System Center Configuration Manager – "Configure SQL Server Service Broker Failed"

The Issue Recently I installed the Latest Tech Preview in my lab environment and while running an In-Console update I received an error "Configure SQL Server Service Broker - Failed". The Investigation If you watch a video Steve Rachui posted some time ago, there are some valuable tips for which logs to review and the … Continue reading System Center Configuration Manager – "Configure SQL Server Service Broker Failed"

Offline installation of OpenSSH Server on Windows Server 2019

Windows Server 2019 has a lot of additional capabilities that can be added. Those features are easily added with the Add-WindowsCapability PowerShell cmdlet. When adding a capability it pulls from either the Internet or a WSUS server. Sometimes the capability needs to be added in an offline environment where there is no Internet and the … Continue reading Offline installation of OpenSSH Server on Windows Server 2019

Infrastructure – System Center Configuration Manager – “Deploying applications with the PowerShell Application Deployment Toolkit”

The Issue Recently I was posed a question where a customer wanted their users to experience a more advanced or informative when software gets installed. They also required that data be saved so that users work are not affected. Requirements: The Mimecast for Outlook add in had to be installed (This requires Outlook to close) … Continue reading Infrastructure – System Center Configuration Manager – “Deploying applications with the PowerShell Application Deployment Toolkit”

The new way to avoid exposing port 3389 in Azure – Bastion!

Microsoft has released the public preview for Azure Bastion, allowing an additional factor and separate subnet to be your protection from the hordes of hackers who scan the Internet every day looking for open port 3389 with easy passwords or vulnerable patch-level. And things are simpler for you as well - no more unnecessary PIP's … Continue reading The new way to avoid exposing port 3389 in Azure – Bastion!

System Center Configuration Manager – “Error Deploying Windows 10 In Place Upgrades with McAfee DLP Endpoint”

The Issue Trying to do an In Place Windows 10 Upgrade with McAfee DLP Endpoint fails. As soon as the Operating System is applied the machine restarts and simply starts up to the "Repair" screen. The Investigation In this case the In Place Upgrade was being performed by System Center Configuration Manager using an In … Continue reading System Center Configuration Manager – “Error Deploying Windows 10 In Place Upgrades with McAfee DLP Endpoint”

Using SCCM DCM Feature to monitor GPO application in the environment

The Issue A Common issue that keeps being experienced across customer sites, is the application of Group Policies on machines By default when a GPO is created and linked, it should apply to all the machines that the policy was linked to, and in most cases this works pretty perfectly, however, how do you know … Continue reading Using SCCM DCM Feature to monitor GPO application in the environment

Security – Transport Layer Security(TLS) 1.2 Calculation

Enabling TLS and SSL on Windows machines requires you to set registry keys. https://support.microsoft.com/en-us/help/3140245/update-to-enable-tls-1-1-and-tls-1-2-as-default-secure-protocols-in-wi 2. If you want to enable more than one (In case you are scared not using TLS 1.1 or 1.0 will break your websites), you need to add up the values in Calculator in Programmer mode and choosing HEX (800+200+20) = … Continue reading Security – Transport Layer Security(TLS) 1.2 Calculation