SCCM - Endpoint Protection Policy Application State Failed

How to resolve the issue in System Center Configuration Manager 2012 under the Endpoint Protection Status Screen, under Endpoint Protection Policy Application State a client shows "failed":



  1. Browse to C:\Windows\System32\GroupPolicy\Machine\ on the client affected
  2. Delete Registry.pol
  3. Restart the SMS Agent Host service


Or write a script to deploy to the clients affected containing the following:


del C:\windows\system32\grouppolicy\machine\registry.pol /q

net stop ccmexec

timeout /t 20

net start ccmexec

Error 1602 Installing Software Application MSI or EXE

Error 1612 the installation source is not available
 or
Returned failure exit code 1612. Failed the installation

Resolution

  1. Open Regedit
  2. Navigate to [HKEY_CLASSES_ROOT\Installer\Products\
  3. Find the key associated with the product trying to install and delete it
  4. Re-run the installer

Transferring Phones From Verizon Wireless to AT&T Wireless

To transfer an iPhone 5 or newer:

Obtain a SIM card from AT&T wireless and replace the SIM card in the phone
Gently insert the end of  small paperclip into the small pinhole opening in the SIM tray.
Apply a small amount of pressure until the SIM tray pops out
Grab hold of the SIM tray and pull straight out

This video shows how to remove the SIM card: https://www.youtube.com/watch?v=2mvQlUBGDaM

dump the old SIM card from the tray
insert the new SIM card into the tray
insert the SIM tray back into the phone
restart the phone

To transfer a Samsung Galaxy S5 or newer:

Obtain a SIM card from AT&T wireless and replace the SIM card in the phone
Gently insert the end of  small paperclip into the small pinhole opening in the SIM tray.
Apply a small amount of pressure until the SIM tray pops out
Grab hold of the SIM tray and pull straight out

This video shows how to remove the SIM card: https://www.youtube.com/watch?v=2mvQlUBGDaM

dump the old SIM card from the tray
insert the new SIM card into the tray
insert the SIM tray back into the phone
restart the phone

Program the data settings in the phone for the AT&T network:

Access the Settings menu.
Locate and select either Wireless & Networks, More Networks, or Connections.
Select Mobile Networks > Access Point Names.
Locate and select the option to add a new APN  by pressing the + symbol on the screen
Program each field using the settings below:

Name NXTGENPHONE
APN NXTGENPHONE
MMSC http://mmsc.mobile.att.net
MMS proxy proxy.mobile.att.net t 
MMS port 80
MCC 310
MNC 410
APN type default,mms,supl,hipri
APN protocol IPv4


Save the changes to return to the APN's menu and select the new APN.

How to Change Skype For Business SIP ADDRESS Using PowerShell

Powershell Cmdlet:
Set-CsUser –Identity <username> -SipAddress "<email address>"



  1. Open Skype for Business Management Shell
  2. Type the following cmdlet:
    Set-CsUser –Identity John.Doe -SipAddress "sip:John.Doe@Doe.com"
  3. press <ENTER>



Find Collections With Maintenance Windows in System Center Configuration Manager

With numerous device collections, it can be tedious and time consuming to hunt for maintenance windows that have bet set and on what collection. To obtain a list of all maintenance windows and the device collections where they are applied, run this query against the SCCM site database using SQL Server Management Studio.

In SQL Server Management Studio:
Click databases
Choose the primary site
click New Query

paste this query in and execute it:

SELECT c.Name, c.Comment,SW.Description, SW.StartTime, SW.Duration
FROM v_ServiceWindow SW
JOIN v_Collection C ON C.CollectionID = SW.CollectionID
ORDER BY c.Name

Dell BIOS Updates Using SCCM Configuration Manager

1. Download the BIOS update for the machine/model required

for example: Dell Latitude E7450

E7450A16.exe

Switch settings for silent deployment are:
NOPAUSE – Run without user prompts
NOREBOOT – Does not reboot the system when flashing is completed (we don't want the user to experience an unannounced reboot

2. Create an application package for the BIOS update and set the program to run the executable with the following switches:

E7450A16.exe -NOPAUSE - NOREBOOT

3. Download the Dell CCTK (Client Configuration Toolkit)

4. Create an application package for the CCTK

5. Create a Custom Task Sequence to Perform the BIOS Update silently


Verify the machine and model 


Copy the CCTK file to the local machine using the package previously prepared


Clear the BIOS Password utilizing the CCTK 


note: valsetuppwd= whatever your current BIOS password is

Apply the BIOS Update



Set the BIOS Password using the CCTK

note: valsetuppwd= whatever your want the BIOS password set as

Suspend Bitlocker


Reboot With User Notification and Count Down


Resume Bitlocker



6. Distribute and deploy the task sequence to the appropriate Device Collection

Maintaining ConfigMgr (SCCM) Software Update Point and WSUS

Here is an EXCELLENT article on properly maintaining the ConfigMgr Software Update Point and WSUS, deleting old/superseded updates, performing  a defragmentation/re-indexing job on the WSUS database, as well as resolving  the following errors from theWindows Update agent :
OnSearchComplete – Failed to end search job. Error = 0x80244022. 
Scan failed with error = 0x8024402