anyweb
-
Posts
9195 -
Joined
-
Last visited
-
Days Won
367
Everything posted by anyweb
-
well there is co-management, which allows your clients to be managed both from intune and configmgr, i think that's the next step for you, right now, your clients are only managed by configmgr and therefore cannot get policy from configmgr without being connected to a vpn.. or, you need internet based client management (IBCM) but that requires a lot of PKI setup in place -
and how have you configured your boundaries with respect to the CMG ? Starting in version 1902, you can associate a CMG with a boundary group. This configuration allows clients to default or fallback to the CMG for client communication according to boundary group relationships. This behavior is especially useful in branch office and VPN scenarios. You can direct client traffic away from expensive and slow WAN links to instead use faster services in Microsoft Azure. Note Internet-based clients don't fall into any boundary group. In Configuration Manager version 1810 and earlier, the CMG doesn't fall into any boundary group. https://docs.microsoft.com/en-us/mem/configmgr/core/clients/manage/cmg/plan-cloud-management-gateway
-
are both the source and target OS in English ?
-
back to my question, if you use the product key in the Apply Windows Settings step, do you still see your original problem (or not ?)
-
if you enter the license key in the apply windows settings step does your problem go away ?
-
are you using Configuration Manager 1910 or 2002 ?
-
try niall@windowsnoob.com
-
MDT Boot Image fails to update to DP
anyweb replied to Stian M.'s topic in Configuration Manager 2012
what does distmgr.log tell you ? -
This application Run only under winPE or winRE
anyweb replied to Sharjeel's topic in Configuration Manager 2012
and what application are you trying to run exactly ? and what version of windows 10 is it ? -
well the only thing i could suggest is to do a teamviewer session so I can see the errors live...
-
and did you follow the microsoft docs when creating the bitlockermanagement_cert ?
-
what command line did you use to install the portals ? if you specified -SqlInstanceName MSSQLSERVER then this error is expected... if you are using the default instance then leave out that switch
-
i'd do an in-place upgrade, you'll need to create a detailed plan of action though and test it in a lab first.
-
Configuring BitLocker in Intune - Part 2. Automating Encryption
anyweb replied to anyweb's topic in Microsoft Intune
what does the C:\Windows\Temp\TriggerBitLocker.log tell you ? I haven't tested the second scenario, -
OLD SCCM server still ADSI
anyweb replied to wej's topic in System Center Configuration Manager (Current Branch)
yes you can go ahead and remove them from the System Management contiainer, they won't return unless something is actually publishing them there -
i'll try and update the script/blogpost so others don't have to have this problem, thanks for the update
-
point the gpos in an ou that has computers that you intend to manage in the new mbam environment but why do it that way, why not go with the new Bitlocker Management in ConfigMgr or use Bitlocker Management in Intune ?
-
it's actually called Microsoft Endpoint Configuration Manager now, and why don't you do it this way - it works !
-
good question ! the 'website' is only a DNS entry in some web registrar to link back to your webserver Virtual Machine, in other words, it's just a pointer, that's all you need, so if you have any control over DNS for a website then you can fix this easily if you look at Step 5 in Part 3 it shows you how that is done for GoDaddy (for example) so let's imagine that you own a website address called www.mywebsite.com you login to the website provider and configure a new DNS entry such as pki.mywebsite.com and point the IP address to the Internet facing IP address you have on your smoothwalls internet nic then, on the smoothwall, you forward port 80 requests to the local IP address of your webserver virtual machine, that will solve it if you don't have access to any web registrar or website, then you could do a hack, and modify the local HOSTS file on the issuingca and maybe some other vm's to point pki.mywebsite.com to the local ip address of your webserver Virtual machine... cheers niall
-
look at your pm
-
ok ready
-
let's resume this tomorrow it's time for bed, sorry, ping me in the morning and i'll try and help.
-
what version of teamviewer are you using ?
-
pm me the password
-
setup then scroll down to network setup and set it up as green+red if you have teamviewer i can help