Archives
-
-
Recent Posts
- Cloud attach – Endpoint Managers silver lining – part 8 Enabling Tenant Attach
- Dealing with annoying admin requests using 1E Tachyon
- using BitLocker Management in ConfigMgr and do OSD, read this !
- Retire My PC – a self-service app to secure company data on old computers
- Configuration Manager Technical Preview 2106 is out, and it’s huge !!
-
-
Recent Comments
- ncbrady on Troubleshooting application deployment failures during the Enrollment Status Page for Windows Autopilot
- Chelbea on Troubleshooting application deployment failures during the Enrollment Status Page for Windows Autopilot
- ncbrady on Creating a VMSS CMG and setting VM size with Technical Preview 2105
- mgorski10 on Creating a VMSS CMG and setting VM size with Technical Preview 2105
- f_7fake on Got a Surface Pro 4 with a flickering screen, try these hacks.
-
Categories
- 1E
- Active Directory
- Altaro
- Altaro VM Backup
- Apple
- Assessment and Deployment Kit
- ASUS
- Azure Cloud Storage
- AzureAD
- BitLocker
- book
- Cireson ConfigMgr Portal
- CMG
- cost
- Covid19
- Current Branch for Business
- Custom Client User Settings
- CVE-2019-0708
- Dell
- Gaming
- hidden
- hololens
- HoloLens 2
- HP
- hyper-v
- IKEA
- Intune
- 1703
- Android
- Azure
- Azure AD
- Azure Portal
- BitLocker
- company portal
- Compliance
- Conditional Access
- ctrl_alt_d
- DFCI
- docs
- Edition Upgrade
- EMS
- Graph
- iOS
- macOS
- MAM-WE
- Microsoft Edge
- Microsoft Store for Business
- MVA
- Office 365 Suite
- pilot deployment
- PowerShell scripts
- Preview
- Start Screen
- troubleshooting
- win32 app
- Windows AutoPilot
- Windows Phone 8
- WIP
- Lenovo
- MBAM
- MDT
- Microsoft Ignite
- Microsoft Surface
- MMS 2016
- MSDN
- MSIgnite2018
- MVA
- MVP
- Nvidia RTX 2060
- Patch My PC
- PowerShell
- RansomWare
- SCCM
- ConfigMgr 2007
- ConfigMgr 2012
- System Center Configuration Manager (Current Branch)
- 1511
- 1602
- 1606
- 1610
- 1702
- 1706
- 1802
- 1806
- 1810
- 1902
- 1906
- 1910
- 2002
- 2006
- 2010
- 2103
- baseline version
- Cloud Attach
- documentation
- e-http
- enhanced HTTP
- Expired
- hotfix
- https
- licensed
- linux
- LTSB
- Microsoft Tunnel
- PKI
- required task sequence
- Retry Installation
- Servicing Plans
- support lifecycle
- Telemetry
- Updates and Servicing
- System Center Configuration Manager Technical Preview
- 1604
- 1605
- 1606
- 1607
- 1608
- 1609
- 1610
- 1611
- 1612
- 1701
- 1702
- 1703
- 1704
- 1705
- 1706
- 1708
- 1709
- 1710
- 1712
- 1801
- 1802
- 1803
- 1804
- 1806
- 1808
- 1809
- 1810
- 1810.2
- 1902.2
- 1903
- 1904
- 1905
- 1906
- 1907
- 1908
- 1908.2
- 1909
- 1910
- 1911
- 1912
- 2001
- 2002
- 2002.2
- 2003
- 2004
- 2005
- 2006
- 2007
- 2008
- 2009
- 2010
- 2010.2
- 2101
- 2104
- 2105
- 2105.2
- 2106
- Manage Duplicate Hardware Identifiers
- teams messaging
- TP2102
- Security
- SQL Server 2016
- SQL Server 2017
- Surface Pro X
- Uncategorized
- Uservoice
- USMT
- video
- VLSC
- Vmware
- WannaCry
- wbemtest
- WFH
- Windows 10
- Windows 7
- Windows 8
- Windows Server 2016
- Windows Server 2019
-
Meta
Category Archives: PKI
Prepare for HTTP-only client communication depreciation in ConfigMgr
Introduction Microsoft recently announced that HTTP only communication will be dropped from ConfigMgr in October 2022 here. The advice is to enable a more secure communication method for the site either by enabling HTTPS or Enhanced HTTP. Learn about HTTPS … Continue reading
Posted in e-http, enhanced HTTP, https, PKI
Leave a comment
How can I replace an expired IIS certificate in a PKI enabled ConfigMgr environment
Introduction I was busy putting together another BitLocker Management OSD related blog post in one of my PKI enabled ConfigMgr labs (#11) when I noticed that PXE boot no longer worked. The virtual machine would attempt to PXE boot for … Continue reading
Posted in 2002, BitLocker, expired IIS cert, PKI, smspxe.log
1 Comment
Want to learn about the new Bitlocker Management feature in Microsoft Endpoint Manager Configuration Manager ?
Introduction Microsoft BitLocker Administration and Monitoring (MBAM) is the ability to have a client agent (the MDOP MBAM agent) on your Windows devices to enforce BitLocker encryption including algorithm type, and to store the recovery keys in your database, securely. … Continue reading
Posted in 1909, 1910, Group Policy, Key Rotation, MBAM helpdesk, MBAM Reporting, MBAM SelfService, PKI, pki
29 Comments
How can I configure System Center Configuration Manager in HTTPS mode (PKI) – Part 2
In a previous series of guides I showed you how to configure PKI in a lab on Windows Server 2016. In another series, I also showed you how to install System Center Configuration Manager (Current Branch) version 1802 on Windows … Continue reading
Posted in 1802, PKI
Leave a comment
How can I configure System Center Configuration Manager in HTTPS mode (PKI) – Part 1
In a previous series of guides I showed you how to configure PKI in a lab on Windows Server 2016. In another series, I also showed you how to install System Center Configuration Manager (Current Branch) version 1802 on Windows … Continue reading
Posted in 1802, PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 8
This series is comprised of different parts, listed below. Part 1 – Introduction and server setup Part 2 – Install and do initial configuration on the Standalone Offline Root CA Part 3 – Prepare the HTTP Web server for CDP … Continue reading
Posted in 1803, PKI, Windows 10
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 7
This series is comprised of different parts, listed below. Part 1 – Introduction and server setup Part 2 – Install and do initial configuration on the Standalone Offline Root CA Part 3 – Prepare the HTTP Web server for CDP … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 6
This series is comprised of different parts, listed below. Part 1 – Introduction and server setup Part 2 – Install and do initial configuration on the Standalone Offline Root CA Part 3 – Prepare the HTTP Web server for CDP … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 5
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
How can I configure PKI in a lab on Windows Server 2016 – Part 4
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 3
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 2
In part 1 of this series, you configured your LAB for a 2 tier PKI hierarchy running on Windows Server 2016. You used PowerShell to create some virtual machines, and then installed Windows Server 2016, Windows 10 Enterprise version 1803 … Continue reading
Posted in PKI
Leave a comment
How can I configure PKI in a lab on Windows Server 2016 – Part 1
Introduction Security is everywhere, and a core component of security are certificates. Public key infrastructure (PKI) is a set of roles, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption (1). In … Continue reading
Posted in PKI
Leave a comment
System Center Configuration Manager Technical Preview 1805 released
Introduction Microsoft released Technical Preview 1805 for System Center Configuration Manager at the Midwest Management Summit. Starting with TP1805, you no longer need to have PKI certs or HTTPS management points for AAD auth on CMG. Because you shouldn’t have … Continue reading