Wsus + Scep 2012 Defenition Updates

Hi 
Im using Wsus to manage Pattern file updates for my scep 2012 clients an my proplem is that most Pattern files do get applied to my machines but like today my computers had
Pattern file (1.185.908.0)  but when I check on Microsoft website they say the latest pattern file is (1.185.926.0) so I
synced my wsus to see if there where any new files available and it return with nothing new... so I manualy ran "mpam-feX64" and my client got update to (1.185.933.0)  so it seems that my Wsus server is missing every other updates,,
 Can it be that MS is slow to update there Wsus Store or is something wrong with my wsus.. it is configured to check for updates every hour..  I also tested to let my workstation check online for updates and the result was the same "no new pattern
files"  
Best Regards 
Jon G
Jón G Sævarsson

Can it be that MS is slow to update there Wsus Store or is something wrong with my wsus.. it is configured to check for updates every hour..
Configured for "every hour" is probably a bit excessive, but much more likely is that you've not properly configured your WSUS server and your WSUS clients to be able to get Definition Updates in a timely manner.
In addition to synchronizing WSUS at least 3x daily (every 8 hours), you also need to do the following:
Create an Automatic Approval rule for the Definition Updates update classification for the "All Computers" target group.
Enable the policy setting "Allow Automatic Updates immediate installation".
Set the CLIENT Detection Interval to 6 hours.
Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
SolarWinds Head Geek
Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
http://www.solarwinds.com/gotmicrosoft
The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

Similar Messages

  • SCEP 2012 Definition Updates for Linux machines thru SCCM

    We have a situation where SCEP definition needs to be updated on Linux machines which don't have access to internet.
    All I have read is that SCEP functions as stand alone for Linux & Mac machines. Can someone guide thru how do SCEP definitions get updated on Linux machines that are not connected to internet.

    Pls check the below link
    http://www.niallbrady.com/2013/02/22/how-can-i-deploy-system-center-2012-endpoint-protection-definition-updates-from-a-unc-file-shares/
    Thanks, Prabha G

  • SCEP 2012 definition updates makes no sense

    Hi, i´m trying to figure out how SCEP updates are working, we are evaluating SCEP on some servers and workstations at the moment and some clients have the latest updates, some have one version old, and som have even older.
    For example.
    This morning at 04:00 we had an SUP sync and a ADR was created at 04:02 with definition version 1.169.1999.0.
    Today at 10:27 one of the clients updated its definition, but to version 1.169.1904.0. Why did it choose an old update? Several clients had already updated to the .1999 version. And why so late? Our antimalware policy is set to check for updates every 1 hour.
    The computer powered on at 07:45.
    I have looked in the MPlog.log file, but it doesnt make sense either, according to one machine it updated to definition v.1.169.1258.0 mars 31. it is the latest record, but when i check SCEP gui on that machine it have updated to 1.169.2028.0 today.
    What am i missing?
    Regards Erik

    1: And with this configuration all your clients gets all definitions that MS releases during a day?
    It looks to me with that config that you will only get definitions that releases before 5AM and then if it arrives 2 more definitions that day you will not recieve them until the next day. is that correct?
    2&3: Yeah, i need to do more trouble shooting, yesterday before I went home i made sure that we used Client Notification and that the FW port was open. I set antimalware policy to: update interval: 0. Two sources (configmgr and ms update). Daily update
    check at 12 AM. And force to look outside ConfigMgr if no definitions have come within 24 hours from the last update.
    It still goes outside to update definitions from MS Update.
    I have now set "If ConfigMgr is used as a source for definition updates, clients will only update form alternative source if a definition is older than _ hours" to 720, so hopefully it will start getting updates from only ConfigMgr so i see that it
    works.
    5: The SCEP ADR is targeted to a collection that includes two other collections.
    Client collection: A query that gets all windows 8.1 workstations.
    Server collection: A query that gets group membership from Active Directory
    6: One more thing, how is it about multiple antimalware policys? we have the default policy at order 10000 and then we have an others at order 1 and 2. For server the default and the one at order 2 active. both have different definition updates entries, but
    the one i want to win is in the policy with order 2. the policy with order 2 will always win, right?

  • SCEP 2012 definitions not updating on few clients

    Hi!
    The SCEP 2012 definitions are not updating on few clients. It works for all other machines.
    In MPLog i can only see that Signature update on date but not a line saying Signature updated via ...
    Its not telling me where it got the updates in past and why its not updating now..
    The definitions are pushed via SCCM, WSUS and MS not unc shares.
    Which log file i should look for to get some answers why its not updating.
    Thanks

    Hi,
    You can check C:\Windows\WindowsUpdate.log file to find the related error information.
    In addition, did you configure an automatic deployment rule to deliver definition updates? If yes, I recommend you to make sure that all the clients are in the collection.
    Best regards,
    Susie

  • SCEP 2012 manual definitions update for use in OSD

    So I am setting up to deploy SCEP 2012 4.5.0216.0 during my OSD task sequence. I am following the guidelines laid out by the blog post: 
    http://blogs.technet.com/b/configmgrteam/archive/2012/04/12/operating-system-deployment-and-endpoint-protection-client-installation.aspx.  I have created a package with the scepinstall.exe, EPAMPolicy.xml, and Install.cmd. 
    Note:  I got the EPAMPolicy.xml from a client I let install SCEP the "normal way" by deploying client settings that said to install and manage the client. 
    I added to the EPAMPolicy.xml file:
    <AddValue Name="DisableUpdateOnStartupWithoutEngine" Disabled="false" Type="REG_DWORD">1</AddValue>
    Added it between:
    <AddValue Name="AuGracePeriod" Type="REG_DWORD" Disabled="false">4320</AddValue>"I ADDED THE CODE RIGHT HERE"<AddValue Name="SignatureUpdateInterval" Type="REG_DWORD" Disabled="false">8</AddValue>
    The "Install.cmd" contains:
    "%~dp0scepinstall.exe" /s /q /NoSigsUpdateAtInitialExp /policy "%~dp0EPAMPolicy.xml"
    So these things together install SCEP 2012 version 4.5.0216.0 and
    cancels any definition updates when done installing and when the service first starts up.  When the install finishes the client is RED since I cancelled all updates.  This is WORKING FINE.
    Now I have a package that contains the definition updates "mpam-fe.exe" and "nis_full.exe" as described in the linked blog.  Running the proper 32/64 version of the mpam-fe.exe effectively updates the client Anti-malware definitions
    to the version I have downloaded for that day.  The client now turns GREEN.  This is WORKING FINE.
    The part that is not working is running the Network Inspection Service definitions, "nis_full.exe".  It goes right through like it was fine when run manually, but when you check event log you see it put two errors in Event
    Log.  It also is causing my Task Sequence to fail.
    I questioned how valid the nis_full.exe was anymore since the blog post is not real new...so I found: 
    http://support.microsoft.com/kb/935934.  It is titled, "How to manually download the latest antimalware definition updates for Microsoft Forefront Client Security, Microsoft Forefront Endpoint
    Protection 2010 and Microsoft System Center 2012 Endpoint Protection".  I verified by downloading using the links given in that article that my files matched hash for hash. 
    In that article it does say if running SCEP 2012 to also install the nis_full.exe as administrator. 
    This is not working!
    Any assistance is appreciated.  Any better way to deploy SCEP during task sequence and definitions WITHOUT scanning for updates during "Install Software Updates" task or letting client go to
    internet?
    Find this post helpful? Does this post answer your question? Be sure to mark it appropriately to help others find answers to their searches.

    Using the supplied EPAMPolicy2.xml did not resolve the issue. I still get an "0x80004005" error when I try to deploy the "nis_full.exe" during my task sequence. The client and malware definitions work as intended and install successfully. The NIS definitions
    fail though.
    Snippet of my SMSTS.LOG:
    <![LOG[!--------------------------------------------------------------------------------------------!]LOG]!><time="09:37:58.886+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="instruction.cxx:804">
    <![LOG[Successfully completed the action (Install SCEP 2012 Anti-malware Defs) with the exit win32 code 0]LOG]!><time="09:37:58.886+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="instruction.cxx:830">
    <![LOG[MP server https://SCCMSRV.domain.local. Ports 80,443. CRL=false.]LOG]!><time="09:37:58.886+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="utils.cpp:5881">
    <![LOG[Setting authenticator]LOG]!><time="09:37:58.901+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="utils.cpp:5903">
    <![LOG[Set authenticator in transport]LOG]!><time="09:37:58.901+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:7734">
    <![LOG[Sending StatusMessage]LOG]!><time="09:37:58.917+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="libsmsmessaging.cpp:4023">
    <![LOG[Setting message signatures.]LOG]!><time="09:37:58.932+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:1295">
    <![LOG[Setting the authenticator.]LOG]!><time="09:37:58.932+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:1325">
    <![LOG[CLibSMSMessageWinHttpTransport::Send: URL: SCCMSRV.domain.local:443 CCM_POST /ccm_system_AltAuth/request]LOG]!><time="09:37:58.932+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="libsmsmessaging.cpp:8604">
    <![LOG[In SSL, but with no client cert]LOG]!><time="09:37:58.932+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="libsmsmessaging.cpp:8738">
    <![LOG[Request was successful.]LOG]!><time="09:37:58.964+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:8939">
    <![LOG[Set a global environment variable _SMSTSLastActionRetCode=0]LOG]!><time="09:37:58.964+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Set a global environment variable _SMSTSLastActionSucceeded=true]LOG]!><time="09:37:58.964+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Clear local default environment]LOG]!><time="09:37:58.964+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:807">
    <![LOG[Updated security on object C:\_SMSTaskSequence.]LOG]!><time="09:37:59.026+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="utils.cpp:1704">
    <![LOG[Set a global environment variable _SMSTSNextInstructionPointer=15]LOG]!><time="09:37:59.026+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Set a TS execution environment variable _SMSTSNextInstructionPointer=15]LOG]!><time="09:37:59.026+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:386">
    <![LOG[Set a global environment variable _SMSTSInstructionStackString=10 12]LOG]!><time="09:37:59.026+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Set a TS execution environment variable _SMSTSInstructionStackString=10 12]LOG]!><time="09:37:59.026+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:414">
    <![LOG[Save the current environment block]LOG]!><time="09:37:59.026+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:833">
    <![LOG[Successfully save execution state and environment to local hard disk]LOG]!><time="09:37:59.182+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="engine.cxx:254">
    <![LOG[Start executing an instruction. Instruction name: Install SCEP 2012 NIS Defs. Instruction pointer: 15]LOG]!><time="09:37:59.182+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="engine.cxx:116">
    <![LOG[Set a global environment variable _SMSTSCurrentActionName=Install SCEP 2012 NIS Defs]LOG]!><time="09:37:59.182+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Set a global environment variable _SMSTSNextInstructionPointer=15]LOG]!><time="09:37:59.182+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Set a local default variable _SMSSWDProgramName]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:700">
    <![LOG[Set a global environment variable _SMSTSLogPath=C:\Windows\CCM\Logs\SMSTSLog]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Expand a string: smsswd.exe /pkg:PR100043 /install /basevar: /continueOnError:]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:782">
    <![LOG[Expand a string: ]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:782">
    <![LOG[Command line for extension .exe is "%1" %*]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="commandline.cpp:228">
    <![LOG[Set command line: smsswd.exe /pkg:PR100043 /install /basevar: /continueOnError:]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="commandline.cpp:731">
    <![LOG[Start executing the command line: smsswd.exe /pkg:PR100043 /install /basevar: /continueOnError:]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="instruction.cxx:722">
    <![LOG[!--------------------------------------------------------------------------------------------!]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="instruction.cxx:751">
    <![LOG[Expand a string: FullOS]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:782">
    <![LOG[Executing command line: smsswd.exe /pkg:PR100043 /install /basevar: /continueOnError:]LOG]!><time="09:37:59.197+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="commandline.cpp:827">
    <![LOG[[ smsswd.exe ]]LOG]!><time="09:37:59.587+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="main.cpp:289">
    <![LOG[PackageID = 'PR100043']LOG]!><time="09:37:59.618+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="main.cpp:318">
    <![LOG[BaseVar = '', ContinueOnError='']LOG]!><time="09:37:59.618+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="main.cpp:319">
    <![LOG[ProgramName = 'Install NIS Definitions']LOG]!><time="09:37:59.618+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="main.cpp:320">
    <![LOG[SwdAction = '0002']LOG]!><time="09:37:59.618+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="main.cpp:321">
    <![LOG[GetExecRequestMgrInterface successful]LOG]!><time="09:37:59.650+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="installsoftware.cpp:187">
    <![LOG[Retrieving value from TSEnv for '_SMSTSPolicyPR100043_Install NIS Definitions']LOG]!><time="09:37:59.650+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="installsoftware.cpp:85">
    <![LOG[::DecompressBuffer(65536)]LOG]!><time="09:37:59.650+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="ccmzlib.cpp:739">
    <![LOG[Decompression (zlib) succeeded: original size 3059, uncompressed size 39008.]LOG]!><time="09:37:59.650+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="ccmzlib.cpp:651">
    <![LOG[ADV_AdvertisementID=PR120019]LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:1151">
    <![LOG[PKG_PSF_ContainsSourceFiles=TRUE]LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:1170">
    <![LOG[ResolveSource flags: 0x00000000]LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="resolvesource.cpp:3201">
    <![LOG[SMSTSPersistContent: . The content for package PR100043 will be persisted]LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="resolvesource.cpp:3212">
    <![LOG[The package PR100043 is found locally in the cache C:\_SMSTaskSequence\Packages\PR100043]LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="resolvesource.cpp:3242">
    <![LOG[SMS PkgID 'PR100043' resolved to location 'C:\_SMSTaskSequence\Packages\PR100043']LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:145">
    <![LOG[Start to compile TS policy]LOG]!><time="09:37:59.712+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="utils.cpp:3066">
    <![LOG[Policy complied successfully in WMI 'root\ccm\policy\defaultmachine\requestedconfig' namespace]LOG]!><time="09:37:59.837+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="utils.cpp:3167">
    <![LOG[End TS policy compilation]LOG]!><time="09:37:59.837+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="utils.cpp:3171">
    <![LOG[getPointer()->ExecQuery( BString(L"WQL"), BString(pszQuery), lFlags, pContext, ppEnum ), HRESULT=80041017 (e:\nts_sccm_release\sms\framework\core\ccmcore\wminamespace.cpp,463)]LOG]!><time="09:37:59.837+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="wminamespace.cpp:463">
    <![LOG[Failed to query CCM_SoftwareDistribution]LOG]!><time="09:37:59.837+240" date="05-30-2014" component="InstallSoftware" context="" type="2" thread="2136" file="installsoftware.cpp:729">
    <![LOG[Get Install Directory for SMS Client]LOG]!><time="09:37:59.837+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="utils.cpp:4215">
    <![LOG[Start to evaluate TS policy with lock]LOG]!><time="09:38:00.024+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:10966">
    <![LOG[Locked policy transaction lock successfully]LOG]!><time="09:38:00.039+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8021">
    <![LOG[Updating settings in \\.\root\ccm\policy\machine\actualconfig]LOG]!><time="09:38:00.039+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:8024">
    <![LOG[RequestedConfig policy instance(s) : 437]LOG]!><time="09:38:00.086+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7653">
    <![LOG[Locked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source SMS:Client:Default:{8864FB91-94EE-4F16-A144-0D82A232049D} successfully]LOG]!><time="09:38:00.086+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7463">
    <![LOG[Namespace: \\.\ROOT\ccm\Policy\Machine\RequestedConfig, Query: SELECT PolicyID FROM CCM_Policy_Policy5 WHERE (PolicySource = "SMS:Client:Default:{8864FB91-94EE-4F16-A144-0D82A232049D}") AND (PolicyState = "Active") AND (PolicyType = "Machine")]LOG]!><time="09:38:00.086+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7511">
    <![LOG[There is no ccm_policy_policy instance, skipping addition to realinst map]LOG]!><time="09:38:00.086+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7512">
    <![LOG[Unlocked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source SMS:Client:Default:{8864FB91-94EE-4F16-A144-0D82A232049D} successfully]LOG]!><time="09:38:00.086+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7660">
    <![LOG[RequestedConfig policy instance(s) : 0]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7653">
    <![LOG[Locked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source SMS:PR1 successfully]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7463">
    <![LOG[Namespace: \\.\ROOT\ccm\Policy\Machine\RequestedConfig, Query: SELECT PolicyID FROM CCM_Policy_Policy5 WHERE (PolicySource = "SMS:PR1") AND (PolicyState = "Active") AND (PolicyType = "Machine")]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7511">
    <![LOG[There is no ccm_policy_policy instance, skipping addition to realinst map]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7512">
    <![LOG[Unlocked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source SMS:PR1 successfully]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7660">
    <![LOG[RequestedConfig policy instance(s) : 0]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7653">
    <![LOG[Locked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source CcmPortal successfully]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7463">
    <![LOG[Namespace: \\.\ROOT\ccm\Policy\Machine\RequestedConfig, Query: SELECT PolicyID FROM CCM_Policy_Policy5 WHERE (PolicySource = "CcmPortal") AND (PolicyState = "Active") AND (PolicyType = "Machine")]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7511">
    <![LOG[There is no ccm_policy_policy instance, skipping addition to realinst map]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7512">
    <![LOG[Unlocked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source CcmPortal successfully]LOG]!><time="09:38:00.102+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7660">
    <![LOG[RequestedConfig policy instance(s) : 0]LOG]!><time="09:38:00.117+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7653">
    <![LOG[Locked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source Local successfully]LOG]!><time="09:38:00.117+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7463">
    <![LOG[RequestedConfig policy instance(s) : 9]LOG]!><time="09:38:00.117+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7653">
    <![LOG[Unlocked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source Local successfully]LOG]!><time="09:38:00.117+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7660">
    <![LOG[RequestedConfig policy instance(s) : 15]LOG]!><time="09:38:00.133+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7653">
    <![LOG[Locked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source CcmTaskSequence successfully]LOG]!><time="09:38:00.133+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7463">
    <![LOG[Namespace: \\.\ROOT\ccm\Policy\Machine\RequestedConfig, Query: SELECT PolicyID FROM CCM_Policy_Policy5 WHERE (PolicySource = "CcmTaskSequence") AND (PolicyState = "Active") AND (PolicyType = "Machine")]LOG]!><time="09:38:00.258+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7511">
    <![LOG[There is no ccm_policy_policy instance, skipping addition to realinst map]LOG]!><time="09:38:00.258+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:7512">
    <![LOG[Unlocked \\.\ROOT\ccm\Policy\Machine\RequestedConfig for source CcmTaskSequence successfully]LOG]!><time="09:38:00.258+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:7660">
    <![LOG[Total RequestedConfig policy instance(s) : 461]LOG]!><time="09:38:00.336+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8186">
    <![LOG[Locked ActualConfig successfully]LOG]!><time="09:38:00.336+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8199">
    <![LOG[New/Changed ActualConfig policy instance(s) : 1]LOG]!><time="09:38:00.382+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8278">
    <![LOG[[1] Added/updated setting 'ccm_softwaredistribution:adv_advertisementid=it120019:pkg_packageid=it100043:prg_programid=install nis definitions'.]LOG]!><time="09:38:00.382+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8307">
    <![LOG[Unlocked ActualConfig successfully]LOG]!><time="09:38:00.382+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8333">
    <![LOG[Unlocked policy transaction lock successfully]LOG]!><time="09:38:00.382+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="policyutil.cpp:8339">
    <![LOG[Raising event:
    instance of CCM_PolicyAgent_SettingsEvaluationComplete
    ClientID = "GUID:d69a4ca6-a93a-479d-89aa-c85113eaef67";
    DateTime = "20140530133800.382000+000";
    PolicyNamespace = "\\\\.\\root\\ccm\\policy\\machine\\actualconfig";
    ProcessID = 1084;
    ThreadID = 2136;
    ]LOG]!><time="09:38:00.382+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="event.cpp:715">
    <![LOG[Successfully submitted event to the Status Agent.]LOG]!><time="09:38:00.398+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="event.cpp:733">
    <![LOG[End TS policy evaluation]LOG]!><time="09:38:00.398+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="policyutil.cpp:10969">
    <![LOG[Policy evaluation initiated]LOG]!><time="09:38:00.398+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="utils.cpp:4253">
    <![LOG[Waiting for policy to be compiled in 'root\ccm\policy\machine' namespace ]LOG]!><time="09:38:00.398+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:383">
    <![LOG[Query path = 'CCM_SoftwareDistribution.ADV_AdvertisementID="PR120019",PRG_ProgramID="Install NIS Definitions",PKG_PackageID="PR100043"']LOG]!><time="09:38:00.398+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:414">
    <![LOG[Verified policy is compiled in 'root\ccm\policy\machine' namespace]LOG]!><time="09:38:00.445+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:439">
    <![LOG[content location count = 1]LOG]!><time="09:38:00.507+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:231">
    <![LOG[Checking if the active request handle: {66096B8A-60B8-4CC3-ABBA-D0CD624938C4} is valid.]LOG]!><time="09:38:00.507+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="utils.cpp:5052">
    <![LOG[CoCreateInstance succeeded]LOG]!><time="09:38:00.507+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="utils.cpp:5074">
    <![LOG[Active request handle: {66096B8A-60B8-4CC3-ABBA-D0CD624938C4} is valid.]LOG]!><time="09:38:00.507+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="utils.cpp:5082">
    <![LOG[Invoking Execution Manager to install software ]LOG]!><time="09:38:00.507+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="installsoftware.cpp:246">
    <![LOG[Installing software for PackageID='PR100043' ProgramID='Install NIS Definitions' AdvertID='PR120019' has started, jobID='{F528EBD4-1270-44E5-9539-5B5346BAE5A4}']LOG]!><time="09:38:00.803+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:268">
    <![LOG[Setting TSEnv variable 'SMSTSInstallSoftwareJobID_PR100043_PR120019_Install NIS Definitions'='{F528EBD4-1270-44E5-9539-5B5346BAE5A4}']LOG]!><time="09:38:00.803+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:52">
    <![LOG[Waiting for installation job to complete..]LOG]!><time="09:38:00.803+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:873">
    <![LOG[CompleteExecution received]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="1524" file="installsoftware.cpp:580">
    <![LOG[CompleteExecution processed]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="1524" file="installsoftware.cpp:593">
    <![LOG[Received job completion notification from Execution Manager]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:923">
    <![LOG[Installation completed with exit code 0x80004005]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:940">
    <![LOG[Installation failed with error (0x80004005)]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="3" thread="2136" file="installsoftware.cpp:967">
    <![LOG[Setting TSEnv variable 'SMSTSInstallSoftwareJobID_PR100043_PR120019_Install NIS Definitions'='']LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:52">
    <![LOG[GetExecRequestMgrInterface successful]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="installsoftware.cpp:187">
    <![LOG[Releasing job request, jobID='{F528EBD4-1270-44E5-9539-5B5346BAE5A4}']LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="installsoftware.cpp:339">
    <![LOG[Releasing of Job Request successful]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:348">
    <![LOG[CompleteJob successful]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="installsoftware.cpp:997">
    <![LOG[ReleaseSource() for C:\_SMSTaskSequence\Packages\PR100043.]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="resolvesource.cpp:3564">
    <![LOG[reference count 1 for the source C:\_SMSTaskSequence\Packages\PR100043 before releasing]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="resolvesource.cpp:3574">
    <![LOG[Released the resolved source C:\_SMSTaskSequence\Packages\PR100043]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="1" thread="2136" file="resolvesource.cpp:3612">
    <![LOG[pInstall->Install(sPackageID, sProgramName), HRESULT=80004005 (e:\nts_sccm_release\sms\client\osdeployment\installsoftware\main.cpp,361)]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="0" thread="2136" file="main.cpp:361">
    <![LOG[Install Software failed, hr=0x80004005]LOG]!><time="09:38:03.033+240" date="05-30-2014" component="InstallSoftware" context="" type="3" thread="2136" file="main.cpp:361">
    <![LOG[Process completed with exit code 2147500037]LOG]!><time="09:38:03.049+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="commandline.cpp:1123">
    <![LOG[!--------------------------------------------------------------------------------------------!]LOG]!><time="09:38:03.049+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="instruction.cxx:804">
    <![LOG[Failed to run the action: Install SCEP 2012 NIS Defs.
    Unspecified error (Error: 80004005; Source: Windows)]LOG]!><time="09:38:03.049+240" date="05-30-2014" component="TSManager" context="" type="3" thread="540" file="instruction.cxx:895">
    <![LOG[MP server https://SCCMSRV.domain.local. Ports 80,443. CRL=false.]LOG]!><time="09:38:03.049+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="utils.cpp:5881">
    <![LOG[Setting authenticator]LOG]!><time="09:38:03.064+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="utils.cpp:5903">
    <![LOG[Set authenticator in transport]LOG]!><time="09:38:03.064+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:7734">
    <![LOG[Sending StatusMessage]LOG]!><time="09:38:03.080+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="libsmsmessaging.cpp:4023">
    <![LOG[Setting message signatures.]LOG]!><time="09:38:03.096+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:1295">
    <![LOG[Setting the authenticator.]LOG]!><time="09:38:03.096+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:1325">
    <![LOG[CLibSMSMessageWinHttpTransport::Send: URL: SCCMSRV.domain.local:443 CCM_POST /ccm_system_AltAuth/request]LOG]!><time="09:38:03.096+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="libsmsmessaging.cpp:8604">
    <![LOG[In SSL, but with no client cert]LOG]!><time="09:38:03.096+240" date="05-30-2014" component="TSManager" context="" type="1" thread="540" file="libsmsmessaging.cpp:8738">
    <![LOG[Request was successful.]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="libsmsmessaging.cpp:8939">
    <![LOG[Set a global environment variable _SMSTSLastActionRetCode=-2147467259]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Set a global environment variable _SMSTSLastActionSucceeded=false]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:668">
    <![LOG[Clear local default environment]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="executionenv.cxx:807">
    <![LOG[Let the parent group (Install Endpoint Protection) decides whether to continue execution]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="instruction.cxx:1004">
    <![LOG[Let the parent group (Setup Operating System) decide whether to continue execution]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="0" thread="540" file="instruction.cxx:254">
    <![LOG[The execution of the group (Setup Operating System) has failed and the execution has been aborted. An action failed.
    Operation aborted (Error: 80004004; Source: Windows)]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="3" thread="540" file="instruction.cxx:217">
    <![LOG[Failed to run the last action: Install SCEP 2012 NIS Defs. Execution of task sequence failed.
    Unspecified error (Error: 80004005; Source: Windows)]LOG]!><time="09:38:03.111+240" date="05-30-2014" component="TSManager" context="" type="3" thread="540" file="engine.cxx:213">
    Find this post helpful? Does this post answer your question? Be sure to mark it appropriately to help others find answers to their searches.

  • SCEP 2012 and GP Update

    SCEP 2012 Client settings currently have "Install Endpoint Protection client on computers" set to Yes. This is deployed to quite a few machines. The client installs just fine, everything updates, and we are set. In the Endpoint Protection Agent
    log shows periodic checks for if SCEP needs to be installed. Which technically isn't an issue and eventually I'll flip this setting to No and leave it Manage only.
    However, around the times it checks the client I notice a GP Update kicking off. Does anyone know if installing SCEP or having the client check to see if it is installed kicks off a GP Update?

    Interesting. I didn't think to check that specific log. I do see activity in there for other GP objects besides SCEP. Perhaps it runs the equivalent of gpupdate /target:computer
    I don't think I see any user items in there.
    This reminds me of an issue I ran into before. Take the scenario of a domain joined machine that is currently connecting via the Internet. You have an IBCM server set up, so Internet connected machines are able to receive policy and software. You would think
    that would include changes to SCEP policy too. However, if you make a change to SCEP policy and then try to update policy on the client, it won't actually apply the SCEP policy changes until it's back on the domain. I guess that's because whatever ConfigSecurityPolicy.exe
    is doing requires a connection to be made to a domain controller and even though the SCEP content is stored locally in an XML file, it can't finish the process of getting it into Registry.pol and then into the Registry itself until it can connect to the DC
    again.
    Seems like it would make more sense to just import it directly into the Registry and bypass the GP client entirely. Anyway, I don't mean to hijack the thread but it would be nice to see Microsoft clarify exactly what's going on in both cases :-)

  • SCEP 2012 Client in Windows 8 / 2012 - in Windows 2008 Domain- Not Syncing -/ Not Compatiable

    Dear All ,
    With lots of Hardship I had installed SCEp 2012 in Windows 2012 Virtual machine in WIndows 2008 Domain.
    SCCM 2012 Server in Windows 2008 Server with Sql 2008 was - performing well and there was no issues until our COmpany planned to Convert the Windows 2008 Server to  Windows 2012 Server ( AD is 2008)
    WSUS is not Fully synching with SCCM 2012 ( previously it was )
    Software Updates not pushing properly and to top all the SCEP client is not compatible with win 8.1 pro or win 2012 server
    Error: Failed to download content id 16787046. Error: Access is denied.
    Package:
      Success: The software updates were placed in the existing package:
    •     Deployment Package(JUN2014)
    Software updates that will be downloaded from the internet
      Error: Update for Forefront Endpoint Protection 2010 Client - 4.1.522.0 (KB2780435)
    Errors
        Failed to download content id 16787046. Error: Access is denied.
    Language Selection:
     English
    But the service account has full access - administrative rights and the administrator of the system
    please advise on this

    Hi,
    All the software updates downloaded failed?
    Are there any errors in PatchDownloader.log? If you use Automatic deployment rule, please also check ruleengine.log.
    Please add the account with Full rights to the source share (both NTFS and Share permissions) where the Deployment Package is located.
    Best Regards,
    Joyce
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • SCEP Post-install update fails

    Hi,
    I have SCCM 2012 R2 running in a secure environment - Internet access is tightly controlled. I'm presently replacing my SEP clients with SCEP, and my Antimalware policy is set to point to WSUS for updates.
    SCEP will not update automatically during installation, however - even though it is "pointed" to WSUS, WindowsUpdate.log indicates the following:
    2014-07-28 14:17:06:348
    3280 2ac
    Misc  = Process: c:\Program Files\Microsoft Security Client\MpCmdRun.exe
    2014-07-28 14:17:06:348
    3280 2ac
    Misc  = Module: C:\Windows\system32\wuapi.dll
    2014-07-28 14:17:06:348
    3280 2ac
    COMAPI -------------
    2014-07-28 14:17:06:348
    3280 2ac
    COMAPI -- START --  COMAPI: Search [ClientId = System Center Endpoint Protection (DDEFDD14-250E-4DC8-A0B3-9D667EC5D8EB)]
    2014-07-28 14:17:06:348
    3280 2ac
    COMAPI ---------
    2014-07-28 14:17:06:348
    840 75c
    Agent *************
    2014-07-28 14:17:06:348
    3280 2ac
    COMAPI <<-- SUBMITTED -- COMAPI: Search [ClientId = System Center Endpoint Protection (DDEFDD14-250E-4DC8-A0B3-9D667EC5D8EB)]
    2014-07-28 14:17:06:348
    840 75c
    Agent ** START **  Agent: Finding updates [CallerId = System Center Endpoint Protection (DDEFDD14-250E-4DC8-A0B3-9D667EC5D8EB)]
    2014-07-28 14:17:06:348
    840 75c
    Agent *********
    2014-07-28 14:17:06:348
    840 75c
    Agent  * Online = Yes; Ignore download priority = No
    2014-07-28 14:17:06:348
    840 75c
    Agent  * Criteria = "(IsInstalled = 0 and IsHidden = 0 and CategoryIDs contains 'a38c835c-2950-4e87-86cc-6911a52c34a3' and CategoryIDs contains 'e0789628-ce08-4437-be74-2495b842f43b')"
    2014-07-28 14:17:06:348
    840 75c
    Agent  * ServiceID = {7971F918-A847-4430-9279-4A52D1EFE18D} Third party service
    2014-07-28 14:17:06:348
    840 75c
    Agent  * Search Scope = {Machine}
    2014-07-28 14:17:11:012
    840 75c
    Misc WARNING: Send failed with hr = 80072efd.
    2014-07-28 14:17:11:012
    840 75c
    Misc WARNING: SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <>
    2014-07-28 14:17:11:012
    840 75c
    Misc WARNING: WinHttp: SendRequestUsingProxy failed for <http://download.windowsupdate.com/v9/1/windowsupdate/redir/muv4wuredir.cab>. error 0x80072efd
    2014-07-28 14:17:11:012
    840 75c
    Misc WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x80072efd
    2014-07-28 14:17:11:012
    840 75c
    Misc WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x80072efd
    2014-07-28 14:17:11:012
    840 75c
    Misc WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x80072efd
    If I install the SCEP client and run a subsequent Windows Update the client and its definitions update just fine. Once that's done, if I try using the SCEP client to update its definitions I get the same error. How can I change the client's default behavior
    with regard to updating?
    Please let me know if there's any other info you need. Thanks in advance for your help.
    Riki

    Hi,
    Error: 80072efd
    This error may occur when access to the Windows Update site is blocked.
    For more information, please follow this step by step guide to configure SCEP:
    How to Configure Definition Updates for Endpoint Protection in Configuration Manager
    http://technet.microsoft.com/en-us/library/jj822983.aspx
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • SCEP 2012 and VDI offline servicing

    I've seen this question being asked before in another thread (Best practice to run Microsoft Endpoint Protection client in VDI environment) however the answer doesn't provide enough information (for me at least)
    We are planning to use a Citrix XenDesktop environment with Provisioning services providing VDI clients. As far as I know the SCCM client will be installed in the VDI golden image and after some adjustments SCCM client registration will go well. We will
    also use SCCM 2012 and deploy SCEP 2012 for anti-malware scanning.
    SCCM 2012 provides offline servicing for Software Updates in WIM images, but what is a best practice in keeping the VDI's up-to-date? I can't find any good information about this, so maybe the answer is very simple?... Is there a way to offline service the
    VDI image so Software Updates and Anti-Malware updates are injected in the image?
    Or do the VDI's get updated as physical systems, at the time they are logged in to the network, discarding all changes when logging off. This doesn't seem the right way to go.
    Any help would be appreciated.
    thx. Niels

    I struggled with this same problem for a while, and likewise didn't find a great answer anywhere. In our case, this is for an RDS VDI environment, but the solution I ended up employing should work anywhere.
    First, set up SCCM/WSUS to download the updates to a UNC share (if you haven't already; here's a helpful guide:
    http://blog.thesysadmins.co.uk/sccm-2012-scep-unc-definition-updates-automation-powershell.html). Also, create an antimalware policy for the VDI machines with the definition updates source set to UNC only, and set the UNC Path section accordingly.
    Here's the key part: create a scheduled task in your master image to run based on boot or resume (RDS puts the VDI VMs in a Saved state rather than Off). Here are the settings I used for the task:
    General tab: I set it to run as the SCCM Network Access Account; Run whether user is logged on or not
    Triggers tab: Begin the task On an event; Basic; Log: System; Source: Kernel-General; Event ID: 1 (this pops up on a startup or resume event); Delay task for: 5 minutes (during VM creation, it boots the machine for just a couple minutes, and I
    didn't want this task to be interrupted by a shutdown halfway through); Enabled
    Actions tab: Action: Start a program; Program/script: "C:\Program Files\Microsoft Security Client\MpCmdRun.exe"; Add arguments: -SignatureUpdate
    I left the other tabs with their defaults
    In RDS, the VMs on creation are spun up briefly and then put into a Saved state. It then spins up just a few, waiting for users to connect. By the time a user logs in, the machine should have the latest updates, but even if it doesn't, it should be
    no more than ~5 minutes before it does.
    Hope this helps!
    Ryan

  • Server 2012 R2 Update vs Windows 8.1 Update

    Hi @all,
    i am not sure about this Topic/request, but i hope you can help me :)
    I have a Notebook ... Dell Inc., XPS 15 9530
    So i installed Windows Server 2012 R2 Update.
    After Installation of OS i installed all Driver's from Dell HomePage (Windows 8.1 Driver's) directly from the CAB Package.
    After this i installed all Windows Updates from Microsoft Update.
    Now i see, that in Windows Server 2012 R2 in compare to Windows 8.1 Update some Features are missing
    1.) USB\VID_8087&PID_07DC\5&791A5BE&0&9 missing
    2.) ACPI\VEN_ACPI&DEV_0008
    -> Bluetooth i don't got working see 1. and 2.
    -> WLAN i got working with enabling Wireless LAN Service                               
    3.) Internet Explorer Extensions are Missing so no Flash works...
    So my Question is, which Features and Function's i don't have in Windows Server 2012 R2 Update compare to Windows 8.1
    Please Help :)
    By the way, my idea is...
    Host: Server 2012 R2 incl. DHCP, NAT, WDS, WSUS, SCVMM/ScSM/ScOrch
    Hypervisor's: VMware, HyperV, Citrix (all managed by SCVMM, ScOrch, ScSM)
    virtual Machine's: DC, SCCM, Exchange, Lync, W8.1, W10, W7, W2K3, W2K8R2, W2K12, W10S

    In addition to what Dave is saying about finding drivers from the vendor (Microsoft does not write drivers for those devices, so it is up to the hardware vendor to provide them), you have a pretty aggressive desire for your little notebook.
    "By the way, my idea is...
    Host: Server 2012 R2 incl. DHCP, NAT, WDS, WSUS, SCVMM/ScSM/ScOrch
    Hypervisor's: VMware, HyperV, Citrix (all managed by SCVMM, ScOrch, ScSM)
    virtual Machine's: DC, SCCM, Exchange, Lync, W8.1, W10, W7, W2K3, W2K8R2, W2K12, W10S"
    A single physical machine can run only a single hypervisor - you have listed three.  Your best option is to use Hyper-V and forget the others.  If you are running a hypervisor on a system, you should not run any other services in the parent partition,
    so your idea of running DHCP, NAT, WDS, WSUS, SCVMM/SCSM/SCO on the host in addition to Hyper-V is a bit of a pipe dream.  That means you need to move those into VMs.  You can most likely build all the VMs you have listed, but unless you have a laptop
    with boatloads of memory, you are not likely to be able to get them all running at the same time.  From what I can tell, your particular Dell laptop can have a maximum of 16 GB of RAM.  That's pretty good, but far short of what you would need unless
    you want everything to really limp along.
    . : | : . : | : . tim
    Hi Tim,
    thx for the text, but the text doesn't answer my question...
    I now, what i do, and why i want to work with scvmm.
    host: w2k12R2 with DHCP, NAT, SCVMM, WDS, MDT, WSUS
    1. vm = DC, DNS
    2. vm = hyperV
    3. vm = vmware
    4. vm = citrix
    5. - 10. vm = w7, w8.1, w10, w2k3, w2k8r2, w2k12r2 (all installed over mdt/scvmm)
    11. - 17. vm = msx2010, msx2013, lync2010, lync2013, sccm, scsm, scorch (all installed over mdt/scvmm)
    that i dont start 2 - 4 at the same time is correct but by the way i Need a lab where i can test on every  Plattform ;)
    but my request was about Bluetooth and Different Features from w2k12r2 to w8.1update... ;)

  • Error 80072f8f after installing Windows 8.1 / 2012 R2 "Update"

    I just want to share my experience with the new Update.
    We are using a WSUS (on Windows Server 2012) with a Wildcard certificate from Geotrust for some time now.
    I manually installed the new "Windows 8.1 Update 1" on a Windows 8.1 and a Windows Server 2012 R2 System, both joined in the Domain and were able to update with the WSUS.
    Right after the update both systems keeps failing to communicate with the WSUS with error 80072f8f.
    After changing the ssl certificate on the WSUS Server to a internal PKI certificate the Systems could talk again with the wsus Server.
    So keep in mind when you upgrade to check if the system still works with your wsus server.

    I am also getting the same issue where the 80072f8f error occurs when attempting to scan for updates.
    The client machines are Windows Server 2012 R2 (with Update 1 installed) and the WSUS server is also running Windows Server 2012 R2 Update 1.
    You answers are not remotely helpful in this instance.
    The OP has mentioned several times he is using a Windows Server 2012 WSUS box. Therefore the article you reference has no validity for this issue. 
    TLS 1.2 is enabled by default on 2012 so the linked article and advice unfortunately does not fix the issue. 
    Has anyone else had the 80072f8f error when using a Windows Server 2012 R2 WSUS box? 
    We see errors in the CAPI2 log for Verify Revocation Information
    and Vertify Chain Policy. Althougjh browsing to our WSUS server in IE shows the correct validated certificate.
    Any help would be appreciated.
    Kind Regards
    James Tighe
    MCTS: Windows Server 2008 Active Directory, Configuring MCTS: Windows 7, Configuring

  • SCEP 2012 definition flow check via client logs

    Hi!
    I am looking for some documentation that contains detail information how definitions looks in the logs when client is updating definitions.
    Thanks

    Here's a recent blog post that gives a high-level view of the Windows Update process from a ConfigMgr client's view utilizing a software update point. It's relevant to any software update, but the specific example used in the screenshots is for a SCEP definition
    update, so it might be more along the lines of what you are looking for:
    http://blogs.technet.com/b/configmgrdogs/archive/2014/06/30/configmgr-2012-windows-update-client-process.aspx
    The key log is the WindowsUpdate.log because it will show you the source of update, whether it is coming from ConfigMgr or directly from Microsoft via the Internet (for example).

  • SCEP 2012 for Mac 10.10

    Cannot seem to find SCEP 2012 for Mac 10.10. I only see old versions. Any help?

    http://blogs.technet.com/b/configmgrteam/archive/2014/12/16/support-for-mac-os-x-10-10-in-configuration-manager.aspx
    Looking at the comment in the Blog it looks like it's in the CM12 R2 download. Thanks for your help Mike!
    Bob
    26 Jan 2015 6:32 PM
    A note to anyone like George who is looking for the updated Endpoint Protection installer, it IS updated in the disk image in the System Center 2012 R2 download, even though the date on the VLSC page for it has not changed since 2013.

  • SCCM 2012 software update point not sync with Microsoft Updat,

    Hi 
    Recently my SCCM 2012 software update is not syncing with microsoft update, am getting below error.  can any one suggest/help me how to resolve this issue.
    WebException: The remote server returned an error: (500) Internal Server Error.
    at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)
       at System.Net.HttpWebRequest.GetRequestStream()
       at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
       at Microsoft.UpdateServices.ServerSyncWebServices.ServerSync.ServerSyncProxy.GetAuthConfig()
       at Microsoft.UpdateServices.ServerSync.ServerSyncLib.InternetGetServerAuthConfig(ServerSyncProxy proxy, WebServiceCommunicationHelper webServiceHelper)
       at Microsoft.UpdateServices.ServerSync.ServerSyncLib.Authenticate(AuthorizationManager authorizationManager, Boolean checkExpiration, ServerSyncProxy proxy, Cookie cookie, WebServiceCommunicationHelper webServiceHelper)
       at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.SyncConfigUpdatesFromUSS()
       at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.ExecuteSyncProtocol(Boolean allowRedirect)

    am just trying to tracert catalog.update.microsoft.com
    from my wsus server but it is failed, would that be the reason/
    Regards,
    Madhan

  • SCEP 2012 R2

    I'm migrating from SCCM 2007 to SCCM 2012 R2.  So far I've tested manually pushing a client which worked successfully.  CCM and SCEP 2012 install just fine.
    However, SCEP isn't automatically updating immediately after install, and doesn't appear to be updating based on the settings in my antimalware policy.  If I manually update it works fine.  I have the updates configured to only pull from Configuration
    manager and to only pull every 8 hours.
    Should clients automatically update after install?  If so, where can I look to determine why mine aren't updating?  I can see in the logs they see the definitions but aren't installing them.

    Hi,
    Please check "Disable alternate sources (such as Microsoft Windows Update, Microsoft Windows Server Update Services, or UNC shares) for the initial definition update on client computers" in client settings.
    For more information: http://support.microsoft.com/kb/2688242
    Best Regards,
    Joyce
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

Maybe you are looking for

  • In plain English - How can I get music from one computer to another?

    Honestly guys, I havent a clue! I have purchased music from my work PC, but cant access it from my Home PC. I have read the manuals, but it dosent make sense to me! So, in ordinary, basic, plain English, how do I access it from home?!

  • Data usage skyrocketing and I can't figure out why

    I've been watching my AT&T data usage recently. I have the original iPhone and had expected to replace it this year. That will apparently cause me to lose the unlimited data plan, as per AT&T's latest announcement. For some reason my usage, which use

  • Adobe photoshop cc 2014 assign to desktop not working properly

    Having an issue with Adobe photoshop cc 2014 not switching to my secondary monitor. I currently have my iMac connected to a 22" cintiq monitor that I use as my secondary monitor and whenever I open photoshop I right click on the "Ps" icon in the tray

  • 60w power adapter

    hello, i have the new 2010 macbook pro that uses the new (macbook air style) 60W magsafe power adapter. i also have a 1st gen macbook that uses a older style power adapter. and i usually have the adapters plugged in all the time one in my office and

  • Tray Icons in Linux

    I wish to know how to place tray icons in linux distros using labview. I would also like to know how to display the progress of an operation in the taskbar in linux distros. If anyone could give me examples, I would appreciate it. Thanks.