CCMEXEC.COM – System Center blog

CCMEXEC.COM – by Jörgen Nilsson

As a result on all the feedback on the Configuration Manager 2012 tools list  blog post me and Stefan put together after our System Center User Group session and the fact that we couldn’t find any good list of tools when we prepared the session. I have created a TechNet Wiki page and posted the links to all the tools there.

Now everyone can edit and add your favorite tools to the list as well. Have you written a tool? add it to the list.
Let’s make this list a really good one together!


Management of Windows Phone 8 through Configuration Manager 2012 R2 + Intune requires that you download and sign the Company Portal app using a Symantec code signing cert. There is a trial kit available so that you can perform a proof concept or test implementation but that is only for trial implementations. The guide on how to sign the company portal app on Technet is really good

Two lessons learned:

  • When you order the Symantec certificate make sure that you remember which computer, user account and browser you used as the same needs to be used again to download the certificate when the order is processed and the certificate can be downloaded.
  • When signing the Company Portal (SSP.xap) we got an error “Invalid Characters in path”, the solution was found in this Technet forum post thanks for that! :D
    The documentation for signing the app contains the following syntax: “XapSignTool.exe sign /f codesign.pfx /p P@ssw0rd companyportal.xap” as described here:

    The syntax that worked for us was the one from the post above: XapSignTool.exe sign /SignTool “C:\Program Files (x86)\Windows Kits\8.0\bin\x86″ /f codesign.pfx /p P@ssw0rd companyportal.xap”

Have a great System Center day!

Here are the links from mine and Stefan’s ( session “Configuration Manager Community Jewels” that we presented at the System Center User Group meeting in Stockholm 14/1 -2014. There are so many great community tools out there, it would be impossible to even find them all even more to list them all.

Thanks to everyone attending for making it a great event and a special thanks to Wally Mead for spreading some Configuration Manager love.


PowerShell Deployment Toolkit:

Johan Arwidmark Configuration Manager 2012 R2 Hydration Kit:

ConfigMgr 2012 R2 Prerequisites Installation tool:

OS Deployment:

Configuration Manager Driver grabber / injector:

Computer Naming RIS Style:

Microsoft Deployment Toolkit 2013:

Niall Brady Bitlocker Frontend HTA:


Configuration Manager Client Center:

Configuration Manager 2012 r2 toolkit:

PowerShell Right-Click tools:

Rick Houchins’ SCCM Right Click Tools ConfigMgr 2007/2012:

Huge inventory script:

Configuration Manager inbox monitor:

Client Push Manager:

Health Check Script:

Ola Hallengren SQL Maintenance:

SCCM Client Actions Tool PowerShell Edition aka PoshCAT:


Configuration Manager 2012 R2 Visio stencils:

Application Management:

PowerShell Application deployment toolkit:

Coretech Shutdown Tool:

Application Approvals:

Coretech Application e-mail approval:

With the release of Configuration Manager 2012 R2 Toolkit three new tools are included in the Toolkit! The toolkit can be downloaded here:

These are:

  • DP Job Manager
  • Collection Evaluation Viewer
  • Content Library Explorer

Collection Evaluation Viewer is a great addition, saving a lot of time when troubleshooting performance related issues and collection evaluation overall.
With Collection Evaluation Viewer you can see the different queues that are used for Collection Evaluation as displayed below including some valuable information like member changes, Last evaluation time and Run Time which can be used to troubleshoot performance related issues and bad queries.

Collection Evaluator Viewer_2You can also see each individual Queue as well which is great, Incremental updates is something that is asked for a lot, how many can we have without affecting collection evaluation.
This is a great tool for that as well here you can see how many collections which have incremental updates enabled in your environment. According to Technet the supported/recommended limit is 200 but normally you can have more than that, using this tool it is much easier to detect when you are getting close to that limit.

Collection Evaluator Viewer

    DP Job Manager
    Collection Evaluation Tool
    Content Library Explorer

    This is a tool that I will use a lot to troubleshoot and use to find performance bottlenecks! Much easier than reading the colleval.log file to achieve the same.

Registrations are now open for System Center User Group Sweden – Client Gathering 10/1 – 2014 at Microsoft in Akalla, Stockholm – Sweden. We are really proud to present Wally Mead as one of the speakers!!

There will be many great sessions and time to meet with a lot of people with the same interest!


  • 0900-0915 – Welcome – Stefan
  • 0915-1030 – Wally Mead – Managing Modern Devices with System Center 2012 R2 Configuration Manager and Windows Intune
  • 1045-1200 – Jörgen Nilsson / Stefan Schörling – Community Treasures
  • 1245-1400 – Wally Mead – Upgrading to System Center Configuration Manager 2012 R2
  • 1415-1530 – Mikael Nyström –  Deploying Windows 8.1 in production
  • 1530-1600 – Q&A Wally Mead / Stefan Schörling / Jörgen Nilsson / Mikael Nyström

Don’t miss it! Registration can using the link below, and the great thing is, it is FREE!

If you haven’t joined the facebook group I strongly suggest that you do that as well (all discussions are in Swedish)


An update for Endpoint Protection Clients were released on November 28 2013, it updates the client to version: “4.4.304.0″.

The update applies to the following Endpoint Protection / Configuration Manager versions:

  • Microsoft System Center 2012 R2 Configuration Manager Endpoint Protection clients
  • Microsoft System Center 2012 Configuration Manager Endpoint Protection Service Pack 1 (SP1) clients
  • Microsoft Forefront Endpoint Protection 2010 clients.

Important to note is that the update for Configuration Manager 2012 SP1 requires that you are on SP1 Cumulative Update 3 to be able to install the update!

More information and to download the update:

In some scenarios that I have written about before I end up building my master image using the ZTIWindowsUpdate.wsf script from MDT to install the updates needed during the build from Microsoft Update,

Now that IE11 is released in Microsoft Update in some scenarios you wan’t to exclude it as well, the KB article number is 2841134 so the exclusion should look something like this.

BuildImages IE 11

For Configuration Manager 2012 R2 there are now two hotfixes available, remember to only install them if you are experiencing the issues described in the KB article.

“An update is available for the “Operating System Deployment” feature of System Center 2012 R2 Configuration Manager”

This update solves two issues:

1. After you enable the PXE Service Point role on an instance of a specific distribution point, or you select the Deploy this boot image from the PXE-enabled distribution point property of a boot image, the Windows Deployment Service (WDS) stops running.

2. It solves a performance related issue when the image is downloaded during OS Deployment, this is only applicable if the task sequence is deployed as “Download content locally when needed by running Task Sequence”

“Per-computer variables for imported computers are not read in System Center 2012 R2 Configuration Manager”

It solves an issue where computer variables are not read by the task sequence during OS Deployment for imported computers.

Additionally here is a list of all KB articles related to Configuration Manager 2012 which can be really useful to have a look at when troubleshooting: