Windows 10 Upgrades – Dealing with Safeguard ID 25178825 (Conexant ISST Driver)

I saw a tweet recently from Madhu Sanke where he had deployed updated Conexant ISST drivers to his environment to release devices from the Safeguard ID 25178825 which at the time of writing still prevents devices trying to upgrade to 2004 or 20H2. You can read more about the issue here, but around September/October 2020 … Continue reading Windows 10 Upgrades – Dealing with Safeguard ID 25178825 (Conexant ISST Driver)

Getting Creative: a Bespoke Solution for Feature Update Deployments

This is the first blog post in what I hope will be a series of posts demonstrating several custom solutions I created for things such as feature update deployments, managing local admin password rotation, provisioning Windows 10 devices, managing drive mappings and more. My reasons for creating these solutions was to overcome some of the … Continue reading Getting Creative: a Bespoke Solution for Feature Update Deployments

Windows 10 Feature Update Readiness PowerBI Report (MEMCM version)

Following on from my previous post where I shared a PowerBI report that provides information on Windows 10 feature update blocks using Update Compliance and Desktop Analytics, in this post I will share another report that exposes similar data, but this time built from custom hardware inventory data in MEMCM. Outside of the Windows setup … Continue reading Windows 10 Feature Update Readiness PowerBI Report (MEMCM version)

Prevent Users from Disabling Toast Notifications – Can it be Done?

Another toast notifications post - this time to deal with an issue where users have turned off toast notifications. In my deployment of Windows 10 feature updates for example, I use toast notifications to inform users an update is available. Once we hit the installation deadline, the notifications become more aggressive and display more frequently … Continue reading Prevent Users from Disabling Toast Notifications – Can it be Done?

Real world notes: In-place OS upgrade on Server 2012 R2 ConfigMgr distribution points

In my MEMCM primary site I had several distribution points that were still running Windows Server 2012 R2, so I decided to run an in-place OS upgrade on them to bring them up to Server 2019. After reading the MS Docs, I concluded this is a supported scenario and things would go smoothly. I was … Continue reading Real world notes: In-place OS upgrade on Server 2012 R2 ConfigMgr distribution points

Get a daily admin Audit Report for MEM / Intune

In an environment where you have multiple admin users it's useful to audit admin activities so everyone can be aware of changes that others have made. I do this for Endpoint Configuration Manager with a daily email report built from admin status messages, so I decided to create something similar for Intune / MEM. Admin … Continue reading Get a daily admin Audit Report for MEM / Intune

Forcing a Full Hardware Inventory Report to be Sent Immediately on a ConfigMgr Client

Sometimes you might want to force a ConfigMgr client to send a full hardware inventory report immediately for whatever reason. Typically you would simply clean out the WMI instance for the InventoryAction then trigger the schedule. But sometimes there may already be a scheduled action in the queue, for example the hardware inventory cycle has … Continue reading Forcing a Full Hardware Inventory Report to be Sent Immediately on a ConfigMgr Client

Collecting ConfigMgr Client Logs to Azure Storage

In the 2002 release of Endpoint Configuration Manager, Microsoft added a nice capability to collect log files from a client to the site server. Whilst this is a cool capability, you might not be on 2002 yet or you might prefer to send logs to a storage account in Azure rather than to the site … Continue reading Collecting ConfigMgr Client Logs to Azure Storage

Delete Device Records in AD / AAD / Intune / Autopilot / ConfigMgr with PowerShell

I've done a lot of testing with Windows Autopilot in recent times. Most of my tests are done in virtual machines, which are ideal as I can simply dispose of them after. But you also need to cleanup the device records that were created in Azure Active Directory, Intune, the Autopilot registration service, Microsoft Endpoint … Continue reading Delete Device Records in AD / AAD / Intune / Autopilot / ConfigMgr with PowerShell

Get Program Execution History from a ConfigMgr Client with PowerShell

Have you ever been in the situation where something unexpected happens on a users computer and people start pointing their fingers at the ConfigMgr admin and asking "has anyone deployed something with SCCM?" Well, I decided to write a PowerShell script to retrieve the execution history for ConfigMgr programs on a local or remote client. … Continue reading Get Program Execution History from a ConfigMgr Client with PowerShell