ConfigMgr Software Center crash and error "Call to ExecuteQuery failed, Query: "Select * From CCM_Application WHERE UserUIExperience = TRUE" "

A customer recently experienced an issue where ConfigMgr Software Center would not load and crashed. Errors in SCClient_[DOMAIN]@[USERNAME].log indicated issues with querying WMI.Call to ExecuteQuery failed, Query: "Select * From CCM_Application WHERE UserUIExperience = TRUE" (Microsoft.SoftwareCenter.Client.Data.WmiConnectionManager at ExecuteQuery)Exception caught in ExecuteQuery, line 465, file...

Preventing Malware with Microsoft Defender for Endpoint

Introduction In my previous post I looked at some barebones configuration to get started with MDE, now let’s look at locking down your environment. MDE includes many settings to minimise the overall attack surface of your Windows devices, one of these features is the ability to apply Attack Surface...

Laying the foundations in Microsoft Defender for Endpoint

 IntroductionFollowing on from my previous post about onboarding devices to test the functionality of Defender for Endpoint (MDE) I’d like to detail some key settings to ensure MDE is configured in the best way and to maximise value of the product.These recommendations aren’t an exhaustive list,...

Onboarding devices to Microsoft Defender for Endpoint with Intune

IntroductionDefender for Endpoint (Formerly Defender ATP) is Microsoft’s enterprise grade endpoint protection solution which provides prevention, detection, investigation and response to advanced threats. I regularly work with customers who already use Defender anti-virus and want to dip their toes...

Onboarding remote devices with Microsoft ConfigMgr or Intune

 IntroductionThe end user computing landscape has drastically changed over the last few years due to the drive towards remote working, and with this comes a need to rethink device management.For Windows devices, ConfigMgr or Intune have been the go-to solutions from Microsoft under the Endpoint...

ConfigMgr CMG "Failed to list keys for storage service"

 When provisioning a vm scale set ConfigMgr Cloud Management Gateway and the following errors are shown in the CloudMgr.log:ERROR: TaskManager: Task [AnalyticsCollectionTask: Service xxxxxxxxxx] has failed. Exception Hyak.Common.CloudException, Failed to start deployment slot.ERROR: Resource Manager - Failed to list keys for storage service xxxxxxxxxx with status code NotFound. Check [Monitor/Activity...

ConfigMgr CMG provisioning error "Failed to finish deployment"

 When deploying a ConfigMgr Cloud Management Gateway to Azure using VM scale sets and you receive the following error in CloudMgr.log:ERROR: Resource Manager - Deployment operation details: {"value":[{"id":"/subscriptions/xxxxxxxxxxxx/resourceGroups/xxxxxxxx/providers/Microsoft.Resources/deployments/CreateKeyVaultd7fa35f7-7f9a-4a49-b780-2e3d267f29a3/operations/4B42A1CC456C4E8A","operationId":"4B42A1CC456C4E8A","properties":{"provisioningOperation":"Create","provisioningState":"Failed","timestamp":"2022-08-24T09:29:33.5616488Z","duration":"PT0.2383212S","trackingId":"f183ade1-5a45-4cd4-ab63-b3ca7801f48a","statusCode":"Conflict","statusMessage":{"error":{"code":"MissingSubscriptionRegistration","message":"The...

Implementing Role Based Access Control (RBAC) with ConfigMgr Part 1 - Basic Security Roles

Part 1 - Implementing RBAC with ConfigMgr - Basic Security Roles Part 2 - Implementing RBAC with ConfigMgr - Security Scopes [COMING SOON] Part 3 - Implementing RBAC with ConfigMgr - Multiple Regions [COMING SOON] Introduction ConfigMgr is a very powerful tool, it can be used to refresh hundreds...

Deploy a ConfigMgr Secondary Site with SCCM 1906

Introduction The purpose of this blog is to provide guidance for scaling an existing Configuration Manager environment using a secondary site. Secondary sites are required when: The WAN link back to the primary site server is slow or unreliable Content needs to be distributed at specific times...

Provision and Build Windows VM's in a Hyper-V Lab Environment Using PowerShell and ConfigMgr

Background I needed a way to efficiently provision and build Windows 10 systems in my Hyper-V lab environment which followed a naming convention. The obvious way forward was to create a series of PowerShell scripts. This post is to serve as an example of how to achieve this in a lab, in no way is...

SCCM Cloud Management Gateway Error: Task [CreateDeployment for service (CMG NAME)] has failed

I recently encountered this error while standing up a ConfigMgr CMG for a client, the error isn't obvious until you delve a little deeper into the log files. I'd instructed SCCM to create a new Azure resource group for the CMG, but it kept failing. CloudMgr.log ERROR: Resource Manager - Failed to finish deployment. Check [Monitor/Activity log] on Azure Portal for more information ERROR: Resource...

Promote Passive SCCM Site Server to Active

If you've followed my previous post about implementing SCCM site server high availability in a lab, this is a quick guide to demonstrate how to promote a passive mode site server to active mode. In the SCCM console, navigate to Administration > Site Configuration > Sites Select site and...

Install SCCM 1806 with HA Site Servers in a lab

I wanted to install a fresh SCCM environment in my lab to play around with the new funky features in SCCM 1806. What better excuse to start from scratch and create a new blog post! This guide will walk you through installing a fresh SCCM 1806 environment and demonstrate the site server active/passive...