focused on configuration manager, mopars, guitars and other stuff i like
I'm not sure these are documented so adding here:
Content status message of successfully distributed content is the normal status when you deploy content to a DP
Content status message of successfully processed content on DP is the status when you validate content on a DP
Content status message of content was distributed to DP is when you redistribute content to the DP.
Here is some additional information on how the content routing function works in ConfigMgr 2012. If you use this feature make sure you document the routes that have been added/deleted.
Assume there is a CM2012 SP1 primary site (BLB) with two CM2012 SP1 secondary sites (SE1 and SE2). By default CM creates file replication routes from BLB to SE1 and vice versa and from BLB to SE2 and vice versa. We used to call these file replication routes “senders”.
Assume BLB is in Dallas, SE1 is in Houston and SE2 is in College Station and the College Station network goes to Houston and then from Houston back to Dallas. Again, if the network for both remote sites went straight back to Dallas then using content routing between the secondary sites may not make sense as it would add additional traffic, latency, etc.
To adjust the file replication routes to match this scenario, we need to create routes between the two secondary sites and then remove the file replication routes between SE2 and BLB. Make sure the computers accounts for the two secondary sites can communicate with each other and do not modify the database replication links.
Now when you distribute applications to the SE2 distribution point the primary site will use the SE1 secondary to route the content to the SE2 DP. You should be able to see this routing logic in the scheduler log on the primary site. In this example I am assuming the SE1 DP should not be a DP for this content so it was not included as a targeted DP. If I was deploying content to multiple secondary sites thru the SE1 secondary the logic would be same.
The ability to inventory mapped network drives was a common customer ask in ConfigMgr 2007 and SCCM Expert and some other folks provided free scripts and MOF edits to take care of this. But can this be done in ConfigMgr 2012?
Mapped network drives and printers are a per-user setting so you need to run a script or process under the user’s context to grab that data and store it somewhere that the hardware inventory process can get to. The obvious place to store the data is WMI. There may be other scripts out there that do this and if you have a better way to do this in ConfigMgr 2012 please let me know, but I chose to use a script provided by CTS for ConfigMgr 2007 and it worked just fine in my lab. Credit to Alvin Morales and JC Hornbeck for the blog article:
Obviously in ConfigMgr 2012 we won’t perform the MOF edits shown in the article, we make the change in the ConfigMgr 2012 console itself. But the VB script provided (mapdrives.vbs is what they called it) is required. Given the requirements that need to be met for this to work as a ConfigMgr package (run with user rights, run only when a user is logged on, set it to re-run on a schedule, etc) this may work better as a logon script. You could also modify the VB script to inventory mapped printers as well. You could further modify the script to force a hardware inventory once it’s done, or just wait for the next scheduled inventory to occur.
Once you have created the package and deployed it to your clients, you can verify it worked by using WBEMTEST to connect to rootCIMV2 and look in CX_mappeddrives.
In the ConfigMgr 2012 console you’ll need to add the new class for hardware inventory. So, Administration/Client Settings/Default Client Settings (or select a custom device settings group)/Hardware Inventory/Set Classes. Click Add and use the Connect option to specify a client that now has the information stored in WMI and select the CX_mappeddrives class name.
Once the client has retrieved machine policy and submitted hardware inventory, you should be able to see the mapped drive data in Resource Explorer:
and you can confirm in the database:
If you start testing the integration of Intune with Configuration Manager 2012 you’ll likely spend time waiting for the Dirsync process to run. It runs every 3 hours by default which is OK for a production environment but when testing you want things to happen quickly so you can continue testing. Here is a process you can use to manually kick off that dir sync process in your test lab. This allows you to make changes in your AD (like creating new test accounts, password resets, etc) and get those changes communicated to the cloud. I’m not recommending that you could or should use this in production as I don’t know if there are any support issues with doing this. There also may be other ways to accomplish this but I figured this out in my testing and it works for me. Your mileage may vary.
Once you have installed and configured dirsync look in Microsoft Online Directory SyncSYNCBUSSynchronization ServiceUIShell and run miisclient.exe.
This is the Forefront Identify Manager (FIM) client and we can use it to monitor and troubleshoot the dirsync process. In the app we can monitor the status of the different sync jobs. Look closely and you’ll notice a trend. About every 3 hours (usually it’s 3 hours plus a few minutes) you’ll see 3 jobs run, in this order: Delta Import Data Sync, Delta Confirming Import and Export. I won’t go into the details about what those do now, will possibly cover it a later entry.
If you select one of the Delta Import Data Sync records and right click, you’ll see a few options, with one being Run. If you select Run and then verify the Run Management Agent options (basically in this example make sure the Management Agent is Source AD and that the Run Profiles options is set to Delta Import Delta Sync) and click OK the Synchronization Service Manager will create a new Delta Import Data Sync record with the current date/time stamp and set the status when it’s done to success (or failure if it fails). Repeat the same process for Delta Confirming Import and then when it’s done run the Export. Done!
If you want to confirm that the changes in AD are being picked up you can select the Delta Import Delta Sync record for the sync after the AD change was made and check the Synchronization Statistics window at the bottom and you should see some values in the Staging section. In this example, the Last Name for my Intune test user account in AD was changed and I was expecting to see an update to that AD account get picked up and sent to Azure AD. I used the Sync Statistics to verify that the change was processed and I was then able to go to my Azure domain and saw that the change was reflected there. Success!
If you have a central administration site (CAS) in your Configuration Manager 2012 hierarchy, consider using SQL Enterprise for the CAS. If you use SQL standard, the support limit is 50,000 users and there is no supported method to change the SQL edition after the fact (other than a complete reinstall of the hierarchy!)
The ConfigMgr client has traditionally been a fairly passive component on computers. It gets policy on a schedule, it submits inventory, evaluates baselines etc but typically doesn’t make any changes to the computer unless you tell it to. The ConfigMgr 2012 client has a client health process that runs every night (midnight plus an offset is the default time) and is set to automatically remediate any of the issues it is configured to check for (WMI, CM client service stopped, etc). For some environments making unplanned changes to a production computer may be worrisome and you may want to disable this auto remediation feature. If so, consider changing the following registry key on these clients:
HKEY_LOCAL_MACHINESoftwareMicrosoftCCMCcmEvalNotifyOnly
The default value is FALSE, meaning the client will auto remediate problems when found and you can monitor this in the Monitoring workspace in the console. Change the value to TRUE if you want to adjust this behavior. When the registry entry is set to TRUE the client will not auto remediate problems that are found and administrator will see alerts in the Monitoring workspace. The administrators can then manually (or use some other process) to resolve the identified computer issue.
A customer asked about the benefits of using a Windows Azure-based distribution point. Great question!
Pros:
Cons:
Azure DP does not support PXE, multicast, OSD, app-v streaming, task sequences, packages that run from DP. Also no ability to prestage content
ConfigMgr client computers that are powered on but are not connected to the corporate network will continue to execute hardware and software inventory processes as scheduled and will store the data locally. Once the client is able to connect to the ConfigMgr site server and retrieve policy the client will upload the saved inventory records and the site server will assign them sequenced version numbers and typically process them in the order they were created. This behavior can be verified in the dataldr.log on the site server.
In ConfigMgr 2012 you can have include collections to include members and you can have exclude collections to exclude members. Makes sense, right? But what happens if a collection member (could be a computer or a user) exists in both collections, the include and the exclude? Which one takes priority? The exclude would win, so the collection member would not be returned in the collection results.
Finally got my copies of the book (Mastering System Center 2012 Configuration Manager) from the publisher, which reminded me I needed to put something on my blog about the book. I was the technical editor for the book and I wrote the chapter on role-based administration and the chapter on endpoint protection. We started working on this book in late 2011 and it was released a week after the release of ConfigMgr 2012. It is pretty remarkable, in my opinion, that we were able to get this book done and ready for purchase so close to the product launch. I don’t make any money from the sales, but if you are looking for some good info on ConfigMgr 2012, check it out and let me know your thoughts.
Here is the amazon link. http://www.amazon.com/s/ref=nb_sb_noss?url=search-alias%3Daps&field-keywords=mastering+configuration+2012
SMS, SCCM, MECM, MEM, MCM & other fun acronyms 