Pre-provision bitlocker during OSD with a Windows 7 Enterprise image fails at Enable Bitlocker - SCCM 2012 SP1 beta
I'm trying the SP1 feature to pre-provision bitlocker during OSD, using an MDT integrated task sequence. It seems like the pre-provision part is working, but when the task sequence tries to enable bitlocker after installing the
OS, it fails. ZTIBDE.log contains the following:
Property UDI is now = ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
Microsoft Deployment Toolkit version: 6.1.2373.0 ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
The task sequencer log is located at C:\WINDOWS\CCM\Logs\SMSTSLog\SMSTS.LOG. For task sequence failures, please consult this log. ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
System drive is: C: ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
The deployment method is using ConfigMgr. ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
Property BdeInstallSuppress is now = NO ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
This script is not currently running in Windows PE ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
We are running a OS that supports BitLocker ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
OSDBitLockerTargetDrive= , OSDBdeTargetDriveLetter= , sOSDBitLockerTargetDrive= C: ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
This is a Refresh Build where BDE protectors were disabled. ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
OS Version is Windows 7 or higher. ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
Encryptable Volume Count:1 ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
Attempting to bind to: C: ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
Success setting oBdeVol ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
BDE Instance Bind Complete ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
Attempting to enable BDE Protectors ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
FAILURE ( 6767 ): -2144272377 0x80310007: Enable BDE Protectors ZTIBde 11/14/2012 5:04:42 PM 0 (0x0000)
This laptop is in an OU with bitlocker related settings applied via GPO, including allowing enhanced PINs, requiring backup of the recovery passwords and key packages to AD, and to require TPM+PIN for the startup authentication.
Bitlocker provisioning is working on my production server using only MDT (No SCCM), with a task sequence deploying Windows 7. I copied some of the variables from the customsettings.ini over to a collection variable in SCCM for
the collection I'm testing deployment to. Putting those same variables in collection variables should work the same as if they were in the custom settings, but only for members of that collection, right?
The variables set in the collection variables area are
BDEInstall - TPMPIN
BDEInstallSuppress - NO
BDEPin - SET
BDERecoveryKey - AD
BDERecoveryPassword - TRUE
TPMOwnerPassword - SET
OSDBitlockerMode - TPMPin (This one wasn't copied from the other MDT share, but added just for sccm.
I didn't copy the BDEWaitforEncryption variable, it didn't seem like that one would be necessary with the pre-provisioning. What am I doing wrong here?
If not you could add a set variable action to your task sequence after the UDI wizard to set OSDBitLockerPIN to %BDEPin%. You could add a condition to the action to only run if BDEPin exists.
I don´t quite fallow, how I can switch these variables between. I admit I some time have difficulties to understand the variables. Could you mark discribe me the settings of set variable step I have to enter. Thanks!
With Confmgr step Enable Bitlocker I have another issue - it does not allow to to enter pin code with letters.
No problem :-). There is a task sequence action called "set task sequence variable". Just add one of these actions to the task sequence after the UDI wizard. There are only two things you have to configure in the action, the variable you want to set
and the value you want to set that variable to. The UDI wizard will create the variable BDEPin with a value equal to the PIN you enter in the UDI wizard page. So in your "set task sequence variable" action enter the variable name as OSDBitlockerPIN
and the value as %BDEPin%. This action will then create the OSDBitlockerPIN variable with the value that was stored in BDEPin by the UDI wizard. The built in SCCM action will then use this as the PIN rather than whatever value is configured in the task sequence
editor.
However the best solution would probably be to get the UDI wizard to set OSDBitlockerPIN rather than BDEPin in the first place. I think you can do this in the UDI wizard editor or directly in the XML. I don't use the editor these days so can't recall offhand.
I will take a look at this next week.
Most of the task sequence actions support variables and it enables you to configure the action dynamically at runtime. For example the same sequence can be used to deploy systems into different domains, languages, applications etc. all by setting variables.
It's the basis of how the UDI wizard works, it just sets variables which are then consumed by either MDT scripts or task sequence actions. The variables can be configured by UDI, collections, MDT customsettings.ini, MDT database or scripts. Dynamic deployment
is definitely the way to go :-).
I think you are correct about the built-in action not supporting enhanced PIN. I think it only supports standard numeric PIN. Whether setting the PIN via the variable works around a restriction in the task sequence editor I am not sure, I suspect not.
Mark.
Similar Messages
-
Windows Updates constantly failing and reverting after SCCM 2012 R2 pushes out updates
Hi folks,
I wonder could anyone help me with a strange problem I am having!
We use SCCM 2012 R2 and I am trying to roll out updates to a Windows 2008 R2 Standard 64 bit server.
When I deploy the updates to the server they get to the server and install but during the reboot it says Windows Modules Installer for a while then shows the failure configuring Windows Updates, reverting changes screen.
I’ve tried the suggestions of disabling 'Windows Management Instrumentation' and 'Windows Modules Installer' and renaming the repository folder but still no joy.
If I use Windows Update to install the updates the updates do go on but then when I add it to the collection in SCCM to push out the patches it sees the server as if the updates aren’t installed and begins doing the installs.
After the patches installs using SCCM and when the server is rebooted it goes back into the loop of saying Windows Modules Installer and reverts the updates and strips out the patches again.
I was hoping that when the Windows Updates were installed via Windows Update and once I put the server into the collection to push out the updates to the server it would have shown that the updates are already installed on the server and show that server
as being compliant in SCCM but unfortunately that isn’t happening.
It sights a couple of errors in the Setup event logs on the offending server: -
For multiple patches - Package KBXXXXXXX failed to be changed to the Installed state. Status: 0x80070643
For multiple patches - Initiating changes for package KBXXXXXXX. Current state is Invalid Resolved. Target state is Installed. Client id: WindowsUpdateAgent.
After doing some research,
0x80070643 refers to a .Net Framework issue so I’ve ran a .Net Repair tool but that didn’t work either so I’m running out of ideas so any help would be greatly appreciated on how I can get this sever updated using SCCM and showing as compliant.
Thanks,
BonemisterHi Torsten,
Thanks for your reply!
I was afraid you were going to say that as it just doesn't make sense that when I install the update using Windows Update via the Ire-nternet and when the install and re-scan no updates are required. It is only when I ask SCCM to check for patches
that it sees updates are missing and installed the updates before the OS reverts when.
Is there a way in SCCM to remove the record of what patches have been installed onto a particular server? I tried deleted the server out of SCCM then applying the Windows Updates via the web then added the server back into SCCM and see did it pick
up the newly installed updates on the server.
The thing is I don't think that WindowsUpdate.log will show any failures as Windows update is showing as no more updates required. It is just when SCCM installs that patches that the problem happens so that is what is leading me to think it is an SCCM
problem.
My main goal is to get the updates into the server and for it so show as complient!
I'll check back through the even logs again. Are they any SCCM logs that show patches failing to install and why?
Thanks again,
Bonemister -
Hi,
I've just setup a new Windows 8.1 system and added to my SCCM 2012 SP1 server and all is good and it pulled down all the correct Windows updates and pulls down automatically the FEP updates that are distributed from SCCM 2012 daily.
I just installed Office 2013 on this system and have activated it as necessary. The problem is that the system doesn't seem to be pulling down any of the Office 2013 updates that have distributed thru SCCM. I have other systems with
Office 2013 installed and they have pulled down Office 2013 updates in the past when I published them.
If I look at the Office 2013 updates in the SCCM console software section, I can see that for example it shows that Office 2013 SP1 (x86) is needed by one system and installed on 8 other systems and shows as downloaded and deployed.
I've restarted the new system multiple times and also tried to force a software update check from the Configuration Manager applet but nothing seems to happen.
What can I check to try and determine what the problem is?
Thanks in advance,
NickYes, the 8.1 system is a member of collection where the update deployment is targeted.
Are there any specific logs I should check in the client? If I check the WindowsUpdate.log I can see messages about the machine pulling down the FEP updates but that's all it appears to be doing.
in CCM\logs, focus on the updatehandler and updatedeployment, to begin with
Don
(Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!) -
Prestaged OSD using SCCM 2012 SP1 windows Partition variable is not being set
Hello All I need some assistance with a workaround.
I am using a presaged task sequence created from a working network / PXE deployment TS for windows 7.
This TS sets a variable for the OS partition called "Windows" and the value is set in the Partition Disk task.
Problem is this value is not being read from a prestaged due to the OEMMedia condition skipping this partition and format task.
Question is how do I get it to read and or set the value for that partition?
From what I have found on Google this was an issue in beta of MDT but was fixed in RTM. I am not using MDT TS but I do have it installed. Any idea if this is a known issue with SCCM 2012 sp1 TS?
Edit: also noticed that the variable's case is different and will not let me change it.
Variable under format is "windows" variable under Apply OS is "Windows" when I change them to be the same then close and reopen they revert back to the above. Are these variables case sensitive?
Edit: for now I have changed it from variable to next available partition. I tested it twice so far it seems to be using the correct partition and it remains to be called the C drive. For now this will be my solution.When you say "presaged task sequence created from a working network / PXE deployment TS" are you saying this is still a network boot process? Or have you done "Create Task Sequence Media"?
Dustin Estes - MCP
yes when i say prestaged that is using the create task sequence media then selecting prestaged. -
MBAM 2.0 SP1, SCCM 2012 SP1 - OSD
Found a few threads on this but just looking for an answer before I spend to much time fiddling to get this to work. What I am looking to do is encrypt laptops during OSD as follows:
Enable TPM (working fine)
Activate TPM (working fine)
Pre-Provision Bitlocker (using Win 7 Ent SP1)
Install OS
Install MBAM
Enable Bitlocker and escrow both TPM and Drive recovery keys to MBAM server
The bit I am not too sure about is the Pre-Provision and also the TPM key backup. Ideally I'd like both the TPM and Disk keys stored in MBAM but I am not sure if this will work if I have activated the TPM pre OS?
CheersPre-provisioning only works on a bare metal machine and occurs in WinPE. It also uses TPM so you need to make sure that is on an active in the BIOS.
This blog post provides some detail on how to enable MBAM and pre-provisioning. If you are using Windows 8+, and you want MBAM to back up TPM to its db instead of AD, you have to turn off auto-provisioning or Windows 8+ will take ownership automatically
and escrow to AD. To disable auto-provisioning you can set the following key when the OS has come up:
Reg Key to disable auto-provision:
HKLM\System\CurrentControlSet\Services\TPM\WMI
NoAutoProvision = 1
you
will need
to create a
regkey called
NoAutoProvision=1
Hope that helps!
Lance -
SCCM 2012 SP1 - R2 Upgrade Incl Windows ADK for Windows 8.1 Update
Hi All
I Need some advice
We are preparing for the upgrade SCCM 2012 SP1 -> SCCM 2012 R2
Quick steps:
1 Uninstall ADK 8.0
2 Install ADK 8.1
3 Upgrade SCCM 2012 SP1 -> SCCM 2012 R2
4 Install CU1 SCCM 2012 R2
5 Upgrade Clients to SCCM 2012 R2
6 Upgrade Clients to SCCM 2012 R2 CU1 with WSUS (SCUP)
But today I read the following article
http://blogs.technet.com/b/configmgrteam/archive/2014/04/03/understanding-the-adk-for-windows-8-1-update-and-configmgr-osd.aspx
How does this update fit in the upgrade process (add step 7 and install this update on the SCCM Server) , or is it better to leave this update because windows PE5.1 is not supported yet.
I hope someone can give me some good advice
regards and thx in advance
JohanHi All
So I can also use the ADK 8.1 Update with the installation , so my quick steps will be than for the upgrade SCCM 2012 SP1 -> SCCM 2012 R2
1 Uninstall ADK 8.0
2 Install the ADK 8.1 UPDATE
3 Upgrade SCCM 2012 SP1 -> SCCM 2012 R2
4 Install CU1 SCCM 2012 R2
5 Upgrade Clients to SCCM 2012 R2
6 Upgrade Clients to SCCM 2012 R2 CU1 with WSUS (SCUP)
Regards
Johan -
Deploy Windows 8 To Go through SCCM 2012 SP1
First a little backgroud:
I have SCCM 2012 SP1 with MDT 2012 Update 1 integrated. I am using an MDT UDI task sequence to deploy windows 8 and it works perfectly. My Windows 8 image is fairly thin (only containing OS updates and C++ runtimes), and I am using the MDT database
and an MDT task sequence in SCCM 2012 to dynamically set a list of SCCM Applications to install as well as settings based on location.
Now I want to get Windows To Go provisioning working in SCCM 2012 SP1. I had a powershell script that preparied the drive and applied a thick image (including office and other apps) to it then updated unattend.xml with a computer name and the domain join
info. That worked for me however I'd like to levarage the dynamic task sequence that I described above to build these To Go sticks the same as my other Windows 8 machines without having to keep updating the thick image evertime something changes.
There isn't much info out there that Iv'e found on setting up SCCM 2012 SP1 to provision windows to go here are the two that I have found
http://ixrv.blogspot.com/2012/10/provisioning-windows-8-to-go-with.html
http://technet.microsoft.com/en-us/library/jj651035.aspx
I followed the instructions in the first link and was able to run the Windows to Go Creator program and apply the prestaged wim to the USB stick. I rebooted from the USB stick Windows PE started and started to run my task sequence then it errored out on
the apply image step. At this point it occured to me that the MDT SCCM task sequence was probably not setup for prestaged media and or Windows To Go.
So my question is am I on the right track? Do I just need to examine each step in my task sequence and make sure that it will work properly with my Prestaged/Windows To Go stick? If so has anyone actually gotten this to work that could give me some advice?
Or is it asking too much to have a dynamic Windows To Go task sequence and I should just be building a thick image and using a second task sequence specifically for Windows to go?
are there any other resources for Windows To Go with SCCM that I'm missing?
Thanks,
TonyFirst of all sorry I missed your last three posts I have to check my email notifications. I'll try to answer all of them even though I think the last part is the only one where you are still stuck.
When I created my prestaged media I didn't put anything into it except for the the OS image and my PE image. On the Select Application and Select Package screen in the prestaged media wizard remove any application or packages that are added automatically.
The task sequence is supposed to be smart enough to know if the version of the package that is on the prestaged media is out of date and go to a DP to get it but that didnt work for me. The only way I was able to get it to work was to remove all the packages
from the prestaged media even the Customsettings package, the MDT toolkit package, USMT, etc..
http://social.technet.microsoft.com/Forums/en-US/configmgrosd/thread/d729d0ff-829f-4af8-91af-2131b3355fd0/
This thread which is about prestaged media in SCCM 2007 helped me to understand how prestaged media is supposed to work. Basically what I learned is that once the computer is rebooted from the ToGo stick into PE the task sequence will run the same as any
other task sequence installing any applications and setting up your ToGo stick just like any other computer that runs the task sequence they dont need to be in your prestaged media for this to happen.
You shouldn't need to worry about partitioning WTGCreator.exe will partition the ToGo stick for you I'm just using the standard MDT Integrated partitioning in my task sequence. The one thing that I did was set the Windows To Go Creator package to "run from
distribution point" which speed things up because then it didnt download the prestaged wim then apply it to the USB drive.
Is it booting into PE then rebooting? Did you check the "Allow unattend operating system deployment" check box when you made your prestaged media? If so it wants you to have set the task sequence to run in a task sequence variable SMSTSPreferredAdvertID
to the task sequence ID you want to run. I'd just remake the media and leave that box unchecked.
Good luck and let me know how it works for you. I'll check back sooner this time I promise. -
Deployed Windows 7 Image failing to start -SCCM 2012 SP1
Hello, I am deploying windows 7 image using SCCM 2012 SP1, the installation goes thru fine but when it is in the process of restart, a blue screen is displayed for a split second and then it tries to reboot again with same results. Are there any logs on
the SCCM server I can check to see where the problem may be?This generally means inaccessible boot device. How are you partitioning the drive and applying the image?
This is one way to do it
http://www.gerryhampsoncm.blogspot.ie/2013/02/sccm-2012-sp1-step-by-step-guide-part_18.html
Gerry Hampson | Blog:
www.gerryhampsoncm.blogspot.ie | LinkedIn:
Gerry Hampson | Twitter:
@gerryhampson -
Dear Brothers,
I have an issue with two (2) of my Site Servers, I have below scenarioa and explained issue details:
Scenario:
1. Server1: Windows 2012 Server, CAS, SCCM 2012 Hierarchy Roles: Management Point, DP, SUP, Component Server.
2. Server2: Windows 2008 R2 Server, Secondary Site Role, SCCM 2012 Hierarchy Roles: Management Point, DP, Component Server.
Issue:
After updating the SCCM 2012 Client to CU4 on the actual Site Server, the "ccmsetup" appears also with "SMS Agent Host"
at the Service MMC. Which I believed this is very unusual behavior.
The Client however it seems properly installed and working please see below details:
Questions: I believed the Client installations are still running on the background, even though the Client tends to look working on the Control Panel.
1. How can I resolved this issue?
2. Should I need to perform a total Client uninstallation, even depth till removing entries in the Registry levels?
3. Or this is a normal behavior for the scenario?
Advance thanks for your future replies, my brothers in technology.Dear Brother,
2 Weeks since I installed the CU4, it seems a little bit to long isn't it? for both the ccmsetup and the SMS Host Agent Services to exist, for the errors on the ccmsetup.log there are some errors after uninstallation since I am trying to removed
the issue .
CCMsetup.log
==========[ ccmsetup started in process 5376 ]========== 7/1/2014 7:14:45 PM 4104 (0x1008)
Running on platform X64 7/1/2014 7:14:45 PM 4104 (0x1008)
Updated security on object C:\Windows\ccmsetup\cache\. 7/1/2014 7:14:45 PM 4104 (0x1008)
Launch from folder C:\Windows\ccmsetup\ 7/1/2014 7:14:45 PM 4104 (0x1008)
CcmSetup version: 5.0.7804.1500 7/1/2014 7:14:45 PM 4104 (0x1008)
Running on OS (6.2.9200). Service Pack (0.0). SuiteMask = 272. Product Type = 3 7/1/2014 7:14:45 PM 4104 (0x1008)
Ccmsetup command line: ccmsetup.exe /uninstall 7/1/2014 7:14:45 PM 4104 (0x1008)
Command line parameters for ccmsetup have been specified. No registry lookup for command line parameters is required. 7/1/2014 7:14:45 PM 4104 (0x1008)
Command line: ccmsetup.exe /uninstall 7/1/2014 7:14:45 PM 4104 (0x1008)
SslState value: 224 7/1/2014 7:14:45 PM 4104 (0x1008)
Detected client version 5.00.7804.1500 from WMI. 7/1/2014 7:14:45 PM 4104 (0x1008)
Updated security on object C:\Windows\ccmsetup\. 7/1/2014 7:14:45 PM 4104 (0x1008)
Another instance of ccmsetup is already running. 7/1/2014 7:14:45 PM 4104 (0x1008)
Task 'Configuration Manager Client Upgrade Task' does not exist 7/1/2014 7:14:45 PM 4104 (0x1008)
CcmSetup is exiting with return code 3 7/1/2014 7:14:45 PM 4104 (0x1008)
MSI: Action 19:15:20: SmsRemoveUIEvents. This custom action is no longer used. The custom action used to remove the COM+ event subscriber and publisher used for UI notifications. We no longer use COM+ events for UI notifications. 7/1/2014 7:15:20 PM 5628
(0x15FC)
MSI: Action 19:15:20: CcmUnregisterPerfCounters. Removes performance counters gathered in the CcmUnregisterPerfCountersInit action 7/1/2014 7:15:20 PM 5628 (0x15FC)
MSI: Action 19:15:20: CcmRemoveLanternDocuments. Removing documents from Microsoft Policy Platform that have been submitted by Configuration Manager authority. 7/1/2014 7:15:20 PM 5628 (0x15FC)
MSI: Action 19:15:30: CcmTypelibRollback. In the event of install failing, this event rolls back the type libraries to the state before install started. 7/1/2014 7:15:30 PM 5628 (0x15FC)
MSI: Action 19:15:30: SmsDeinstallDesktopClient. This custom action uninstalls the desktop client with following steps-
1. Makes sure there are no desktop client installations in progress and prevents any new instance of intallation.
2. Checks the desktop client version and gets the installation direcotry.
3. Stops remote control and other desktop components.
4. Kills the following client processes - clisvc1.exe, pea32.exe, smsapm32.exe, smsmon32.exe and sms_reen.exe.
5. Saves information needed for migration and uninstalls the desktop components followed by clean up. 7/1/2014 7:15:30 PM 5628 (0x15FC)
MSI: Action 19:15:30: CcmDetectFilesInUseRollback. Rolls back files moved by CcmDetectFilesInUse. 7/1/2014 7:15:30 PM 5628 (0x15FC)
MSI: Action 19:15:30: CcmDetectFilesInUse. Moves files that are in use so that they will be deleted upon the next reboot. 7/1/2014 7:15:30 PM 5628 (0x15FC)
MSI: Action 19:15:31: CcmDetectFilesInUseCommit. Commits action of CcmDetectFileInUse. After this we cannot rollback. 7/1/2014 7:15:31 PM 5628 (0x15FC)
MSI: Action 19:15:31: InstallFiles. Copying new files 7/1/2014 7:15:31 PM 5628 (0x15FC)
MSI: Internal Error 2902. ixfAssemblyCopy 7/1/2014 7:15:32 PM 5628 (0x15FC)
MSI: Action 19:15:32: Rollback. Rolling back action: 7/1/2014 7:15:32 PM 5628 (0x15FC)
File C:\Windows\ccmsetup\configmgr2012ac-sp1-kb2882125-x64.msp installation failed. Error text: ExitCode: 1603
Action: InstallFiles.
ErrorMessages:
Internal Error 2902. ixfAssemblyCopy
7/1/2014 7:15:33 PM 5628 (0x15FC)
A Fallback Status Point has not been specified. Message with STATEID='301' will not be sent. 7/1/2014 7:15:33 PM 5628 (0x15FC)
Deleted file C:\Windows\ccmsetup\ccmsetup.xml 7/1/2014 7:15:33 PM 5628 (0x15FC)
Deleted file C:\Windows\ccmsetup\client.msi 7/1/2014 7:15:33 PM 5628 (0x15FC)
CcmSetup failed with error code 0x80070643 7/1/2014 7:15:33 PM 5628 (0x15FC)
Regards, -
SCCM 2012 SP1 SUP on Windows Server 2012
Hi sccm guys,
I'm having Troubles to get the SUP role working on my Windows Server 2012. I'm using SCCM 2012 SP1. I installed (and did not configure) the WSUS role from the Server Manager. I Chose to install the DB on the local SQL instance (no WID instance).
Then I added the SUP role to the Server and configured it with the seperate wsus Administration site (Ports 8530 and 8531).
WSUS gets configured partially (Proxy Settings and "Products and Classification" Options only for Office and Windows)
The folowing error pops up in the wcm.log
Failed to set Subscriptions on the WSUS Server. Error:(-2147467259)Unspecified error
Any clues?
Cheers
Sebastian BammerAlso did not fix my issue. A round of my logs:
Checking for supported version of WSUS (min WSUS 3.0 SP2 + KB2720211 + KB2734608)
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Checking runtime v2.0.50727... SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:28:59 a.m. 3556 (0x0DE4)
Did not find supported version of assembly Microsoft.UpdateServices.Administration.
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Checking runtime v4.0.30319... SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:28:59 a.m. 3556 (0x0DE4)
Found supported assembly Microsoft.UpdateServices.Administration version 4.0.0.0, file version 6.2.9200.16384
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Found supported assembly Microsoft.UpdateServices.BaseApi version 4.0.0.0, file version 6.2.9200.16384
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Supported WSUS version found SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:28:59 a.m. 3556 (0x0DE4)
Using DOMAIN\Administrator credentials for network connections
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Attempting connection to WSUS server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Successfully connected to server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Verify Upstream Server settings on the Active WSUS Server
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
No changes - WSUS Server settings are correctly configured and Upstream Server is set to Microsoft Update
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Done using DOMAIN\Administrator credentials
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Refreshing categories from WSUS server SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:28:59 a.m. 3556 (0x0DE4)
Using DOMAIN\Administrator credentials for network connections
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Attempting connection to WSUS server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Successfully connected to server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:28:59 a.m.
3556 (0x0DE4)
Done using DOMAIN\Administrator credentials
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:14 a.m.
3556 (0x0DE4)
Successfully refreshed categories from WSUS server
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:16 a.m.
3556 (0x0DE4)
Using DOMAIN\Administrator credentials for network connections
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:21 a.m.
3556 (0x0DE4)
Attempting connection to WSUS server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:21 a.m.
3556 (0x0DE4)
Successfully connected to server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:21 a.m.
3556 (0x0DE4)
Category Product:587f7961-187a-4419-8972-318be1c318af (Microsoft Dynamics CRM 2011 SHS) not found on WSUS
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:21 a.m.
3556 (0x0DE4)
Starting WSUS category sync from upstream...
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:21 a.m.
3556 (0x0DE4)
Refreshing categories from WSUS server SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:29:26 a.m. 3556 (0x0DE4)
Using DOMAIN\Administrator credentials for network connections
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:26 a.m.
3556 (0x0DE4)
Attempting connection to WSUS server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:26 a.m.
3556 (0x0DE4)
Successfully connected to server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:26 a.m.
3556 (0x0DE4)
Done using DOMAIN\Administrator credentials
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:41 a.m.
3556 (0x0DE4)
Successfully refreshed categories from WSUS server
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Done using DOMAIN\Administrator credentials
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Using DOMAIN\Administrator credentials for network connections
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Attempting connection to WSUS server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Successfully connected to server: SCCM01.domain, port: 8530, useSSL: False
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Category Product:587f7961-187a-4419-8972-318be1c318af (Microsoft Dynamics CRM 2011 SHS) not found on WSUS
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Subscription contains categories unknown to WSUS.
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Done using DOMAIN\Administrator credentials
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
Failed to set Subscriptions on the WSUS Server. Error:(-2147467259)Unspecified error
SMS_WSUS_CONFIGURATION_MANAGER 15/01/2013 8:29:42 a.m.
3556 (0x0DE4)
STATMSG: ID=6603 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_CONFIGURATION_MANAGER" SYS=SCCM01.domain SITE=AKL PID=1544 TID=3556 GMTDATE=Mon Jan 14 19:29:42.723 2013 ISTR0="SCCM01.domain" ISTR1="" ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8=""
ISTR9="" NUMATTRS=0 SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:29:42 a.m. 3556 (0x0DE4)
Waiting for changes for 59 minutes SMS_WSUS_CONFIGURATION_MANAGER
15/01/2013 8:29:42 a.m. 3556 (0x0DE4)
Thanks Christoph -
SCCM 2012 SP1 OSD in 802.1X environment
Dears,
we have SCCM 2012 SP1 CU5, and the network team has enabled the CISCO port security (802.1X network authentication) on the desktops VLAN and OSD is not working since then until port security is removed. i've seen some guides regarding how to make SCCM 2007
OSD, WinPE 3.0 and 802.1X work together like : http://myitforum.com/cs2/blogs/lakey81/archive/2011/07/06/configuring-802-1x-network-authentication-for-winpe-3-0-and-configmgr-deployments.aspx , but ot's very confusing.
does anybody have the same scenario with SCCM 2012, WinPE 5.0, and 802.1X . please help me.Hello,
What confused you here? 802.1X authentication is to authenticate before sending network packages. That is why we need import netwrok profile to win pe for anthentication. The point is authenticate, so I think it won't be any difference between
ConfigMgr 2012 and 2007.
Another good article here:
http://blogs.technet.com/b/deploymentguys/archive/2010/03/02/adding-support-for-802-1x-to-winpe.aspx
Please also pay attention to the shared document in the blog.
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] -
SCCM 2012 Sp1 CU3 support Windows 2012 R2 deployment?
Hi,
Sorry for so basic question, but I have read few docuemnts, blogs and official materials and I'm a bit confused.
In our organization we have SCCM Sp1 CU3. We are planning create and next deploy Windows 2012R2 Server images. On some documentations there is CU3 supports only application managment, inventory and so on. but there is nothing about image deployment.
So, my question is - I have to upgrade SCCM 2012 Sp1 CU3 to SCCM2012R2 to capture, build and deploy Windows 2012R2 system?
Thank you.Yes, you do. See what's new with ConfigMgr 2012 R2
http://technet.microsoft.com/en-us/library/dn236351.aspx
Gerry Hampson | Blog:
www.gerryhampsoncm.blogspot.ie | LinkedIn:
Gerry Hampson | Twitter:
@gerryhampson -
How to exclude music and pictures from backing with USMT in SCCM 2012 SP1?
How to exclude music and pictures from backing with USMT in SCCM 2012 SP1?
I know we can use config.xml but I m not sure what all steps to take.
Below is my understanding
1. Create Custom.xml file using below
<component context="System" type="Documents">
<displayName>Test</displayName>
<role role="Data">
<rules>
<unconditionalExclude>
<objectSet>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mp3]", "Fixed")</script>
</objectSet>
</unconditionalExclude>
</rules>
</role>
</component>
</migration>
2. Save as Custom.xml.
3. Copy it to USMT source files package in both the x86 and x64 subfolders and update the relevant USMT package distribution points.
I am confused as where in task sequence will we specify the custom.config file.Edit the miguser.xml file. The default list is as follows:
-<objectSet>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.qdf]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.qsd]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.qel]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.qph]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.doc*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.dot*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.rtf]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mcw]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.wps]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.scd]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.wri]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.wpd]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.xl*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.csv]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.iqy]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.dqy]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.oqy]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.rqy]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.wk*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.wq1]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.slk]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.dif]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.ppt*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pps*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pot*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.sh3]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.ch3]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pre]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.ppa]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.txt]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pst]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.one*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vl*]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vsd]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mpp]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.or6]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.accdb]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mdb]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pub]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.xml]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.ini]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.dgn]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.dic]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.dsk]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.gqa]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.gqu]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.id]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mpp]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.ora]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pab]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pdf]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.pps]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.qry]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.r2w]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.rdl]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.rsf]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.url]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vdx]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vss]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vst]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vsx]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vtx]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.zip]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.rar]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.7z]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.iso]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.gif]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.jpg]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.bmp]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mp3]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.avi]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.mp4]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.wmv]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.bat]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.vbs]", "Fixed")</script>
<script>MigXmlHelper.GenerateDrivePatterns ("* [*.lnk]", "Fixed")</script>
Gerry Hampson | Blog:
www.gerryhampsoncm.blogspot.ie | LinkedIn:
Gerry Hampson | Twitter:
@gerryhampson -
SQL version problem during SCCM 2012 sp1 setup
Hi
I am trying to install SCCM 2012 sp1 with a remote sql 2012 server.
during setup when I enter the SQL name i hit next and then I get this error.
"Configuration Manager requires Microsoft SQL Server 2008 SP2 with Cumulative update 9 or higher, Microsoft SQL Server 2008 SP3 with Cumulative update
4 or higher, Microsoft SQL Server 2008 R2 SP1 with Cumulative update 6 or higher or Microsoft SQL Server 2012 with Cumulative update 2 or higher,"
I installed SQL sp1 and CU3 as well. but still the same error.
please assist
thanks
troyHi,
If you use default instance, please do not fill in the instance name.
You could use “telnet sqlserver 1433” to verify the connection and port.
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
Windows Updates are not getting download after installation of SCCM 2012 SP1
I have installed SCCM 2012 SP1 step by step as per microsoft documents, Now I am getting error while downloading windows updates from microsoft site.
Error by WCM.log : System.Net.WebException: The underlying connection was closed: An unexpected error occurred on a send. ---> System.IO.IOException: Unable to read data from the transport
connection: An existing connection was forcibly closed by the remote host. ---> System.Net.Sockets.SocketException: An existing connection was forcibly closed by the remote host
Error By wsyncmgr: DB Server not detected for SUP XYZ.com from SCF File. skipping.
Sync failed: WSUS update source not found on site KSL. Please refer to WCM.log for configuration error details.. Source: getSiteUpdateSource
STATMSG: ID=6703 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_SYNC_MANAGER" SYS=KSL-MUM-SCCM01.KSEC.KotakGroup.com SITE=KSL PID=3688 TID=4752 GMTDATE=Tue May 21 10:59:06.745 2013 ISTR0="getSiteUpdateSource" ISTR1="WSUS
update source not found on site KSL. Please refer to WCM.log for configuration error details." ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0
I have reinstall my SUP on site server, i have my WSUS & site server is on same server. I have kept my sup setting as per requirment (8530 & 8531)
Kindly suggest is any other settings need to be done on server side.Yes, I know this is an old post, but I’m trying to clean them up. Did you solve this problem, if so what was the solution?
From your log snip-it, it looks like the firewall is causing your problem. Temporary turn off the firewall and see if that solves your problem.
Garth Jones | My blogs: Enhansoft and
Old Blog site | Twitter:
@GarthMJ
Maybe you are looking for
-
I have a Brother printer that doesn't have wifi, but I bought a Wireless Server Print to connect to it. I want the iPad can print directly to the printer without using a computer, but the iPad doesn't detect the printer. Is that possible?
-
In WebHelp, when I mouse over a link, the font size changes.
Either after I generate to WebHelp or View in RoboHelp, when I mouse over a hyperlink text, the font changes from large to small text. My step is a 11pt font, my body text is 10pt. It appears the 11 pt. font switches to 10pt font when I mouse over it
-
I just got a new MacBook Air -- Moving data over from the Time Capsule over WiFi??
I just bought a new MacBook Air because my MacBook Pro 2008 died completely. I own a Time Capsule and it backed up regularly. I'd like to just move over all my data to my new 256GB MacBook Air, but it doesn't seem to be recognizing the Time Capsule o
-
Can't get past setup assistant
Imac running OSX 10.5 froze while intalling updates. Turned off, when restarted it took me to the setup assistant and won't let me past it now. Whenever I log in, just goes back to setup. From that screen, can't do anything at all, whether restart, s
-
Missing Menu 'USER' in Security Center
Dear All, I have a problem with adding the new users. After I installed new BI 10.1.3.4.0 on Win2008, I haven't found a menu USER that allow me to manage User. Can any found tell me, why it missing? Can you give a solution to fix it? Thank for your h