anyweb

here you go\\ Regedit /s ".\Policy\MBAM_reg_settings.reg" rename from .txt to .reg mbam_reg_settings.reg.txt

you can set registry keys before or after the mbam client is installed to set the FVE settings in the registry this is because group policy cant be processed until after the task sequence is complete, once it is complete if any bitlocker actions are still required the mbam agent will popup within the 90 minutes period and prompt/inform the user the registry keys are the values that you set when setting your mbam options (group policy settings) i'll see if I can export them from a computer here and upload them for you

do you want to do a remote session with me and I takea look ? I can do teamviewer

here's your problem <![LOG[Failed to run the action: Install Microsoft Office 2013 ProPlus. Download failed (Error: 87D00267; Source: CCM)]LOG]!><time="16:13:50.800+00" date="12-18-2013" component="TSManager" context="" type="3" thread="3036" file="instruction.cxx:895"> is it on the dp ? are you specifying any MP in the setup windows and configmgr step ?

have you seen this post ? CM12 in a Lab - How can I capture an image using Capture Media in Configuration Manager 2012 ?

can you attach the smsts.log

i havnt tried this but you might want to consider shrinking or extending one of the partitions to fill the other one via diskpart commands or using the disk administrator

so you still have the problem ? can you browse the apple store using internet explorer on the same box ?

ok thanks

well you could create a collection query to limit the collection to All Unknown Computers but containing a query matching specific criteria... such as ip subnet, try it

is this problem related to your .local lab name I wonder or did you change it ?

great news ! patience is important it will show up within 24 hours (it should at least) can you update the technet thread also with the solution and link back to here so others will learn.

simply create one collection for each location and deploy whatever task sequences you want to each collection

interesting info, do you know what version the driver was (when crashing) and what prompted you to update it ?

why not just use capture media as described here ? CM12 in a Lab - How can I capture an image using Capture Media in Configuration Manager 2012 ?

you need to include the smsts.log file from your actual deployment, the error you quoted means as follows:- so you are trying to do something that is unsupported \ post the log and we'll take a look cheers niall

I havn't tried it that way, can you not create a simple example.com test lab and verify that?

in my example windowsintunenoob.com does match a public domain name with the same name even though it's just a lab

all i can recommend is you try another domain name, i'm not 100% sure it's the issue but i wanted to mention it at least, the log files don't really tell me enough to determine the source of the failure

"MDMServer2012R2.konfig.local" <----- that might be your problem ! I had to rebuild my lab and use a 'real' FQDN to get things flowing so for example, my working Windows Intune+ConfigMgr lab has CM12 server has an FQDN of CM12.windowsintunenoob.com, the non-working Windows Intune+configmgr lab was sccm.server2008r2.lab.local I think .local FQDN's will cause problems with iOS, I had no success with iOS and .local in my first lab.

let's stick to one problem at a time please - ok i asked you to state WHEN the problem occurred so I can reference it in your logs, can you tell me when that was ? (i.e. you signed in and then it failed at WHAT time) ?

yup like so How can I password Protect a Task Sequence ? Password Protecting a Task Sequence

you didn't say if you tried any other user yet, if not please do try, as regards your logs i've had a look and it's hard to tell when the failure occured so can you please go through the login process again and when you see the failure take note of the exact time, then attach the new logs here stating WHEN the failure occured ok ?

ok is the device managed by any other mobile device management solution (airwatch for example), if so then those MDM certificates need to be uninstalled first before trying the above, also have you tried using any other user ?? have you verified the user you are testing with is in the Windows Intune Users collection ?

well you have to decide what is more important, security or zero touch, if you want zero touch then remove the password on the DP and instead insert it into the task sequence