Archive

Author Archive

Upgrade Readiness Integration and ConfigMgr Current Branch 1810 upgrade – beware of inbox flooding

April 16, 2019 Leave a comment

Are you planning to upgrade to Configuration Manager Current Branch 1810 and actively using the Upgrade Readiness integration feature? Then this blog post might save you some headaches later on.

Shortly after upgrading to Configuration Manager Current Branch 1810 last week, a customer reported the volume on the site server rapidly filling up. Further research indicated a large amount of files were dropped in one of the inboxes: %ProgramFiles%\Microsoft Configuration Manager\inboxes\hman.box\CFD

Looking into these files further pointed to a potential issue with the Upgrade Readiness integration, which was enabled in this particular environment.

The dmpdownloader.log indicates the Upgrade Analytics download interval is set to 0 and running continuously.

image

In the meantime Microsoft has published KB4498259 confirming this is a known issue with Current Branch 1810. The fix comes with the 1902 release and in the meantime a workaround is to (continuously) set the download interval in the registry.

More details in the KB article here.

Hope it helps.

Tim

Advertisements

Third Party Software updates not installing during Task Sequence

January 14, 2019 Leave a comment

As of Configuration Manager Current Branch 1806 it is now possibly to natively subscribe to third party software catalogs and deploy third party updates. There is no longer a need for System Center Updates Publisher (SCUP).

Currently there is one shortcoming in the feature: regular deployments of third-party updates are working fine, but when using the Install Software Updates step in an OSD Task Sequence the third-party updates are not installing. This may go unnoticed as the Task Sequence does not error out.

Initial investigation shows this is most likely because of the WSUS signing certificate only being installed on the client when Software Updates client policy lands after the task sequence has completed.  This is logged in the UpdatesDeployment.log :

image

As a result the third-party updates cannot be installed during the task sequence.

From a security perspective most organizations will want their devices fully patched before they leave the deployment bench. Also from an end-user experience perspective the experience is suboptimal when booting your new device for the very first time … just to have it install new updates (and potentially reboot).

Hopefully we will see this fixed in an upcoming release of Configuration Manager – to help speed up the process and make sure this gets some attention, please make sure to vote up this entry on User Voice.

Thanks – and until next time.

Microsoft MVP 2018-2019 Award

July 3, 2018 Leave a comment

MVPOver the weekend I received confirmation I was re-awarded as a Microsoft MVP in the Enterprise mobility category.

I am proud and honored to be awarded for the fifth consecutive year. Thank you Microsoft for the recognition and thanks to everyone in the community for the support and good times spent together during the past 12 months!

So what is the plan for the upcoming 12 months? There is no plan. For me personally time and effort put into the community (and MVP program) is something that comes naturally. Exploring products and technologies, sharing knowledge, and spending time with people interested in the same technologies is something that I have always enjoyed. For me that is and should be the biggest core value of the MVP program: recognizing people for going the extra mile in what they love to do …

Want to learn more about the program? Make sure to have a look at the MVP website.

See you around at a local or global event!

Tim

Categories: Community Tags: , ,

MMSMOA 2018 – Post Breach Security session debrief

May 17, 2018 Leave a comment

imageA quick blog post to share some of the resources I had mentioned during the Post Breach Security from the Datacenter to the Desktop session at MMS earlier today:

Thanks for attending the session and as always: questions and comments are welcome.

Tim

Unable to upload Android Line-of-business application in Intune

February 23, 2018 Leave a comment

Recently we ran into an issue with Intune when trying to upload an in-house developed line of business application for Android.

The symptoms seen are rather straightforward : when selecting the .apk file, the details like name, platform, version, etc. are not populated automatically and the OK button remains greyed out. As a result the application cannot be uploaded.

clip_image001

Clearly something is missing, but trying to pinpoint the root cause has turned out to be difficult. The actual requirements that an application must meet are, to my knowledge, not documented. This makes it very hard to determine the cause and provide any further details to the application developer in an attempt to further resolve this.

Getting this resolved (with the help from Microsoft support) was twofold :

First we needed to ensure the manifest included platformBuildVersionCode and platformBuildVersionName:

clip_image002

Still we could not upload the .apk until the developer ran through the following steps:

  • Put the following line in gradle.properties: android.enableAapt2=false
  • Restart the Gradle daemon by running ./gradlew –stop from the command line
  • Sync gradle settings

For the non-developer (like me) this does not say much, but at this point the .apk file could successfully be uploaded in Intune.

Hope it helps!

Tim

Lowlands Unite Belgium Edition–Debrief

October 24, 2017 Leave a comment

Just a quick blog post to share the slides from my new blips on the radar session at Lowlands Unite Belgium last week.

Thanks to those who attended – in case you have any further questions or feedback make sure to leave them in the comments. I will get back to you as soon as possible.

Link to Slideshare.

Also check out this Sway looking back at Lowlands Unite Belgium Edition 2017.

Looking forward to the next edition in 2018!

Tim

Lowlands Unite Belgium Edition Speaker

October 17, 2017 Leave a comment

LLUnite_BEIn two days we are ready to kick off the second leg of Lowlands Unite for this year. The event will take place at Lamot in Mechelen, Belgium.

Similar to the Netherlands edition there will be two tracks: one for EMS / ECM and one for CDM / Security. I will be presenting in the first track.

Based on the current agenda I will be kicking off the day and during my first session I will be flying solo. The objective of the session is to give an overview of the latest and greatest in the world of Configuration Manager. Additionally I will talk about the modern management capabilities that can be considered also.

For my second session in the afternoon I will be joining Kenny Buntinx for a presentation on servicing your workplace (like a boss). Here we will talk about servicing challenges Windows 10 brings into your environment and how you can tackle them.

For this event we will be joined by two international MVP’s: Ronni Pedersen and Mirko Colemberg, plus a special guest from Microsoft in Redmond: David James. David is the director of development of the Configuration Manager team. Belgium is the fourth stop of his European Tour visiting different user groups. This a unique opportunity which you honestly cannot afford to miss.

Interested in joining us? It’s not too late : registration ends in approximately 24 hours and there are still a few seats left. More information and registration here.