A customer recently experienced an issue where ConfigMgr Software Center would not load and crashed. Errors in SCClient_[DOMAIN]@[USERNAME].log indicated issues with querying WMI.Call to ExecuteQuery failed, Query: "Select * From CCM_Application WHERE UserUIExperience = TRUE" (Microsoft.SoftwareCenter.Client.Data.WmiConnectionManager at ExecuteQuery)Exception caught in ExecuteQuery, line 465, file...
Preventing Malware with Microsoft Defender for Endpoint
Posted on September 28, 2022by Tom Pearson with No comments

Introduction
In my previous post I looked at some barebones configuration
to get started with MDE, now let’s look at locking down your environment.
MDE includes many settings to minimise the overall attack
surface of your Windows devices, one of these features is the ability to apply
Attack Surface...
Laying the foundations in Microsoft Defender for Endpoint
Posted on September 22, 2022by Tom Pearson with No comments

IntroductionFollowing on from my previous post about onboarding devices to test the functionality of Defender for Endpoint (MDE) I’d like to detail some key settings to ensure MDE is configured in the best way and to maximise value of the product.These recommendations aren’t an exhaustive list,...
Onboarding devices to Microsoft Defender for Endpoint with Intune
Posted on September 16, 2022by Tom Pearson with No comments

IntroductionDefender for Endpoint (Formerly Defender ATP) is Microsoft’s enterprise grade endpoint protection solution which provides prevention, detection, investigation and response to advanced threats. I regularly work with customers who already use Defender anti-virus and want to dip their toes...
Onboarding remote devices with Microsoft ConfigMgr or Intune
Posted on September 16, 2022by Tom Pearson with No comments

IntroductionThe end user computing landscape has drastically changed over the last few years due to the drive towards remote working, and with this comes a need to rethink device management.For Windows devices, ConfigMgr or Intune have been the go-to solutions from Microsoft under the Endpoint...
ConfigMgr CMG "Failed to list keys for storage service"
Posted on August 24, 2022by Tom Pearson with No comments
When provisioning a vm scale set ConfigMgr Cloud Management Gateway and the following errors are shown in the CloudMgr.log:ERROR: TaskManager: Task [AnalyticsCollectionTask: Service xxxxxxxxxx] has failed. Exception Hyak.Common.CloudException, Failed to start deployment slot.ERROR: Resource Manager - Failed to list keys for storage service xxxxxxxxxx with status code NotFound. Check [Monitor/Activity...
ConfigMgr CMG provisioning error "Failed to finish deployment"
Posted on August 24, 2022by Tom Pearson with No comments
When deploying a ConfigMgr Cloud Management Gateway to Azure using VM scale sets and you receive the following error in CloudMgr.log:ERROR: Resource Manager - Deployment operation details: {"value":[{"id":"/subscriptions/xxxxxxxxxxxx/resourceGroups/xxxxxxxx/providers/Microsoft.Resources/deployments/CreateKeyVaultd7fa35f7-7f9a-4a49-b780-2e3d267f29a3/operations/4B42A1CC456C4E8A","operationId":"4B42A1CC456C4E8A","properties":{"provisioningOperation":"Create","provisioningState":"Failed","timestamp":"2022-08-24T09:29:33.5616488Z","duration":"PT0.2383212S","trackingId":"f183ade1-5a45-4cd4-ab63-b3ca7801f48a","statusCode":"Conflict","statusMessage":{"error":{"code":"MissingSubscriptionRegistration","message":"The...
Implementing Role Based Access Control (RBAC) with ConfigMgr Part 1 - Basic Security Roles
Posted on February 26, 2020by Tom Pearson with 1 comment

Part 1 - Implementing RBAC with ConfigMgr - Basic Security Roles
Part 2 - Implementing RBAC with ConfigMgr - Security Scopes [COMING SOON]
Part 3 - Implementing RBAC with ConfigMgr - Multiple Regions [COMING SOON]
Introduction
ConfigMgr is a very powerful tool, it can be used to refresh hundreds...
Deploy a ConfigMgr Secondary Site with SCCM 1906
Posted on September 04, 2019by Tom Pearson with No comments

Introduction
The purpose of this blog is to provide guidance for scaling an existing Configuration Manager environment using a secondary site.
Secondary sites are required when:
The WAN link back to the primary site server is slow or unreliable
Content needs to be distributed at specific times...
Provision and Build Windows VM's in a Hyper-V Lab Environment Using PowerShell and ConfigMgr
Posted on August 06, 2019by Tom Pearson with No comments
Background
I needed a way to efficiently provision and build Windows 10 systems in my Hyper-V lab environment which followed a naming convention. The obvious way forward was to create a series of PowerShell scripts. This post is to serve as an example of how to achieve this in a lab, in no way is...
SCCM Cloud Management Gateway Error: Task [CreateDeployment for service (CMG NAME)] has failed
Posted on January 22, 2019by Tom Pearson with 5 comments
I recently encountered this error while standing up a ConfigMgr CMG for a client, the error isn't obvious until you delve a little deeper into the log files. I'd instructed SCCM to create a new Azure resource group for the CMG, but it kept failing.
CloudMgr.log
ERROR: Resource Manager - Failed to finish deployment. Check [Monitor/Activity log] on Azure Portal for more information
ERROR: Resource...
Promote Passive SCCM Site Server to Active
Posted on August 18, 2018by Tom Pearson with No comments
If you've followed my previous post about implementing SCCM site server high availability in a lab, this is a quick guide to demonstrate how to promote a passive mode site server to active mode.
In the SCCM console, navigate to Administration > Site Configuration > Sites
Select site and...
Install SCCM 1806 with HA Site Servers in a lab
Posted on August 18, 2018by Tom Pearson with 2 comments
I wanted to install a fresh SCCM environment in my lab to play around with the new funky features in SCCM 1806. What better excuse to start from scratch and create a new blog post!
This guide will walk you through installing a fresh SCCM 1806 environment and demonstrate the site server active/passive...
Subscribe to:
Posts (Atom)
About Me

- Tom Pearson
- Senior Consultant at CDW UK specialising in Microsoft workspace and cloud technologies.