Cannot Remove a DP – Old Site System from SCCM

The most simple and stupid solution is to just wait 24h, and then SCCM will let you remove it 🙂 If you want it fast, you can try this: Open your regedit: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SMS\SMS_SITE_COMPONENT_MANAGER\Component Servers Find out your old DP, and on each “Deinstallation Start Time” REG_DWORD value to 1.. then restart  SMS_SITE_COMPONENT_MANAGER.   However, if […]

SCCM Compliance Rule For Checking CredSSP Envryption Oracle Remediation Status

Here is my powershell detection script for checking machines with CredSSP Envryption Oracle Remediation Status with SCCM Compliance Rule: # Check CredSSP Envryption Oracle Remediation Status # Rui Qiu # 8/21/2018 # ver1.4 $osversion = Get-WmiObject -Class Win32_OperatingSystem | Select BuildNumber -ExpandProperty BuildNumber $matches = “KB4103718”, “KB4103712”, “KB4103730”, “KB4103726”, “KB4103725”, “KB4103715”, “KB4103723”, “KB4103731”, “KB4103727” $fix […]

SCCM DP Installation Notes

distmgr.log CWmi::Connect() failed to connect to \\DP-name.dm.xxx.yyy.corp\root\CIMv2. Error = 0x800706BA 0x800706BA = the RPC server is unavailable. Failed to install DP files on the remote DP. Error code = 1722 – primary site computer account is in local admin group – windows firewall disabled on both computers (firewall set service remoteadmin enable, file sharing) – […]

SCCM Package for Registry Permissions Change

Orignally I have Powershell script for doing that, but it turns out not so good: if (!(Test-Path HKCC:)) {New-PSDrive -PSProvider registry -Root HKEY_CURRENT_CONFIG -Name HKCC} $RegPath= ”HKCC:\SOFTWARE\XXX” New-Item -Path ”HKCC:\SOFTWARE\” -Name Encompass -Force $acl = Get-Acl $RegPath $rule = New-Object System.Security.AccessControl.RegistryAccessRule (“BUILTIN\Users”,”FullControl”,”Allow”) $rule2 = New-Object System.Security.AccessControl.RegistryAccessRule (“Everyone”,”FullControl”,”Allow”) $acl.SetAccessRule($rule) $acl.SetAccessRule($rule2) Here is the bath file to […]

Rapid7 Insight Agent Update Fix Discover Script

# Rapid7 Insight Agent Update Fix Discover Script # Rui Qiu # v1.1 # 4/3/2018 $folder = “C:\Program Files\Rapid7\Endpoint Agent” if (test-path $folder) { $content = (get-content config.json | where { $_ -match “smart_ttl_start” } ) # echo $content $key = ‘ “smart_ttl_start”: 128,’ # echo $key if ($content -eq $key) {$Compliance = “Yes”} Else […]