SCCM by Davis: “Troubleshooting Windows app package deployment on Windows 8 with ConfigMgr 2012” plus 19 more

---

• Troubleshooting Windows app package deployment on Windows 8 with ConfigMgr 2012
• Configuration Manager 2012 failed to start DP health monitoring task . . .
• Migrating SCCM 2007 to SCCM 2012 - Part 1 The Lab
• SCCM 2012 Upgrade to SP1
• Loic Toullec became a registered member
• Flexera Software wrote a new post, When Performing a Microsoft License Reconciliation – Start with MSDN
• Cisco, Microsoft Partner on Data Center Solutions
• Elissa Talley became a registered member
• Zulma Nevarez became a registered member
• M. WILSON became a registered member
• Timothy Volckmann became a registered member
• Celesta Kiser became a registered member
• Mike Colley became a registered member
• Microsoft Readying Surface Mini With 7-Inch Screen: Report
• SolarWinds IPAM Takes Manual Drudgery Out of IP Network Management
• John Marcum wrote a new post, Dude,where’s my compliance data?
• FCC Requests 2014 Budget of $359 Million
• Update Rollup 2 for System Center 2012 Service Pack 1 is now available
• Aaron became a registered member
• Flexera Software wrote a new post, Introducing the Installer Cheat Sheet Series

Troubleshooting Windows app package deployment on Windows 8 with ConfigMgr 2012 Posted: 03 Mar 2013 07:50 AM PST This week I was planning on doing a post about deploying a Windows app package (.appx) on Windows 8, until I saw that Keith Mayer already just posted a Step-by-Step for that. As that post is, from a ConfigMgr perspective, already very complete, I changed, from my original plan, to troubleshooting the deployment of a Windows app package (.appx) on Windows 8. The deployment of a Windows app package (.appx) on Windows 8 requires two specific settings and in this post I will describe those settings and the errors that will appear when these settings are forgotten. Import the root certificate as a Trusted Root Certification Authority The first setting is that the app package has to be signed with a certificate chain that can be validated by the local computer. In other words the root certificate has to be trusted by the local computer. When this is not configured correctly, both, the AppDiscovery.log and the AppEnforce.log, will show error 800B0109. The nice thing is that the AppEnforce.log will also implicate what the problem is, see this log snippet (followed by a picture of the complete error in the log): In-line script returned error output: Add-AppxPackage : Deployment failed with HRESULT: 0x800B0109, A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider. (Exception from HRESULT: 0x800B0109) error 0x800B0109: The root certificate of the signature in the app package must be trusted. The easiest way to correctly import the root certificate for all computers is by using Group Policies. To configure this follow the next steps: Open the Group Policy Management Editor and navigate to Computer Configuration Policies Windows Settings Security Settings Public Key Policies. Right-click Trusted Root Certification Authorities, select Import… and the Certificate Import Wizard will show. On the Welcome page, click Next. On the File to Import page, Browse to the certificate and click Next. On the Certificate Store page, click Next. On the Completion page, click Finish. Allow all trusted apps to install The second setting is that the local computer is allowed to install trusted app packages that do not originate from the Windows Store. When this is not configured correctly, both, the AppDiscovery.log and the AppEnforce.log, will show error 80073CFF. The nice thing is again that the AppEnforce.log will implicate what the problem is, even though it's a bit more cryptic this time, see this log snippet (followed by a picture of the complete error in the log): In-line script returned error output: Add-AppxPackage : Deployment failed with HRESULT: 0x80073CFF, To install this application you need either a Windows developer license or a sideloading-enabled system. (Exception from HRESULT: 0x80073CFF) Deployment of package bc25cdcc-f901-4f91-91a7-55a74a247376_1.0.0.0_neutral__tbz3402trp7yy failed because no valid license or sideloading policy could be applied. A developer license (http://go.microsoft.com/fwlink/?LinkId=233074) or enterprise sideloading configuration (http://go.microsoft.com/fwlink/?LinkId=231020) may be required. Also for allowing all trusted apps to install, the easiest way to correctly configure that for all computers is by using Group Policies. To configure this follow the next steps: Open the Group Policy Management Editor and navigate to Computer Configuration Policies Administrative Templates Windows Components App Package Deployment. Double-click Allow all trusted apps to install, select Enabled and click OK. Note: Before the app package is a trusted app package, the (root) certificate, that is used for signing the app package, has to be trusted.

Configuration Manager 2012 failed to start DP health monitoring task . . . Posted: 01 Mar 2013 11:03 PM PST I ran into a strange Configuration Manager 2012 issue today on a client site. The "Configuration Manager Client" package for some reason was failing to be processed by Distribution Manager. The status of the Distribution Manager component was critical, and the distmgr.log file was repeatedly displaying the following errors; ~Failed to start DP health monitoring task for package 'xxx00003′. Error code: -1 . . . and ~Failed to process package xxx00003 after 35 retries, will retry 65 more times All of the other packages were healthy. After a bit of digging, I found a thread on Technet forums suggesting that a file in the root of a drive on the site server named "Program" may be the culprit. Sure enough, I found a mysterious file named Program in the root of drive D:\ on the Site Server. After renaming the file, we initiated a validation of the package on the DP. Within minutes the issue was resolved, and the package was successfully processing again. I have no idea how the "program" file came to be on the drive, nor why it was interfering with Distribution Manager's normal operations, but I'm sure glad that I stumbled upon the resolution, so thought I'd share it in case others encounter the issue.

Migrating SCCM 2007 to SCCM 2012 - Part 1 The Lab Posted: 01 Mar 2013 08:08 PM PST I am getting ready to do a System Center Configuration Manager Migration at work.  To prepare myself for that I have been building a similar environment in my lab.  I found my self documenting what I was working on in evernote then realized I might as well post these to Splanic in case they can help anyone else.  I have some unique items at work I am trying to replicate so I will share those.   I will go through each step of the upgrade/migration and dive deep into any issues I run into.  <sarcasm on>I am sure this will be a next. next finish install<sarcasm off> Lab Environment 2 DC's AD 2008 with the Scheme Extended Central site on Server 2008 r2 SQL DB on server 2008 r2 and sql 2008 One secondary server 2008 r2 One SQL DB for the secondary on server 2008r2 with sql r2 One Distribution Point on server 2008r2 3 Win7 WS with the central site as its site 1 Win7 WS with the secondary site as its site 1 Win7 WS with a seperate Distribution Point Configured SCCM config SCCM 2007 SP2 R3 OSD with MDT 2010 integration and UDI Software Updates Traditional Software Distribution Collection based on AD group membership

SCCM 2012 Upgrade to SP1 Posted: 01 Mar 2013 07:07 PM PST Here is my check list process I used to upgrade SCCM 2012 to SP1. Useful links to read before my post as I have only covered major topics and have skipped basic things like running windows update before the upgrade. Here is the official TechNet link for Backup and recovery for ConfigMan Here is the official TechNet link for planning upgrade to SP1 Here is the official MS KB on how to upgrade to SP1 Ensure site backups are working. Review the smsbkup.log file to ensure you don't have errors that you have over looked in the past. I personally have not seen the setting for alerts on backup failures work, I have had it set since I setup the maintenance job and found errors upon log review. You can run a manual backup by opening Configuration Manager Service Manger Monitoring -> system Status -> Component status -> Start -> Configuration Manager Service Manger -> Componenets -> SMS_SITE_Backup -> query status -> Start Watch the log file for completion. To be extra safe I also snapshot my primary server and took a SQL backup of the database Uninistall Automated Installation Kit (AIK) Install the Assessment and Deployment Kit It contains new versions of WinPE Deployment tools User State Migation Install only the these features Disable site Maintenance task – Delete Aged Client Operations on primary site server Administration -> Site Configuration -> Sites -> Site Maintenance Install WMF 3.0 download Confirm your version of SQL is supported. here Start the Upgrade wizard Prerequisite checker will display different results for every different environment – for my production environment it found the following warnings I was missing WSUS KBs – Make sure that WSUS KB2734608 and KB2720211 are installed on your primary site server and your remote wsus Server if you have one. SQL Server minimum RAM configuration was not set to 8 GB Verify that the built-in collections have not been modified – they will be reset back to default setting so if you have made modifications you should copy the collections or document your changes so you can reset them after the upgrade. Click begin install After the upgrade is complete install KB2801987

Loic Toullec became a registered member Posted: 11 Apr 2013 11:39 PM PDT Comments: 0

Flexera Software wrote a new post, When Performing a Microsoft License Reconciliation – Start with MSDN Posted: 11 Apr 2013 08:44 PM PDT By Mandi Sue Bleau When working with a new customer on a Microsoft software license reconciliation, the question that I start with is – how are your Microsoft Developer Network (MSDN) licenses being handled?  Why, […] Comments: 0

Cisco, Microsoft Partner on Data Center Solutions Posted: 11 Apr 2013 08:20 PM PDT The vendors combine Cisco's UCS and Nexus 1000V Series with Microsoft's cloud software to make data center deployment and provisioning easier.

Elissa Talley became a registered member Posted: 11 Apr 2013 07:36 PM PDT Comments: 0

Zulma Nevarez became a registered member Posted: 11 Apr 2013 07:13 PM PDT Comments: 0

M. WILSON became a registered member Posted: 11 Apr 2013 06:07 PM PDT Comments: 0

Timothy Volckmann became a registered member Posted: 11 Apr 2013 05:09 PM PDT Comments: 0

Celesta Kiser became a registered member Posted: 11 Apr 2013 04:44 PM PDT Comments: 0

Mike Colley became a registered member Posted: 11 Apr 2013 03:29 PM PDT Comments: 0

Microsoft Readying Surface Mini With 7-Inch Screen: Report Posted: 11 Apr 2013 04:35 PM PDT Microsoft hopes to capitalize on the mini tablet craze amid crashing PC sales and a dim outlook for the company's Windows 8 operating system.

SolarWinds IPAM Takes Manual Drudgery Out of IP Network Management Posted: 11 Apr 2013 01:33 PM PDT SolarWinds IP Address Manager, or IPAM, is an application that offers extensive IP management and reporting capabilities.

John Marcum wrote a new post, Dude,where’s my compliance data? Posted: 11 Apr 2013 01:57 PM PDT One announcement that was made during MMS 2013 was the release of MDOP 2013 which includes MBAM 2.0. I'm not writing this blog to tell you about the features of MBAM 2.0, if you want that info you can get it here. […] Comments: 0

FCC Requests 2014 Budget of $359 Million Posted: 11 Apr 2013 12:15 PM PDT The FCC has requested a budget of $359 million for 2014, a year that will bring highly anticipated spectrum auctions.

Update Rollup 2 for System Center 2012 Service Pack 1 is now available Posted: 11 Apr 2013 11:12 AM PDT Update Rollup 2 for Microsoft System Center 2012 Service Pack 1 (SP1) is now available. This update includes a bunch of great fixes for App Controller, Operations Manager, Service Manager, Orchestrator and Data Protection Manager. You can get all the details and a download link here: KB2802159 - Description of Update Rollup 2 for System Center 2012 Service Pack 1 (http://support.microsoft.com/kb/2802159) J.C. Hornbeck | Knowledge Engineer | Microsoft GBS Management and Security Division Get the latest System Center news on Facebook and Twitter: System Center All Up: http://blogs.technet.com/b/systemcenter/ System Center – Configuration Manager Support Team blog: http://blogs.technet.com/configurationmgr/ System Center – Data Protection Manager Team blog: http://blogs.technet.com/dpm/ System Center – Orchestrator Support Team blog: http://blogs.technet.com/b/orchestrator/ System Center – Operations Manager Team blog: http://blogs.technet.com/momteam/ System Center – Service Manager Team blog: http://blogs.technet.com/b/servicemanager System Center – Virtual Machine Manager Team blog: http://blogs.technet.com/scvmm Windows Intune: http://blogs.technet.com/b/windowsintune/ WSUS Support Team blog: http://blogs.technet.com/sus/ The AD RMS blog: http://blogs.technet.com/b/rmssupp/ App-V Team blog: http://blogs.technet.com/appv/ MED-V Team blog: http://blogs.technet.com/medv/ Server App-V Team blog: http://blogs.technet.com/b/serverappv The Forefront Endpoint Protection blog : http://blogs.technet.com/b/clientsecurity/ The Forefront Identity Manager blog : http://blogs.msdn.com/b/ms-identity-support/ The Forefront TMG blog: http://blogs.technet.com/b/isablog/ The Forefront UAG blog: http://blogs.technet.com/b/edgeaccessblog/

Aaron became a registered member Posted: 11 Apr 2013 10:12 AM PDT Comments: 0

Flexera Software wrote a new post, Introducing the Installer Cheat Sheet Series Posted: 11 Apr 2013 09:00 AM PDT By Flexera Software Cheat sheets serve as great references, offering fast help in different areas of life. A great resource for our development team has been http://www.cheat-sheets.org/, which covers most major […] Comments: 0

You are subscribed to email updates from SCCM by Davis To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google Inc., 20 West Kinzie, Chicago IL USA 60610