SCCM 1906 Co-management Capabilities Matrix

I am putting together a Co-management deep dive series in the coming weeks. One of the things that has intrigued me is the “Capabilities” value when looking at Co-management workloads. The values have changed in 1906 and can be found below Capability Workload 1 No Workloads – Co-management enabled 2 […]

“The site database has a backlog of SQL change tracking data”

One of the more common prerequisite warnings I see when updating SCCM in my lab is:- [Completed with warning]:The site database has a backlog of SQL change tracking data. For more information, see https://go.microsoft.com/fwlink/?linkid=2027576 SCCM Update Pack Installation Status We can see the same warning in ConfigMgrPreReq.log What does this […]

Co-management Intune MDM enrollment failure 0x80180026

I will be posting a new blog series for co-management in the coming months. This post will highlight the undesirable effect some Group Policies will have on a successful co-management Intune enrollment. Co-management will allow you to automatically enroll your SCCM clients into Intune, if they are in scope. Recently […]

Get Users from Azure AD with a large number of Registered Devices

The Challenge One of the challenges when managing an Azure AD Hybrid Join implementation is monitoring the number of devices registered to each Azure AD user. The default “limit” in Azure AD is 20 devices for each user. This number can quickly be reached in a shared computer environment, especially […]

Windows 10 – Hybrid Azure Active Directory Join for Federated Domains

What is ADFS? Active Directory Federation Services (ADFS) provides a secure mechanism to authenticate users, accessing applications (often in the cloud), using Active Directory credentials when Windows Integrated Authentication (WIA) is not possible. Not so long ago ADFS was considered the go-to option when needing to authenticate Domain users accessing […]

Windows 10 – Servicing Stack Cadence

What are Servicing Stack Updates? Servicing Stack Updates (SSU’s) are Critical, Security Updates. They are shipped separately to the monthly Latest Cumulative Updates (LCU’s) because they modify the component that installs Windows updates. Microsoft strongly recommend that you install the latest SSU before the LCU. More information on SSU’s can […]

Configure Managed Google Play for Intune

Before you can start using Android Enterprise Work Profiles, or enroll your Android Devices into Intune, you have to link Managed Googled Play. Google Managed Play allows you to select, purchase, and manage apps for your organization. You can create lists of approved apps and manage updates. This quick post […]