Cristopher
My feedback
-
933 votes
An error occurred while saving the comment An error occurred while saving the comment Cristopher
commented
For those of you following this, here's a great blog series to assist with 802.1x deployments covering various scenarios.
http://www.asquaredozen.com/2018/07/29/configuring-802-1x-authentication-for-windows-deployment/An error occurred while saving the comment Cristopher
commented
Fingers crossed that 2017 will bring some support to WinPE and SCCM task sequences so that we can do some OSD on a network that uses 802.1x security.
An error occurred while saving the comment Cristopher
commented
We're headed backwards here. The latest WinPE 10 (version 1607) broke the dot3svc service. https://social.technet.microsoft.com/Forums/en-US/win10itprosetup/thread/93f32a23-7558-4742-91ab-ba0e7801ed0e/#3853df61-8dcf-4560-8b01-27da4fcca235 Those of you who are in an 802.1x environment, help me make some noise on this please.
An error occurred while saving the comment Cristopher
commented
We have 802.1x on our network and in order to achieve a successful operating system deployment we have had to implement hacks upon hacks into our process. I've gone through 2 dozen iterations of our boot image trying to get the script "just right" and it is still not 100% functional. Because of this, most of our deployments are still done on an isolated network segment where 802.1x is disabled.
Cristopher
supported this idea
·
-
27 votes
An error occurred while saving the comment Cristopher
commented
This is a good idea but I'd suggest making the notification 30 days instead of 7 just in case someone isn't available within a short time to assist the ConfigMgr admin with certs.
It would also be a good idea to add this to Management Insights.
-
72 votesNoted · 2 comments · Ideas » Remote Control and Remote Desktop · Flag idea as inappropriate… · Admin →
An error occurred while saving the comment Cristopher
commented
Number 2 on this list is something we require. Different support techs need different levels of remote access, with only a few being granted access without user approval. Right now, you're limited to the winning client setting which makes this limiting.
-
3 votesCristopher
shared this idea
·
-
411 votes
An error occurred while saving the comment Cristopher
commented
We may look into this as a possible workaround for letting users know something is happening if a TS reboots.
https://home.memftw.com/per-user-login-message/Cristopher
supported this idea
·
An error occurred while saving the comment Cristopher
commented
There are several 3rd party workarounds for notifying user of progress during an in-place OS upgrade but a supported native solution would be best.
-
1,994 votesstarted ·
AdminBob Mac Neill
(Software Engineer, Microsoft Endpoint Configuration Manager)
responded
We’ve released our 2001.2 Technical Preview.
For more info:
Doc: https://docs.microsoft.com/configmgr/core/get-started/2020/technical-preview-2001-2
Blog: https://techcommunity.microsoft.com/t5/configuration-manager-blog/configuration-manager-technical-preview-2001-2-is-now-available/ba-p/1149051This release has some update to the task sequence as a deployment type. See
https://docs.microsoft.com/en-us/configmgr/core/get-started/2020/technical-preview-2001-2#bkmk_tsdtCristopher
supported this idea
·
-
212 votes
Apologies – my error – reverting status back to noted. This request is not addressed in 1905 Technical Preview.
Cristopher
supported this idea
·
An error occurred while saving the comment Cristopher
commented
If I had any more votes I'd gladly use them on this. We're constantly getting burned by this. I'm willing to be the majority of SCCM installs are limited to a single time zone. Let us default everything to client local time, please!
-
5 votes
An error occurred while saving the comment Cristopher
commented
You can submit changes to the docs via GitHub. Also, there are lots of bloggers who have multi-part posts on how to set up co-management. Look up scconfigmgr.com and anoopcnair.com guides.
-
7 votes
An error occurred while saving the comment Cristopher
commented
You can also compress the IIS logs folder to greatly reduce the size on disk.
An error occurred while saving the comment Cristopher
commented
We use a scheduled task to clean up IIS logs on a monthly basis. A native function would be nice.
-
195 votes21 comments · Ideas » Asset management, inventory, and collections · Flag idea as inappropriate… · Admin →
An error occurred while saving the comment Cristopher
commented
IP address is visible in the device properties. Just double-click and filter by "address" to see it. You could also just ping the device's host name.
-
2 votes
An error occurred while saving the comment -
5 votes
An error occurred while saving the comment Cristopher
commented
-
7 votes
An error occurred while saving the comment Cristopher
commented
-
19 votesCristopher
shared this idea
·
-
226 votes
An error occurred while saving the comment Cristopher
commented
More and more applications would greatly benefit from this. Last year I packaged Adobe Acrobat Pro DC and had to set it to run when no user is logged in because it simply killed explorer.exe. It would be nice if I could prevent the user from simply logging back in before the installation completes.
An error occurred while saving the comment Cristopher
commented
Our previous deployment solution, CA ITCM, had this feature. It was called logon shield. It was clunky, to say the least. If anything went wonky during an application install nobody could log back on to the PC indefinitely. Someone would have to be physically present to power cycle the machine.
As much as I'd love to see this feature integrated into Configmgr, it has to be very well though-out. Have it time out when the deployment times out. -
20 votes
Thanks for the suggestion and comments. Updating status to Noted
https://blogs.technet.microsoft.com/configmgreng/2016/03/11/configmrguv/
An error occurred while saving the comment Cristopher
commented
Packages can have a scheduled content update set up in the Configmgr GUI. Applications can have content updated for their deployment types via powershell. We use Task Scheduler to schedule these scripts over night so that they do not interfere w/ running Task Sequences.
-
17 votesNoted ·
AdminMark Silvey - ConfigMgr Product Team
(Engineering Manager, ConfigMgr, Microsoft Endpoint Configuration Manager)
responded
Scott – How would you like it streamlined? What would you do if you could have anything?
An error occurred while saving the comment Cristopher
commented
The automatic creation of an Application would be nice. We use the app model to deploy/upgrade the Admin Console after upgrades. However something similar to the automatic client upgrade would be extremely helpful too. We frequently string the Admin Console application together with a package for a hotfix inside a task sequence because the hotfix packages are auto-generated when the KB is installed on the site server.
-
35 votes
An error occurred while saving the comment Cristopher
commented
I would almost say take this a step further and request the ability to apply a separate maintenance window to PCs if nobody is logged on.
-
0 votes1 comment · Ideas » Asset management, inventory, and collections · Flag idea as inappropriate… · Admin →
An error occurred while saving the comment Cristopher
commented
Copy/paste keyboard shortcut doesn't work but right-click paste does work for MAC address entry.
-
13 votes
An error occurred while saving the comment Cristopher
commented
I like it.
After many years, I'm seriously considering taking my 3 votes off this item as it's clearly never going to happen. I'd rather contribute my votes to something that has a chance of seeing the light of day.
OSD is more and more becoming of a legacy provisioning tool while Autopilot is being pushed harder and harder by MS.
In spite of great contributions from the community, we never got OSD to work in our 802.1x environment and even made some backwards progress when trying to work more closely with our network security team.
About a year ago we threw in the towel and stripped all 802.1x customizations from our OSD scenario. In spite of the incredible inconvenience it causes, all of our PCs get imaged or re-imaged on a dedicated network segment with no 802.1x.