Tuesday, May 19, 2015

My SCCM 2012 R2 UNIX Linux notes

Download Putty and PSCP from http://www.putty.org/

Putty allows you to perform remote terminal.

PSCP allows you to copy files to the UNIX and Linux machines

To create new directory in UNIX Linux named sccmclient, mkdir /sccmclient

To copy files to UNIX Linux machine, launch command prompt and change directory to the SCCM client source folder. Then Enter path_to_pscp\pscp.exe * root@ The IP is the UNIX Linux IP

Before install the SCCM client, enter chmod +x install

SCCM client installation command ./install –mp sccm.domain.com –sitecode abc ccm-Universalx64.tar

Add –ignoreSHA256validation switch for:
  • RHEL Version 4 (x86/x64)
  • Solaris Version 9 (SPARC) and Solaris Version 10 (SPARC/x86)
  • SUSE Linux Enterprise Server Version 9 (x86)
  • HP-UX Version 11iv2 (PA-RISH/IA64)
To read installation and operation log, tail –f /var/opt/microsoft/scxcm.log

To stop the ccmexecd, /etc/init.d/ccmexecd stop

To start the ccmexecd, /etc/init.d/ccmexecd start

To perform machine policy refresh, /opt/microsoft/configmgr/bin/ccmexec –rs policy

To perform inventory scan, /opt/microsoft/configmgr/bin/ccmexec –rs hinv

To install rpm package, rpm –i rpmpackage.rpm

To check the existence of rpm packages, rpm -qa | grep rpmpackage

To uninstall SCCM client, /opt/microsoft/configmgr/bin/uninstall

Monday, May 18, 2015

Exploring on Mobile Devices Settings in Office 365

In fact, it detects you have subscribed to Intune services and it will direct you to the Microsoft Intune administrator console. I’ll have to setup a new E3 trial again. Ouch… :)


Tuesday, May 12, 2015

Working on a custom Reporting User Role and Custom Security Scope???

Working on a custom limited Reporting User roles with new custom security scope?

Viewing report from Web is working fine but Reports node in Configuration Manager Console showing No items found?

Working on a new custom reporting user role and assign with All/Default security scope to the user/user group would not give you any problem to view the report in Configuration Manager Console. However, if you are also creating a new security scope and limited the user/user group to the new security scope, you would most probably hit the problem of No items found.


Most likely you will have the configuration similar to the screen captured above. Limiting the user/user group to a collection and also with a new Security Scope.

Click on Associate assigned security roles with specific security scope and collections. Then select your custom Reporting user role and click Edit

Click on Add, and add the Default Security Scope

The Default security scope will then link to the custom reporting user role

Not to forget, most of us could forget this. When we creating a custom reporting user role, we copy the Read-only Analyst and removing all settings except Run Report. Please remember that it still require minimum Read permission on Site else you will hit the problem of No items found.

Bye bye No items found!!!!!

Tuesday, May 5, 2015

Could not connect to the RootDSE container in Active Directory. HRESULT=0x8007052E

I bumped into this error today with the Active Directory Forest Publishing to untrusted forest using a specific account instead of the computer account of the site server. HRESULT=0x8007052E simply means that incorrect username or password.

Resolution: Reconfigure the user account and password and verify the LDAP. For example, LDAP://datacenter.domain.com/CN=System Management,CN=System,DC=datacenter,DC=domain,DC=com

Tips: Type the complex password in a notepad and then copy and paste it to the password input :)

Tuesday, February 10, 2015

SCCM Schema Extension Error = 8224

I bumped into this issue today on a customer site. The Schema Extension failed with error code = 8224, which you can view it from the C:\ExtAdSch.log

Here are the steps I checked:

  1. Schema Extension needs to be performed all the DC holding all the FSMO roles. Open Command Prompt and enter netdom /query fsmo
  2. The user account is part of the Schema Admins group
  3. Check the AD Replication between the domain controller using repadmin command. It showed replication error, and this is the reason causing the Schema Extension failure.

Thanks for reading =)

Monday, February 9, 2015

System Center Universe APAC 2015

System Center Universe APAC is back! Haven’t heard of the event? Here’s some sneak peak on what’s waiting for you:

TOP 10 reasons why you should attend:

  1. Never before has Asia Pacific and Singapore seen such a great pool of speakers in ONE event. TOP Cloud, Azure, System Center and Hyper-V experts from all across the globe are here! YOU no longer have to travel to the other side of the world to meet them!
  2. Speakers will be sharing their top secrets, best practices, tips & tricks with YOU! Priceless information that we may not be able to get even on the internet!
  3. Experts from Microsoft, experienced industry partners and speakers themselves will be at a special area during the event for you to ask them ANY questions on your cloud journey! This service which is usually chargeable is available to SCU participants for FREE!!!
  4. Be some of the First people to see LIVE of what is coming up in upcoming version of Windows Server, System Center and Azure at our KEYNOTE titles 'Next Generation'!
  5. Mingle with the experts, fellow industry professionals and connect with our sponsors to explore new technologies that will improve your IT efficiency.
  6. All the knowledge and tips not enough? GREAT! We have some awesome prizes sponsored in a lucky draw just for YOU. Come and find out if you are one of the lucky delegates to bring home a Surface Pro 3 and other cool prizes!
  7. All the brain input deserves some reward! Stay on for our SCU GALAXY PARTY after Day 2 to eat, drink & to catch the experts for more secrets!
  8. Get your hands dirty with some hands-on labs at the event for FREE (worth US$1500) and the opportunity to enroll in the Pre-SCU Workshops by the experts at SUPER DISCOUNTS!
  9. Yes… We know we mentioned that the TOP experts will be here at SCU. But we just have to mention it again! FIRST TIME EVER, we are able to gather them at ASIA PACIFIC to pick their brains! Too shy to ask? Tweet or post via Facebook and we will get the answers for YOU.
  10. SCU APAC is a community and non-profit event. The value you get from the learnings, ideas, tips, tricks, prizes, deals, offers, food, drinks, hands-on and best practices are MORE than 20 times the fee. DO NOT MISS THIS OPPORTUNITY!

EXCLUSIVE RATE just for you!
US$190/ticket OR US$150/ticket for a group of 5 or more
Special rate with Capri – SGD230++ per night
Use this code: SCUBLOG [valid until 15 Feb 2015]
Register here and select Option 3: Registration with RSVP code


Wednesday, December 3, 2014

Windows 8.1 No Longer Require Symantec Certificate for Intune Enrollment

With the new released Microsoft Intune, we no longer require Symantec certificate to enroll Windows 8.1 devices. However, if you are facing the following scenarios, you still require Symantec certificate.

  • If you want to sign and deploy your own line of business (LOB) apps to Windows Phone 8.1 devices
  • If you need to enroll Windows Phone 8 devices, even if you don’t want to deploy LOB apps to these devices
  • If your Intune subscription is connected to System Center 2012 R2 Configuration Manager. Support for the “certificate-less” enrollment feature is planned for a future release of System Center Configuration Manager.
  • If your users cannot access the Microsoft Store, either because their access has been blocked by their IT admin or because they don’t have Microsoft accounts.