Recently Wally Mead joined us for a webcast about Configuration Manager 2012 SP1 and the Microsoft Management Summit. That webcast is now available for public viewing on YouTube. As often occurs in a webcast, we were unable to answer all of the questions presented. We thank all of the participants for their questions and I was able to follow-up with Wally after the webcast and get answers to the rest of those questions. Additional discussion on these questions is welcome in the comments section and I’ll be happy to provide additional assistance, or follow up with Wally if appropriate.


One question that we did answer during the webcast concerned assistance with upgrading an instance of SQL Server to SQL Server 2012, and I wanted to share this MSDN collection that should provide some additional assistance with that effort: Upgrade to SQL Server 2012



Q1.  I have a question about Task Sequences. When booted from media, I have the option to insert IP Address when OS is booted to WinPE, however, these static settings I set do not survive to the actual OS phase, DHCP settings have taken over … any thoughts on how to get this kind of scenario working?


LG: During the webcast I suggested to use DHCP Reservations, but I asked Wally if there was another option for this scenario.


WM: The suggestion is to use DHCP reservations. That’s the best way to handle it. However, a response from the [Product Group] PG was:


PG: When they set the IP in WinPE, it is applied on the fly and not saved as it may only be relevant to WinPE. If they want to persist that IP, then they’ll need to do a custom script to pull the addresses from the system in WinPE and set the task sequence variables so that it is used later by the Apply Network Settings task.



Q2. Can you go over OSD support with SCCM 2012 SP1 in terms of using the default wim files that are shipped on the OS install DVD?


WM: You simply browse to the Install.wim from the OS when adding the Operating System Image. Then you add a new TS variable to tell it to not restore to the same drive:

     D: issue - Add OSDPreserveDriveLetter=False allows the task sequence to auto-correct



Q3. Are there any known issues with setting up SQL Server Reporting Services with Configuration Manager 2012?


WM: You must install SRS on a SQL Server computer, then make sure that we have an account to use. That’s really about it.



[This question is a follow-on to the use of security roles to manually add nodes.]

Q4. If I have a security group listed as an administrative user, I can grant that user security roles, which correspond to security groups? If I grant this administrative user security roles which define it to have access to fully manage clients in their collection, but only manage the all systems collection to import computer information, I am not seeing a way to handle this because it seems to be a one-to-one relationship. So from the admin user group, what roles are they assigned on what collections? I don’t see a way to assign roles multiple times to say this role applies to this scope, while that role applies
to another scope.


WM: By default, when you add an administrative user (individually or via a security group), you designate the role(s), security scope(s), and collection(s) that this administrative user has. All actions for all roles are available to all objects with that same scope applied, to all members of the associated collections. If you want more granular control, such as specific actions (i.e. roles) applied to specific collections, and other roles applied to different collections, you go to the “Security Scopes” tab of the administrative user Properties dialog. Then select the bottom radio button “Associate assigned security roles with specific security scopes and collections”. That allows you to control which roles/scopes are associated with which collections.



Q5. There is more than Exchange that we would want to manage on mobile devices, like applications, policies for connections, etc. We need a complete MDM solution based on CM, not an external service – when is that coming? (and from the same participant, in the registration form): Why doesn’t CM support devices the same way Intune does without the added cost of Intune?


WM: Configuration Manager does not provide the same level of management of mobile devices as does Windows Intune. If you need more management than what Configuration Manager can provide when integrated with Exchange ActiveSync, then you’d have to go with the Windows Intune integration. There is no planned on-premise, full MDM solution other than what we have for Windows Mobile/Phone 6.1/6.5 and Nokia Symbian. Windows Intune, through the cloud, is our stated direction for this support.



Q6. We don’t want CM advertisements for VApps to have a countdown, is there still a countdown notification in CM2012 advertisements for VApps?


WM: If you are referring to the countdown before a deadline app, then you can disable all notifications if you want to. That’s done on a per deployment basis, on the User Experience tab.



Q7. What is your recommended strategy for cluster patching with SC2012 SP1?


WM: We have architected nothing specific in Configuration Manager to handle cluster patching scenarios. Most people I know of are using System Center Orchestrator to coordinate those activities. But nothing in Configuration Manager natively, and no integration with the cluster aware updating from the OS. Other than Orchestrator integration, it is a manual process.



LG: And finally, for those of you who were unable to attend the Microsoft Management Summit, all of the sessions presented (plus some bonus interviews) are now available for public viewing on Channel 9.