Windows 10 Updates and Store GPO behavior with DualScan disabled and SCCM SUP/WSUS managed

Firstly… Before you start reading this, you should be familiar with the DualScan Feature of Windows 10. Find more information on the following blog posts. https://blogs.technet.microsoft.com/wsus/2017/08/04/improving-dual-scan-on-1607/ https://blogs.technet.microsoft.com/configurationmgr/2017/10/10/using-configmgr-with-windows-10-wufb-deferral-policies/ If you decided to disable DualScan (Do not allow update deferral policies to cause scan against Windows Update – Enabled) this post is for you. Let’s double check…

10

Secure a Task Sequence with a Password

Introduction Configuration Manager has very limited built-in functionalities to protect a Task Sequence from being executed. Sure you can define the scope of a certain task sequence deployment with deploying it only to certain collections. You also can set an PXE / Media Password to protect deployed task sequences from being executed. But there are certain…

5

BranchCache vs. Peer Cache

Recently, many customers have reached out to me, asking always the same question: “Should we use BranchCache or Peer Cache?” I decided to write this summary of both technologies and with the use in Configuration Manager to help understand and decided what technology is the best match for your case.   BranchCache BranchCache is a…

8