Trevor Jones

Creating Compatibility Collections for Windows 11 in MEMCM

Posted on October 11, 2021October 11, 2021 by Trevor Jones in ConfigMgr, Reporting, SCCM, Software Updates

The other day I tweeted a screenshot of collections I had created in MEMCM for Windows 11 based off custom inventoried data - this post is just to explain how they were created and provide scripts and files for you to do the same if you wish. https://twitter.com/SMSagentTrevor/status/1446523800246489089 The data is inventoried from Windows 10 … Continue reading Creating Compatibility Collections for Windows 11 in MEMCM →

Windows 11 Hardware Readiness Report for Power BI

Posted on October 6, 2021 by Trevor Jones in Azure, Intune, PowerBI, Reporting

So, Windows is 11 is out and Microsoft recently added Windows 11 hardware readiness insights to Endpoint Analytics in Microsoft Endpoint Manager allowing you to identify which devices in your Intune tenant are eligible for upgrade and which are not and why. Read the official announcement here. To supplement this report, I've created a Power … Continue reading Windows 11 Hardware Readiness Report for Power BI →

MEMCM Client Content Downloads Report for Power BI

Posted on September 9, 2021March 8, 2022 by Trevor Jones in ConfigMgr, Packages, PowerBI, Reporting, SCCM

!Update 2022-03-08! Fixed an issue with the Power BI template where the following SQL error may be returned for large boundary group strings: STRING_AGG aggregation result exceeded the limit of 8000 bytes. Use LOB types to avoid result truncation. I was checking out some reports recently for client data sources (DP, BranchCache etc) for MEMCM … Continue reading MEMCM Client Content Downloads Report for Power BI →

Report on Overlapping Boundaries in MEMCM

Posted on September 3, 2021 by Trevor Jones in ConfigMgr, Powershell, Reporting, SCCM, SQL

Having boundaries that overlap with other boundaries can be a royal pain in MEMCM if those boundaries are in different locations - unless identified and sorted out you can potentially have clients getting content from undesired sources - across the continent or even across the world in some cases! I prepared the following script that … Continue reading Report on Overlapping Boundaries in MEMCM →

Use Proactive remediations to report on or install the Microsoft Update Health tools

Posted on July 22, 2021 by Trevor Jones in Compliance, Intune, Powershell, Reporting, Software Updates

Microsoft recently made a download available for their Update Health tools - if you're using Microsoft Endpoint Manager and enrolling or co-managing Windows devices these tools need to be installed to make use of the capability for expediting quality updates. For devices connected to Windows Update or Windows Update for Business these tools should already … Continue reading Use Proactive remediations to report on or install the Microsoft Update Health tools →

MEMCM Compliance Item Scripts to Secure PointAndPrint Registry Keys

Posted on July 9, 2021 by Trevor Jones in Compliance, ConfigMgr, Powershell, SCCM

Microsoft published some updated guidance yesterday for the Windows Print Spooler Vulnerability (CVE-2021-3457) and recommend securing a couple of Point and Print registry keys if they exist, in addition to deploying the security update: After applying the security update, review the registry settings documented in the CVE-2021-34527 advisoryIf the registry keys documented do not exist, … Continue reading MEMCM Compliance Item Scripts to Secure PointAndPrint Registry Keys →

Querying Windows Build Version History with the Intune Data Warehouse and PowerShell

Posted on June 23, 2021 by Trevor Jones in Intune, Powershell, Software Updates

I had an interesting requirement recently which was to review the OS build numbers of a group of computers over time. This would reveal not only when they got patched, but which patches they installed and when they installed a feature update, for example. Since we aren't using the Data warehouse in MEMCM and our … Continue reading Querying Windows Build Version History with the Intune Data Warehouse and PowerShell →

Create custom Intune reports with Microsoft Graph, Azure Automation and Power BI

Posted on May 12, 2021September 27, 2021 by Trevor Jones in ConfigMgr, configmgr client health, Intune, PowerBI, Powershell, Reporting, SCCM

Microsoft Endpoint Manager aka Intune has been around for a while now and has evolved quite significantly since its early days and the old Silverlight portal (remember that?). Historically Intune hasn't been particularly good with its reporting capability, but since end 2019 and the announcement of the new reporting framework, things are starting to improve … Continue reading Create custom Intune reports with Microsoft Graph, Azure Automation and Power BI →

A case of the unexplained: Intune password policy and forced local account password changes

Posted on April 27, 2021 by Trevor Jones in Compliance, ConfigMgr, Intune, Powershell, SCCM

Having a password policy is a best practice for security of accounts, whether domain, local or wherever passwords are used. In the Windows world, domain accounts have a default domain password policy. Azure AD accounts have the Azure AD password policy. Accounts local to Windows can have a password policy too, and you can use … Continue reading A case of the unexplained: Intune password policy and forced local account password changes →

Get the current patch level for Windows 10 with PowerShell

Posted on April 20, 2021April 22, 2021 by Trevor Jones in Compliance, Powershell, Reporting, Software Updates

I was working on some updates to our unified reporting solution for Windows Updates (ie WUfB + MEMCM) and I wanted to figure out simply from the OS build number whether a Windows 10 workstation has the latest cumulative update installed. The only reliable and useable static list I could find for Windows 10 build … Continue reading Get the current patch level for Windows 10 with PowerShell →