ConfigMgr – Windows 10 Servicing – Step by Step

Today I would like to show you, how you can implement an Upgrade of a Windows 10 Installation through the Servicing Option.
I always think of two things, when I have to decide to use an Upgrade Task Sequence or the Servicing Model, and those are:

  • Do I want to use the Option that the clients will download the Windows 10 Sources from the Microsoft Update Servers?
  • When I use an Upgrade Task Sequence, I can copy most of the steps from the regular OSD Task Sequence
  • But for this blog post, I would like to show my setup for the servicing model.

    First of all, I have already written a post about the Update process in a slightly overview manner, you will find this post here: My old post

    The first step would be to determine which packages you would like to implement for the upgrade. Based on the fact, that I use English as base language, I will add the Feature on Demand (FoD) packages, and I will also add the feature package NetFx3. My Setup does also contain the German Langauge, which requires me to add the corresponding Language Pack and FoD Packages. The following picture shows the folder of my Packages which I want to include within the Windows 10 Installation:

    Continue reading

    RMS Sharing App Error 0x800704cf

    Hi Reader,

    this is a small one: I had an issue when I tried to use the RMS Sharing app. Always when I used the Sharing application, I got the following error:
    0x800704cf the network location cannot be reached
    —–
    Unfortunately I haven’t saved a Screenshot of the error Message. But I could not find any information on this topic. The only thing I was thinking about was: Why does the error tell me, that the sharing app can’t connect to a network location. Continue reading

    ConfigMgr – Windows 10 Feature Update without a Task Sequence

    Today I would like to talk about the upcoming update cycles you have to do, when you are using Windows 10 Current Branch or Current Branch for Business. This means, if you have started to install Windows 10 1507 (which represents the first Windows 10 Release, some may call it also RTM) in spring of last year, you will be soon required to upgrade to a newer version of Windows 10. Also if you are using Windows 10 1511, with the upcoming creators update, the 1511 version of Windows 10 will be soon unsupported, following the official guidelines.
    winver.exe 1607 Continue reading

    Azure Information Protection: If OS {7, 8, 10} and Office {2010, 2013, 2016, 365} which Clients do I need for AIP?

    Currently many customers are looking for a solution to protect their content, and finding themself within the Microsoft Office 365 and Azure Ecosystem, and realizing, that they might already been able to use a solution for Information Protection. But this leads often to the Question, how can I, and more important, how can my users take advantage of Azure Information Protection (AIP)?
    I will try to answer those questions within this Blog Post.
    Continue reading

    Azure AD Domain Services – What you can do, and what you can’t do

    Since Microsoft has Released Azure AD Domain Services, many questions are coming up, and the top one of them might be: Can I join my Windows 10 Client through the internet to my Domain and receive Group Policies? No, you can’t.
    But besides this, there are other questions that remains to be answered, and I will try to do so.
    The first thing is to explain, what is required to get the Azure AD Domain Services (AAD DS) up and running:
    1. Create a group in Azure AD called “AAD DC Administrators”
    2. Create a VNET in Azure if not already existent
    3. Activate the AAD DS in the Azure Portal:
    Active Azure AD Domain Services
    4. Update DNS Settings for the specific VNET
    And now, you are ready to go, for a more detailed explanation refer to this Microsoft Article.

    Continue reading

    ConfigMgr – NDES Certificate Deployment fails due to Network Device Enrollment Service failure

    I was struggling a little bit within my LAB trying to get the Network Device Enrollment Service (NDES) up and running again for the Simple Certificate Enrollment Protocol (SCEP), which is I believe not that simple, but anyway. I was really unsure what I did have changed (because I changed a lot in the last month within my LAB), that would have stopped the functionality of the Certificates to my devices, but I had a start point, the event log of the NDES Server told me the following:
    The Network Device Enrollment Service cannot retrieve one of its required certificates (0x80070057). The parameter is incorrect.
    The Network Device Enrollment Service cannot be started (0x80070057). The parameter is incorrect.

    Network Device Enrollment Service error
    Continue reading