Repairing broken applications using Software Center and SCCM 1810 (System Center Configuration Manager)

Introduction

This is a quick and short post on one of the new and welcomed additions to application management in System Center Configuration Manager 1810 (SCCM). Starting with 1810, we now have the ability to let the end users quickly repair installed applications through the Software Center.

This will come handy in self-service scenarios or when support-personal are trying to solve application specific issues. A common and well known troubleshooting scenario, is to try and repair a broken application. Curious? Read on 🙂

The repair function at display in the Software Center

Read more…

Updating Configuration Manager Current Branch to version 1810 (Example from a production environment)

Introduction

Good news everyone! System Center Configuration Manager Current Branch 1810 was released today, and similar to previous releases, I’m going to walk you through the process on how I updated my production environment.

Not much has changed, but I know someone will fancy to have an A-Z guide as inspiration, and as of such, I here give you the exact steps I went through to update SCCM to the very latest and greatest version.

The 1810 update ready for installation in the console

Read more…

Azure AD Application Proxy, Single Sign-On and Conditional Access

Introduction

As the topic suggests, the following post will be about the Azure AD Application Proxy feature – a feature within Azure Active Directory. I haven’t blogged specifically about this feature before, but I do think it deserves a mention here as well.

I will go into details on how to provide secure remote access to an internal IIS website, and give an example on how to add single sign-on to that experience while protecting everything with Conditional Access.

This post will be followed up with a continuation, where everything will be put to use on a mobile device with a Microsoft Intune managed Edge browser. Curious? Read on and stay tuned 🙂

The end result where an internal IIS is reachable from www

Read more…

How to automatically join Windows AutoPilot devices to On-Premises AD (Hybrid Azure AD Join)

Introduction

Good news everyone! The feature was introduced at Ignite earlier this year and now it’s finally here. Windows AutoPilot now allows you to join your Windows 10 v1809 devices to your on-premises Active Directory (Hybrid Azure AD Join). All the magic lies in a new Intune connector for Active Directory. Sounds exciting, right? This will be everything you need to know, on how to get started with this new amazing feature.

The new Intune Connector for Active Directory (Preview)

Read more…

Remove built-in apps for Windows 10 using SCCM and Microsoft Store for Business

Introduction

Removing the built-in apps in Windows 10 is often a hot topic and in same regard, it’s often discussed if and how they are removed. There are several excellent Powershell scripts for the same purpose made by the community, and they possibly satisfy most needs already.

But maybe you don’t fancy maintaining a Powershell script and maybe you don’t want to deal with specific apps coming back after an in-place upgrade. Or perhaps you just want an alternative. Then this might be of interest. This is solely based on using Microsoft Store for Business integrated with SCCM (System Center Configuration Manager), to uninstall some of the unwanted built-in apps in Windows 10 (and keep them uninstalled shall they ever return)

Some of the apps I tend to remove and keep removed using this method 🙂

Read more…

Awarded Microsoft Enterprise Mobility MVP 2019-2020

WOW! Three days ago (November 1, 2018) I was completely and utterly taken by surprise. And one of the good ones indeed. I received one of the most anticipated e-mails to date, the e-mail stating that I was awarded the Microsoft Most Valuable Professional award in Enterprise Mobility for 2019-2020.

Not only was I surprised, but I instantly felt extremely proud, honored and humbled. I was literally speechless. I was in the middle of a technical conversation with some coworkers when the e-mail ticked in and highlighted my phone. Just then everything changed. I remember that I froze and had to re-check the content and sender of the e-mail several times.

This is the beginning of something great I’m sure, and there is a lot of hard work waiting for me ahead.

There’s a bunch of people I obviously owe a lot of gratitude and thank you:

Niall Brady – for believing in me. For motivating me and for just being a good guy. Thank you!

My employer and coworkers – for letting me work so dedicated with my favorite Microsoft products. For giving me space and everything I needed to accomplish this amazing goal.

My family – also for giving me time and space to spend that many hours (usually after-hours) with my laptop fighting the good fight.

Microsoft – for giving us this amazing opportunity and obviously for awarding me. I am EXTREMELY honored and I will do my very best to continue to give back.

Again, thank you everybody. Thank you so much.

/Martin

More info about being an Microsoft MVP: https://mvp.microsoft.com/

Deploy the SCCM Client using Microsoft Intune and the Cloud Management Gateway (CMG without PKI certificates)

Introduction

Last week I blogged about how to get properly started with Windows AutoPilot. This week I’m continuing on the topic, and going into details on how you can deploy the SCCM (System Center Configuration Manager) client as a part of the Windows AutoPilot enrollment and thus achieve Co-management with SCCM and Microsoft Intune.

I have previously blogged a lot about Co-management. Focus here has been enrolling devices already managed by SCCM into Intune MDM.

This post is the opposite. This time we are deploying a device through Windows AutoPilot, enrolling it into Microsoft Intune and then deploying the SCCM client through the Cloud Management Gateway. Sounds interesting? Read on 🙂

  • Find all my Co-management posts here: https://www.imab.dk/category/co-mgmt/
    • My post about setting up the Cloud Management Gateway without PKI certificates is especially of interest if pursuing Co-management

Read more…

Installing Update Rollup (KB4462978) for SCCM 1806 (System Center Configuration Manager Current Branch 1806)

Introduction

Short and sweet: A new Update Rollup is available for download and installation for System Center Configuration Manager Current Branch 1806. More about the rollup itself and it’s fixes here: https://support.microsoft.com/en-us/help/4462978/system-center-configuration-manager-version-1806-update-rollup

This is a quick walk trough of the installation for those who’s interested 🙂

Read more…

How to get properly started with Windows AutoPilot: Everything you initially need to know!

Introduction

It’s time for me to take on a new topic on the blog. I have been experimenting, working and blogging a lot about SCCM, Intune and Co-management, but never really touched base with Windows AutoPilot. Time is due and this will be the first in a series of posts about Windows AutoPilot and how to eventually reach Co-management with SCCM and Microsoft Intune through Windows AutoPilot.

First things first though. This post will give you everything you need to know on how to properly get started with Windows AutoPilot. Curious? Read on 🙂

A peek into my AutoPilot devices in my test tenant 🙂

Read more…

Summary of SCUG.DK meeting (System Center User Group Denmark) Fall Edition starring David James

Introduction

In line with traditional practice on my blog, I’m kicking off my posts with an introduction – this time is no different.

The topic is something new however, and that’s even though I have been a frequent SCUG.DK attendee the past many years. I don’t dare to make a promise about making this an habit either, but I do think this event in particular deserves a written summary. So here goes my very first of it’s kind; the summary of SCUG.DK Fall Edition starring David James also known as @djammmer on Twitter.

And by the way, I’m not used to doing summaries – so please bare with me if I missed something obvious. I took notes and did a lot of pictures while tweeting live from the event, so there’s a slight chance I missed out on a thing or two. Apologies in advance.

Also, during this event there was a dedicated request to do tweets with the #MMSMOA hashtag for the chance of winning a trip to MMS 2018 Desert Edition, so if browsing Twitter for interesting Tweets, you will find some of them located on both #SCUGDK and #MMSMOA. 🙂

Front row seats at the SCUG.DK meeting

Read more…