SCCM 2012 SP2 - CMEnroll Mac OSX

Similar Messages

• SCCM 2012 SP1 - CMEnroll Mac OSX Password Prompt

  Hi,
  is there a way to automate the certificate enrollment on Mac OSX,
  im running cmenroll -s fqdn.of.server -ignorecertchainvalidation -u "[email protected]" but im asked for the password for this account.when i put it in, it gets the certificate as it should, but i would like to automcate this task rather than
  going to every Mac to install sccm.
  I tried specifying the password using -p but it doesnt recognize that as a command. does anyone know of a way around it, or another way of automating the certificate request that people know of?
  Thanks

  Thank you Panu
  For me the script worked using this syntax:
  Putting CMEnroll from the macclient.dmg Tools to /tmp
  Using " instead of ' for username
  Using \\ instead of \ to send a literal backslash
  Have the enter \n on a line by itself
  Check EnrollmentServer.log on the SCCM server
  #!/usr/bin/expect
  spawn /tmp/CMEnroll -s hostname -ignorecertchainvalidation -u "domain\\username"
  expect "Please enter your password."
  send "PASSWORD"
  send "\n"
  interact
  Successfully tested on SCCM 2012 SP1 CU2 with Mac OS X 10.8.3 CMClient 5.00.7804.1202

• SCCM 2012 Losing Wired Mac Address of Laptops

  When attempting to re-image a laptop I have found that SCCM replaced
  the wired MAC address in properties with the wireless MAC. This is only an issue when I go to image as it will not PXE, I get a no boot file received message.
  I have been deleting the laptops from SCCM completely and then re-importing them using the wired MAC.
  After re-adding the laptop with the wired MAC it is still holding a record of the last PXE Deployment (once deleted the
  system will PXE boot fine). 
  Is there a way to have SCCM actively hold both MAC addresses?

  I'm in the same boat as JLCARON401. Laptop devices in SCCM seem to forget the MAC address of the wired interface.
  Tim, they show up in the Hardware History section of Resource Explorer, but not in the current view. You can see the device listed, but the MAC field is empty.
  I just put this together to grab data from the database directly to confirm that the data exists.
  SELECT DISTINCT
  MACAddress00
  FROM
  [CM_PEN].[dbo].[Netcard_HIST] netcard
  INNER JOIN
  [CM_PEN].[dbo].[Computer_System_DATA] computer
  ON
  netcard.MachineID = computer.MachineID
  WHERE
  computer.Name00 like 'SMS-LIB-MD%'
  AND
  netcard.MACAddress00 IS NOT NULL
  AND
  netcard.AdapterType00 like '%802.3%'
  Not sure where to go with this next. I'm looking into it because we're having problems with laptops that charge in a cart are missing updates. I've rigged up a cart with power and a switch so each laptop can be powered up (WOL) during the night to have all
  the outstanding deployments installed.

• Leopard Security Update 2012-003 for Mac OSX 10.5.8

  I just discovered a Leopard Security Update 2012-003 in reading an article in MacWorld, but when I checked my computer, I found that I did not get it through Software Updates' check for updates. Is there something wrong with my Software Updates? Or is just that this must be manually downloaded by the user? My iMac is an Intel Mac.

  Hello Laura,
  Could you have SWUPD set to automattically get updates?
  Check Library>Reciepts at root of the drive, nit your user Library, & see if it's been installed.
  Also, if this is a PPC iMac it only was for Intel iMacs, since PPCs weren't able to get that FlashBack infection for one thing.
  If Intel, you coild always get it directly & re-apply it...
  http://support.apple.com/kb/DL1533
  Leopard Security Update 2012-003
  Mac OS X v10.5 to 10.5.8 (Intel)
  14 May 2012
  Flashback Removal Security Update
  Mac OS X v10.5 to 10.5.8 (Intel)
  14 May 2012
  http://support.apple.com/kb/HT1222

• Mac OSX - Certificate not found

  Hi,
  Is SCCM 2012 SP1 supports Mac OS 10.9.1 version? If yes, do I need to install any updates?
  I have successfully installed and enrolled certificate on Mac OS 10.9.1 verison but when I open Configuration Manager under system preferences, it says ‘Certificate not found’ and
  CCMClient log in Mac machine says...
  Certificate not found in store. Bailing Out! Default 12/26/2013 2:52:42 AM 2954526720 (0xB01A8000)
  Failed to GetProperty Mode from Configuration Provider : 80070490 Default 12/26/2013 2:52:42 AM 2954526720 (0xB01A8000)
  Requested certificates not available in store Default 12/26/2013 2:52:42 AM 2954526720 (0xB01A8000)
  Certificate not found in store. Bailing Out! Default 12/26/2013 2:52:42 AM 2954526720 (0xB01A8000)
  Failed to validate certificate Default 12/26/2013 2:52:42 AM 2954526720 (0xB01A8000)
  OMA : Sending Notification to UI : <CCMClientNotification><Sender>Service</Sender><Name></Name><Id></Id><Type>CCM_OMA</Type><State>Error</State><Data>-2016344009</Data><Description></Description><RebootRequired></RebootRequired><Time></Time></CCMClientNotification> Default 12/26/2013
  2:52:42 AM 2954526720 (0xB01A8000)
  No Preferences found for Key - 'OMAFailureRetryDelayInSec', Domain - 'com.microsoft.ccmclient'. Default 12/26/2013 2:52:42 AM 2954526720 (0xB01A8000)
  and to resolve the above issue need a AD account without space in between (thats what I read in blogs). In this case do I need to uninstall client and certificate? if yes could you please let me know how to unregister certificate from Mac OSX machine.
  Thank you,
  Ramana

  Hi,
  FWIK, I think the Mac OS 10.9.1 is supported by SCCM 2012 R2, you'd better to upgrade to SCCM R2 to get supported.  
  Also, take a look in the blog below. There is a way to upgrade the certificate.
  http://blogs.technet.com/b/configmgrteam/archive/2013/12/16/mac-os-x-10-9-support-for-sc-2012-config-manager-clients.aspx
  Juke Chou
  TechNet Community Support

• Problems install SCCM 2012 with remote sql 2008 r2 sp2

  I am having issues installing sccm 2012 on a remote sql 2008 r2 sp2 server on a seperate instance.
  I get the error "The network path was not found"  
  if i point it at the primary instance it will let me continue but i cannot install sccm into that instance.
  I have turned off dynamic ports and set a static port but I do not see where i can enter that in the installer.
  I cannot seem to verify is the ssb port is working correctly or not.
  my account is local admin on both servers and a sql sysadm.
  There is no firewall between servers.
  Any suggestions?
  Regards
  Don

  SPN is setup to AUTO register and is working.  remote sql is not a cluster.  Windows firewall on both servers is disabled.  Sql browser is enabled and started.  we have a group for system center that contains site servers and this group
  is in the local admin of both servers and sysadm inside of sql server.
  Why  we are consolidating all or our lesser sql servers into a larger one.
  Snipt of the log.
  12/12/2012 2:57:37 PM: ConfigMgrSetupWizard Error: 1 : Exception message: [The network path was not found.
  ], Exception details: [System.IO.IOException: The network path was not found.
  Server stack trace: 
     at Microsoft.Win32.RegistryKey.Win32ErrorStatic(Int32 errorCode, String str)
     at Microsoft.Win32.RegistryKey.OpenRemoteBaseKey(RegistryHive hKey, String machineName)
     at Microsoft.SystemCenter.ConfigMgr.Setup.DatabaseUtility.GetSqlConnection(String databaseName, String serverName, Boolean encrypt)
     at Microsoft.SystemCenter.ConfigMgr.Setup.DatabaseUtility.CheckSqlConnection(String serverName, String instanceName)
     at System.Runtime.Remoting.Messaging.StackBuilderSink._PrivateProcessMessage(IntPtr md, Object[] args, Object server, Int32 methodPtr, Boolean fExecuteInContext, Object[]& outArgs)
     at System.Runtime.Remoting.Messaging.StackBuilderSink.AsyncProcessMessage(IMessage msg, IMessageSink replySink)
  Exception rethrown at [0]: 
     at System.Runtime.Remoting.Proxies.RealProxy.EndInvokeHelper(Message reqMsg, Boolean bProxyCase)
     at System.Runtime.Remoting.Proxies.RemotingProxy.Invoke(Object NotUsed, MessageData& msgData)
     at Microsoft.SystemCenter.ConfigMgr.Setup.CheckSqlAsync.EndInvoke(IAsyncResult result)
     at Microsoft.SystemCenter.ConfigMgr.Setup.DatabasePage.ValidatePage()
     at Microsoft.SystemCenter.ConfigMgr.SetupFramework.WizardForm.ActivatePage(String pageId, Boolean goingNext)
     at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
     at System.Windows.UIElement.RaiseEventImpl(DependencyObject sender, RoutedEventArgs args)
     at System.Windows.Controls.Button.OnClick()
     at System.Windows.Controls.Primitives.ButtonBase.OnMouseLeftButtonUp(MouseButtonEventArgs e)
     at System.Windows.RoutedEventArgs.InvokeHandler(Delegate handler, Object target)
     at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
     at System.Windows.UIElement.ReRaiseEventAs(DependencyObject sender, RoutedEventArgs args, RoutedEvent newEvent)
     at System.Windows.UIElement.OnMouseUpThunk(Object sender, MouseButtonEventArgs e)
     at System.Windows.RoutedEventArgs.InvokeHandler(Delegate handler, Object target)
     at System.Windows.EventRoute.InvokeHandlersImpl(Object source, RoutedEventArgs args, Boolean reRaised)
     at System.Windows.UIElement.RaiseEventImpl(DependencyObject sender, RoutedEventArgs args)
     at System.Windows.UIElement.RaiseEvent(RoutedEventArgs args, Boolean trusted)
     at System.Windows.Input.InputManager.ProcessStagingArea()
     at System.Windows.Input.InputManager.ProcessInput(InputEventArgs input)
     at System.Windows.Input.InputProviderSite.ReportInput(InputReport inputReport)
     at System.Windows.Interop.HwndMouseInputProvider.ReportInput(IntPtr hwnd, InputMode mode, Int32 timestamp, RawMouseActions actions, Int32 x, Int32 y, Int32 wheel)
     at System.Windows.Interop.HwndMouseInputProvider.FilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
     at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
     at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
     at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
     at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
     at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler)].
  12/12/2012 3:01:42 PM: ConfigMgrSetupWizard Information: 1 : Creating SQL connection to database ADMIN\master on server YSQL030.srf.local.
  12/12/2012 3:01:42 PM: ConfigMgrSetupWizard Error: 1 : Exception message: [The network path was not found.
  ], Exception details: [System.IO.IOException: The network path was not found.

• WSUS SP2; SCCM 2012 SP1; Sync failed: WSUS update source not found

  Hi,
  I have installed the Fresh SCCM 2012 SP1 and WSUS 3.0 SP2 + KB2720211 + KB2734608. However, still the Sync is getting failed. This is what I am getting in the wsyncmgr and WCM logs:
  wsyncmgr:
  Sync failed: WSUS update source not found on site PR1. Please refer to WCM.log for configuration error details.. Source: getSiteUpdateSource
  SMS_WSUS_SYNC_MANAGER 1/9/2015 12:00:00 PM
  3668 (0x0E54)
  STATMSG: ID=6703 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_SYNC_MANAGER" SYS=ABC.XYZ.net SITE=PR1 PID=2724 TID=3668 GMTDATE=Fri Jan 09 18:00:00.537 2015 ISTR0="getSiteUpdateSource" ISTR1="WSUS update source not found
  on site PR1. Please refer to WCM.log for configuration error details." ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0
  SMS_WSUS_SYNC_MANAGER 1/9/2015 12:00:00 PM
  3668 (0x0E54)
  Sync failed. Will retry in 60 minutes SMS_WSUS_SYNC_MANAGER
  1/9/2015 12:00:00 PM 3668 (0x0E54)
  WCM:
  Checking for supported version of WSUS (min WSUS 3.0 SP2 + KB2720211 + KB2734608)
  SMS_WSUS_CONFIGURATION_MANAGER 1/9/2015 11:19:03 AM
  4176 (0x1050)
  Checking runtime v2.0.50727... SMS_WSUS_CONFIGURATION_MANAGER
  1/9/2015 11:19:03 AM 4176 (0x1050)
  Did not find supported version of assembly Microsoft.UpdateServices.Administration.
  SMS_WSUS_CONFIGURATION_MANAGER 1/9/2015 11:19:03 AM
  4176 (0x1050)
  Checking runtime v4.0.30319... SMS_WSUS_CONFIGURATION_MANAGER
  1/9/2015 11:19:03 AM 4176 (0x1050)
  Did not find supported version of assembly Microsoft.UpdateServices.Administration.
  SMS_WSUS_CONFIGURATION_MANAGER 1/9/2015 11:19:03 AM
  4176 (0x1050)
  Supported WSUS version not found SMS_WSUS_CONFIGURATION_MANAGER
  1/9/2015 11:19:03 AM 4176 (0x1050)
  STATMSG: ID=6607 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_CONFIGURATION_MANAGER" SYS=ABC.XYZ.net SITE=PR1 PID=2724 TID=4176 GMTDATE=Fri Jan 09 17:19:03.489 2015 ISTR0="DEF.XYZ.net" ISTR1="" ISTR2="" ISTR3=""
  ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0
  SMS_WSUS_CONFIGURATION_MANAGER 1/9/2015 11:19:03 AM
  4176 (0x1050)
  Remote configuration failed on WSUS Server.
  SMS_WSUS_CONFIGURATION_MANAGER 1/9/2015 11:19:03 AM
  4176 (0x1050)
  STATMSG: ID=6600 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_CONFIGURATION_MANAGER" SYS=ABC.XYZ.net SITE=PR1 PID=2724 TID=4176 GMTDATE=Fri Jan 09 17:19:03.515 2015 ISTR0="DEF.XYZ.net" ISTR1="" ISTR2="" ISTR3=""
  ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0
  SMS_WSUS_CONFIGURATION_MANAGER 1/9/2015 11:19:03 AM
  4176 (0x1050)
  I have used the default port numbers 80 and 443 still the sync is failing. Please provide your advise to fix this issue.
  Regards,
  Malwinder

  WCM:
  Checking for supported version of WSUS (min WSUS 3.0 SP2 + KB2720211 + KB2734608)
  It's not only a matter of installing the console, but also those hotfixes on a remote server ...
  Torsten Meringer | http://www.mssccmfaq.de

• App-V 5.0 SP2 user applications published via SCCM 2012 to VDI workstations with roaming only

  Hi,
  The environment consists of App-V 5.0 SP2 (KB2956985) user based applications published via SCCM 2012 to Windows 7 VDI snapshotted workstations that are reset at user logoff.
  When a user logs on the SCCM 2012 client initiates App-V client package publishing.  After a couple of minutes after logon the shortcuts appear and the user can launch their applications.
  The issue is that at logoff, even with roaming enabled, the publishing information disappears.  This causes the next logon process for that user to repeat, the applications are not available until the SCCM client has completed it's publishing cycle. 
  Roaming profiles are implemented. %APPDATA% is redirected to a UNC path.  The following registry key is set
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\AppV\Client\Integration\PreserveUserIntegrationsOnLogin=1
  U-EV, global publishing of applications, and AppLocker rules are not an option.  Also, I have read this already - http://technet.microsoft.com/en-us/library/dn659478.aspx#BKMK_PE
  I do not want to wait for the SCCM client to kick in prior to the user applications being available.  What do I need to roam or run to create a seamless transition for the user between sessions? 
  Eddie.

  Hi Tywin (bad username considering the last GoT Episode ;))
  If you ask Microsoft, they always recommend using SCCM for deploying App-V packages and reuse your current SCCM infrastructure if that is already in place. Problem is, as you now experience, is that there is some big caveats both in regards to publishing
  time and to roaming of settings.
  As Nické states I would suggest looking into the Full Infrastructure Model for App-V 5.x, which gives you much better performance in what I call "from no apps" to "being able to click the shortcut" - the add and publishing phase. If you don't have the time/budget/whatever
  to start looking into that, you could look into some community tools like App-V Scheduler which is developed specific by Citrix guys to ease the publishing and management in a Citrix world.
  Microsoft have a great article about Performance Guidelines, which you have read, but it mostly presumes you work with Full Infrastructure. Have you looked into Steve Thomas' session from TechEd NA? It talks about "implementation trends".
  Senior Consultant at Atea Denmark - http://Atea.dk Atea Technical Evangelist for App-V NoLightPeople - http://NoLightPeople.com Access Director - http://www.nolightpeople.com/index.aspx#accessdirector

• Thunderbolt update V1.2 is not supported on my system: Mac Pro 12 Cores (mid 2012) with Mac OSX 10.8.3

  I'm trying to connect an external 8 Tera thunderbolt hard drive to my Mac Pro 12 Cores (mid 2012) with Mac OSX 10.8.3, and it is not recognizad, so I tried to make the thunderbolt upgrade V1.2, and a windows appears and says: "this software is not supported on my system"
  Please tell me waht to do.
  thanks a lot.

  Thunderbolt is a revolutionary I/O technology that supports high-resolution displays andhigh-performance data devices through a single, compact port. It sets new standards for speed, flexibility, and simplicity. And it’s on MacBook Air, MacBook Pro, iMac, and Mac mini.
  I don't see mention of the Mac Pro.

• Upgrading LabView 2011 to 2012 for Mac OSX

  I am considering Upgrading LabView 2011 to 2012 for Mac OSX. 
  Is this a free upgrade?
  Is a Mac OSX version available?
  Is the NXT module still working in LabView 2012?
  LabView 2011 ain't broke but I just recived a vi which requires a newer version :-(
  Thanks.
  Michael 
  Dr. Michael Vallance
  Future University, Japan.
  Homepage http://www.mvallance.net
  International Virtual Environments Research Group (iVERG) http://www.iverg.com

  Is this a free upgrade?
  It depends if you have a current service contract.  You get a 1 year period where you will get updates to LabVIEW after purchase.
  Is a Mac OSX version available?
  http://www.ni.com/labview/os-support/
  Is the NXT module still working in LabView 2012?
  I have no idea.
  LabView 2011 ain't broke but I just recived a vi which requires a newer version :-(
  You can download a 30 day trial from the NI site. 
  http://www.ni.com/labview/whatsnew/upgrade/
  You might have to contact NI directly since you are not in the US.

• SCCM 2012 R2 Mac Management - Step-by-Step

  Hi,
  Can anyone please shed some lights on steps I have taken to manage Mac?
  Active Directory:
  Create 2 groups and named them as follow
  ConfigMgr_IIS_SERVERS_CERTIFICATE
  ConfigMgr_MAC_ENROLLMENT_USERS
  PKI:
  Duplicate following templates
  Web Server Authentication ==> Duplicate and Rename it to ConfigMgr_WEBSERVER_CERT
  ==>Allow Read and Enroll Permission to
  ConfigMgr_IIS_SERVERS_CERTIFICATE Group
  Authenticated Session ==> Duplicate and Rename it ConfigMgr_Mac_CERT
  Workstation Authentication ==> Duplicate and Rename it to ConfigMgr_DistributionPoint_CERT ==> Allow Read and Enroll Permission to
  ConfigMgr_IIS_SERVERS_CERTIFICATE Group ==> Click on Subject tab
  and change subject name format:” to Command name and uncheck “User principle name (UPN)” box
  SCCM 2012:
  Let's say for example there would be a dedicated server to support Mac Management and called it
  "SCCM MAC SERVER". Add following roles on this server
  Enrollment Point
  Enrollment Proxy Point
  Management Point (Client Connections: HTTPS, "Allow mobile devices and Mac computers to use this management point" option checked)
  Distribution Point (HTTPS, Allow intranet and internet connections)
  Add "SCCM MAC SERVER" to AD group "ConfigMgr_IIS_SERVERS_CERTIFICATE"
  Open SCCM Console on CAS -> Administrations -> Client Settings -> Default Settings --> Properties -> Enrollment. Make following changes
   Allow users to enroll mobiledevices and mac computers ->YES
  Click on Set Profile button to create new profile
  Give a name "ConfigMgr - Mobile and Mac Profile"
  Click on Add button, select Enterprise CA authority
  Select ConfigMgr_Mac_CERT and click OK to save the profile
  Assign desired users to AD group ConfigMgr_MAC_ENROLLMENT_USERS
  I will highly appreciate if anyone can give their feedback as if I missed any step in here or I am good to proceed with mac management.
  Thank you and Regards,
  Hunzai

  I think you are correct with 3, I have 4 but have one for Windows clients too.
  1 Web Server.
  1 Distribition Point
  1 Windows client
  1 Mac client.
  I have used this blog which I found helpful.
  http://sccmguy.com/2013/11/26/pki-certificates-for-configuration-manager-2012-r2-part-1-of-4-web-server-certificate/
  There are 4 parts with links, they are just an exact replica from Microsoft with the exact same wording but pictures too.
  http://technet.microsoft.com/en-us/library/gg682023.aspx
  Mac cert details here:
  http://technet.microsoft.com/en-us/library/gg682023.aspx#BKMK_MacClient_SP1

• SCCM 2012 SP1 and SCEP for Mac

  Hello all,
  We have SCCM 2012 SP1 with SECP installed and working well for Windows clients.
  A request came to me that we have the roughly 10ct Mac computers protected by EndPoint and reporting through SCCM.
  Is this possible with what I have now? 
  Please let me know if you have any clues for me.
  Many thanks!

  Hi,
  There is no way to push the SCCM MAC Client to a MAC Computer, you have to install it manually, threre are scripts available on blogs that can assits but still you have to run those scripts manually as well.
  The System Center Endpoint Protection client for MAC is indeed a separate download on the volume licensing site, it is not managed through SCCM it is a standalone antivirus software which download it's defenition files directly from the internet. So there
  is now way to manage it centrally.
  I hope that answered your questions.
  Regards,
  Jörgen
  -- My System Center blog ccmexec.com -- Twitter
  @ccmexec

• SCCM 2012 on Server 2012 and WSUS 3.0 SP2 on Server 2008

  We are installing SCCM 2012 SP1 fresh into our development environment - the primary site server and the database (SQL 2012) are both being installed on Server 2012.
  We have an existing WSUS box on a Windows 2008 (not R2) server - the WSUS server version is 3.2.7600.256.  We have set this up as the software update point.
  For the purposes of this discussion, these are the server names (obviously obfuscated):
  Primary site server:  sccm.domain.local
  Database server:  sccmdb.domain.local
  WSUS server:  wsus.domain.local
  On the primary SCCM server, I've installed the WSUS user interface (Install-WindowsFeature -Name UpdateServices-UI), in order to work with the remote WSUS server.
  Updates synchronization appears to be working fine, but when I try to setup client distribution via SUP, I'm getting the following error in the Application event log:
  Log Name:      Application
  Source:        SMS Server
  Date:          8/6/2013 11:03:11 AM
  Event ID:      6613
  Task Category: SMS_WSUS_CONFIGURATION_MANAGER
  Level:         Error
  Keywords:      Classic
  User:          N/A
  Computer:      sccm.domain.local
  Description:
  On 8/6/2013 11:03:11 AM, component SMS_WSUS_CONFIGURATION_MANAGER on computer sccm.domain.local reported:  WSUS Configuration Manager failed to publish client boot-strapper package "9D5353E5-DA80-48C3-97DE-C9C528F73A2D" with version "5.00.7804.1000"
  to the Software Updates Point.
  As well as this in the WMC.log:
  PublishApplication(9D5353E5-DA80-48C3-97DE-C9C528F73A2D) failed with error System.InvalidOperationException: Publishing operation failed because the console and remote server versions do not match.~~   at Microsoft.UpdateServices.Internal.BaseApi.Publisher.LoadPackageMetadata(String
  sdpFile)~~   at Microsoft.UpdateServices.Internal.BaseApi.UpdateServer.GetPublisher(String sdpFile)~~   at Microsoft.SystemsManagementServer.WSUS.WSUSServer.PublishApplication(String sPackageId, String sSDPFile, String sCabFile)  $$<SMS_WSUS_CONFIGURATION_MANAGER><08-06-2013
  11:03:11.787+240><thread=3704 (0xE78)>
  ERROR: Failed to publish sms client to WSUS, error = 0x80131509  $$<SMS_WSUS_CONFIGURATION_MANAGER><08-06-2013 11:03:11.803+240><thread=3704 (0xE78)>
  It would seem obvious that this is because of a mismatch in versions between the WSUS server version on wsus.domain.local, compared to the UpdateServices UI on sccm.domain.local.
  Is there a way around this, without having to upgrade the WSUS server to Server 2012?
  Thanks for any thoughts you may have!

  Not really. As mentioned though, even the separate WSUS server is probably overkill. In ConfigMgr, WSUS is used to handle the update catalog and that's it. Clients do *not* report status to the WSUS instance and do *not* download updates from the WSUS instance.
  No management is ever done in WSUS.
  So, in reality, once a month, clients connect to WSUS to download the delta update catalog (delta compared to what they currently have) which usually comes out to about a few hundred KB (yes KB, not MB) -- this download is done via BITS. The server also
  syncs the catalog from the WSUS instance, via the SUP, in a similar fashion. If you are using SCEP, the frequency will be greater, but the deltas will be much smaller.
  EULAs, as needed, are also stored in WSUS and accessed by clients -- these are also quite small only a select few updates requires them.
  That's it. Standing up a dedicated WSUS instance means having a server sitting there doing almost nothing else.
  If you are concerned about load on the site server, then you should create a separate site system that contains the MP, SUP (and WSUS instance), and DP. Then, for HA purposes, you can simply build a second site system with these three roles also and HA will
  essentially be automatic (from a client functionality perspective).
  Jason | http://blog.configmgrftw.com

• Declaring an SCCM 2012 SP1 server as the "Publishing Server" for App-V 5 SP2

  Good morning everyone.
  I'm trying to virtualize Adobe Flash 10.3 for IE.  That's beside the point but I wanted to mention my ultimate goal.
  Sparing you all the App-V stuff I have to go through there's one obstacle that is hindering me at this point.
  I've converted completely to CM 2012 SP1 for my App-V deployment functions but find myself needing to specify our main CM server as the "AppVPublishingServer".  The ultimate goal here is to set the virtual app attribute of "IsPublishedGlobally"
  to TRUE.  I need to refer to the Publishing Server's URL in order to use the PoSH command "Set-AppVpublishingserver" to manipulate the "Global" parameters.
  Do any of you know how to configure this attrib through CM, or, how to declare the CM server as a Publishing Server (in App-V's eyes)?
  Thanks very much.
  IAmStrings

  Hello,
  If using SCCM and the App-V 5 integration, you can never configure a publishing server.
  Read this whitepaper for the full-story;
  http://blogs.technet.com/b/virtualvibes/archive/2013/04/22/sccm-2012-sp1-and-app-v-5-0-documentation.aspx
  It contains step-by-step instructions on howto use the integration.
  Nicke Källén | The Knack| Twitter:
  @Znackattack

• SCCM 2007 Migration to SCCM 2012

  Hello,
  I read http://social.technet.microsoft.com/Forums/en-US/58ba35e5-d84e-4741-8089-624f5269a2ca/sccm-2012-design-consideration-advice?forum=configmanagergeneral&prof=required with the following notes:
  Secondary vs. DP is a subjective call based on two factors: client count and available bandwidth. More clients and/or less bandwidths means secondary site, less clients and/or more bandwidth means DP. Both use a server OS so there's really no cost difference, just some added complexity for a secondary site. Without knowing the bandwidth, no way for me to be able to say one way or the other.
  As for IBCM, correct, it's no a primary site server, it's simply a site system that typically hosts an MP, DP, and SUP. The App Catalog Website Point is also applicable.
  Are you planning on managing legacy mobile devices or Mac OSX? If not, the Enrollment Proxy Point is not needed -- it's not applicable to IBCM anyway to my knowledge.
  Also, the FSP must be on a separate site system so that clients can communicate with it via HTTP.
  I have for now two sites:
  - 25,000 Desktops on one site
  - 1,500 Servers on the second site
  in SCCM 2007 I had three sites: One Parent doing the reporting and two child sites handling the inventory, distribution, etc... (No SUP do far)
  I have on each child sites 1 DP.
  What should be changed for SCCM 2012?
  What is "More Clients" or "Less Clients" ?
  "More Bandwidth" or "Less Bandwidth"?
  Thanks,
  Dom
  System Center Operations Manager 2007 / System Center Configuration Manager 2007 R2 / Forefront Client Security / Forefront Identity Manager

  Hello Dom,
  If you have Two Primary servers you may need to plan for a CAS (Central administration site), in SCCM 2012 when you have more than one primary server you need a CAS to connect them. But remember the CAS does not
  process any client data, DPs nor MPs (hardware nor software inventory), and bear in mind that a primary stand-alone can support up to 100,000 clients, and in SCCM 2012 the big idea is to simplify the hierarchy. So if you have a primary site you can manage
  a lot of clients, and you can separate them in your case in boundaries, boundaries in 2012 do two things: Site assignment and content lookup, but they only work with boundary groups, in which you set the limits in the boundary, and latter associate it with
  a boundary group.   
  You can then just have a primary server and remote DPs, and decide how the clients will look for content in the DPs with the boundaries and boundary groups. The bandwidth needs to be really important about sending
  packages between sites, or if the boundaries are not configured properly the clients can end up looking for content where it should not.  Also don’t forget about fallback packages and content, because DPs and packages can be set as fallback, so if clients
  cannot find in a local DP they will search those packages.
  Below a few references that may help you with your migration.
  Any more questions, please let me know.  
  References
  ==========
  Planning for Configuration Manager Sites and Hierarchy
  http://technet.microsoft.com/en-us/library/gg682075.aspx
  Planning for Sites and Hierarchies in Configuration Manager
  http://technet.microsoft.com/en-us/library/gg712681.aspx
  Migrating Hierarchies in System Center 2012 Configuration Manager
  http://technet.microsoft.com/en-us/library/gg682006.aspx
  VIDEOS
  ========
  Configuration Manager 2012: Plan, Deploy, and Migrate from Configuration Manager 2007
  http://technet.microsoft.com/en-us/video/configuration-manager-2012-plan-deploy-and-migrate-from-configuration-manager-2007.aspx
  Microsoft System Center Configuration Manager 2012: Plan, Deploy, and Migrate from Configuration Manager 2007 to 2012
  http://channel9.msdn.com/Events/TechEd/Europe/2012/MGT313
  Cheers,
  Renato S. Pacheco