ConfigMgr 2012 R2 SP1 Application Catalog promts for cridentials

sccm2012_logo.gif-1200x0[1]

If you start using the Application Catalog from Configuration Manager 2012 R2 SP1 you have to configure some settings before the users can access it.

Probably you recieve a login propt when accessing the application catalog from your client.

Solution

After installing the role and checking the logs for a successfull installtion (SMSAWEBSVCSetup.log & SMSPORTALWEBSetup.log) you have to change the client settings:

  • Change the “Computer Agent” settings:

1

  • Select your Application Catalog website:
2
  • Add your Application Catalog website to your clients by using Group Policy:
3
This steps will allow you to use the Application Catalog without any logon prompts. Configure also your Enterprise Mode settings when you use Windows 10 EDGE Browser. EDGE does not support Silverlight but the Software Center and the Application Catalog is using Silverlight.
Cheers
Al

New blog

After blogging on sccmfaq.ch I finally started my own blog – blog.alschneiter.com. I’m focused on all the new and rising Microsoft Windows Client technologies. This includes stuff like, Windows 10, Configuration Manager (ConfigMgr), EMS, Office365, Azure RemoteApps, Remote Desktop Services (RDS), MDOP and much more! Just the modern workplace. Any questions to me? Feel free to contact me using this blog or twitter!

And, don’t miss all the technical deep dives, technical news and also some fun stuff. Subscribe right now!

Cheers,
Al

itnetX_portraits_2015_14

Replace RD Web Certificate

Hi,

In some cases (DNS changes, expired certificate, etc.) you have to renew a certificate on your RD Webservers. I hat to do this today on a environment wit two RD Web Servers load balanced by a F5 Loadbalancer. But just replacing the web certificate on the RD Connection broker was not enough.

For some reason the cert was not valid after the replacement.

Solution:

  1. Delete all the old certificates in the personal store of the RD Webservers
  2. Reboot the Webservers
  3. Request a new certificate by using certlm.msc of one of the RD Webservers
  4. Export the .pfx file for the Connection Broker
  5. Redeploy the certificate using the Server Manger / Remote Desktop Services / Deployment Overview / Tasks / Edit Deployment Settings

This should allow you to access the RD Websites without having any certificates warnings.

Cheers,
Al

 

Deploy Skype for Business using Click-to-Run Tool and ConfigMgr 2012 R2

Hi folks,

Today I had to deploy Skype for Business for a Office 365 Business Premium Plan using ConfigMgr 2012 R2. This is a special O365 plan for a maximum of 300 users.

Normally with an E3 plan you can use a config.XML file with the lync product code entry called “LyncRetail”.

This is not working for all other plans like E1, E2, Business, BusinessPremium etc.! You have to change the product code to “LyncEntryRetail” otherwise you won’t be able to activate your Skype for Business installation.

This is how my config file now looks like:

<Configuration>

<Add OfficeClientEdition=”32″>
<Product ID=”O365BusinessRetail”>
<Language ID=”en-us” />
</Product>
<Product ID=”LyncEntryRetail”>
<Language ID=”en-us” />
</Product>
</Add>
<Update Enabled=”TRUE” />
<Display Level=”None” AcceptEULA=”TRUE” />
<Logging Name=”OfficeSetup.txt” Path=”%temp%” />

</Configuration>

Here you can find a list of all supported products: https://support.microsoft.com/en-us/kb/2842297

 

Maybe this helps.

Cheers,
Al

ADFS 3 login issues 8004789A after rebuilding the farm – Office 365 relaying trust missing

Hi Folks,

One of our customer had an issue with the ADFS farm running on Windows Server 2012 R2. There was a problem with the ADFS proxy which was domain joined. This is not a recommended configuration so we changed that to a workgroup machine.

The https://adfs.DOMAIN.COM/adfs/ls/IdpInitiatedSignon.aspx could be contacted after that and a Login was possible. Hovever, an enrollemnt of devices using Microsoft Intune was still not working. We recoginized that the realying trust to Office 365 was missing on the ADFS Server:
1

Using powershell to create the trust worked but didn’t allow the user to Login to https://account.manage.microsoft.com or the comany portal and enroll devices.

$cred=Get-Credential
Connect-MsolService –Credential $cred
Set-MsolAdfscontext -Computer “FQDN of Server”
Convert-MsolDomainToFederated –DomainName “Your Domain Name”

The error 8004789A occured on the Login page.

Reason
You have to use the powershell command
Update-MsolFederatedDomain –DomainName “Your Domain Name”

This did the trick.

2

Maybe this helps someone.

Cheers,
Al

Merger of itnetx gmbh and Syliance IT Services GmbH

logo-original

BERN/ZÜRICH. Two of the most important companies in the field of Microsoft Workplace, Cloud and Management Solutions, Syliance IT Services GmbH and itnetx gmbh, will merge as of 1st July 2015 to form the new company, itnetX AG.

A situation of market collaboration will prove to be fruitful: „This fusion makes sense and is important”, says Markus Erlacher, CEO of itnetx gmbh, „we will combine our energies, create synergy and send a clear signal of intent that we are committed to growth and business expansion”. The merger of the two companies will strengthen the market leadership and enable more customers more intensive treatment from the company offices in Bern and Glattbrugg, Zürich.

„The ability to offer integrated solutions and services in the rapidly-evolving IT markets is essential for our success”, says Dieter Gasser, CEO of Syliance IT Services GmbH. „With this merger we are consolidating and expanding our range of services; we can offer our customers proprietary software solutions and architecture and process consulting, in addition to systems integration and managed services”.

The newly-formed itnetX AG is aiming at changes in the IT market and the Microsoft Cloud First, Mobile First strategy lies at the heart of the business model. The new organization comprises 5 strategic business units: Modern Workplace Solutions, Management Solutions, Cloud and Datacenter Solutions, and Software Solutions, all of which are complemented by Managed Services.

With focus on Microsoft-based solutions, the future portfolio will include SaaS offerings and services such as Office 365, Microsoft Azure, Microsoft Intune and System Center, Windows Client and Windows Server. The whole package is rounded off with a range of software products targeted at Private and Public Cloud environments. This allows itnetX AG to advise customers much more comprehensively and bring added value to their business.

The work of itnetX AG also includes a continued active participation in the community with various blogs, book publications, 5 highly qualified MVPs (Most Valuable Professional) and private events such as the annual System Center Universe Europe (www.systemcenteruniverse.eu).

More information available upon request via Email: info@itnetx.ch or visit www.itnetx.ch.

Markus Erlacher Dieter Gasser

CEO itnetx gmbh CEO Syliance IT Services GmbH

Use DISM to change the product key

Hi it’s me Al,

This is a quick post how to use DISM Online to change the product key of a Windows Server 2012 R2. Sometimes you’re not able to change the key using the GUI. This is how to do this using DISM:

1. Run powershell or a cmd as Administrator

Use DISM /online /Get-TargetEditions to list available editions for upgrade. To upgrade from evaluation to standard use DISM /online /Set-Edition:ServerStandard /ProductKey:XXXXX-XXXXX-XXXXX-XXXXX-XXXXX /AcceptEula

2. Use the command DISM /online /Set-Edition:ServerDatacenter /ProductKey:XXXX-XXXXX-XXXXX-XXXXX-XXXXX/AcceptEula

1

3. Reboot the Server

Cheers.
Al