Incoherence between SYSVOL/AD

Incoherence between SYSVOL/AD

During the AD audit at a client’s site, I encountered the following problem:

The gpo tool command does not raise replication issues at GPO levels. However, when preparing a Group Strategy Result report, a warning appears:

AD/SYSVOL version Mismatch.

Continue reading

Enroll Windows 10 on Azure AD

Enroll Windows 10 on Azure AD

Enroll Windows 10 on AAD

Microsoft offers the possibility to integrate a workstation under Windows 10 directly into Azure AD. The first operation will be to create the AD database in Azure or to use the one already present

Continue reading

Create PSO

Create PSO

Create PSO

An AD domain contains a password policy that is applied to all users. However, in some cases, it is necessary to apply a different policy to one or more users.

Continue reading

Deploy MBAM

Deploy MBAM

Deploy MBAM

MBAM (microsoft bitlocker administration and monitoring) permit to secure and protect your desktop and laptop. You can deploy it from operating system and store key on Active Directory.

However, if you have MBAM licenses, you will be able to implement it. This product allows you to implement portals for the management of these recovery keys. Thus it is no longer necessary to have domain administrator rights to have the bitlocker recovery key.

Security fix

Security fix

Security fix

Microsoft has issued a security bulletin for a flaw in the Secure Channel. With this vulnerability the attacker has the possibility to force the downgrade of the SSL/TLS version used.

Continue reading

Techdays session

Techdays session

Techdays session

Microsoft has made available the Powerpoint slideshows used during the techdays. So you can find the one of my session co-hosted with Yann SEYROLLES (Microsoft TSP) on Windows Intune news.

Create planified task

Create planified task

Thanks to the Technet team for this great article: “Configuring Scheduled Tasks in Powershell”. The creation of a task planned by GPO is not always feasible, the workstation may not be a member of the domain or may never be connected to the network. To overcome this problem, it is possible to perform the creation directly in Powershell.

So we have at our disposal two applets:

  • One for creating configuration options
  • One to apply configuration options

http://blogs.technet.com/b/heyscriptingguy/archive/2015/01/14/use-powershell-to-configure-scheduled-task.aspx

Problem for access to the portal

Problem for access to the portal

SCCM 2012 R2 offers many advantages, including the ability to provide users with an application portal.

Application portal is based on two roles in SCCM :

  • Application Catalog website point
  • Application Catalog web service point
Continue reading

Backup data with MDT

Backup data with MDT

Backup data with MDT

While trying to back up the data of a Windows XP workstation with MDT, I realized that the UNC path entered in the CustomSettings.ini file was ignored.

Continue reading

Update not approval on WSUS

Update not approval on WSUS

Update not approval on WSUS downstream server

After synchronizing a downstream server, updates appear in the Unapproved category.

Update not approval on WSUS
Continue reading