Windows 11 Machines With MECM / SCCM Client Installed Do Not Have Check for Online for Updates from Microsoft Update Drop down From Windows Update

 Windows 11 Machines With MECM / SCCM Client Installed Do Not Have Check for Online for Updates from Microsoft Update Drop down From Windows Update

Two registry keys set by MECM client causes this issue (which does NOT cause this issue with Windows 10). Deleting these two registry values returns this functionality:

 reg delete "HKLM\SOFTWARE\WOW6432Node\Policies\Microsoft\Windows\WindowsUpdate" /V UpdateServiceUrlAlternate /F

 reg delete "HKLM\SOFTWARE\WOW6432Node\Policies\Microsoft\Windows\WindowsUpdate" /V DoNotConnectToWindowsUpdateInternetLocations /F

Windows 11: Setting Check for Updates to Check Against Microsoft Online

 If you need a computer to check against Microsoft for latest updates and the option is missing in the Settings menu, the following will enable it.

1-Close Settings menu.

2-Open Registry Editor.

3-Navigate to :

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate

4-Modify the value of key from 0 to 1

5-Launch Setting and check the updates menu for drop down options for expected 'link' option

(Restart is not needed)

Error Installing Cisco Anyconnect Secure Mobility Client: Must Be Admin to Install

 Click Start and type “regedit” in the box.

A dialogue box will pop up with the following text: Do you want to allow the following program to make changes to this computer?

Click Yes.

Browse to the following location: HKEY_CLASSES_ROOT\Installer\Products\

Within the Products folder, locate and delete the registry key which contains product information for Cisco AnyConnect. (We recommend making a backup of this registry key before deleting it.)

Each registry key within Products is an alphanumeric string. Select the first key and look on the right side for ProductName REG_SZ Cisco Anyconnect Secure Mobility Client. Go through each key in the Products folder until you find the one for Cisco AnyConnect.

For example,

the registry key GUID for Cisco Anyconnect Secure Mobility Client v4.4 is  31D43F43B3678C84490E6DDCF38F2486

the registry key GUID for Cisco Anyconnect Secure Mobility Client v4.5 is  89A926BE96E58E04ABE93C3998F959D9

the registry key GUID for Cisco Anyconnect Secure Mobility Client v4.10.05111 is A5EF3288780FD794198D259C9799A4B0

Each version of Cisco Anyconnect Secure Mobility Client will have a different GUID for this registry key.

Close the registry editor.

Install the latest version Cisco Anyconnect Secure Mobility Client.

MP Control Manager Detected User Service is not Responding to HTTP Requests. The HTTP status code and text is 12175, . Message ID: 5490 Source: SMS Server Component: SMS_MP_Control_Manager

 This error was encountered on a MECM Management Point using PKI certificates for IBCM. The cause of the error was discovered to be an expired certificate. 

Open CERTLM (Certificates - Local Computer\Personal\Certificates) and review expiration date for all listed certificates. Reissue any expired certificates and import.

Uninstall Windows Built-in Apps With Powershell

The following Powershell script uninstalls Windows built-in apps for all users on a machine with specific exceptions:

$GoodPackages = 'Camera',

'Calculator',

'Microsoft.WindowsCalculator',

'Microsoft.WindowsCamera',

'Microsoft.SecHelathUI',

'Microsoft.VP9VideoExtension',

'Microsoft.WebMediaExtensions',

'Microsoft.WindowsTerminal',

'Microsoft.Paint',

'Microsoft.MSPaint',

'Microsoft.MicrosoftEdge*',

'Microsoft.Net*',

'Microsoft.WindowsNotepad',

'MicrosoftTeams',

'Microsoft.MicrosoftStickyNotes',

'Microsoft.ScreenSketch',

'Office',

'OneNote for Windows 10',

'Notepad',

'snip & sketch',

'Voice Recorder'

$packages = Get-AppxPackage -allusers | Where-Object {$_.Name -notin $GoodPackages}

foreach ($package in $packages) {

Remove-AppxPackage -allusers $package.PackageFullName

}

$provisionedPackages = Get-AppxProvisionedPackage -online | Where-Object {$_.displayName -notin $GoodPackages}

foreach ($provisionedPackage in $provisionedPackages) {

Remove-AppxProvisionedPackage -online -packageName $provisionedPackage.PackageName

}

RSAT Fails to Install on Windows 11 Installer Encountered an Error: 0x8024001d

 When attempting to install RSAT tools on Windows 11, an error is encountered

This error is a result of the installer being unable to access online content from Windows Update.

To quickly resolve this issue, make a temporary change to the registry settings on the machine.

Start

Run 

Regedit

Navigate to:
Computer\HKEY_Local_Machine\Software\Policies\Microsoft\Windows\WindowsUpdate\AU

change the value for UseWuServer from 1 to 0

Start or Restart the WindowsUpdate Service from Services.msc

Reattempt to install RSAT

once RSAT tools are installed, reset the registry key to 1

Restart WindowsUpdate

MECM SCCM: Site Component Manager Failed to Install Component, Because Microsoft Installer File for This Component (bgbisapi.msi) Could Not Install

Issue

 After installing a MECM hotfix update, the following error began showing in Component Status for SMS_NOTIFICATION_SERVER:

Site Component Manager Failed to Install Component, Because Microsoft Installer File for This Component (bgbisapi.msi) Could Not Install

Source: SMS Server

Component: SMS_NOTIFICATION_SERVER

Severity: ERROR

Message ID: 4951

Resolution

Restore Performance Counter Registry Settings

• On the Site Server, open a command prompt with administrator privileges
• run the following command:
  LODCTR /R

• If the command fails with error code 2, run the command again:
  LODCTR /R
• Restart the Site Server