Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Microsoft System Center Configuration Manager Cookbook
  • Table Of Contents Toc
  • Feedback & Rating feedback
Microsoft System Center Configuration Manager Cookbook

Microsoft System Center Configuration Manager Cookbook

By : Samir Hammoudi, Hudson, Mason, Ramsey, Chuluunsuren Damdinsuren
3.5 (2)
Buy this Book
close
close
Microsoft System Center Configuration Manager Cookbook

Microsoft System Center Configuration Manager Cookbook

3.5 (2)
By: Samir Hammoudi, Hudson, Mason, Ramsey, Chuluunsuren Damdinsuren
Buy this Book

Overview of this book

This practical cookbook is based on the 1602 current branch of System Center Configuration Manager (SCCM). It shows you how to administer SCCM, giving you an essential toolbox of techniques to solve real-world scenarios. Packed with over 60 task-based and instantly usable recipes, you’ll discover how design a SCCM Infrastructure, and dive into topics such as the recommended SQL configuration for SCCM and how to deploy Windows 10 with Operating System Deployment (OSD). You will learn to easily manage Windows 10 devices by deploying applications, software updates, and feature upgrades, andl be able to leverage Mobile Device Management (MDM) using SCCM and Microsoft Intune. Finally, you see how to gather the inventory of all your PC park and create reports based on it. By the end of the book, you will have learned the best practices when working with SCCM and have a handy reference guide for troubleshooting.
Table of Contents (10 chapters)
close
close
close
Preface
Preface
What this book covers
What you need for this book
Who this book is for
Sections
Conventions
Reader feedback
Customer support
Free Chapter
1
1. Designing a System Center Configuration Manager Infrastructure
chevron up
1. Designing a System Center Configuration Manager Infrastructure
Introduction
What's changed from System Center 2012 Configuration Manager?
System Center Configuration Manager's new servicing models
Keeping your CM deployment up-to date
Infrastructure sizing considerations
Dividing up site system roles
Upgrading in-place from Configuration Manager 2012
Installing SQL the right way
Managing Internet-facing clients
Using remote and workstation distribution points and BranchCache
2
2. Deploying Windows 10 with Operating System Deployment
2. Deploying Windows 10 with Operating System Deployment
Introduction
Creating an OSD test environment
Leveraging the build and capture process
Migrating user state
Managing drivers
Customizing the build process with prestart hooks
Patching your reference build
Using the new Windows 10 in-place upgrade task sequence
Leveraging the Microsoft Deployment Toolkit with CM OSD
3
3. Deploying Applications and Software Updates
3. Deploying Applications and Software Updates
Introduction
Creating applications and deployment types
Deploying Store Apps - Windows, iOS, Android
Creating Mobile Application Management Policy
Managing Software Center and Application Catalog
Reducing collection dependencies with conditional rules and global conditions
Converting classic packages to applications
Creating and deploying Virtual Applications - App-V
Superseding applications
Monitoring content and deployment status
Preparing for software updates
Creating and monitoring software updates
Leveraging Automatic Deployment Rules - ADRs
Deploying custom updates
Leveraging Windows 10 Servicing to deploy features upgrades
4
4. Managing Compliance Settings
4. Managing Compliance Settings
Introduction
Building Configuration Items the old way
Building Configuration Items for Windows 10
Creating and deploying a baseline
Leveraging Security Compliance Manager
Monitoring compliance with SSRS
5
5. Managing Mobile Devices using Configuration Manager with Microsoft Intune
5. Managing Mobile Devices using Configuration Manager with Microsoft Intune
Introduction
Creating a Microsoft Intune subscription
Connecting Microsoft Intune to CM
Creating and deploying MDM policies
Using Conditional Access to control devices' access to Office 365 services
Managing mobile devices enrolled in Microsoft Intune via the CM console
6
6. Managing Sites
6. Managing Sites
Introduction
Managing collections
Configuring site maintenance
Managing site communications
Configuring Discovery
Managing Boundary Groups
Managing role-based security
Configuring the Application Catalog
Managing and validating content for DPs and DP groups
7
7. Managing Clients
7. Managing Clients
Introduction
Deploying clients
Upgrading client agents
Managing client health
Managing client settings
Enabling Device Health Attestation in Windows 10
Monitoring client installation and activity
Making use of user-centric improvements
Configuring power management
8
8. Managing Inventory
8. Managing Inventory
Introduction
Managing hardware inventory
Managing software inventory
Managing software metering
Monitoring inventory data flow
Integrating Asset Intelligence
9
9. Managing Reports and Queries
9. Managing Reports and Queries
Introduction
Installing SQL Server Reporting Services - SSRS
Configuring reporting services
Sharing your reports with others
Configuring report subscription
Building queries
Editing and creating reports

Managing Internet-facing clients

Depending on the environment, you may have clients that:

  • Regularly move between the Internet and the intranet
  • Are home computers and never connect to the intranet

Managing clients that are not always connected to the internal network can be a challenge. If remote computers use Virtual Private Networking (VPN) to connect to the corporate network on a regular basis, Internet-facing support may not be required. But if we know that clients may use some type of remote desktop to connect to the corporate network, or maybe they don't have to connect to the corporate network at all to do their job, then Internet-facing support should be considered to ensure proper patch and asset management.

CM has two client communication methods: HTTPS only and HTTPS or HTTP. One CM site can support both HTTPS and HTTP communication if required.

Managing Internet-facing clients

Getting ready

Public Key Infrastructure (PKI) certificates are required for Internet-based client communication. Engage with the team that owns PKI in your infrastructure. If a PKI infrastructure doesn't currently exist, follow Microsoft's step-by-step example of deploying PKI https://technet.microsoft.com/en-us/library/mt627852.aspx. Once you have all valid certificates, proceed to the next section.

How to do it...

To enable Internet-facing clients, perform the following steps:

  1. Navigate to Administration | Site Configuration | Sites, and select the desired site to support Internet-based clients. Right-click on the site and select Properties.
  2. From the Client Computer Communication tab, select either HTTPS only if you only want to support HTTPS, or HTTPS or HTTP as required.
  3. Enable the checkbox to Use PKI client certificate, and then click on the Modify button to select the client certification selection criteria, as well as the store name, and then click on OK.
  4. Click on the Set button to specify the Trusted Root Certification Authorities, and then select the starburst to browse to a new certificate file.
  5. Select OK to save changes to Site Properties.
  6. From the Servers and Site System Roles node, select the desired site in the top pane. Select the desired roles from the bottom pane (Management Point, Distribution Point, Software Update Point, as well as Application catalog Point, if required).
  7. Specify HTTPS for client communication types.
  8. As long as the new site systems are accessible from the Internet at this point, the infrastructure configuration is complete. Follow the client installation instructions given at https://technet.microsoft.com/en-us/library/mt489016.aspx; to install the CM client properly.

How it works...

CM allows clients assigned to the same primary site to use either HTTP or HTTPS communication. If a client has the PKI cert, it can be set to use HTTP for the intranet and HTTPS for the Internet.

See also

End of Section 10
Next Section
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY