SCCM 2012 R2 + Intune - Android Enrollment issue

Similar Messages

• SCCM 2012 R2 +Intune Subscription

  Hi All,
  If I subscribe for Windows Intune Subscription, then I will get SCCM 2012 R2 included as part of Intune.
  Question is how I can install SCCM in this case on my on-premise server? Will SCCM 2012 R2 stop working if Intune Subscription expires?
  N.A.Malik

  From Windows Intune Licensing Brief:
  Under all Windows Intune licensing scenarios, you are licensed for Microsoft System Center Configuration Manager and System Center Endpoint Protection. As a result, you have the flexibility to manage your devices in the most effective way for your organization—whether
  in the cloud, on-premises, or a combination of a cloud and on-premises solution.
  So you could manage non-Intune connected devices with ConfigMgr.
  And:
  "System Center Configuration Manager and System Center Endpoint Protection software included in Windows Intune is provided on a subscription, nonperpetual basis. If you cancel your subscription or allow your subscription to expire, you must uninstall the
  software."
  If you buy Intune licenses for 250 users, you can manage any devices (mobile, PCs) of those users (up to 5 devices/user) in any way you like with Intune/ConfigMgr.
  Quite flexible!  :-)
  Panu
  Thansk Panu for reply.
  If I purchase Intune Subscription then:
  SQL 2012 Standard + SCCM 2012 R2 will be free?
  Of course maybe limited to mobile devices only.
  N.A.Malik

• Deploying ipa file via SCCM 2012 R2 / Intune

  Hello Experts,
  We recently set up a Windows Intune Subscription in our Configuration Manager 2012 R2 Environment. The MDM part (Configuration Items) and deploying app store deep links is working without any problems.
  In our company we have a native iOS App which is currently distributed via a website. (Not App Store!). I tried to distribute the app via configuration manager 2012 r2 but the app doesn't show up in the company portal even after a day. I made the following
  steps to distribute the app:
  1. Received the ipa and plist File from the Developer.
  2. Added the application to configuration manager 2012 r2
  3. Deployed the application to my intune user collection (DP: manage.microsoft.com / Purpose: Available) 
  Did i miss any importent step? One thing i can say is that the app is not signed with our APN Certificate which is used in the Intune Subscription. According to our developer this should not be neccessary?!
  Thanks for any advice.

  I redeployed the app and the following entries were in the logs:
  dmpuploader.log:
  Found sync start for replication group CloudDmp~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:20.870-120><thread=1268 (0x4F4)>
  StartUpload for replication group CloudDmp last sync version 102489 ...~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:20.870-120><thread=1268 (0x4F4)>
  Startload succeeded with transmission ID c3d5cd09-24ab-41ca-882b-16884cee269e~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:21.198-120><thread=1268 (0x4F4)>
  Expecting sync data or sync end message, however message type is DRS_SyncPing~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:21.697-120><thread=1268 (0x4F4)>
  EndUpload transmission c3d5cd09-24ab-41ca-882b-16884cee269e final data version 102490 succeeded~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:21.822-120><thread=1268 (0x4F4)>
  Found sync start for replication group CloudDmp~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:21.822-120><thread=1268 (0x4F4)>
  StartUpload for replication group CloudDmp last sync version 102490 ...~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:21.822-120><thread=1268 (0x4F4)>
  Startload succeeded with transmission ID fc4037f9-f99a-40a4-bf8a-a827a007228f~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:21.947-120><thread=1268 (0x4F4)>
  Expecting sync data or sync end message, however message type is DRS_SyncPing~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:22.071-120><thread=1268 (0x4F4)>
  EndUpload transmission fc4037f9-f99a-40a4-bf8a-a827a007228f final data version 102491 succeeded~~  $$<SMS_DMP_UPLOADER><04-08-2014 14:53:22.181-120><thread=1268 (0x4F4)>
  outgoingcontentmanager.log
  Computed hash: FD2EBFDE308A335BCC11B416A5069975CFB36244DA6398871BF284641F720F00  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:17.272-120><thread=8604 (0x219C)>
  Content hash validated for 'Content_25b08807-a83b-4736-ac0e-64e82cbd62bc'.  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:17.288-120><thread=8604 (0x219C)>
  STATMSG: ID=9515 SEV=I LEV=M SOURCE="SMS Server" COMP="SMS_OUTGOING_CONTENT_MANAGER" SYS=SERVER.fqdn SITE=P01 PID=5104 TID=8604 GMTDATE=Di Apr 08 12:49:17.288 2014 ISTR0="P01001B7" ISTR1="["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\"
  ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=2 AID0=400 AVAL0="P01001B7" AID1=404 AVAL1="["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\"  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014
  14:49:17.288-120><thread=8604 (0x219C)>
  STATMSG: ID=9516 SEV=I LEV=M SOURCE="SMS Server" COMP="SMS_OUTGOING_CONTENT_MANAGER" SYS=SERVER.fqdn SITE=P01 PID=5104 TID=8604 GMTDATE=Di Apr 08 12:49:17.288 2014 ISTR0="P01001B7" ISTR1="["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\"
  ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=2 AID0=400 AVAL0="P01001B7" AID1=404 AVAL1="["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\"  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014
  14:49:17.288-120><thread=8604 (0x219C)>
  Uploading package P01001B7 from source D:\Program Files\Microsoft Configuration Manager\SMS_OCM_DATACACHE\P01001B7.1.9956.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:17.397-120><thread=8604 (0x219C)>
  ICM Intializing...~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:17.397-120><thread=8604 (0x219C)>
  Found certificate with thumbprint 5432E7D0D36FAF934364B7E3AFC4BB181FE41185~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:17.412-120><thread=8604 (0x219C)>
  Content source directory is D:\Program Files\Microsoft Configuration Manager\SMS_OCM_DATACACHE\P01001B7.1.9956~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:17.444-120><thread=8604 (0x219C)>
  Creating a software distribution package for SCCM PackageId P01001B7 from location D:\Program Files\Microsoft Configuration Manager\SMS_OCM_DATACACHE\P01001B7.1.9956\Content_25b08807-a83b-4736-ac0e-64e82cbd62bc.1\App.ipa.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014
  14:49:17.553-120><thread=8604 (0x219C)>
  Phase: AuthoringMetadata started.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:18.270-120><thread=8604 (0x219C)>
  Preparing files for upload for SCCM PackageId P01001B7, SCCM ApplicationId 283cb33f-177c-4957-9e2c-d376c2311b77, IntuneApplicationId 2c9a7e42-85e4-41a2-8754-ae971be40808~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:19.628-120><thread=8604
  (0x219C)>
  Progress: 100% (phase), 16% (total). ~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:19.643-120><thread=8604 (0x219C)>
  Progress: 100% (phase), 16% (total). ~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:19.659-120><thread=8604 (0x219C)>
  Phase: EncryptingFiles started.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:19.659-120><thread=8604 (0x219C)>
  Progress: Item type: EncryptedFiles. Completed: 1. Total: 1~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.236-120><thread=8604 (0x219C)>
  Progress: 100% (phase), 33% (total). ~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.236-120><thread=8604 (0x219C)>
  Files are ready for upload for SCCM PackageId P01001B7. Folder 'C:\Windows\TEMP\SoftwarePublishing\5104_46\12189ee0-304b-494d-b1e2-f45a61200e0b'.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.236-120><thread=8604 (0x219C)>
  Uploading metadata for SCCM PackageId P01001B7, Intune PackageId 2c9a7e42-85e4-41a2-8754-ae971be40808~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.252-120><thread=8604 (0x219C)>
  Phase: UploadingMetadata started.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.298-120><thread=8604 (0x219C)>
  Progress: 100% (phase), 50% (total). ~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.860-120><thread=8604 (0x219C)>
  Uploading files for SCCM PackageId P01001B7, Intune PackageId 2c9a7e42-85e4-41a2-8754-ae971be40808~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.860-120><thread=8604 (0x219C)>
  Phase: UploadingFiles started.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:20.860-120><thread=8604 (0x219C)>
  Progress: 100% (phase), 66% (total). ~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.808-120><thread=8604 (0x219C)>
  Upserting MDMContent table for SCCM PackageId P01001B7.~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.871-120><thread=8604 (0x219C)>
  Upload is complete for SCCM PackageId P01001B7~~  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.917-120><thread=8604 (0x219C)>
  Successfully processed package ID P01001B7 for MDM distribution point ["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\.  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.917-120><thread=8604 (0x219C)>
  ~Successfully created/updated the package server in the data source.  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.933-120><thread=8604 (0x219C)>
  STATMSG: ID=2330 SEV=I LEV=M SOURCE="SMS Server" COMP="SMS_OUTGOING_CONTENT_MANAGER" SYS=SERVER.fqdn SITE=P01 PID=5104 TID=8604 GMTDATE=Di Apr 08 12:49:43.949 2014 ISTR0="P01001B7" ISTR1="["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\"
  ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=2 AID0=400 AVAL0="P01001B7" AID1=404 AVAL1="["Display=\\manage.microsoft.com\"]MSWNET:["SMS_SITE=P01"]\\manage.microsoft.com\"  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014
  14:49:43.949-120><thread=8604 (0x219C)>
  StateTable::CState::Handle - (2330:1 2014-04-08 12:49:43.949+00:00) >> (2331:1 2014-04-03 14:33:42.595+00:00)  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.949-120><thread=8604 (0x219C)>
  CStateMsgReporter::DeliverMessages - Queued message: TT=1401 TIDT=0 TID='7F6041B0-3EE2-427F-AB72-B89610A6331C' SID=2330 MUF=0 PCNT=2, P1='P01' P2='2014-04-08 12:49:43.949+00:00' P3='' P4='' P5=''  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.949-120><thread=8604
  (0x219C)>
  CStateMsgReporter::DeliverMessages - Created state message file: D:\Program Files\Microsoft Configuration Manager\inboxes\auth\statesys.box\incoming\1mdiw5qb.SMX   $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.995-120><thread=8604
  (0x219C)>
  Successfully send state change notification 7F6041B0-3EE2-427F-AB72-B89610A6331C  $$<SMS_OUTGOING_CONTENT_MANAGER><04-08-2014 14:49:43.995-120><thread=8604 (0x219C)>
  I searched the log file in the company portal for the app name but i couldn't find anything.

• SCCM 2012 Non-MS License import issue.

  Hi All,
  I am trying to import non-ms licenses in SCCM 2012 but its not letting me to import. I amusing the attached sample csv. but every-time I am getting error that import failed.
  Link for both CSV & Image as follows ... Changed Url as
  http:// 1drv.ms/1g1LZaN

  Hi, I am using the same sample CSV in same format, but no luck. EG Below.
  Name
  Publisher
  Version
  Language
  EffectiveQuantity
  Adobe Acrobat 4.0
  Adobe
  999999
  Adobe Acrobat 5
  Adobe
  5
  999999
  Adobe Acrobat 7 Professional
  Adobe
  7.1
  999999
  Adobe Acrobat 7 Professional
  Adobe
  7
  999999
  Adobe Acrobat 8 Professional
  Adobe
  8
  999999
  Adobe Acrobat 8 Professional
  Adobe
  8.1
  999999
  Adobe Acrobat 9 Pro
  Adobe
  9.5
  999999
  Adobe Acrobat 9 Pro
  Adobe
  9
  999999
  Adobe Acrobat 9 Pro
  Adobe
  9.2
  999999
  Adobe Acrobat 9 Pro
  Adobe
  9.4
  999999
  Adobe Acrobat 9 Pro Extended 64-bit Add-On
  Adobe
  9
  999999
  Adobe Creative Suite 3 Master Collection
  Adobe
  1
  999999
  Adobe Creative Suite 4 Design Standard
  Adobe
  4
  999999
  Adobe Creative Suite 4 Master Collection
  Adobe
  4
  999999
  Adobe Creative Suite 5 Design Standard
  Adobe
  5
  999999
  Adobe Creative Suite 5 Master Collection
  Adobe
  5.5
  999999
  Adobe Creative Suite 5 Web Premium
  Adobe
  5
  999999
  Adobe Creative Suite 5.5 Design Standard
  Adobe
  5.5
  999999

• SCCM 2012 R2 CU4 - WSUS Sync issues

  *EDIT/Update*
  I had incorrectly diagnosed this as an issue with CU4. The issue was in fact between Microsoft and WSUS.
  The method listed in this thread ended up working for me.
  Here is an official KB article for the issue: https://support.microsoft.com/en-us/kb/3058255?wa=wsignin1.0
  (I have a small environment - only 1 SCCM server [primary] and 200 servers managed)
  I upgraded from CU3 to CU4 last week and I cannot get my WSUS to sync all of the updates for April 2015. I also upgraded my test server and it is syncing fine.
  I did some digging yesterday and found out that even tho the site server upgraded (I only have one SCCM server), the SQL update failed because I did not have proper permissions. I've since had a DBA run the update.sql file included with the CU (found at:
  %Program Files%\Microsoft Configuration Manager\hotfix\KB3026739)
  I restarted my SCCM server again this morning and tried running multiple syncs with Microsoft and it is still pulling in nothing. 
  I am not getting any errors in WSUS, wsyncmgr.log, WCM.log, or the change.log for wsus. Everything just looks like it attempted to sync - found nothing - then ended the sync successfully.
  I had one of the networking guys look at the firewall and he says its getting thru and establishing a connection - but it looks like MS is terminating the connection? I cannot see anything that would indicate this in my logs. Here is what he sent me: http://i.imgur.com/znOvxEN.jpg
  Now, to make things even more interesting. In the many many attempts I have made over to the last two days to get SCCM/WSUS to sync April's updates, it has worked in small amounts.... it once expired 16 updates and another time pulled in 2 updates released
  on 4/15/15 (but only 2!). I have my sync settings set up exactly like my test server which, again, is working fine. 
  As always, any help is appreciated!

  sounds like there might be a bigger issue with WSUS and Microsoft?
  https://social.technet.microsoft.com/Forums/en-US/6dbe893b-39f5-4367-902d-678a2a897b9b/wsus-not-syncronizing-aprils-updates?forum=configmanagersecurity
  https://social.technet.microsoft.com/Forums/en-US/a323d2f9-a1ac-48e3-978a-054915c3f1ea/wsus-april-2015-updates-not-synced-from-microsoft?forum=winserverwsus

• SCCM 2012 client Polic Authorization failure issue.

  Hi All,
  I had to restore Primary site / MP  It all looks good from the server however newly built client machines at secondary sites can't register the machine policy. Due to this only 2 actions are availabe in configurantion manager
  client action tab on machines, also all components are set as Installed.
  Sites are on HTTP mode with server 2008. I am seeing below error in policyagent.log on client machines and on MP_policy log on Secondary server.
  Signature verification failed for PolicyAssignmentID {f3fd2d06-0b0e-41de-a3f8-1341d6956f8a}. PolicyAgent_ReplyAssignments 06/14/2013
  11:09:15 AM 2776 (0x0AD8)
  Signature verification failed for PolicyAssignmentID {e968111a-591b-45af-ac65-a1aaef81c0a2}. PolicyAgent_ReplyAssignments 06/14/2013 11:09:15AM 2776
  (0x0AD8)
  I saw the same issue on below link but I am not sure how to delete web cert and signing cert from site. 
  social.technet.microsoft.com/Forums/en-US/configmgribcm/thread/97af9c1a-4783-4982-a65c-e2ca35cb4381
  Thanks.

  Yes, I know this is an old post, but I’m trying to clean them up. Did you solve this problem, if so what was the solution?
  After you restored your primary sites, did you rebuild your secondary sites?
  Garth Jones | My blogs: Enhansoft and
  Old Blog site | Twitter:
  @GarthMJ

• Cost of Intune and SCCM 2012 r2 vs SCCM 2012 r2 ICBM

  Is there any research/info on pros and cons of SCCM 2012 using intune for internet clinet management vs SCCM 2012 r2 and ICBM?  Things like cost, supportabiliy, etc.  I have seen intune vs sccm not Intune & SCCM vs SCCM and Internet Client
  Based Management. 
  Cyndy

  Hi,
  I think the reason is that you cannot manage Windows clients using the WIndows Intune Agent and integrate it with SCCM 2012. The integration with Intune and SCCM 2012 is for Mobile Device Management only so there is no possibility to install the Windows
  Intune Agent on a client and then manage it through the SCCM Admin Console.
  THe only scenario where that would work is if you manage a Windows 8.1 with the OMA-DM agent and enroll them in Intune as a mobile device with a limited set of features.
  So ICBM is still the way to go if you need all the features in SCCM or you want one console to rule them all.
  Regards,
  Jörgen  
  -- My System Center blog ccmexec.com -- Twitter
  @ccmexec

• SCCM 2012 R2 Cu1: Can I reinstall the Reporting Services Point role without delete or change the SSRS-DB?

  Hi, I have some issue with the reports,
  Can I reinstall the SCCM Reporting Services Point role without delete or change the SSRS-DB (just reset the SCCM SSRS function)?
  I have saved/backup the custom made reports.
  /SaiTech

  Yes you can remove and reinstall the Role.  I had to do this recently on our SCCM 2012 R2 due to an issue with the reports not loading.   Found out that the problem with reports was from the upgrade to R2 from 2012 SP1 and was able to run
  a command to re-register the reports with WMI.  I actually removed the role, uninstalled reporting services feature from SQL, deleted the report databases, reinstalled the SQL feature, configured the reporting databases again, added the role back, and
  ran the following command.
  mofcomp "C:\Program Files (x86)\Microsoft SQL Server\100\Shared\sqlmgmproviderxpsp2up.mof"
  This allowed all my reports to register as they should have and run without errors.  If you are having similar problems, you may be able to just run that command to get reports running without all the extra work I did.  For us we were getting an
  invalid Class error in the srsrp.log.
  Brian

• Update membership is taking too long to update members in the collection - SCCM 2012 R2 + CU1

  Hi,
  We have a standalone primary site server hierarchy (SCCM 2012 R2 + CU1), Not only with this upgrade.starting from the SCCM 2012 SP1, We had an issue that members in the collections are not being updated as expected (like SCCM 2007).
  I have created about 20+ query based collections with the normal with the "Full schedule" option but not used "Incremental update" option. Also i have observed that after a day or so..members are appearing.
  anyone had solution to this, why this collection update membership in SCCM 2012 is improper?
  Thanks.
  srkr

  Hi Torsten,
  We have about 25 machines in each collection, My collection condition is based on the package (Ex:if the package is not installed on the machine, it will appear in the collection to target the package),
  WQL query looks good, I have used the same logic for all the collections with different package.
  I did not see any error in colleval.log, all the collections are evaluating properly,but I can see .CEP files in COLLEVAL.BOX which has 0 KB size.
  Any Idea?
  srkr

• Silently uninstall using sccm 2012 Manually installed software in my domain

  Dear All
  i am new to sccm 2012,
  we are experiencing headache issue in my domain.my domain users are roaming laptop users.
  we need to uninstall software silently using sccm 2012 configuration manager which software installed does not use sccm 2012(Manually installed by users).
  please share your valuable article and  suggestion according to this issue.....
  Thanks
  Parthiban.S
  [email protected]

  The most important is that you have to inventory the applications that are installed and based on that you have to decided which applications you want to remove. For those applications you can create uninstalls in ConfigMgr.
  For some information:
  http://blogs.technet.com/b/christianwb/archive/2014/03/17/using-configmgr-application-model-to-uninstall-old-software.aspx
  And: http://technet.microsoft.com/en-us/library/gg682013.aspx
  My Blog: http://www.petervanderwoude.nl/
  Follow me on twitter: pvanderwoude

• Fasten the Process of MDT UDI OD Installation in SCCM 2012 R2 OSD

  Hi,
  I have implemented MDT UDI Task Sequence in SCCM 2012 R2 OSD. The issue  which I am facing is the UDI Installation progress is very slow. it is taking around 2 hours to complete the whole Installation. 
  Is there any way to fasten the Process of MDT UDI OD Installation in SCCM 2012 R2 OSD.
  Thanks & Regards,
  Sanjay Dubey

  Application installs can take awhile - it depends on what applications you're installing, and how many.  For instance, installing Office is clearly going to take longer than say 7-Zip.  How many applications are you installing during a normal OS
  deployment?  You can check the AppEnforce.log to see how long an application(s) is taking to install, as the start and end times are recorded.  
  As for the MDT Settings package, how many times are you calling this package?  My task sequence only calls it 5 times, and one of them is before you even get the UDI wizard, while the second and third is an either/or situation, depending on whether
  you do a refresh or a fresh PC build. 

• Mac Enrollment Issue on SCCM 2012 SP1

  Hi Guys,
  I am working on Mac enrollment(10.7) and facing issue during enrollment. Below is the error message when we try to run the enrollment command on Mac :
  “Server connection failed. HTTP Response code is 500 and reason is Internal Server Error"
  Below are Log info:
  Enrollsrv.log : No error message is highlighted.
  Enrollweb.log:
  No error message is highlighted.
  Enrollservice.log:
  [7, PID:7304][10/28/2013 16:40:03] :ConfigManager: ChainStatus error: RevocationStatusUnknown,The revocation function was unable to check revocation for the certificate.
  ;OfflineRevocation,The revocation function was unable to check revocation because the revocation server was offline.
     at Microsoft.ConfigurationManagement.Enrollment.ConfigManager.SplitCACertChain(String base64cert)
     at Microsoft.ConfigurationManagement.Enrollment.ConfigManager.setCAChain(EnrollmentServiceProfile profile, WindowsIdentity requester)
     at Microsoft.ConfigurationManagement.Enrollment.ConfigManager.RefreshCache(Int32 enrollmentProfileId, EnrollmentRecordType type, String template, WindowsIdentity requester)
     at Microsoft.ConfigurationManagement.Enrollment.RequestHandler.ProcessRequestSecurityToken(RequestSecurityTokenType request, WindowsIdentity caller, ActionEnum action)
     at Microsoft.ConfigurationManagement.Enrollment.RequestHandler.EnrollDevice(Message messageRequest)
     at Microsoft.ConfigurationManagement.Enrollment.DeviceEnrollmentService.RequestSecurityToken(Message messageRequest)
  [7, PID:7304][10/28/2013 16:40:03] :FaultCode is: EnrollmentServer and reason is: EnrollmentServerException InitializeFailed
  [13, PID:7304][10/28/2013 17:11:01] :EnrollmentService application stop ...
  [3, PID:956][10/28/2013 17:45:37] :EnrollmentService application start ...
  [3, PID:956][10/28/2013 18:06:38] :EnrollmentService application stop ...
  [3, PID:4700][10/28/2013 18:45:39] :EnrollmentService application start ...
  [7, PID:4700][10/28/2013 19:06:40] :EnrollmentService application stop ...
  [3, PID:5872][10/28/2013 19:45:42] :EnrollmentService application start ...
  [13, PID:5872][10/28/2013 20:06:42] :EnrollmentService application stop ...
  Can someone shed info on resolution of the above issue?
  Also, is there any means by which we can troubleshoot the Mac enrollment issue step by step? Also what entries needs to be checked in all logs for successful enrollment?

  the following links may give you some hints:
  http://social.technet.microsoft.com/Forums/en-US/48bc7fcc-3d84-4042-abac-67f30d701121/mac-enrollment-issue?forum=configmanagerdeployment
  http://www.windows-noob.com/forums/index.php?/topic/7391-mac-enrollment-issue/

• Wifi profiles SCCM 2012 R2 and Windows Intune

  Hi All,
  A quick question regarding SCCM 2012 R2 and the new Wifi Profiles feature...
  Can anyone confirm if you need windows Intune combined with SCCM 2012 R2 to be able to deploy WIFI profiles to users devices i.e Windows 8.1, IOS and Android platforms?  Microsoft documentation is not clear on this subject.
  Any help would be much appreciated.
  Regards PowerShell90

  It not as straight forward as one would hope. I am running the latest version of SCCM 2012 R2 CU2 connected to my Windows Intune subscription. There are a lot of hickups. One is that the direct of management needs to be all or nothing. In other words you
  either need to use Windows Intune solely to manage your devices or SCCM 2012 R2 (via connector). If the later then you must do everything from in SCCM 2012 R2. You cannot hybrid manage your devices as this will screw things up.
  Android for some reason is left out on a lot of features. I would think that MS Devs would work hard on the market share that being Android, not iOS. Any way, accord to some official MS articles Android is supported, but others claim that not all features
  are, these being the important ones like Email and Wi-Fi Profiles. They simply do not work.
  I think MS is heading in the right direction but there is a lot of work that needs to be done before this is a competitive product. I could care less if connects to my SCCM 2012 R2 server or not. Here are few things that I sent o a MS Support Rep today that
  need to be address.
  1. Better response time when updating devices after enrollment (e.g. Name change).
  2. The ability to locked down uninstalling Windows Intune from device.<o:p></o:p>
  3. The ability to locked down certain features in the Windows Intune app on device (e.g. User can reset device with Windows Intune app, rename, etc...).<o:p></o:p>
  4. Ability to rename device in either Windows Intune Admin Portal and/or SCCM 2-12 R2.<o:p></o:p>

• Windows Intune, Windows 8.1, SCCM 2012 R2

  Hello,
  I am planning to setup a new infrastructure to manage devices using Intune and SCCM 2012 R2 for one of my customer.
  We plan to have one single site, where in the devices will be imaged with Windows 8.1 and then will be provided to users who roam around the world.
  We like to manage these devices and do:
  1. Inventory
  2. Software Distribution
  3. Software Updates
  4. EndPoint Protection
  5. Reporting
  I have come to learn that:
  1. Add and verify company domain at account.manage.microsoft.com
  2. Add UPN in AD
  3. Run DIR Sync for Users
  4. Configure Intune Subscription
  5. Install Connector
  6. Whats the next step for configuring Windows 8.1?
  My questions:
  1. Is Cloud based Distribution Point required for hosting content. If not, how will the devices download the content and install the app?
  2. Do we need PKI for Windows 8.1 devices(enrollment and management)?
  3. Where should I install Company App Portal?
  4. What are the different ways of enrolling Windows 8.1 device (Workplace & Store)?
  5. Any other info if you can share, really appreciate
  Please advice
  Rajiv

  Hello Nico,
  Thanks for the guidance.
  1. Distribution Point: manage.microsoft.com - whats the disk size/storage available by default. Is it unlimited. As the Intune license is user based. I can have 5 devices enrolled per user. I may have loads of packages/apps.
  5. Your apps need to be signed with certificate that's is trusted by your device : I guess when we import
  an Application in SCCM, it never checks if it has a signed certificate. One would need to ensure that the cert is present.
  Can I install software updates to devices managed using SCCM Intune?
  We are planning to have a single site with a remote DP for building devices with Windows 8.1. Once the device is ready, it will be given to the user. The user will enroll the device and is good to go. I am sure we will be able to embed Company Portal App
  into the build image?
  Thanks
  Raijv

• Remote reset PIN on Mobile Devices - SCCM 2012 R2 w/ Intune

  Hi Forum
  I am wondering if this is possible. Can I reset a PIN on a phone (WP, Android, iOS, etc), mainly concerned with WP8 and WP8.1.
  I know this is possible through Intune standalone. However, Windows Intune is connected to SCCM 2012 R2 as the authority. Can i reset the PIN remotely on these phones? Does this have anything to do with the Intune Extensions, if so which one?
  Thanks in advance
  NN

  Quick thanks first for all the replies.
  WP does not support this feature neither with Intune Standalone nor with ConfigMgr.
  Only iOS & Android support.
  http://scug.be/blogs/nico Twitter: @nsienaert
  Is this right, I thought an update got released for this in Intune Standalone?
  http://blogs.technet.com/b/windowsintune/archive/2014/04/28/availability-of-update-to-windows-intune-for-windows-phone-8-1-and-samsung-knox-standard.aspx?loc=zYFCz&prod=zWIz&tech=zOttechz&prog=zOTprogz&type=zBLz&media=zOTmediaz&country=zUSz
  First paragraph states:
  "...and the ability to remotely lock or reset a device’s PIN."
  Although looking in my console at laptops, EAS managed devices and Intune Managed devices the option does seem to be greyed out???
  The process seems to be the same as I thought for ConfigMgr, so thanks for clarifying.
  Thanks
  NN