however SCCM is reporting blanks for last logon user and most common user on around 200 of these devices,
What generally can be the cause of this?
IE: besides a faulty SCCM client, which we can rule
(2) machines connecting via Direct Access remote access, would this have a bearing,
(3) machines that has just come off workstation build, and no user has obviously logged onto them?
Any advise how I can respond to my client around this will be appreciated
I am trying to deploy Visio 64 bit silently using SCCM.  I've done the following so far:

- ran "Setup.exe /admin" and made selections needed for silent such as agreeing to the license etc.
- Created the Application, Deployment Type and Deployment.
- Created an install batch file that runs this command:  "msiexec.exe /quiet %~dp0\Visio_2013_64bit.MSP /qn".

The install will not run and when I ran the command locally to test I received an error message - basically my msiexec command is wrong and it's not even making it to the install.

I've seen the command used to install with an MSP but it had the original install msi within the command along with the .msp.  I was going to try that burt I can't figure out which MSI to use in this version of visio....or do I use the Office MSI?

Anyone have experience using an MSP for install?
Could someone please help with the below scenario:
We have an existing forest a.corp.com with a running CA. We have have created one another forest (business purpose) b.corp.com and installed new CA. Created forest trust between the forests.
We have installed a new SCCM infra in the new forest b.corp.com. Now we want to manage clients in the forest a.corp.com with the configuration manager client certificate issued from the b.corp.com forest.
We have seen the MS article AD CS: Deploying Cross-forest Certificate Enrollment, but we don't want to perform all the steps mentioned here like consolidation of certificates. We just want to get the configuration manager client certificate in the remote forest a.corp.com clients. Could you advise the best method to configure this without making issues in our current CA (note - we already have forest trust between the forests).

SCCM server has crashed. Need to configure a new server and SCCM instance, no backup available. How do I link company laptops with the new SCCM instance?
Hello all,

I am getting below error while importing drivers.

Error: All drivers) are imported successfully. Drivers cannot be added to some driver package(s).

the folder is empty as well.

any ideas?

Does Microsoft SCCM 2016 have a built-in remote support feature where a tech can remotely connect to and interact with a client's Windows 10 computer?
Which certificates are required for the SCCM environment to allow software updates,etc?
Is there a document that explains all the certificates/auto enrollment requirements?
OWASP: Threats Fundamentals
LVL 12
OWASP: Threats Fundamentals

Learn the top ten threats that are present in modern web-application development and how to protect your business from them.


I've created a TS to make a clean installation of Windows 10 pro 1803.
Everything goes fine, until the TS rises the "Setup Windows and Configuration Manager" step. As you know, at this step the computer reboots. In my case, the TS doesn't continue, the system restart but SCCM client it's not installed, and either the applications.

I've tried to find out any solution to this issue in internet, but no results.

Can anyone help me with this issue???

I have:
SCCM version 1806
SCCM Client 5.00.8692.1008

Here are the last lines of my smsts.log.

Successfully completed the action (Setup Windows and Configuration Manager) with the exit win32 code 0            
"MP server http://siteserver.mydom.com. Ports 80,443. CRL=false."            
Setting authenticator            
Sending StatusMessage            
Setting the authenticator.            
CLibSMSMessageWinHttpTransport::Send: WinHttpOpenRequest - URL: siteserver.mydom.com:80  CCM_POST /ccm_system/request            
Not in SSL            
Request was successful.            
Set a global environment variable _SMSTSLastActionRetCode=0            
Set a global environment variable _SMSTSLastActionSucceeded=true            
Expand a string: %_SMSTSMDataPath%\Logs            
Clear local default environment            
The action (Setup Windows and Configuration Manager) requested a retry            
Reboot to local harddisk            
_OSDGinaIsConfigured variable set to TRUE            
_SMSTSServiceStartType variable set to …

I'm just curious and just need to understand all faisable possibilities. If I have this scenario: Around 1000 users to migrate from Windows 7 to Windows 10.

How long this can take?
What the best tool or way to do that migration?

we have sccm and scom 2012 r2 running on windows 2008 r2 as the OS. database on a different server running windows 2008 r2 and sql 2008.

we want to upgrade the OS of sccm, scom and sql servers

we want to upgrade sccm and scom to system center cb 1802 or later.

it is best to install fresh deployments of all and try and migrate data.

or look at the option of inplace upgrade.
I have recently deployed SCCM 1802 on our primary site with seperate SQL 2014 Server. Now, I need to deploy secondary site for my remote location. I need to know which ports will be opened between primary site server and secondary site server? Do i need to open any port between SQL server and secondary site server as well? And what will be the direction. I have read articles which says ports 443, 445, 1439 and 4022 but all are when primary site server and SQL server are co-located. I have seperate servers on primary site which is confusing me. On secondary site database will be co-located.
Wonderful day,
I am looking into creating a SCCM Lab, what type of software and hardware I would need to purchase?
Hello all I am getting below error while updating the boot image.

  Error: Update boot image:
• Microsoft Windows PE (x86)

  Error: Update actions:
• Add ConfigMgr binaries using Production Client version 5.00.8692.1008
• Add custom background
• Set scratch space
• Enable Windows PE command line support

  Error: Failed to import the following drivers:

Optional components:
• Microsoft .NET (WinPE-NetFx)
• Windows PowerShell (WinPE-PowerShell)
• Scripting (WinPE-Scripting)
• Startup (WinPE-SecureStartup)
• Network (WinPE-WDS-Tools)
• Scripting (WinPE-WMI)

  Error: The wizard detected the following problems when updating the boot image.
• The SMS Provider reported an error.: ConfigMgr Error Object:
instance of SMS_ExtendedStatus
• Description = "Failed to inject OSD binaries into mounted WIM file (often happens if unsigned drivers are inserted into x64 boot image)";
• ErrorCode = 2152205056;
• File = "..\\sspbootimagepackage.cpp";
• Line = 5198;
• ObjectInfo = "CSspBootImagePackage::PreRefreshPkgSrcHook";
• Operation = "ExecMethod";
• ParameterInfo = "SMS_BootImagePackage.PackageID=\"ACM0076A\"";
• ProviderName = "WinMgmt";
• StatusCode = 2147749889;

any suggestions?
I need help to user Powershell to delete a computer from SCCM by providing the name only.
However, before deleting it should capture the UUID & MAC ADDRESS for reference.

Any help is appreciated.
Successfully added the Adobe Reader catalog to SCCM 1806.
Also deployment of the update works to already running clients (the installation is shown in Software Center).
Task Sequence installed clients do not have the Adobe Reader update because the Adobe Reader patch is not required yet.

To fix this I enabled "Available for Installation - All software updates" in the "Install Software Updates" step.

Now the step "Install Software Updates" fails near the end.

found in UpdatesHandler.log:

<![LOG[Failed to initiate install of WSUS updates, error = 0x800b0109]LOG]!><time="13:38:10.991-120" date="10-11-2018" component="UpdatesHandler" context="" type="3" thread="5828" file="wsusupdatehandler.cpp:133">
<![LOG[Failed to start WSUSUpdate, error = 0x800b0109]LOG]!><time="13:38:10.991-120" date="10-11-2018" component="UpdatesHandler" context="" type="3" thread="5828" file="update.cpp:1205">

Open in new window

And wuahandler.log:
<![LOG[1. Update: 26e84e49-305a-4349-8174-1478bc7caee5, 2   BundledUpdates: 0]LOG]!><time="13:38:10.475-120" date="10-11-2018" component="WUAHandler" context="" type="1" thread="5828" file="cwuahandler.cpp:1698">
<![LOG[1. Update (Missing): Adobe Acrobat Reader DC - MUI Update 17.011.30105 (26e84e49-305a-4349-8174-1478bc7caee5, 2)]LOG]!><time="13:38:10.475-120" date="10-11-2018" component="WUAHandler" context="" type="1" thread="5828" file="cwuahandler.cpp:1820">
<![LOG[Failed to download updates to the WUAgent datastore. Error = 0x800b0109.]LOG]!><time="13:38:10.991-120" date="10-11-2018" component="WUAHandler" context="" type="3" thread="5828" file="cwuahandler.cpp:490">

Open in new window

Searching for the error reveals it has a problem with verfying the validity of the file. Found out the WSUS self signed certificate is not in the machines certificate store.
Added the certificates to root and trusted publisher, the step still fails with the same error...

Any ideas?
Trying to install SQL 2014 Express (English) via SCCM on German Windows 10 1803 on multiple computers.

Problem: local admin group won't get added to the sysadmin group in SQL, therefore any user is unable to access the tables or add permissions.

Tried setup via command line:


Open in new window



Open in new window

First command line works when run on a command prompt, but not when deployed via SCCM.

Next I've tried the ConfigurationFile.ini. After recording the ini-file via
setup.exe /Action=Install /UIMode=Normal 

Open in new window

it shows:

Open in new window

But after installing it via command prompt
setup.exe /ConfigurationFile="ConfigurationFile.ini"

Open in new window

sysadmins is again empty.

Same result when I change ConfigFile.ini to

Open in new window

Fundamentals of JavaScript
LVL 12
Fundamentals of JavaScript

Learn the fundamentals of the popular programming language JavaScript so that you can explore the realm of web development.

we have SCCM 2012 R2 sp1 deployed on windows 2008 r2. sccm is configured as a stand-alone primary site which is currently being used to deploy OSD, windows updates and asset management. Reports are configures. The database for SCCM is hosted on a separate SQL server 2008 standard server.

we are in the process of migrating from windows 2008 r2 as the base OS to windows 2016 for all services.

the SQL server will be upgraded to SQL server 2016.

The base OS needs to be upgraded to windows server 2016.

the SCCM will be upgraded to CB 1806.

what would be the best way to move forward
I'm new to SCCM so need some help.
I have to add a computer to SCCM for installation, currently I'm supposed to do:
1. on devices right click & import computer information
2. Provide single computers name & MAC address
3. In Device collection add in the right folder by Right Click - Add Resources, the ID of the group I want to add is: CollecionID: 100
4. Then when the PC is added (it takes very long to show up) Right click on the PC & Clear Required PXE Deployments

This all takes enormous time & is very boring.... I have for the 1 & 2 figured out this :
Import-CMComputerInformation -CollectionId "100" -ComputerName "TEST" -MacAddress "00:00:00:94:F9:97"

The computer is shown up in the system, however it's only done till 1 & 2
Can someone help please to achieve the complete process?
I intend to only import 1 computer.

We are looking to do an in-place upgrade from 1703 to 1709.
We create a reference image (.wim) file in MDT 2013, we bring it over to SCCM 2012 R2.
We do not create drivers in MDT we do that in SCCM 2012 R2.

When we do this in-place upgrade to 1709 is there are way to disable 'User First Sign-in Animation'.  
I know there are two ways GPO, Registry key.
I know you can also do it via unattend.xml.  We do not want to touch this.

Can I create a task sequence to do this in SCCM 2012 R2.                

Can someone help me I am so new to imaging.

I am working with app packaging in SCCM 2012R2 and have an application installer (.exe) that while running launches a second .exe (Sentinel Runtime) to install. At the end of the second one installing, there is a prompt to hit OK. The application install won't go past this point if you don't hit OK. So in SCCM, it will run until it times out then the installation will fail. I haven't been able to get it to move beyond this point no matter what switches I use. It would be great to get some help with this. I am running the installation again to get some fresh logs as I am sure someone will want to know. Below is the string I am using in the installation line.

".\tnxTower8040_Setup.exe" /S /v"/qn " /norestart

I've tried many variations of the same command, but have had no luck. I've also reached out to their support and they were unhelpful as well. So now I am reaching out to the experts!

Thanks in advance!!
We have 6 hosts and 40 virtual servers running on ESXi. Each host has 2 processors with 16 cores each. total of 32 cores per server.

3000 clients

we will deploy SCCM and SCOM only

which option should I go for. System Center standard or datacenter. for my situation how will be the calculation.

Datacenter: I understand that it will cover unlimited VM's. and i need to buy 12 datacenter licenses. do I need to buy sccm client ML if I buy datacenter?

For Standard what should I buy.

appreciate if this can be answered today.
We are in the process of creating a policy for deploying windows updates. Our network was an isolated network with no access to the internet till now. we have recently deployed SCCM and software update point has been installed and configured.

Now we want to have policies create for deploying windows updates on servers and clients.

I am concerned about the servers as we have servers with different roles like

File server, sql clusters
exchange DAG's
application servers.

I want some suggestions if is it safe to deploy security updates on all servers at the same time especially the ones that are part of the clusters.

looking for some best practices related to deploying windows updates.






Systems Center Configuration Manager (SCCM, formerly known as Systems Management Server) is Microsoft’s system software for managing large groups of not only Microsoft computers, but those running other operating systems, such as Linux, OS-X, and various mobile technologies.