Sign in or Join FriendFeed
FriendFeed is the easiest way to share online. Learn more »

Ryan Steele › Comments

Ryan Steele
rgsteele on Odd issue on a few machines trying to deploy an app - http://www.reddit.com/r...
"When you say the .net install is set to not do a reboot, I presume you mean you're running the installer with the /norestart switch? And I'm assuming you've made the ".net 4.5.2" Application a prerequisite of the "Autodesk DWG trueview 2105" application? I suspect what's happening is the .net installer is exiting with error code "1641", which means "Hard Reboot". In other words, the installer thinks the computer should be restarted before any other installations occur. If you have "Determine behavior based on return codes" selected on the User Experience tab of the Deployment Type, the SCCM client will reboot the computer immediately after an installation process returns this code. Compare with the behavior seen when an installer terminates with return code 3010 ("Soft Reboot"): in this case, the SCCM client will not perform the reboot until all the other installation tasks are performed. If you believe Autodesk will install successfully despite .net's "hard reboot" not having been..." - Ryan Steele
Ryan Steele
rgsteele on Problem Setting W7 Product Key - http://www.reddit.com/r...
"If you use a GPO, it will reset existing users' homepages. (Yes, you can use a GP Preference set to not re-apply, but it will still change everyone's home page once). By setting the home page in the unattend.xml, it only applies the setting to the default user profile, meaning that users logging in for the first time will get your selected homepage the first time they launch IE but are free to change their homepage to whatever they want after that." - Ryan Steele
Ryan Steele
rgsteele on MBAM non-TPM USB startup key conundrum - http://www.reddit.com/r...
"There is a "Deny write access to removable drives not protected by Bitlocker" group policy, would that address your data security concerns? I have never implemented Bitlocker with a USB unlock key or used this GPO, but I can't imagine that they would conflict." - Ryan Steele
Ryan Steele
rgsteele on Slimming Driver Packs - http://www.reddit.com/r...
"I don't think the scan takes that long, maybe a minute or two? In theory, if you had a driver package that contained only the exact drivers required by a specific machine, it would be slightly quicker to apply with Apply Driver Package. It is worth the effort required to streamline the driver package? I was curious about the exact differences between the two ways to apply drivers and found this informative article: http://blogs.catapultsystems.com/mlist... Driver packages are replicated just like any other content. And no, your task sequence does not have to be set to "download content locally" before applying. The "Auto Apply Drivers" step connects to the SCCM server directly to download only the required drivers. (I should point out that this means you cannot use auto apply with an "offline media" type of deployment.)" - Ryan Steele
Ryan Steele
rgsteele on Slimming Driver Packs - http://www.reddit.com/r...
"The first thing I do after I download the drivers for, say, Windows 7 64-bit is to do a search on the folder I've extracted them to for folders named "x86", "Win32", "32bit", "XP", "Win2k", etc. I don't know how HP fares here but it seems Lenovo is too lazy to actually go through their driver packs and remove anything that isn't actually needed for the OS/bitness the driver pack is intended for. I've been able to cut the size of my driver packs in half this way. (Watch out though—occasionally a driver in a folder named, say, "Vista" may actually be applicable to Windows 7 as well.) How are you applying the drivers in your TS: with the "Auto Apply Drivers" step, or "Apply Driver Package"? If you use "Auto Apply Drivers", only the needed drivers are downloaded, which will speed things up. The big caveat here if you're deploying multiple desktop OSes is that sometimes a driver claims to be the "best available" driver for, say, Windows 7, when in fact it is from a driver pack for Windows..." - Ryan Steele
Ryan Steele
rgsteele on Will you be blocking iOS8 downloads this coming Wed, Sept 17th for bandwidth reasons ? - http://www.reddit.com/r...
"Updates are signed, but not per-device." - Ryan Steele
Ryan Steele
rgsteele on Question on update group statistics - http://www.reddit.com/r...
"You may want to reconsider your update strategy. There isn't any reason to limit the deployment of an update to an application-specific collection like that, because if you deploy an update to a client that doesn't need it, it just gets skipped. You will likely find this arrangement becomes too complex to manage. The recommended approach is to build collections like Servers, Workstations, Workstation Pilot Group, etc. Then your SUG might be something like "Updates - Sept. 2014". Put all the updates you're deploying that month in the SUG and deploy it to your pilot groups, then deploy it to your main groups when you're satisfied there aren't any problems. Every few months, combine the previous months' groups into one single "Updates 2014" group and deploy it (to catch any systems that were offline for an extended period, or have just been imaged)." - Ryan Steele
Ryan Steele
rgsteele on Tips for a new SCCM 2007 Sys Admin - http://www.reddit.com/r...
"> I build a VM with our most current image, which is usually a few months old, and install Updates via Windows Updates. I then capture the new image using Capture Media. Just FYI, this isn't recommended--you should be starting with a fresh OS install each time you build a new image. This blog post explains why: http://blogs.technet.com/b..." - Ryan Steele
Ryan Steele
rgsteele on So I want to learn Norwegian.. - http://www.reddit.com/r...
"[These folks](http://eidsvoldsofn.com) may be able to point you in the right direction." - Ryan Steele
Ryan Steele
rgsteele on How to generate report of computer names, associated users, and serial numbers? - http://www.reddit.com/r...
"First, just a clarification: I didn't write the blog post or the SQL query. In fact, as I indicated in my post, I don't think this is a particularly good approach. That being said, yes, you will need to wait for the SCCM client to perform its hardware inventory before the information will appear in the SCCM database." - Ryan Steele
Ryan Steele
rgsteele on An Update for the System Center 2012 Configuration Manager Support Center is now available - http://www.reddit.com/r...
"If you haven't seen this tool yet, it's very handy for troubleshooting clients. You can either install and run it on an affected client, or install it on your own machine and connect to one remotely. You can initiate tasks like client policy retrieval and application deployment evaluation. It also lets you view log files, including opening a "log group", meaning events from multiple logs are displayed in a single list." - Ryan Steele
Ryan Steele
rgsteele on Best practice for removing a shortcut - http://www.reddit.com/r...
"Using a batch script isn't a terrible approach, but why not detect "installation" based on whether the shortcut exists? What's the point of creating a separate file?" - Ryan Steele
Ryan Steele
rgsteele on How to generate report of computer names, associated users, and serial numbers? - http://www.reddit.com/r...
"A Task Sequence is a set of instructions for the client to follow when a new operating system is being deployed to it. You don't want to perform these steps unless you need the warranty information to be collected during operating system deployment. Instead, you should create a Package that runs the script on the client." - Ryan Steele
Ryan Steele
rgsteele on How to generate report of computer names, associated users, and serial numbers? - http://www.reddit.com/r...
"I'm working on exactly the same project at our shop right now with our Lenovo desktops. You'll want to start by creating a custom report. If you're not familiar with that process, this is a useful article: http://sccmgeekdiary.wordpress.com/2012... I used this SQL query as the basis for my report: http://smsug.ca/blogs... You'll notice there are two different serial numbers returned in this report: the BIOS serial number and the System Enclosure serial number. In my experience, the BIOS serial number is the one you want (some of our Lenovo machines return a value of "NONE" for the System Enclosure serial number, but all seem to return the correct value for the BIOS serial number). You could customize this report to only return entries for Lenovo gear and output the exact "ModelID, Serial, Comments" CSV format the Lenovo batch upload site expects, but I just exported the..." - Ryan Steele
Ryan Steele
rgsteele on Deploying specific classifications of updates to specific device collections - http://www.reddit.com/r...
"It is not possible to install the driver and firmware updates for the Surface through SCCM Software Updates (or WSUS, for that matter). Microsoft's recommendation is to manually download the driver pack and push it out as a Package with a PowerShell script that installs the drivers. See page 15 of the Deployment Guide PDF available here: http://www.microsoft.com/en-us..." - Ryan Steele
Ryan Steele
rgsteele on Over the Air TV - http://www.reddit.com/r...
"You will likely get better reception in Brentwood Bay on Rogers/Fido. Only Rogers has a cell tower nearby: http://www.ertyu.org/steven_... As for plans, if you work for a larger company or a government agency you may be eligible for a corporate plan. You may want to check with your employer about that." - Ryan Steele
Ryan Steele
rgsteele on Best cheese plate? - http://www.reddit.com/r...
"Yes, Stage is still amazing. Since you're pregnant (congratulations!) I must of course caution you [not to eat any unpasteurized cheeses](http://www.webmd.com/baby...)." - Ryan Steele
Ryan Steele
rgsteele on Windows updates...any way to force a restart at a certain time after updates are applied? - http://www.reddit.com/r...
"Honestly? I'm not actually sure, I just kind of assumed. Would be a good idea to test it out." - Ryan Steele
Ryan Steele
rgsteele on Enforcing Local Admin(s) on a machine in big environments? - http://www.reddit.com/r...
"My first thought was that Compliance Settings might do what you want. I Googled "sccm compliance local admin" and happily, the first hit looks like it does exactly what you need: http://myitforum.com/myitfor... You would need to ensure the user you want to give local admin to is set as the "primary user" on the machine." - Ryan Steele
Ryan Steele
rgsteele on Windows updates...any way to force a restart at a certain time after updates are applied? - http://www.reddit.com/r...
"Kinda sorta? I think? You can set the maintenance window for your devices to begin at the time you would like the devices to restart. Then you would deploy your software update groups with the deadline set to the time you would like the updates installed. On the "User Experience tab, put a check next to "Software updates installation" under "Allow the following activities to be performed outside the maintenance window". As long as the machine is powered on, the updates will install at the deadline you set in the software updates deployment, but they won't reboot until the maintenance window is reached. A couple caveats: Obviously, if a machine is turned off when the deadline is reached, the update installation will occur at whatever time the machine is powered back on. The other caveat is that if a user is logged in when the deadline is reached, a notification will be displayed for the duration specified in the "Computer Restart" setting of the applicable Client Settings for the..." - Ryan Steele
Ryan Steele
rgsteele on Need to be able to reuse laptops for imaging hard drives - http://www.reddit.com/r...
"You are aware that DirectAccess is supported on Windows 7 as well, right? /u/demogorgo has the right answer for this one. Deploy the task sequence as "available" to a collection the machines are in. When they PXE boot they will need to quickly press F12 when "Press F12 for network service boot" is displayed on the screen. Then they can proceed with imaging." - Ryan Steele
Ryan Steele
rgsteele on Superceedence and Retiring applications - http://www.reddit.com/r...
"Ah, you're deploying apps to user collections. That's something we've never actually done in our environment -- we only ever deploy applications to device collections. I'll have to make a note that that's an issue we could run into if we ever decide to go that route. Thanks!" - Ryan Steele
Ryan Steele
rgsteele on Superceedence and Retiring applications - http://www.reddit.com/r...
"That hasn't been my experience. I've found a superseding application will only install on a client if it is deployed to a collection the client is a member of. (Otherwise, a whole bunch of machines in our environment would have had Adobe Reader replaced by Adobe Acrobat!)" - Ryan Steele
Ryan Steele
rgsteele on Superceedence and Retiring applications - http://www.reddit.com/r...
"If you want Application B to be installed instead of Application A in an OSD task sequence, I think you need to edit the task sequence to replace it. However, if you didn't edit the task sequence, and Application B was deployed to the collection the machine was in, the client would see that Application A was installed and would trigger an installation of Application B." - Ryan Steele
Ryan Steele
rgsteele on Superceedence and Retiring applications - http://www.reddit.com/r...
"Consider this scenario: application B supersedes application A, and you have deployed application B as an "available" application to a collection. If a member of that collection has application A installed, application B will be installed automatically on that machine." - Ryan Steele
Ryan Steele
rgsteele on SCCM 2007 - Broken Clients? Report of broken clients? - http://www.reddit.com/r...
"Are you on the latest service pack and cumulative update? Have you deployed the latest version of the client to your endpoints? There is a startup script you can deploy with Group Policy which will repair the client if it's broken. Haven't used it myself but you may find it useful. http://blog.configmgrftw.com/configm..." - Ryan Steele
Ryan Steele
rgsteele on Thickheaded Thursday - August 14th, 2014 - http://www.reddit.com/r...
"I found the [windows-noob.com](http://www.windows-noob.com/forums...) guides very helpful. And do come and join us in /r/sccm, won't you? :)" - Ryan Steele
Ryan Steele
rgsteele on ConfigMgr - Patching - Maintenance Windows - http://www.reddit.com/r...
"I should have mentioned that we disable popup notifications for all updates. I don't think they have any use, other than annoying users. Assuming you're always releasing updates on the same day of the week each week, I think you can use maintenance windows to get the "backup deadline" you're looking for. Create two maintenance windows: the first one is your "regular" maintenance window, which is when computers will install the updates as long as the machine is turned on. Then create a second "backup" maintenance window, 24 hours in duration, during which updates will install if they weren't able to install during the "regular" maintenance window." - Ryan Steele
Ryan Steele
rgsteele on ConfigMgr - Patching - Maintenance Windows - http://www.reddit.com/r...
"I'm not sure I see the purpose of a 24-hour maintenance window. I assume this maintenance window is on a particular day of the week. Is there a reason you need the updates to install on that specific day as opposed to the other days of the week? Our workstations have a four-hour maintenance window running from 1am-5am. We deploy our updates to be available right away, with a deadline at 1am a few days after the available date. Under "Deadline behavior", we allow software updates installation to take place outside the maintenance window, but not reboots. That way, if the computer was off during the maintenance window, the updates will install the next time it is turned on. Hopefully the machine will reboot eventually. If any individual users want more control over when updates are installed, they can set business hours in the Software Center." - Ryan Steele
Ryan Steele
rgsteele on Russian cuisine in town? - http://www.reddit.com/r...
"Yup!" - Ryan Steele
Other ways to read this feed:Feed readerFacebook